悪代官の伏魔殿掲示板

困っています。お願いします

はじめまして、こんばんは　　　

利用規約を読み投稿させてもらいました。　　件名のとおり広告が出て困っています。

出始めたのはだいぶ前で、広告が出始めてからはPCからしばらく離れていました。

数日前にふとどうにか自力で直せないかと思い、いろいろ調べて複数あったうちのいくつかは削除できました。(完全に削除できてるかは不明)

ads by sales checker　という広告？が消えず困っています。

自力でいくつか削除しましたが、各サイトの削除方法等に従っただけでPCの知識はほとんどない初心者です。

よろしくお願いします。

トッテくん
2015/04/18 (Sat) 22:33:26

返信フォームへ

Re: 困っています。お願いします

相談前に必要な作業があったようなので追加します。よろしくお願いします。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:41:06, on 2015/04/18
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17728)

Boot mode: Normal

Running processes:
C:\Program Files (x86)\TOSHIBA\Sync Utility\TosSyncScheduler.exe
C:\Program Files (x86)\NTTW\StartUpToolN\StartUpTool_w.exe
C:\Program Files (x86)\dynabook Portal Gadget\dynabook Portal Gadget.exe
C:\Windows\AIOKBApp.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe
C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVLauncher.exe
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\USER\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: ifp5toolbar - {0FAF6F52-1AD4-4282-9EA1-3EC884DA7AA3} - C:\Program Files (x86)\Digital Arts\IFP5\app\bin\ifp5toolbar.dll
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll
O2 - BHO: Yahoo!ツールバーフィッシング警告 - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ypho.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
O2 - BHO: FlpLauncher Class - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll
O2 - BHO: SalesChecker - {6abe7ed0-21a0-4aed-accf-39528128594b} - C:\ProgramData\SalesChecker\boM3M2Xec5lCVZ.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Microsoft アカウントサインインヘルパー - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20002\7.5.1144\7.5.1144\TmBpIe32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: Yahoo!ツールバーヘルパー - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O3 - Toolbar: Yahoo!ツールバー - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
O3 - Toolbar: セキュリティツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
O4 - HKLM\..\Run: [TSUScheduler] %ProgramFiles(x86)%\TOSHIBA\Sync Utility\TosSyncScheduler.exe
O4 - HKLM\..\Run: [dynabook Portal Gadget] "C:\Program Files (x86)\dynabook Portal Gadget\dynabook Portal Gadget.exe" -atboottime
O4 - HKLM\..\Run: [FlipViewer Library] "C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
O4 - HKLM\..\Run: [TiltMouse] C:\windows\TiltMouseAPP.exe
O4 - HKLM\..\Run: [AIOKBApp] C:\windows\AIOKBApp.exe
O4 - HKLM\..\Run: [TSleepSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
O4 - HKLM\..\Run: [TRCMan] C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe
O4 - HKLM\..\Run: [TKRTL] %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [NTTW_OSA_AUS] "C:\Program Files (x86)\NTTW\OSA_Aus\acs.exe" -silent
O4 - HKLM\..\Run: [TAVLauncher] C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVLauncher.exe
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O4 - Global Startup: スタートアップツール.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: 故障かな？と思ったら・・・ - {6CB1FA39-5745-4733-859F-E9C82A68F848} - C:\Program Files (x86)\NTTW\OSA_SupportTool\start_w.exe
O9 - Extra button: OneNote リンクノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンクノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: TOSHIBA Bulletin Boardへ追加 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O9 - Extra 'Tools' menuitem: TOSHIBA Bulletin Boardへ追加 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - Trusted Zone: http://www.ig.gmodules.com (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20002\7.5.1144\7.5.1144\TmBpIe32.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Security Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files (x86)\NTTW\SECURITY\AMSP\coreServiceShell.exe
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files (x86)\CyberLink\SoftDMA\Kernel\DMP\CLHNService.exe
O23 - Service: ConfigFree プロファイルサービス (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Activation Service (McAWFwk) - Unknown owner - c:\PROGRA~1\mcafee\msc\mcawfwk.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: McAfee OOBE Service (McOobeSv) - Unknown owner - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Qosmio AV Center Complement Service (TAVComplementService) - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\AVApplication\Engine\TAVComplementService.exe
O23 - Service: Qosmio AV Center Scheduler Service (TAVScheduler) - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVScheduler.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TOSHIBA TosRzTf Control Service (TosRzTfSvc) - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\RegzaLinkDubbing\TosRzTfSvc.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: UDSS - Unknown owner - c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15279 bytes

Adobe Flash Player 17 ActiveX Adobe Systems Incorporated 2015/04/15 6.00 MB 17.0.0.169
Adobe Flash Player 17 NPAPI Adobe Systems Incorporated 2015/04/15 6.00 MB 17.0.0.169
AhnLab Online Security AhnLab, Inc 2014/03/26
Apple Application Support（32 ビット） Apple Inc. 2015/02/03 94.3 MB 3.1.1
Apple Application Support（64 ビット） Apple Inc. 2015/02/03 108 MB 3.1.1
Apple Mobile Device Support Apple Inc. 2015/02/03 29.3 MB 8.1.0.18
Apple Software Update Apple Inc. 2014/04/02 2.38 MB 2.1.3.127
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver Atheros Communications Inc. 2014/03/19 1.0.0.27
Bonjour Apple Inc. 2014/04/02 2.00 MB 3.0.0.10
Canon MP493 series MP Drivers Canon Inc. 2014/03/24
CCleaner Piriform 2015/04/18 5.04
Corel Digital Studio SE Corel Corporation 2014/03/19 850 MB 1.5.10.200
DigiBookBrowser Version 1.5.1.4 TriWorks Corp.JAPAN 2010/12/01 8.47 MB 1.5.1.4
dynabook Portal Gadget TOSHIBA CORPRATION 2010/12/01 508 KB 2.1.0
dynabookランチャー東芝情報機器株式会社 2010/12/01 839 KB 3.1.0
dynabookランチャー用バナー 2014/03/19
ebi.BookReader3J eBOOK Initiative Japan Co., Ltd. 2010/12/01 17.7 MB 3.70.41
ebi.SampleContents eBOOK Initiative Japan Co., Ltd. 2010/12/01 3.7.0.41_MSI_T
ExtraShopper "" 2014/11/27
FlipViewer 4.5 E-Book Systems Inc. 2010/12/01 16.7 MB 4.5.1
Google Chrome Google Inc. 2014/04/30 38.0.2125.111
i-フィルター 5.0 Digital Arts 2010/12/01 5.00.17.0115
iCloud Apple Inc. 2015/02/03 90.8 MB 4.0.6.28
Intel(R) Graphics Media Accelerator Driver Intel Corporation 2014/04/05 8.15.10.2281
Intel(R) Management Engine Components Intel Corporation 2014/03/19 6.0.0.1179
Intel(R) Rapid Storage Technology Intel Corporation 2015/04/18 9.6.1.1001
iTunes Apple Inc. 2015/02/03 234 MB 12.1.0.71
Java 8 Update 45 Oracle Corporation 2015/04/18 77.1 MB 8.0.450
LaLaVoice V9.60 2014/03/19 9.60.001
LibreOffice 4.2.2.1 The Document Foundation 2014/03/21 439 MB 4.2.2.1
LINE LINE Corporation 2014/08/26 3.7.4.97
LoiLoScope LoiLo 2010/12/01 83.0 MB 1.8.33
McAfee Security Scan Plus McAfee, Inc. 2015/01/14 10.2 MB 3.8.150.1
Microsoft .NET Framework 4.5.2 Microsoft Corporation 2015/04/08 38.8 MB 4.5.51209
Microsoft .NET Framework 4.5.2 (日本語) Microsoft Corporation 2015/04/16 2.93 MB 4.5.51209
Microsoft Office 2010 Microsoft Corporation 2014/09/25 14.0.7015.1000
Microsoft Office ナビ 2010 Microsoft Corporation 2014/09/25 17.1 MB 14.0.7015.1000
Microsoft OneDrive Microsoft Corporation 2014/09/24 26.7 MB 17.0.4035.0328
Microsoft Outlook Hotmail Connector 64 ビット Microsoft Corporation 2014/09/24 4.60 MB 14.0.5118.5000
Microsoft Primary Interoperability Assemblies 2005 Microsoft Corporation 2010/12/01 7.75 MB 9.0.21022
Microsoft Silverlight Microsoft Corporation 2014/09/25 50.7 MB 5.1.30514.0
Microsoft SQL Server 2005 Microsoft Corporation 2014/09/25
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2010/12/01 1.69 MB 3.1.0000
Microsoft SQL Server Compact 3.5 SP1 English Microsoft Corporation 2014/03/19 2.59 MB 3.5.5692.0
Microsoft SQL Server Native Client Microsoft Corporation 2014/09/25 5.86 MB 9.00.5000.00
Microsoft SQL Server VSS Writer Microsoft Corporation 2014/09/25 1.12 MB 9.00.5000.00
Microsoft SQL Server セットアップサポートファイル (英語) Microsoft Corporation 2014/09/25 31.7 MB 9.00.5000.00
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2014/09/25 292 KB 8.0.61001
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2014/03/19 620 KB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2010/12/01 788 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2014/09/25 788 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2010/12/01 598 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2010/12/01 596 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2014/09/25 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/13 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/13 11.1 MB 10.0.40219
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2015/02/13 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語 Microsoft Corporation 2015/02/13 10.0.50903
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 2010/12/01 1.26 MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2014/03/21 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2014/03/21 1.33 MB 4.20.9876.0
NTT西日本リモートサポートツール西日本電信電話株式会社 2014/03/24
Nuvoton CIR Device Drivers Nuvoton Technology Corporation 2014/03/19 3.40 MB 8.60.2002
PapermanClient Gamepot/VoidPointer 2015/04/17 81.102.8402
PCあんしん点検ユーティリティ TOSHIBA Corporation 2014/03/19 2.87 MB 1.1.1.0
PC引越ナビ東芝情報機器株式会社 2010/12/01 12.6 MB 4.1.0
PlayReady PC Runtime amd64 Microsoft Corporation 2010/12/01 2.05 MB 1.3.0
PrinceCoupon "" 2014/12/03
Qosmio AV Center TOSHIBA CORPORATION 2014/04/05 6.5.1.0
QuickTime 7 Apple Inc. 2014/10/26 70.2 MB 7.76.80.95
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2015/04/16 6.0.1.6132
Realtek PCIE Card Reader Realtek Semiconductor Corp. 2014/04/05 6.1.7601.83
Realtek WLAN Driver REALTEK Semiconductor Corp. 2014/03/19 2.00.0013
Remote Desktop Access (VuuPC) CMI Limited 2014/12/30 1.0.0.0
SalesChecker "" 2014/11/22
savernet "" 2014/11/23
Search App by Ask APN, LLC 2015/04/12 4.35 MB 12.27.0.141
SharkManCoupon SharkManCoupon 2014/02/22
Skype(TM) 7.0 Skype Technologies S.A. 2015/04/15 47.9 MB 7.0.102
SoftDMA CyberLink Corp. 2014/03/19 1.5.8302
Surfing Protection IObit 2015/04/18 10.5 MB 1.2
TagsforLess Software Publisher 2014/02/05
The Desktop Weather 1.0 Baidu Japan Inc. 2014/12/30 1.0.0.35
TOSHIBA Bulletin Board TOSHIBA Corporation 2015/04/16 2.0.10.64
TOSHIBA ConfigFree TOSHIBA CORPORATION 2014/03/19 91.5 MB 8.0.35
TOSHIBA Disc Creator TOSHIBA Corporation 2014/03/19 8.45 MB 2.1.0.4 for x64
TOSHIBA DVD PLAYER TOSHIBA Corporation 2014/03/19 3.01.3.00-B
TOSHIBA ecoユーティリティ TOSHIBA Corporation 2014/03/19 7.22 MB 1.2.20.64
TOSHIBA Face Recognition TOSHIBA Corporation 2014/03/19 3.1.5.64
TOSHIBA Hardware Setup TOSHIBA Corporation 2014/03/19 2.00.02
TOSHIBA Media Controller TOSHIBA CORPORATION 2014/03/19 1.0.85.4
TOSHIBA Media Controller Plug-in TOSHIBA CORPORATION 2014/03/19 4.89 MB 1.0.5.13
TOSHIBA PC Health Monitor TOSHIBA Corporation 2014/03/19 28.7 MB 1.7.2.64
TOSHIBA Recovery Media Creator TOSHIBA Corporation 2010/12/01 2.89 MB 2.1.0.5 for x64
TOSHIBA ReelTime TOSHIBA Corporation 2014/03/19 1.7.16.64
TOSHIBA Remote Control Manager TOSHIBA CORPORATION 2014/03/19 3.0.4.2
TOSHIBA SD-Video PLAYER TOSHIBA Corporation 2014/03/19 1.00.1.01-B
TOSHIBA Service Station TOSHIBA 2015/04/16 2.2.14
TOSHIBA Sleep Utility TOSHIBA Corporation 2014/03/19 1.4.1.5
TOSHIBA Speech Engines Version V9.50 2014/03/19
TOSHIBA Speech System MT Engine Version 9.0 2014/03/19
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0 2014/03/19
TOSHIBA Supervisor Password TOSHIBA Corporation 2014/03/19 2.00.01
TOSHIBA Value Added Package TOSHIBA Corporation 2014/03/19 65.6 MB 1.3.19.64W
TOSHIBA Web Camera Application TOSHIBA Corporation 2014/03/19 13.6 MB 1.1.5.7
Toshiba Wireless HID driver TOSHIBA Corporation 2014/04/05 1.00.006
TOSHIBA 無線LANらくらく設定 TOSHIBA CORPORATION 2010/12/01 19.6 MB 2.0.10.0628.1115
Windows Live Essentials Microsoft Corporation 2014/09/24 16.4.3528.0331
Yahoo!ツールバー Yahoo! JAPAN. 2015/04/16 4.01 MB 8.0.0.3
いつもNAVI PC ZENRIN 2010/12/01 6.1.2
おたすけナビ東芝情報機器株式会社 2010/12/01 20.2 MB 6.1.0
おまかせフォトムービー TOSHIBA CORPORATION 2014/03/19 390 MB 1.1.1500.1
ぱらちゃんV2.3 TOSHIBA Corporation 2010/12/01 33.7 MB 2.3.16
スタートアップツール西日本電信電話株式会社 2015/02/02 2.61 MB 7.3
セキュリティ対策ツール西日本電信電話株式会社 2014/03/24 450 MB 6.11
セキュリティ申込・設定ツール西日本電信電話株式会社 2014/03/24 3.58 MB 6.0.0.7
パソコンで見るマニュアル TOSHIBA CORPORATION 2010/12/01 30.7 MB 0066.02.2101
レグザリンク・ダビング TOSHIBA CORPORATION 2014/04/05 1.0.5.1
動画で学ぶシリーズ TOSHIBA CORPORATION 2010/12/01 554 MB 2010.0302.0001
動画で解決！操作ガイド東芝情報機器株式会社 2010/12/01 15.9 MB 2.1.0
動画で解決！操作ガイド－コンテンツ－東芝情報機器株式会社 2010/12/01 144 KB 2.1.0
東芝HDD/SSDアラータ TOSHIBA Corporation 2010/12/01 39.1 MB 3.1.64.6
東芝ジェスチャコントローラ TOSHIBA Corporation 2014/03/19 2.7.0.9
東芝ファイル同期ユーティリティ TOSHIBA Corporation 2010/12/01 2.0.1
診断復旧ツール西日本電信電話株式会社 2014/06/24 12.5 MB

トッテくん
2015/04/18 (Sat) 22:53:24

返信フォームへ

処置を開始しましょう

おはようございます、IVNOと申します。
salusけいとうですが色々と感染していますね。
まずは削除から行いましょう。

それでは作業準備を行いましょう。

まずはじめに連絡事項がございます。
相談いただいてから回答できるまでに、毎回1日かそれ以上かかる可能性もございます。
ご不便をおかけいたしますが、ご理解とご協力を賜りますよう、お願い申し上げます。
また、回答者側から「解決」と通達があるまで、駆除作業は続いております。
そのため、途中でPCの状況が良くなったかのように感じたからと言って、解決のご案内を待たずして作業を中断なされると、
高確率で再発しているのが現状で、再発時にこちらにお戻りになられる方が続出しております。
回答者から「解決」と「自衛策」の案内があるまでは、作業を続けるようにしてください。

それでは以下の説明を熟読し、順番に作業をお願いします。
既に準備した物もあるはずですが、一応説明を再度見ておいてください。

隠しファイルと拡張子を表示設定にしてください(やり方↓）
http://pasofaq.jp/windows/mycomputer/hiddenfile.htm
http://support.microsoft.com/kb/978449/ja

下記のツールをダウンロードして、基本の使い方を把握しておいてください。
ただし、配布サイトで他のソフトウェアをダウンロードしろと勧めてくるような広告も出てくる可能性がありますが、
それらは絶対にクリックしないでください。

GeekUninstaller（通称:Geek）
ダウンロード
http://www.geekuninstaller.com/geek.zip
ファイル直リンクです。zipファイルですので使用前に展開してください。
削除の際はそのままごみ箱に処分してください。
解説
http://www.gigafree.net/system/install/geekuninstaller.html

「CCleaner」（通称:CC）
説明↓
http://www.gigafree.net/system/clean/ccleaner.html
http://note.chiebukuro.yahoo.co.jp/detail/n178757
ダウンロード↓
http://www.piriform.com/ccleaner/download/standard
最新バージョンをダウンロードするようにしましょう。
なお、インストール時におまけのアプリも勧めてくることがありますが、それらはチェック外してインストールは避けてください。
削除の際はGeekなどでアンインストールしてください。

ここで重要な注意です。
CCは本来は高い性能を持つメンテナンスソフトですが、間違った使い方すると
【操作次第ではWindowsが動作しなくなる可能性もある】
ので、ここでは解析ツールとしてのみ使います。
説明をしっかり読んで、こちらが指示した以外の操作はしないようにしてください。

準備できたら作業を開始しましょう。

以降の駆除作業でトラブルが発生しても直ちに復旧できるよう、システムの復元ポイントを手動で作成しましょう。
http://windows.microsoft.com/ja-jp/windows7/create-a-restore-point
しかし、システムの復元はPCにかなりのダメージを与えますので、できれば使わないほうが望ましいです。
システムの復元が必要のない、慎重な作業を心がけましょう。

PCをセーフモードで起動してください（やり方↓）
http://www.pc-master.jp/sousa/s-safemode.html
Windows 8または8.1の方は以下を参考になされてください。
http://121ware.com/qasearch/1007/app/servlet/relatedqa?QID=015917
HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、
こちらが指示した以外のものは絶対にチェックを入れないでください。

O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: ifp5toolbar - {0FAF6F52-1AD4-4282-9EA1-3EC884DA7AA3} - C:\Program Files (x86)\Digital Arts\IFP5\app\bin\ifp5toolbar.dll
O2 - BHO: SalesChecker - {6abe7ed0-21a0-4aed-accf-39528128594b} - C:\ProgramData\SalesChecker\boM3M2Xec5lCVZ.dll
O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: McAfee Activation Service (McAWFwk) - Unknown owner - c:\PROGRA~1\mcafee\msc\mcawfwk.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: McAfee OOBE Service (McOobeSv) - Unknown owner - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (file missing)

必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
上記のFixが完了したら、Geek起動させ、以下を削除してください。

AhnLab Online Security AhnLab, Inc 2014/03/26
ExtraShopper "" 2014/11/27
i-フィルター 5.0 Digital Arts 2010/12/01 5.00.17.0115
McAfee Security Scan Plus McAfee, Inc. 2015/01/14 10.2 MB 3.8.150.1
PrinceCoupon "" 2014/12/03
SalesChecker "" 2014/11/22
savernet "" 2014/11/23
Search App by Ask APN, LLC 2015/04/12 4.35 MB 12.27.0.141
SharkManCoupon SharkManCoupon 2014/02/22
Surfing Protection IObit 2015/04/18 10.5 MB 1.2

ダブルクリックで削除できます。
削除が完了したら自動的にスキャンが始まりますので、検出されたごみすべてにチェックを入れてOKを押してください。
Geekでのアンインストールが完了しましたらGeekを終了させ、PCを通常モードで再起動させてください。
HJTのログ、CCのインストール情報ログを再取得し、貼り付けてご連絡をお願いいたします。

IVNO
MAIL
2015/04/19 (Sun) 05:52:04

返信フォームへ

Re: 困っています。お願いします

返信ありがとうございます。

作業完了しました。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 11:51:14, on 2015/04/19
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17728)

Boot mode: Normal

Running processes:
C:\Program Files (x86)\NTTW\StartUpToolN\StartUpTool_w.exe
C:\Program Files (x86)\TOSHIBA\Sync Utility\TosSyncScheduler.exe
C:\Program Files (x86)\dynabook Portal Gadget\dynabook Portal Gadget.exe
C:\Windows\AIOKBApp.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe
C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVLauncher.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Users\USER\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll
O2 - BHO: Yahoo!ツールバーフィッシング警告 - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ypho.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
O2 - BHO: FlpLauncher Class - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Microsoft アカウントサインインヘルパー - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20002\7.5.1144\7.5.1144\TmBpIe32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: Yahoo!ツールバーヘルパー - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O3 - Toolbar: Yahoo!ツールバー - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
O3 - Toolbar: セキュリティツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
O4 - HKLM\..\Run: [TSUScheduler] %ProgramFiles(x86)%\TOSHIBA\Sync Utility\TosSyncScheduler.exe
O4 - HKLM\..\Run: [dynabook Portal Gadget] "C:\Program Files (x86)\dynabook Portal Gadget\dynabook Portal Gadget.exe" -atboottime
O4 - HKLM\..\Run: [FlipViewer Library] "C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
O4 - HKLM\..\Run: [TiltMouse] C:\windows\TiltMouseAPP.exe
O4 - HKLM\..\Run: [AIOKBApp] C:\windows\AIOKBApp.exe
O4 - HKLM\..\Run: [TSleepSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
O4 - HKLM\..\Run: [TRCMan] C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe
O4 - HKLM\..\Run: [TKRTL] %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [NTTW_OSA_AUS] "C:\Program Files (x86)\NTTW\OSA_Aus\acs.exe" -silent
O4 - HKLM\..\Run: [TAVLauncher] C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVLauncher.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: スタートアップツール.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: 故障かな？と思ったら・・・ - {6CB1FA39-5745-4733-859F-E9C82A68F848} - C:\Program Files (x86)\NTTW\OSA_SupportTool\start_w.exe
O9 - Extra button: OneNote リンクノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンクノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: TOSHIBA Bulletin Boardへ追加 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O9 - Extra 'Tools' menuitem: TOSHIBA Bulletin Boardへ追加 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - Trusted Zone: http://www.ig.gmodules.com (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20002\7.5.1144\7.5.1144\TmBpIe32.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Security Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files (x86)\NTTW\SECURITY\AMSP\coreServiceShell.exe
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files (x86)\CyberLink\SoftDMA\Kernel\DMP\CLHNService.exe
O23 - Service: ConfigFree プロファイルサービス (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Activation Service (McAWFwk) - Unknown owner - c:\PROGRA~1\mcafee\msc\mcawfwk.exe (file missing)
O23 - Service: McAfee OOBE Service (McOobeSv) - Unknown owner - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Qosmio AV Center Complement Service (TAVComplementService) - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\AVApplication\Engine\TAVComplementService.exe
O23 - Service: Qosmio AV Center Scheduler Service (TAVScheduler) - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVScheduler.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TOSHIBA TosRzTf Control Service (TosRzTfSvc) - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\RegzaLinkDubbing\TosRzTfSvc.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: UDSS - Unknown owner - c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14285 bytes

Adobe Flash Player 17 ActiveX Adobe Systems Incorporated 2015/04/15 6.00 MB 17.0.0.169
Adobe Flash Player 17 NPAPI Adobe Systems Incorporated 2015/04/15 6.00 MB 17.0.0.169
Apple Application Support（32 ビット） Apple Inc. 2015/02/03 94.3 MB 3.1.1
Apple Application Support（64 ビット） Apple Inc. 2015/02/03 108 MB 3.1.1
Apple Mobile Device Support Apple Inc. 2015/02/03 29.3 MB 8.1.0.18
Apple Software Update Apple Inc. 2014/04/02 2.38 MB 2.1.3.127
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver Atheros Communications Inc. 2014/03/19 1.0.0.27
Bonjour Apple Inc. 2014/04/02 2.00 MB 3.0.0.10
Canon MP493 series MP Drivers Canon Inc. 2014/03/24
CCleaner Piriform 2015/04/18 5.04
Corel Digital Studio SE Corel Corporation 2014/03/19 850 MB 1.5.10.200
DigiBookBrowser Version 1.5.1.4 TriWorks Corp.JAPAN 2010/12/01 8.47 MB 1.5.1.4
dynabook Portal Gadget TOSHIBA CORPRATION 2010/12/01 508 KB 2.1.0
dynabookランチャー東芝情報機器株式会社 2010/12/01 839 KB 3.1.0
dynabookランチャー用バナー 2014/03/19
ebi.BookReader3J eBOOK Initiative Japan Co., Ltd. 2010/12/01 17.7 MB 3.70.41
ebi.SampleContents eBOOK Initiative Japan Co., Ltd. 2010/12/01 3.7.0.41_MSI_T
FlipViewer 4.5 E-Book Systems Inc. 2010/12/01 16.7 MB 4.5.1
Google Chrome Google Inc. 2014/04/30 38.0.2125.111
iCloud Apple Inc. 2015/02/03 90.8 MB 4.0.6.28
Intel(R) Graphics Media Accelerator Driver Intel Corporation 8.15.10.2281
Intel(R) Management Engine Components Intel Corporation 6.0.0.1179
Intel(R) Rapid Storage Technology Intel Corporation 9.6.1.1001
iTunes Apple Inc. 2015/02/03 234 MB 12.1.0.71
Java 8 Update 45 Oracle Corporation 2015/04/18 77.1 MB 8.0.450
LaLaVoice V9.60 2014/03/19 9.60.001
LibreOffice 4.2.2.1 The Document Foundation 2014/03/21 439 MB 4.2.2.1
LINE LINE Corporation 2014/08/26 3.7.4.97
LoiLoScope LoiLo 2010/12/01 83.0 MB 1.8.33
Microsoft .NET Framework 4.5.2 Microsoft Corporation 2015/04/08 38.8 MB 4.5.51209
Microsoft .NET Framework 4.5.2 (日本語) Microsoft Corporation 2015/04/16 2.93 MB 4.5.51209
Microsoft Office 2010 Microsoft Corporation 2014/09/25 14.0.7015.1000
Microsoft Office ナビ 2010 Microsoft Corporation 2014/09/25 17.1 MB 14.0.7015.1000
Microsoft OneDrive Microsoft Corporation 2014/09/24 26.7 MB 17.0.4035.0328
Microsoft Outlook Hotmail Connector 64 ビット Microsoft Corporation 2014/09/24 4.60 MB 14.0.5118.5000
Microsoft Primary Interoperability Assemblies 2005 Microsoft Corporation 2010/12/01 7.75 MB 9.0.21022
Microsoft Silverlight Microsoft Corporation 2014/09/25 50.7 MB 5.1.30514.0
Microsoft SQL Server 2005 Microsoft Corporation 2014/09/25
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2010/12/01 1.69 MB 3.1.0000
Microsoft SQL Server Compact 3.5 SP1 English Microsoft Corporation 2014/03/19 2.59 MB 3.5.5692.0
Microsoft SQL Server Native Client Microsoft Corporation 2014/09/25 5.86 MB 9.00.5000.00
Microsoft SQL Server VSS Writer Microsoft Corporation 2014/09/25 1.12 MB 9.00.5000.00
Microsoft SQL Server セットアップサポートファイル (英語) Microsoft Corporation 2014/09/25 31.7 MB 9.00.5000.00
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2014/09/25 292 KB 8.0.61001
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2014/09/25 564 KB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2010/12/01 788 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2014/09/25 788 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2010/12/01 598 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2010/12/01 596 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2014/09/25 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/13 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/13 11.1 MB 10.0.40219
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2015/02/13 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語 Microsoft Corporation 2015/02/13 10.0.50903
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 2010/12/01 1.26 MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2014/03/21 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2014/03/21 1.33 MB 4.20.9876.0
NTT西日本リモートサポートツール西日本電信電話株式会社 2014/03/24
Nuvoton CIR Device Drivers Nuvoton Technology Corporation 2014/03/19 3.40 MB 8.60.2002
PapermanClient Gamepot/VoidPointer 2015/04/17 81.102.8402
PCあんしん点検ユーティリティ TOSHIBA Corporation 2014/03/19 2.87 MB 1.1.1.0
PC引越ナビ東芝情報機器株式会社 2010/12/01 12.6 MB 4.1.0
PlayReady PC Runtime amd64 Microsoft Corporation 2010/12/01 2.05 MB 1.3.0
PrinceCoupon "" 2014/12/03
Qosmio AV Center TOSHIBA CORPORATION 2014/04/05 6.5.1.0
QuickTime 7 Apple Inc. 2014/10/26 70.2 MB 7.76.80.95
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2015/04/16 6.0.1.6132
Realtek PCIE Card Reader Realtek Semiconductor Corp. 2014/04/05 6.1.7601.83
Realtek WLAN Driver REALTEK Semiconductor Corp. 2014/03/19 2.00.0013
Remote Desktop Access (VuuPC) CMI Limited 2014/12/30 1.0.0.0
Search App by Ask
Skype(TM) 7.0 Skype Technologies S.A. 2015/04/15 47.9 MB 7.0.102
SoftDMA CyberLink Corp. 2014/03/19 1.5.8302
TagsforLess Software Publisher 2014/02/05
The Desktop Weather 1.0 Baidu Japan Inc. 2014/12/30 1.0.0.35
TOSHIBA Bulletin Board TOSHIBA Corporation 2015/04/16 2.0.10.64
TOSHIBA ConfigFree TOSHIBA CORPORATION 2014/03/19 91.5 MB 8.0.35
TOSHIBA Disc Creator TOSHIBA Corporation 2014/03/19 8.45 MB 2.1.0.4 for x64
TOSHIBA DVD PLAYER TOSHIBA Corporation 2014/03/19 3.01.3.00-B
TOSHIBA ecoユーティリティ TOSHIBA Corporation 2014/03/19 7.22 MB 1.2.20.64
TOSHIBA Face Recognition TOSHIBA Corporation 2014/03/19 3.1.5.64
TOSHIBA Hardware Setup TOSHIBA Corporation 2014/03/19 2.00.02
TOSHIBA Media Controller TOSHIBA CORPORATION 2014/03/19 1.0.85.4
TOSHIBA Media Controller Plug-in TOSHIBA CORPORATION 2014/03/19 4.89 MB 1.0.5.13
TOSHIBA PC Health Monitor TOSHIBA Corporation 2014/03/19 28.7 MB 1.7.2.64
TOSHIBA Recovery Media Creator TOSHIBA Corporation 2010/12/01 2.89 MB 2.1.0.5 for x64
TOSHIBA ReelTime TOSHIBA Corporation 2014/03/19 1.7.16.64
TOSHIBA Remote Control Manager TOSHIBA CORPORATION 2014/03/19 3.0.4.2
TOSHIBA SD-Video PLAYER TOSHIBA Corporation 2014/03/19 1.00.1.01-B
TOSHIBA Service Station TOSHIBA 2015/04/16 2.2.14
TOSHIBA Sleep Utility TOSHIBA Corporation 2014/03/19 1.4.1.5
TOSHIBA Speech Engines Version V9.50 2014/03/19
TOSHIBA Speech System MT Engine Version 9.0 2014/03/19
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0 2014/03/19
TOSHIBA Supervisor Password TOSHIBA Corporation 2014/03/19 2.00.01
TOSHIBA Value Added Package TOSHIBA Corporation 2014/03/19 65.6 MB 1.3.19.64W
TOSHIBA Web Camera Application TOSHIBA Corporation 2014/03/19 13.6 MB 1.1.5.7
Toshiba Wireless HID driver TOSHIBA Corporation 2014/04/05 1.00.006
TOSHIBA 無線LANらくらく設定 TOSHIBA CORPORATION 2010/12/01 19.6 MB 2.0.10.0628.1115
Windows Live Essentials Microsoft Corporation 2014/09/24 16.4.3528.0331
Yahoo!ツールバー Yahoo! JAPAN. 2015/04/16 4.01 MB 8.0.0.3
いつもNAVI PC ZENRIN 2010/12/01 6.1.2
おたすけナビ東芝情報機器株式会社 2010/12/01 20.2 MB 6.1.0
おまかせフォトムービー TOSHIBA CORPORATION 2014/03/19 390 MB 1.1.1500.1
ぱらちゃんV2.3 TOSHIBA Corporation 2010/12/01 33.7 MB 2.3.16
スタートアップツール西日本電信電話株式会社 2015/02/02 2.61 MB 7.3
セキュリティ対策ツール西日本電信電話株式会社 2014/03/24 450 MB 6.11
セキュリティ申込・設定ツール西日本電信電話株式会社 2014/03/24 3.58 MB 6.0.0.7
パソコンで見るマニュアル TOSHIBA CORPORATION 2010/12/01 30.7 MB 0066.02.2101
レグザリンク・ダビング TOSHIBA CORPORATION 2014/04/05 1.0.5.1
動画で学ぶシリーズ TOSHIBA CORPORATION 2010/12/01 554 MB 2010.0302.0001
動画で解決！操作ガイド東芝情報機器株式会社 2010/12/01 15.9 MB 2.1.0
動画で解決！操作ガイド－コンテンツ－東芝情報機器株式会社 2010/12/01 144 KB 2.1.0
東芝HDD/SSDアラータ TOSHIBA Corporation 2010/12/01 39.1 MB 3.1.64.6
東芝ジェスチャコントローラ TOSHIBA Corporation 2014/03/19 2.7.0.9
東芝ファイル同期ユーティリティ TOSHIBA Corporation 2010/12/01 2.0.1
診断復旧ツール西日本電信電話株式会社 2014/06/24 12.5 MB

トッテくん
2015/04/19 (Sun) 12:03:37

返信フォームへ

取りこぼしの処置を

ログを確認いたしましたが、取りこぼしがあるようです。
今一度そちらを処置しましょう。

以下のソフトウェアをダウンロード、インストールしてください。

Skype 7.3
http://www.skype.com/ja/download-skype/skype-for-computer/

インストールが完了しましたら、PCをセーフモードで起動してください
HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、
こちらが指示した以外のものは絶対にチェックを入れないでください。

O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: McAfee Activation Service (McAWFwk) - Unknown owner - c:\PROGRA~1\mcafee\msc\mcawfwk.exe (file missing)
O23 - Service: McAfee OOBE Service (McOobeSv) - Unknown owner - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (file missing)

必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
上記のFixが完了したら、Geek起動させ、以下を削除してください。

PrinceCoupon "" 2014/12/03
Search App by Ask

ダブルクリックで削除できます。
削除が完了したら自動的にスキャンが始まりますので、検出されたごみすべてにチェックを入れてOKを押してください。
削除できなければ通常モードで再起動してプログラムと機能からアンインストールしてください。
Geek等でのアンインストールが完了しましたらGeekを終了させ、PCを通常モードで再起動してください。
HJTのログ、CCのインストール情報ログを再取得し、貼り付けてご連絡をお願いいたします。

IVNO
MAIL
2015/04/19 (Sun) 12:51:47

返信フォームへ

Re: 困っています。お願いします

取りこぼしあったんですね。すみません。

再度作業したんですが消えませんでした。

O4.O23(３つとも)

princeCouponは無事削除できてSearch App by Askの方はgeekとプログラムと機能にはうつっておらず、CCの方にはうつっています。

こちらはCCの方からのアンインストールで大丈夫でしょうか？

それと再起動後にHJTのログ取得のスキャン前に「！」が出ました。

読めなかったので一応本文そのままはります。

For some reason your system denied write access to the Hosts file.If any hijacked domains are in this file,HijackThis may NOT be able to fix this.

If that happens,you need to edit the file yourself.To do this,click Start,Run and type:

notepad C:\windows\Syestem32\drivers\etc\hosts

and press Enter. Find the line(S) HijakThis reports and delete them. Save the file as 'hosts.' (with quotes) and reboot.

For Vista and above: sinmply,exit HijakThis,right click on the HijackThis icon,choose 'Run as administrator'.

こちらは作業後のログです。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 14:08:44, on 2015/04/19
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17728)

Boot mode: Normal

Running processes:
C:\Users\USER\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files (x86)\NTTW\StartUpToolN\StartUpTool_w.exe
C:\Program Files (x86)\TOSHIBA\Sync Utility\TosSyncScheduler.exe
C:\Program Files (x86)\dynabook Portal Gadget\dynabook Portal Gadget.exe
C:\Windows\AIOKBApp.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe
C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVLauncher.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Users\USER\Downloads\HijackThis.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll
O2 - BHO: Yahoo!ツールバーフィッシング警告 - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ypho.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
O2 - BHO: FlpLauncher Class - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Microsoft アカウントサインインヘルパー - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20002\7.5.1144\7.5.1144\TmBpIe32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: Yahoo!ツールバーヘルパー - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O3 - Toolbar: Yahoo!ツールバー - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
O3 - Toolbar: セキュリティツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
O4 - HKLM\..\Run: [TSUScheduler] %ProgramFiles(x86)%\TOSHIBA\Sync Utility\TosSyncScheduler.exe
O4 - HKLM\..\Run: [dynabook Portal Gadget] "C:\Program Files (x86)\dynabook Portal Gadget\dynabook Portal Gadget.exe" -atboottime
O4 - HKLM\..\Run: [FlipViewer Library] "C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
O4 - HKLM\..\Run: [TiltMouse] C:\windows\TiltMouseAPP.exe
O4 - HKLM\..\Run: [AIOKBApp] C:\windows\AIOKBApp.exe
O4 - HKLM\..\Run: [TSleepSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
O4 - HKLM\..\Run: [TRCMan] C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe
O4 - HKLM\..\Run: [TKRTL] %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [NTTW_OSA_AUS] "C:\Program Files (x86)\NTTW\OSA_Aus\acs.exe" -silent
O4 - HKLM\..\Run: [TAVLauncher] C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVLauncher.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [BingSvc] C:\Users\USER\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: スタートアップツール.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: 故障かな？と思ったら・・・ - {6CB1FA39-5745-4733-859F-E9C82A68F848} - C:\Program Files (x86)\NTTW\OSA_SupportTool\start_w.exe
O9 - Extra button: OneNote リンクノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンクノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: TOSHIBA Bulletin Boardへ追加 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O9 - Extra 'Tools' menuitem: TOSHIBA Bulletin Boardへ追加 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - Trusted Zone: http://www.ig.gmodules.com (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20002\7.5.1144\7.5.1144\TmBpIe32.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Security Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files (x86)\NTTW\SECURITY\AMSP\coreServiceShell.exe
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files (x86)\CyberLink\SoftDMA\Kernel\DMP\CLHNService.exe
O23 - Service: ConfigFree プロファイルサービス (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Activation Service (McAWFwk) - Unknown owner - c:\PROGRA~1\mcafee\msc\mcawfwk.exe (file missing)
O23 - Service: McAfee OOBE Service (McOobeSv) - Unknown owner - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Qosmio AV Center Complement Service (TAVComplementService) - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\AVApplication\Engine\TAVComplementService.exe
O23 - Service: Qosmio AV Center Scheduler Service (TAVScheduler) - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVScheduler.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TOSHIBA TosRzTf Control Service (TosRzTfSvc) - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\RegzaLinkDubbing\TosRzTfSvc.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: UDSS - Unknown owner - c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14940 bytes

Adobe Flash Player 17 ActiveX Adobe Systems Incorporated 2015/04/15 6.00 MB 17.0.0.169
Adobe Flash Player 17 NPAPI Adobe Systems Incorporated 2015/04/15 6.00 MB 17.0.0.169
Apple Application Support（32 ビット） Apple Inc. 2015/02/03 94.3 MB 3.1.1
Apple Application Support（64 ビット） Apple Inc. 2015/02/03 108 MB 3.1.1
Apple Mobile Device Support Apple Inc. 2015/02/03 29.3 MB 8.1.0.18
Apple Software Update Apple Inc. 2014/04/02 2.38 MB 2.1.3.127
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver Atheros Communications Inc. 2014/03/19 1.0.0.27
Bonjour Apple Inc. 2014/04/02 2.00 MB 3.0.0.10
Canon MP493 series MP Drivers Canon Inc. 2014/03/24
CCleaner Piriform 2015/04/18 5.04
Corel Digital Studio SE Corel Corporation 2014/03/19 850 MB 1.5.10.200
DigiBookBrowser Version 1.5.1.4 TriWorks Corp.JAPAN 2010/12/01 8.47 MB 1.5.1.4
dynabook Portal Gadget TOSHIBA CORPRATION 2010/12/01 508 KB 2.1.0
dynabookランチャー東芝情報機器株式会社 2010/12/01 839 KB 3.1.0
dynabookランチャー用バナー 2014/03/19
ebi.BookReader3J eBOOK Initiative Japan Co., Ltd. 2010/12/01 17.7 MB 3.70.41
ebi.SampleContents eBOOK Initiative Japan Co., Ltd. 2010/12/01 3.7.0.41_MSI_T
FlipViewer 4.5 E-Book Systems Inc. 2010/12/01 16.7 MB 4.5.1
Google Chrome Google Inc. 2014/04/30 38.0.2125.111
iCloud Apple Inc. 2015/02/03 90.8 MB 4.0.6.28
Intel(R) Graphics Media Accelerator Driver Intel Corporation 2014/04/05 8.15.10.2281
Intel(R) Management Engine Components Intel Corporation 2014/03/19 6.0.0.1179
Intel(R) Rapid Storage Technology Intel Corporation 2015/04/19 9.6.1.1001
iTunes Apple Inc. 2015/02/03 234 MB 12.1.0.71
Java 8 Update 45 Oracle Corporation 2015/04/18 77.1 MB 8.0.450
LaLaVoice V9.60 2014/03/19 9.60.001
LibreOffice 4.2.2.1 The Document Foundation 2014/03/21 439 MB 4.2.2.1
LINE LINE Corporation 2014/08/26 3.7.4.97
LoiLoScope LoiLo 2010/12/01 83.0 MB 1.8.33
Microsoft .NET Framework 4.5.2 Microsoft Corporation 2015/04/08 38.8 MB 4.5.51209
Microsoft .NET Framework 4.5.2 (日本語) Microsoft Corporation 2015/04/16 2.93 MB 4.5.51209
Microsoft Office 2010 Microsoft Corporation 2014/09/25 14.0.7015.1000
Microsoft Office ナビ 2010 Microsoft Corporation 2014/09/25 17.1 MB 14.0.7015.1000
Microsoft OneDrive Microsoft Corporation 2014/09/24 26.7 MB 17.0.4035.0328
Microsoft Outlook Hotmail Connector 64 ビット Microsoft Corporation 2014/09/24 4.60 MB 14.0.5118.5000
Microsoft Primary Interoperability Assemblies 2005 Microsoft Corporation 2010/12/01 7.75 MB 9.0.21022
Microsoft Silverlight Microsoft Corporation 2014/09/25 50.7 MB 5.1.30514.0
Microsoft SQL Server 2005 Microsoft Corporation 2014/09/25
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2010/12/01 1.69 MB 3.1.0000
Microsoft SQL Server Compact 3.5 SP1 English Microsoft Corporation 2014/03/19 2.59 MB 3.5.5692.0
Microsoft SQL Server Native Client Microsoft Corporation 2014/09/25 5.86 MB 9.00.5000.00
Microsoft SQL Server VSS Writer Microsoft Corporation 2014/09/25 1.12 MB 9.00.5000.00
Microsoft SQL Server セットアップサポートファイル (英語) Microsoft Corporation 2014/09/25 31.7 MB 9.00.5000.00
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2014/09/25 292 KB 8.0.61001
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2014/03/19 620 KB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2010/12/01 788 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2014/09/25 788 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2010/12/01 598 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2010/12/01 596 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2014/09/25 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/13 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/13 11.1 MB 10.0.40219
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2015/02/13 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語 Microsoft Corporation 2015/02/13 10.0.50903
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 2010/12/01 1.26 MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2014/03/21 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2014/03/21 1.33 MB 4.20.9876.0
NTT西日本リモートサポートツール西日本電信電話株式会社 2014/03/24
Nuvoton CIR Device Drivers Nuvoton Technology Corporation 2014/03/19 3.40 MB 8.60.2002
PapermanClient Gamepot/VoidPointer 2015/04/17 81.102.8402
PCあんしん点検ユーティリティ TOSHIBA Corporation 2014/03/19 2.87 MB 1.1.1.0
PC引越ナビ東芝情報機器株式会社 2010/12/01 12.6 MB 4.1.0
PlayReady PC Runtime amd64 Microsoft Corporation 2010/12/01 2.05 MB 1.3.0
Qosmio AV Center TOSHIBA CORPORATION 2014/04/05 6.5.1.0
QuickTime 7 Apple Inc. 2014/10/26 70.2 MB 7.76.80.95
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2015/04/16 6.0.1.6132
Realtek PCIE Card Reader Realtek Semiconductor Corp. 2014/04/05 6.1.7601.83
Realtek WLAN Driver REALTEK Semiconductor Corp. 2014/03/19 2.00.0013
Remote Desktop Access (VuuPC) CMI Limited 2014/12/30 1.0.0.0
Search App by Ask 2015/04/12
Skype Click to Call Microsoft Corporation 2015/04/19 9.91 MB 7.3.16540.9015
Skype(TM) 7.3 Skype Technologies S.A. 2015/04/19 49.2 MB 7.3.101
SoftDMA CyberLink Corp. 2014/03/19 1.5.8302
TagsforLess Software Publisher 2014/02/05
The Desktop Weather 1.0 Baidu Japan Inc. 2014/12/30 1.0.0.35
TOSHIBA Bulletin Board TOSHIBA Corporation 2015/04/16 2.0.10.64
TOSHIBA ConfigFree TOSHIBA CORPORATION 2014/03/19 91.5 MB 8.0.35
TOSHIBA Disc Creator TOSHIBA Corporation 2014/03/19 8.45 MB 2.1.0.4 for x64
TOSHIBA DVD PLAYER TOSHIBA Corporation 2014/03/19 3.01.3.00-B
TOSHIBA ecoユーティリティ TOSHIBA Corporation 2014/03/19 7.22 MB 1.2.20.64
TOSHIBA Face Recognition TOSHIBA Corporation 2014/03/19 3.1.5.64
TOSHIBA Hardware Setup TOSHIBA Corporation 2014/03/19 2.00.02
TOSHIBA Media Controller TOSHIBA CORPORATION 2014/03/19 1.0.85.4
TOSHIBA Media Controller Plug-in TOSHIBA CORPORATION 2014/03/19 4.89 MB 1.0.5.13
TOSHIBA PC Health Monitor TOSHIBA Corporation 2014/03/19 28.7 MB 1.7.2.64
TOSHIBA Recovery Media Creator TOSHIBA Corporation 2010/12/01 2.89 MB 2.1.0.5 for x64
TOSHIBA ReelTime TOSHIBA Corporation 2014/03/19 1.7.16.64
TOSHIBA Remote Control Manager TOSHIBA CORPORATION 2014/03/19 3.0.4.2
TOSHIBA SD-Video PLAYER TOSHIBA Corporation 2014/03/19 1.00.1.01-B
TOSHIBA Service Station TOSHIBA 2015/04/16 2.2.14
TOSHIBA Sleep Utility TOSHIBA Corporation 2014/03/19 1.4.1.5
TOSHIBA Speech Engines Version V9.50 2014/03/19
TOSHIBA Speech System MT Engine Version 9.0 2014/03/19
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0 2014/03/19
TOSHIBA Supervisor Password TOSHIBA Corporation 2014/03/19 2.00.01
TOSHIBA Value Added Package TOSHIBA Corporation 2014/03/19 65.6 MB 1.3.19.64W
TOSHIBA Web Camera Application TOSHIBA Corporation 2014/03/19 13.6 MB 1.1.5.7
Toshiba Wireless HID driver TOSHIBA Corporation 2014/04/05 1.00.006
TOSHIBA 無線LANらくらく設定 TOSHIBA CORPORATION 2010/12/01 19.6 MB 2.0.10.0628.1115
Windows Live Essentials Microsoft Corporation 2014/09/24 16.4.3528.0331
Yahoo!ツールバー Yahoo! JAPAN. 2015/04/16 4.01 MB 8.0.0.3
いつもNAVI PC ZENRIN 2010/12/01 6.1.2
おたすけナビ東芝情報機器株式会社 2010/12/01 20.2 MB 6.1.0
おまかせフォトムービー TOSHIBA CORPORATION 2014/03/19 390 MB 1.1.1500.1
ぱらちゃんV2.3 TOSHIBA Corporation 2010/12/01 33.7 MB 2.3.16
スタートアップツール西日本電信電話株式会社 2015/02/02 2.61 MB 7.3
セキュリティ対策ツール西日本電信電話株式会社 2014/03/24 450 MB 6.11
セキュリティ申込・設定ツール西日本電信電話株式会社 2014/03/24 3.58 MB 6.0.0.7
パソコンで見るマニュアル TOSHIBA CORPORATION 2010/12/01 30.7 MB 0066.02.2101
レグザリンク・ダビング TOSHIBA CORPORATION 2014/04/05 1.0.5.1
動画で学ぶシリーズ TOSHIBA CORPORATION 2010/12/01 554 MB 2010.0302.0001
動画で解決！操作ガイド東芝情報機器株式会社 2010/12/01 15.9 MB 2.1.0
動画で解決！操作ガイド－コンテンツ－東芝情報機器株式会社 2010/12/01 144 KB 2.1.0
東芝HDD/SSDアラータ TOSHIBA Corporation 2010/12/01 39.1 MB 3.1.64.6
東芝ジェスチャコントローラ TOSHIBA Corporation 2014/03/19 2.7.0.9
東芝ファイル同期ユーティリティ TOSHIBA Corporation 2010/12/01 2.0.1
診断復旧ツール西日本電信電話株式会社 2014/06/24 12.5 MB

トッテくん
2015/04/19 (Sun) 14:25:03

返信フォームへ

あちらの英文は問題ありません

表示された英文は、「Hostsファイルの読み込みができなかったので管理者権限でログオンしてくれ」と書かれています。
こちらはいずれにせよ後の作業により処置しますので問題ありません。
処置できなかったエントリにつきましては、別の手段で処置することにします。

以下のソフトウェアをご用意ください。

「AdwCleaner」（通称:AC）
http://www.bleepingcomputer.com/download/adwcleaner/dl/125/
ファイル直リンクです。アクセスしてファイルを分かりやすい場所に保存しておいてください。
ソフトウェアを一度起動させることにより自動的にアップデートが始まります。
アップデートが完了しましたら今は何もせずに終了させてください。
本ソフトウェアの削除指示があった際は起動後に「アンインストール」ボタンを押せば自動で削除されます。

準備できたら作業を開始しましょう。
PCをセーフモードで起動させてください。
ACを起動させ、Scanまたはスキャンをクリックします。
スキャンが終了しましたら、Cleaningまたは除去をクリックして掃除を行います。
掃除が完了すると再起動を求められますので、指示に従って通常モードで再起動を行ってください。
これでセーフモードから通常モードに移行します。
再起動前後いずれかにACのログが表示さますので、分かりやすい場所に保存しておいてください。

その後、CCを起動させてください。
起動したら、「ツール」→「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できますので、
デスクトップ等、分かりやすい場所に最新のログのみ保存しておきましょう。
続いて「InternetExplorer」タブのログ、導入されておられるのであれば「Firefox」タブ、
同じく導入されておられるのであれば「Google Chrome」タブ、そして「スケジュールされたタスク」タブのログを取得してください。
ただし、「コンテキストメニュー」のログは取得していただく必要がございません。
CCの各ログを取得されましたら、CCは終了させて問題ありません。
ACとCCのログを返信欄に貼り付けていただき、ご報告をお願いいたします。
上記ログを確認後、次の作業内容をご案内いたします。

IVNO
MAIL
2015/04/19 (Sun) 15:10:32

返信フォームへ

Re: 困っています。お願いします

すみません、AcなんですがCleaning、除去が見当たりません。

操作項目が　スキャン、削除、ログファイル、アンインストールの４つになっています。

ログファイルだけとっておく感じで大丈夫でしょうか？

トッテくん
2015/04/19 (Sun) 15:39:50

返信フォームへ

バージョンが変わって表示が変更されたかもしれません

ACなどのソフトウェアは頻繁にバージョンアップがあります。
そしてそのバージョンアップによりよく表示名が変更になります。
恐らくその影響かと思われますので、今回は削除を押して処置を行ってください。

IVNO
MAIL
2015/04/19 (Sun) 19:42:52

返信フォームへ

Re: 困っています。お願いします

たびたびすみません。

スキャン後に下の方にサービス、フォルダ、ファイル、レジストリなどの種類ごとに結果が出ていて、すべてチェックが入っている状態で「スキャンが終了しました。削除しない検出項目はチェックを外してください」とあるんですが、そのまますべて削除してしまって大丈夫でしょうか？

すべてにチェックが入っていて少し怖いので一度聞いてみることにしました。

トッテくん
2015/04/19 (Sun) 20:24:53

返信フォームへ

問題ありません

そのまま処置なされて結構です。
処置後に誤検出があった場合はその場で復旧方法をご案内いたします。
なお、検出されたものは削除されるわけではなく、隔離と言って別の場所に強制的に移動させられるだけです。
この隔離により検出されたソフトウェアが動作できなくなると言うことですね。

IVNO
MAIL
2015/04/19 (Sun) 20:28:27

返信フォームへ

Re: 困っています。お願いします

色々とありがとうございます。

作業完了しました。

ACのログ

# AdwCleaner v4.201 - ログファイルの作成日 19/04/2015 作成時間 21:44:06
# 更新日 08/04/2015 作成元 Xplode
# データベース : 2015-04-08.1 [ローカル]
# オペレーティングシステム : Windows 7 Home Premium Service Pack 1 (x64)
# ユーザー名 : USER - USER-PC
# 実行場所 : C:\Users\USER\Downloads\adwcleaner_4.201 (1).exe
# オプション : 削除

***** [ サービス ] *****

[#] サービス削除済み項目 : APNMCP

***** [ ファイル / フォルダ ] *****

フォルダ削除済み項目 : C:\ProgramData\apn
フォルダ削除済み項目 : C:\ProgramData\AskPartnerNetwork
フォルダ削除済み項目 : C:\ProgramData\baidu
フォルダ削除済み項目 : C:\ProgramData\c8c6a027a70e872f
フォルダ削除済み項目 : C:\Program Files (x86)\AskPartnerNetwork
フォルダ削除済み項目 : C:\Program Files (x86)\baidu
フォルダ削除済み項目 : C:\Users\USER\AppData\Local\Temp\apn
フォルダ削除済み項目 : C:\Users\USER\AppData\Local\Temp\ASP
フォルダ削除済み項目 : C:\windows\SysWOW64\config\systemprofile\AppData\Roaming\baidu
フォルダ削除済み項目 : C:\USERs\USER\AppData\Local\AskPartnerNetwork
フォルダ削除済み項目 : C:\USERs\USER\AppData\Roaming\baidu
フォルダ削除済み項目 : C:\USERs\USER\AppData\Roaming\VOPackage
フォルダ削除済み項目 : C:\USERs\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
フォルダ削除済み項目 : C:\USERs\USER\Desktop\Bonanza
フォルダ削除済み項目 : C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
フォルダ削除済み項目 : C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd
ファイル削除済み項目 : C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_aaaaaiabcopkplhgaedhbloeejhhankf_0.localstorage
ファイル削除済み項目 : C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_aaaaaiabcopkplhgaedhbloeejhhankf_0.localstorage-journal
ファイル削除済み項目 : C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\aaaaaiabcopkplhgaedhbloeejhhankf
ファイル削除済み項目 : C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ja.reimageplus.com_0.localstorage
ファイル削除済み項目 : C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ja.reimageplus.com_0.localstorage-journal
ファイル削除済み項目 : C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.search.ask.com_0.localstorage
ファイル削除済み項目 : C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.search.ask.com_0.localstorage-journal

***** [ スケジュールタスク ] *****

***** [ ショートカット ] *****

***** [ レジストリ ] *****

キー削除済み項目 : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
キー削除済み項目 : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
キー削除済み項目 : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
値削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
キー削除済み項目 : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
キー削除済み項目 : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
キー削除済み項目 : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
キー削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{8169f7cf}
キー削除済み項目 : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
キー削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
キー削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
キー削除済み項目 : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
キー削除済み項目 : HKLM\SOFTWARE\Classes\TypeLib\{1D37BD00-E9FD-40D1-80E7-1795E510ECAA}
キー削除済み項目 : [x64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
キー削除済み項目 : [x64] HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
キー削除済み項目 : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
キー削除済み項目 : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
キー削除済み項目 : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
キー削除済み項目 : HKCU\Software\AskPartnerNetwork
キー削除済み項目 : HKCU\Software\InstallCore
キー削除済み項目 : HKCU\Software\Baidu
キー削除済み項目 : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
キー削除済み項目 : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
キー削除済み項目 : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
キー削除済み項目 : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
キー削除済み項目 : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
キー削除済み項目 : HKLM\SOFTWARE\AskPartnerNetwork
キー削除済み項目 : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
キー削除済み項目 : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
キー削除済み項目 : HKU\.DEFAULT\Software\AskPartnerNetwork
キー削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
キー削除済み項目 : [x64] HKLM\SOFTWARE\Baidu
キー削除済み項目 : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
キー削除済み項目 : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ja.reimageplus.com
キー削除済み項目 : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\reimageplus.com
キー削除済み項目 : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\searchonme.com

***** [ Webブラウザ ] *****

-\\ Internet Explorer v11.0.9600.17728

-\\ Google Chrome v38.0.2125.111

[C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Web Data] - 削除済み項目 [Search Provider] : hxxp://www.search.ask.com/web?tpid=ORJ-SPE&o=APN11412&l=dis&pf=V7&p2=%5EBBK%5EOSJ000%5EYY%5EJP&gct=&itbv=12.15.1.20&doi=2014-07-23&apn_uid=2752E680-514C-48ED-B037-52E6C7E7777F&apn_ptnrs=BBK&apn_dtid=%5EOSJ000%5EYY%5EJP&apn_dbr=cr_36.0.1985.125&psv=&pt=tb&trgb=CR&q={searchTerms}
[C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Preferences] - 削除済み項目 [Extension] : aaaaaiabcopkplhgaedhbloeejhhankf
[C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Preferences] - 削除済み項目 [Extension] : fcfenmboojpjinhpgggodefccipikbpd
[C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Preferences] - 削除済み項目 [Homepage] : hxxp://www.search.ask.com/?gct=hp

-\\ Opera v0.0.0.0

*************************

AdwCleaner[R0].txt - [8962 bytes] - [18/04/2015 21:41:52]
AdwCleaner[R1].txt - [7129 bytes] - [19/04/2015 15:24:03]
AdwCleaner[R2].txt - [7235 bytes] - [19/04/2015 20:06:30]
AdwCleaner[R3].txt - [7247 bytes] - [19/04/2015 21:42:15]
AdwCleaner[R4].txt - [7306 bytes] - [19/04/2015 21:43:31]
AdwCleaner[S0].txt - [8969 bytes] - [18/04/2015 21:54:44]
AdwCleaner[S1].txt - [7036 bytes] - [19/04/2015 21:44:06]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [7095 bytes] ##########

CCログ(windows)

有効 HKCU:Run BingSvc © 2015 Microsoft Corporation C:\Users\USER\AppData\Local\Microsoft\BingSvc\BingSvc.exe
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
無効 HKCU:Run Optimizer Pro C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
無効 HKCU:Run PCKeeper2 "C:\Program Files\Kromtech\PCKeeper\PCKeeper.exe" /autorun
有効 HKLM:Run AIOKBApp Darfon Electronics Corp. C:\windows\AIOKBApp.exe
有効 HKLM:Run dynabook Portal Gadget TOSHIBA CORPRATION "C:\Program Files (x86)\dynabook Portal Gadget\dynabook Portal Gadget.exe" -atboottime
有効 HKLM:Run FlipViewer Library E-Book Systems Inc. "C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
有効 HKLM:Run HotKeysCmds Intel Corporation C:\windows\system32\hkcmd.exe
有効 HKLM:Run HSON TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TBS\HSON.exe
有効 HKLM:Run IgfxTray Intel Corporation C:\windows\system32\igfxtray.exe
有効 HKLM:Run IME14 JPN Setup Microsoft Corporation C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
有効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run NTTW_OSA_AUS 西日本電信電話株式会社 "C:\Program Files (x86)\NTTW\OSA_Aus\acs.exe" -silent
有効 HKLM:Run Persistence Intel Corporation C:\windows\system32\igfxpers.exe
有効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run RtHDVBg Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE3
有効 HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
有効 HKLM:Run SmartFaceVWatcher TOSHIBA Corporation %ProgramFiles%\Toshiba\SmartFaceV\SmartFaceVWatcher.exe
有効 HKLM:Run SmoothView TOSHIBA Corporation %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
有効 HKLM:Run TAVLauncher TOSHIBA Corporation C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVLauncher.exe
有効 HKLM:Run TCrdMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
有効 HKLM:Run Teco "%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r
有効 HKLM:Run TiltMouse C:\windows\TiltMouseAPP.exe
有効 HKLM:Run TKRTL TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
有効 HKLM:Run ToshibaServiceStation TOSHIBA Corporation "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
有効 HKLM:Run TosNC TOSHIBA Corporation %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe
有効 HKLM:Run TosReelTimeMonitor TOSHIBA Corporation %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
有効 HKLM:Run TosSENotify TOSHIBA Corporation C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
有効 HKLM:Run TosTogKeyMon TOSHIBA Corporation %ProgramFiles%\TOSHIBA\FlashCards\TosTogKeyMon.exe
有効 HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
有効 HKLM:Run TPwrMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
有効 HKLM:Run TRCMan TOSHIBA Corporation C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe
有効 HKLM:Run Trend Micro Client Framework Trend Micro Inc. "C:\Program Files (x86)\NTTW\SECURITY\UniClient\UiFrmWrk\UIWatchDog.exe"
有効 HKLM:Run Trend Micro Titanium Trend Micro Inc. "C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\uiWinMgr.exe" -set Silent "1" SplashURL ""
有効 HKLM:Run TSleepSrv TOSHIBA %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
有効 HKLM:Run TSUScheduler TOSHIBA Corporation %ProgramFiles(x86)%\TOSHIBA\Sync Utility\TosSyncScheduler.exe
有効 HKLM:Run TWebCamera TOSHIBA CORPORATION. "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
有効 HKLM:Run Unattend0000000001{C12B026D-4D16-43C9-9E57-CC575CB7CC38} AnywhereWorking L.T.D. C:\tosutils\palakidou\palakidou.exe
有効 Startup Common スタートアップツール.lnk C:\windows\Installer\{A162AF3F-7908-44E1-A072-67FB887A9517}\_3B47FDE35444B41F912355.exe

CCログ(Internet Explorer)

無効 Extension OneNote に送る Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
無効 Extension OneNote に送る Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
無効 Extension OneNote リンクノート(K) Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
無効 Extension OneNote リンクノート(K) Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
有効 Extension Skype Click to Call settings Microsoft Corporation C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
有効 Extension Skype Click to Call settings Microsoft Corporation C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
無効 Extension TOSHIBA Bulletin Boardへ追加 TODO: <会社名> C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
無効 Extension TOSHIBA Bulletin Boardへ追加 TODO: <会社名> C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom64.dll
無効 Extension このコンテンツを引用 Microsoft Corporation C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
無効 Extension 故障かな？と思ったら・・・西日本電信電話株式会社 C:\Program Files (x86)\NTTW\OSA_SupportTool\start_w.exe
有効 Helper ExplorerWnd Helper C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
無効 Helper FlpLauncher Class E-Book Systems Inc. C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll
無効 Helper i-フィルター 5.0 ブラウザヘルパー C:\Program Files (x86)\Digital Arts\IFP5\app\bin\ifp5toolbar64.dll
有効 Helper Java(tm) Plug-In 2 SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
有効 Helper Java(tm) Plug-In SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
無効 Helper Microsoft アカウントサインインヘルパー Microsoft Corp. C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
無効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
無効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
無効 Helper RRoyAliSSHOepperApp C:\ProgramData\RRoyAliSSHOepperApp\pff1YbBHXS1tlx.x64.dll
無効 Helper savernet C:\ProgramData\savernet\jax0sdYaKvj4JH.x64.dll
無効 Helper Skype Click to Call for Internet Explorer Microsoft Corporation C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
無効 Helper Skype Click to Call for Internet Explorer Microsoft Corporation C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20002\7.5.1144\7.5.1144\TmBpIe32.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20002\7.5.1144\7.5.1144\TmBpIe64.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg.dll
無効 Helper TOSHIBA Media Controller Plug-in <TOSHIBA> C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
無効 Helper TSToolbarBHO Trend Micro Inc. C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
無効 Helper Windows Live ID Sign-in Helper Microsoft Corp. C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
無効 Helper Yahoo!ツールバーフィッシング警告 Yahoo Japan Corporation. C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ypho.dll
無効 Helper Yahoo!ツールバーフィッシング警告 Yahoo Japan Corporation. C:\Program Files\Yahoo!J\Toolbar64\8_0_0_3\Modules\ypho.dll
無効 Helper Yahoo!ツールバーヘルパー Yahoo! JAPAN C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
無効 Helper Yahoo!ツールバーヘルパー Yahoo! JAPAN C:\Program Files\Yahoo!J\Toolbar64\8_0_0_3\Modules\YahooToolBar.dll
無効 Toolbar Yahoo!ツールバー Yahoo! JAPAN C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
無効 Toolbar Yahoo!ツールバー Yahoo! JAPAN C:\Program Files\Yahoo!J\Toolbar64\8_0_0_3\Modules\YahooToolBar.dll
無効 Toolbar セキュリティツールバー Trend Micro Inc. C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll

CCログ(Google Chrome)

無効 Extension Skype Click to Call 7.3.16540.9015 ユーザー 1 C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0

CCログ(スケジュールされたタスク)

有効 Task Adobe Flash Player Updater Adobe Systems Incorporated C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B} Baidu C:\Program Files (x86)\baidu\update\baidujp_update.exe -Update
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task ConfigFree Startup Programs TOSHIBA CORPORATION C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task SidebarExecute Microsoft Corporation C:\Program Files\Windows Sidebar\sidebar.exe /addGadget
有効 Task WeatherTool_start_schedule_task Baidu Online Network Technology (Beijing)Co., Ltd C:\Program Files (x86)\WeatherTool\1.0.0.35\InstallHelper.exe -start
有効 Task {05570BA9-8119-447E-AE18-43AA5CCBF9C6} Microsoft Corporation C:\windows\system32\pcalua.exe -a "C:\Users\USER\Downloads\pmang_common_module (3).exe" -d C:\Users\USER\Downloads
有効 Task {9D34DB00-D1BB-43D9-8D1D-107B9EC05D8F} Microsoft Corporation C:\windows\system32\pcalua.exe -a "C:\Users\USER\Downloads\pmang_common_module (1).exe" -d C:\Users\USER\Downloads
有効 Task {FCBA008F-CA5C-435C-9736-1D1C919187D1} Microsoft Corporation C:\windows\system32\pcalua.exe -a "C:\Users\USER\Downloads\pmang_common_module (2).exe" -d C:\Users\USER\Downloads

よろしくお願いします。

トッテくん
2015/04/19 (Sun) 21:59:28

返信フォームへ

ACは削除しMBAMでスキャンを

ACの結果は良好です。
ACは不要となりますので、導入時の指示に従って削除なされてください。

以下のソフトウェアをご用意ください。

Malwarebytes Anti-Malware（通称:MBAM）
旧バージョンダウンロード↓（ファイル直リンクです。表示して数秒後にダウンロード開始の表示が出ます）
http://www.oldapps.com/malwarebytes.php?old_malwarebytes=12090?download
Google Chrome以外のブラウザでダウンロードしてください。
最新バージョンには動作しなくなるなどの不具合があるため、ここでは旧バージョンを利用します。
インストールの最後に出てくるMalwarebytes Anti-Malware Pro版の無料試用を開始する。のチェックを外します。
このソフトウェアは日本語対応ではありますが、初回起動時は文字化けしておりますので、以下の手順で日本語化を行ってください。
MBAMを起動させてください。
MBAMを起動時に自動アップデートが始まります。
最新バージョンをダウンロードしたと表示されたら、必ずキャンセルを押してください。
次にウイルス定義ファイルのアップデートが始まりますので、アップデート終了までお待ちください。
ウイルス定義ファイルのバージョンアップが完了すると、再度最新バージョンをダウンロードしたと出ますので、
再びキャンセルを押してアップデートを中止してください。
MBAMが起動したら設定タブを開き、Languageの項目の部分をJapaneseに再度変更することで日本語化が可能です。
この段階ではスキャンは行いませんので、設定が完了したらMBAMを終了させておいてください。
最新バージョンと旧バージョンは操作方法が大幅に異なりますので、
万一バージョン2.0以降を導入されてしまった場合はご連絡ください。
片付け時はセーフモードからGeekを利用してアンインストールしてください。

ここで使うのはFree（無償版）です。

準備が完了しましたら作業を開始いたします。
CCを起動させ、ツール→スタートアップの各項目を開き、
該当するものを無効→エントリの削除の順番でクリックしてください。

Windows
無効 HKCU:Run Optimizer Pro C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe

Internet Explorer
無効 Helper i-フィルター 5.0 ブラウザヘルパー C:\Program Files (x86)\Digital Arts\IFP5\app\bin\ifp5toolbar64.dll
無効 Helper RRoyAliSSHOepperApp C:\ProgramData\RRoyAliSSHOepperApp\pff1YbBHXS1tlx.x64.dll
無効 Helper savernet C:\ProgramData\savernet\jax0sdYaKvj4JH.x64.dll

スケジュールされたタスク
有効 Task BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B} Baidu C:\Program Files (x86)\baidu\update\baidujp_update.exe -Update

無効にできないもの、既に無効になっているものはそのままエントリの削除を、
エントリが存在しない場合は放置で先に進みましょう。
またGoogle Chrome等で削除ができない場合も放置で先に進みましょう。
CCでの作業が完了しましたら、PCをセーフモードで起動してください。
MBAMを起動させます。
フルスキャンを選択し、スキャン開始をクリックします。
スキャン終了まで30分～1時間半程度お待ちください。
スキャンが完了したら、詳細を表示をクリックします。
検出されたものの一覧が出ますので、検出されたものすべてを駆除するため、
検出されたものの左側にあるチェックボックスすべてにチェックを入れます。
すべての箇所にチェックを入れたら選択されたアイテムを隔離ボタンを押します。
処置の設定が完了するとPCの再起動を促されますので、指示に従って通常モードで再起動してください。
再起動前後にログが出ますので、取得されたログを貼り付け、ご報告をお願いいたします。

IVNO
MAIL
2015/04/20 (Mon) 11:59:57

返信フォームへ

Re: 困っています。お願いします

作業完了しました。

こちらがログです。

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

定義バージョン： v2015.04.19.05

Windows 7 Service Pack 1 x64 NTFS (セーフモード)
Internet Explorer 11.0.9600.17728
USER :: USER-PC [管理者]

2015/04/20 13:20:05
mbam-log-2015-04-20 (13-20-05).txt

スキャンタイプ：フルスキャン (C:\|D:\|E:\|)
有効なスキャン領域：メモリ | スタートアップ | レジストリ | ファイルシステム | ヒューリスティック/追加アイテムのスキャン　 | ヒューリスティック/Shuriken　エンジンを使用してスキャン　 | 不審なプログラム　（PUP） | 不審な変更　（PUM）
無効なスキャン領域: ピア・ツー・ピアプログラム（P2P）
スキャンしたアイテム数: 512082
経過時間： 1 時間, 4 分, 35 秒

メモリプロセスの検出: 0
(悪意のあるアイテムは検出されていません。)

メモリモジュールの検出: 0
(悪意のあるアイテムは検出されていません。)

レジストリキーの検出: 0
(悪意のあるアイテムは検出されていません。)

レジストリ値の検出: 0
(悪意のあるアイテムは検出されていません。)

レジストリデータ項目の検出: 0
(悪意のあるアイテムは検出されていません。)

フォルダの検出: 1
C:\ProgramData\LuckyShopper (PUP.Optional.LuckyShopper.A) -> 正常に隔離され削除されました。

ファイルの検出: 4
C:\ProgramData\RRoyAliSSHOepperApp\pff1YbBHXS1tlx.x64.dll (PUP.Optional.Multiplug) -> 正常に隔離され削除されました。
C:\Users\USER\AppData\Local\Temp\is1242154493\2261854_stp.EXE (Trojan.Dropper.NS) -> 正常に隔離され削除されました。
C:\Users\USER\Downloads\backups\backup-20150419-110848-170.dll (PUP.Optional.MultiPlug) -> 正常に隔離され削除されました。
C:\ProgramData\LuckyShopper\Jt5ynXMM0fHaib.dat (PUP.Optional.LuckyShopper.A) -> 正常に隔離され削除されました。

(終)

トッテくん
2015/04/20 (Mon) 15:00:57

返信フォームへ

MBAMは削除しセキュリティソフトでフルスキャンを

MBAMの結果は良好です。
MBAMは不要となりますので、導入時の指示に従って削除なされてください。

MBAMのログを確認したところ、ドロッパ型と呼ばれるトロイの木馬が確認されています。
NTTのセキュリティ対策ツール(ウイルスバスタークラウド)を起動させ、フルスキャンを行ってください。
フルスキャンの結果をお知らせください。

IVNO
MAIL
2015/04/20 (Mon) 19:22:02

返信フォームへ

Re: 困っています。お願いします

フルスキャン完了しました。

脅威０件でCookieが11件でした。

トッテくん
2015/04/20 (Mon) 21:28:08

返信フォームへ

OTLでスキャンを

ウイルスバスタークラウドでは検出はなかったと言うことですね。
油断はできませんが最悪の状況にはなっていないと思われます。

以下のソフトウェアをご用意ください。

HerdProtect(通称:HP)
http://www.herdprotect.com/downloads.aspx
インストール版でもポータブル版でも構いません。
インストール版の場合、アンインストールの際は、セーフモードでGeekを利用してアンインストールされてください。
また、トレンドマイクロのウイルスバスターとの相性が悪いとの報告も受けております。
相性の問題でスキャンが正常にできないときは、その旨をご報告ください。
さらに、本ソフトウェアにより検出されたものすべてがマルウェアと言うわけではありません。
HPは駆除機能もありますが、まずは駆除は行わず、検出のみに使用いたします。

OldTimer Listit(通称:OTL)
http://oldtimer.geekstogo.com/OTL.exe
直リンクです。デスクトップ等、分かりやすい場所に保存してください。
削除する際は起動後に「Cleanup」ボタンを押すことにより、自動的に削除されます。

準備ができましたら、まずゲームのインストーラーなど、極端に重たいファイルがある場合は、
そちらの不要ファイルを事前にPC内から手動削除し、ごみ箱からも消しておいてください。
これらをHPが不審プログラムとして拾うと、1日や2日は平気でスキャンにかかってしまいます。
PCが通常モードで起動していることを確認し、HerdProtectを起動させます。
ソフトウェアの特性として、ファイルのスキャンにインターネット回線を利用します。
インターネット回線がご利用できないセーフモード時では正常に動作しませんので、
セーフモードで起動中の場合は通常モードに切り替えてください。
Scanボタンがありますので、こちらを押してスキャンを行ってください。
スキャンに必要な情報を収集したり、発見された不審なソフトウェアを
各種セキュリティソフトで調査している間は、スキャン作業が停止します。
スキャンが進行しないからと言ってフリーズしたわけではありませんので、
スキャンが完了するまで今しばらくお待ちください。
スキャンが完了しましたらスキャン結果が表示されますので、
画面右上にあるSave resultsという文字をクリックしてログを出力してください。
ログは任意のお名前をつけて、分かりやすいところに保存してください。

以下をメモ帳にコピペしてください。

------コピペこの下より------
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
CREATERESTOREPOINT
------コピペこの上まで------

コピペが完了しましたら、任意のお名前をつけて分かりやすい場所に保存されてください。
保存が完了しましたら、PCをセーフモードで起動させてください。
OTLを起動させ、表示画面上部中央にあるScan All Usersにチェックを入れてください。
設定が完了しましたら、Custom Scan/Fixesの項目内に先ほど保存したメモ帳の内容を貼り付けてください。
コピペが完了しましたらメモ帳を終了させ、[Run Scan]をクリックしてスキャンを行ってください。
スキャン完了まで数分程度かかりますので、今しばらくお待ちください。
スキャンが完了しましたら、OTLを保存した場所と同じところに、
OTL.txtとExtras.txtが出力されますので、こちら2つと先に保存したHPのログを貼り付けてご連絡ください。
なお、OTLもHPもその特性上、非常に長文となりがちです。
こちらの掲示板の文字数上限がひらがな換算で約3万文字、ローマ字換算で約6万文字です。
(より正確には件名を含めてJIS換算65,535バイトまで。全角文字・全角記号2バイト、
半角文字・半角記号1バイト、絵文字等特殊文字3バイト)
確実に文字数オーバーとなりますので、余裕を見て5万5千文字程度になるように、
以下のURLの文字数カウンター等で確認しつつ、ログを分割されてご連絡ください。
http://www2u.biglobe.ne.jp/~yuichi/rest/strcount.html

IVNO
MAIL
2015/04/21 (Tue) 00:04:46

返信フォームへ

Re: 困っています。お願いします

作業完了しました。

HPのログ

Saved date: 2015/04/21 9:55:35
Files detected: 39
Files scanned: 10,498
Processes scanned: 105
Modules scanned: 899
ASEPs scanned: 481
Downloads scanned: 3
Deep analysis: 725/15
---------------------------------------------------------------------------------

Files

---------------------------------------------------------------------------------

File path: c:\program files (x86)\dynabook portal gadget\dynabook portal gadget.exe
Publisher: TOSHIBA CORPRATION
MD5: a5cc7f371f81d92d4980987140c0a5a8
SHA-1: 4cd5732bbeb53aad1d8ce6c75863ab07e8a08d94
Created: 2010/11/02 10:56:48
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Android.Adware.Adwo (Adware)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\nttw\osa_supporttool\start_w.exe
Publisher: 西日本電信電話株式会社
Signer: NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION
MD5: 9b2f84368a6c64ecd0249df6f9417a23
SHA-1: e35fc923bb570a463e7055faf7a4f2fa7a604ced
Created: 2014/03/24 16:17:22
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Posible_Worm32 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\downloads\hijackthis.exe
Publisher: Trend Micro Inc.
MD5: 47811d50390a86a17102d7496e6eabb9
SHA-1: 2623749cdb27887f6746acdee7e8065475f8b541
Created: 2015/04/18 22:35:21
Detections: 2
Determination: Ignore detections (false positive)
- Kingsoft AntiVirus as Win32.HeurC.KVM099.a.(kcloud) (Undefined)
- Rising Antivirus as PE:Trojan.VBInject!1.6546 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\apnsetup.exe
Publisher: Ask Partner Network
Signer: APN LLC
MD5: 5c564def933e237206e9291bbc1a87d0
SHA-1: 625dee38c9f83f5196a2e5d8c7d1a4d58ad923b2
Created: 2014/07/23 18:09:08
Detections: 7
Determination: Adware
- ESET NOD32 as Win32/Bundled.Toolbar.Ask (variant) (Undefined)
- Reason Heuristics as PUP.Installer.APN.I (Adware)
- Bkav FE as HW32.Pedka (Undefined)
- Baidu Antivirus as Adware.Win32.Ask (Adware)
- Trend Micro House Call as TROJ_GEN.F47V0301 (Undefined)
- G Data as Win32.Trojan.Agent.YA0M5C (Undefined)
- IKARUS anti.virus as Win32.Malware (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\bdg15e3.tmp
Publisher: Baidu.com
Signer: Beijing baidu Netcom science and technology co.ltd
MD5: 1881e7b8922f57f335ec6271e03979ee
SHA-1: 4c2c2b4a3f2172509c6bf3bd284eb2d3d437d2e6
Created: 2014/09/24 16:51:00
Detections: 1
Determination: Inconclusive
- ESET NOD32 as Win32/Hao123.C potentially unwanted application (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\bdgb9dc.tmp
Publisher: Baidu.com
Signer: Beijing baidu Netcom science and technology co.ltd
MD5: 1881e7b8922f57f335ec6271e03979ee
SHA-1: 4c2c2b4a3f2172509c6bf3bd284eb2d3d437d2e6
Created: 2014/09/24 16:44:03
Detections: 1
Determination: Inconclusive
- ESET NOD32 as Win32/Hao123.C potentially unwanted application (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\nexondownloader.exe
Publisher: (株)　ネクソン
MD5: a2e824429db8eb08a4a9defa6e86bb9c
SHA-1: a07bae429797d65c309b4746da4f0b0f335f7ecc
Created: 2014/03/26 12:28:18
Detections: 2
Determination: Ignore detections (false positive)
- Trend Micro House Call as TROJ_GEN.F47V1120 (Undefined)
- Panda Antivirus as Suspicious file

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\ngmf6c9.tmp
Publisher: Nexon
MD5: b8b6603f8f0cdef5cce23b6e25d1ac38
SHA-1: d1006e845d2136affc614e4a26f7ccd8ec477d9e
Created: 2014/07/21 15:26:37
Detections: 2
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined)
- Norman as Downloader.BJNN (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\ngmf9d0.tmp
Publisher: Nexon
MD5: b8b6603f8f0cdef5cce23b6e25d1ac38
SHA-1: d1006e845d2136affc614e4a26f7ccd8ec477d9e
Created: 2014/03/30 17:23:22
Detections: 2
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined)
- Norman as Downloader.BJNN (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\ngmsetup.exe
Publisher: Nexon
MD5: d73944d6a7056401bce9852ac1550eed
SHA-1: 849929b5b8b9b82178e2de6069efc2f341bb1780
Created: 2014/03/26 12:53:49
Detections: 1
Determination: Ignore detections (false positive)
- Vba32 AntiVirus as suspected of Trojan.Downloader.gen.h (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\optprosetup.exe
Publisher:
Signer: PC Utilities Software Limited
MD5: 24bcaf1bbb1f29e0245416b5d2873e46
SHA-1: ebf1d052c13b9f415afe09541bdab68f37429922
Created: 2014/09/24 16:44:12
Detections: 3
Determination: Adware
- Antiy Labs AVL as RiskWare[RiskTool:not-a-virus]/Win32.Agent (Adware)
- ESET NOD32 as Win32/SpeedingUpMyPC (variant) (Undefined)
- Reason Heuristics as PUP.Installer.PCUtilities.L (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\reimagepackage.exe
Publisher: Reimage®
Signer: Reimage Limited
MD5: 07a6bf655e4fc9eca1ff261e1bcf5666
SHA-1: d200cce7cd472c98f6e424c311352ae9a4f0c1e1
Created: 2015/01/09 19:11:22
Detections: 13
Determination: Adware
- Dr.Web as Trojan.Crossrider1.1621 (Adware)
- ESET NOD32 as Win32/ReImageRepair.F potentially unwanted (Adware)
- Reason Heuristics as PUP.Optional.Installer (Adware)
- McAfee Web Gateway as Artemis (Undefined)
- McAfee as Artemis!729EC34D3530 (Undefined)
- IKARUS anti.virus as PUA.ReImageRepair (Adware)
- Baidu Antivirus as PUA.Win32.ReImageRepair (Adware)
- G Data as Win32.Application.ReImageRepair (Undefined)
- Trend Micro House Call as Suspicious_GEN.F47V0202 (Undefined)
- avast! as Win32:Malware-gen (Undefined)
- Antiy Labs AVL as RiskWare[WebToolbar:not-a-virus]/Win32.Agent (Adware)
- Fortinet FortiGate as Riskware/ReImageRepair (Undefined)
- Vba32 AntiVirus as AdWare.MSIL.OutBrowse (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\reisysupdate.exe
Publisher: Reimage®
Signer: Reimage Limited
MD5: 8ae1d9232f12b20487a498586a170ade
SHA-1: c19d86a985ea14ea1a3133ff48d060e0ccdfc1eb
Created: 2015/04/10 0:07:50
Detections: 2
Determination: Inconclusive
- Dr.Web as Adware.Plugin.171 (Adware)
- Reason Heuristics as PUP.Optional.Reimage (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\000513_17.40.35.tc00449600b.temp\tavfiles\v6_5\tostsvrrenderer.ax
Publisher: TOSHIBA Corporation
MD5: a6457b7624a87907e4241a8bae7e9fd5
SHA-1: 81bc18feff56e038094340655448e77e904dc7aa
Created: 2012/06/06 12:38:20
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Packed (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\fest_ngn_v4.72.4.0_w\pre_flets_easy_setup_w.exe
Publisher: 西日本電信電話株式会社
Signer: NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION
MD5: 469bb3b8a231fe0a770bd8865c4105e9
SHA-1: 707e32b796af836ebdf6acada2ebb40213e765c7
Created: 2014/03/24 16:06:48
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Posible_Worm32 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\is-10e4c.tmp\uninstallpromote.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: da5102d37cafc29e71e9fcf29022dcc2
SHA-1: 2139bb039feb4b7d65b68badc200fd9d99ee9e22
Created: 2015/04/18 22:05:28
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\is-bhf8e.tmp\_c_b_setup.tmp.exe
Publisher:
Signer: Turbo Tools ltd
MD5: c733fc32a3adafd363e1ff5c8db5bb43
SHA-1: 87e4ade4e3a34d6b13016f9ed694fd6ed594f784
Created: 2015/04/18 21:20:02
Detections: 1
Determination: Inconclusive
- Dr.Web as riskware program Program.Unwanted.92 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\is1242154493\2261918_stp\icc.dll
Publisher:
MD5: 3ebff2bd87bdcb11ce467d10ff6e5fdc
SHA-1: e8273705509c853f2d88b5e6cd82777816959e6d
Created: 2014/08/27 17:11:58
Detections: 1
Determination: Ignore detections (false positive)
- Vba32 AntiVirus as Downware.InstallCore (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\is1242154493\2261918_stp\sqlite3.dll
Publisher:
MD5: 2db34c7d07707168429b0b2633ff75c0
SHA-1: 0b29505703900208db71e8d8ae0e675fac2c4d57
Created: 2014/04/08 15:37:58
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\is1242154493\2261950_stp\hao123-jp.exe
Publisher: Baidu.com
Signer: Beijing baidu Netcom science and technology co.ltd
MD5: d264921e615c26dfd461abeddbc3f081
SHA-1: 22168ab9a1a5303793a3179de938e1da48221a33
Created: 2014/07/20 22:19:52
Detections: 1
Determination: Inconclusive
- ESET NOD32 as Win32/Hao123.C potentially unwanted application (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\is1242154493\2261950_stp\icacsp.dll
Publisher:
MD5: a7ff369cf67733857fdee3f7c006ae51
SHA-1: a502b607a9057a4d3a86eecf1fd372fd78014e7d
Created: 2014/03/09 17:39:04
Detections: 1
Determination: Ignore detections (false positive)
- Vba32 AntiVirus as Downware.InstallCore (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\is1242154493\2261950_stp\sqlite3.dll
Publisher:
MD5: 5405413fff79b8d9c747aa900f60f082
SHA-1: 71caf8907ddd9a3a25d71356bd2ce09bd293bd78
Created: 2014/03/19 12:31:52
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\is1242154493\2262800_stp\taskscheduler.dll
Publisher:
MD5: a1ec79f2a57a8eaee2d7b5d909ac4812
SHA-1: a5be0c1a6877cfecace44c10f7a77ae1925f9292
Created: 2013/11/28 15:18:14
Detections: 1
Determination: Ignore detections (false positive)
- Trend Micro House Call as TROJ_GEN.F47V1227 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\is1414753233\129cbdfe_stp\speedupmypcjp3.exe
Publisher: Uniblue Systems Limited
Signer: Uniblue Systems
MD5: 490b5239eddeda312669c13c32821875
SHA-1: 284b11a846d6facd4028669396f3c339adb88657
Created: 2014/11/21 13:33:50
Detections: 9
Determination: Adware
- McAfee as Artemis!490B5239EDDE (Undefined)
- K7 AntiVirus as Unwanted-Program (Adware)
- K7 Gateway Antivirus as Unwanted-Program (Adware)
- Kaspersky as not-a-virus:RiskTool.Win32.SpeedUpMyPC (Adware)
- Dr.Web as Program.Uniblue.12 (Adware)
- McAfee Web Gateway as Artemis (Undefined)
- ESET NOD32 as Win32/UniBlue (Undefined)
- Fortinet FortiGate as Riskware/SpeedUpMyPC (Undefined)
- AVG as Uniblue (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\is1414753233\4e6f41ea_stp\sqlite3.dll
Publisher:
MD5: 2db34c7d07707168429b0b2633ff75c0
SHA-1: 0b29505703900208db71e8d8ae0e675fac2c4d57
Created: 2014/04/08 15:37:58
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\temp\startup_tool_tmp\startup_install.exe
Publisher: 西日本電信電話株式会社
Signer: NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION
MD5: 2450919148640dcae1f9dcb9adb68eb5
SHA-1: 5e6fb0eb337ed95ed776914d7b0e34e1f0a9bb7a
Created: 2014/03/24 16:17:44
Detections: 1
Determination: Ignore detections (false positive)
- Jiangmin as AdWare/Gaba.rp (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\downloads\flvplayersetup.exe
Publisher:
Signer: Tweaks App (Fried Cookie Ltd.)
MD5: 1a2f306f2921d6743ff5796e1fdece74
SHA-1: 101f296d30b2fe7d90191f8b158b04eefa5f0195
Created: 2014/12/30 21:55:13
Detections: 15
Determination: Adware
- Reason Heuristics as PUP.Installer.InstallCore.Installer (Adware)
- Dr.Web as Trojan.InstallCore.41 (Adware)
- ESET NOD32 as Win32/InstallCore.SZ potentially unwanted application (Adware)
- VIPRE Antivirus as Threat.4786018 (Undefined)
- F-Secure as Riskware.Gen:Application.Heur.Uy9@mml6dAdi (Adware)
- K7 AntiVirus as Unwanted-Program (Adware)
- K7 Gateway Antivirus as Unwanted-Program (Adware)
- Avira AntiVirus as Adware/InstallCo.zlg (Adware)
- G Data as Win32.Application.InstallCore.CZ (Adware)
- AVG as Generic (Undefined)
- NANO AntiVirus as Riskware.Win32.InstallCore.dmfqkk (Adware)
- Comodo Security as Application.Win32.InstallCore.TOAA (Adware)
- avast! as Malware-gen (Undefined)
- Agnitum Outpost as PUA.InstallCore (Adware)
- Bkav FE as W32.HfsAdware (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\downloads\herdprotectscan_setup.exe
Publisher: Reason Company Software Inc.
Signer: Reason Software Company Inc.
MD5: 172ed33198484df87fa015b695eaad80
SHA-1: 1df2124a741afc2ee0b2e90e904a3201e5cb3c3d
Created: 2015/04/21 0:17:07
Detections: 1
Determination: Ignore detections (false positive)
- Rising Antivirus as PE:Malware.ArcadeWeb!6.727 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\desktop\otl.exe
Publisher: OldTimer Tools
MD5: 4adcfee16ee9978f06157634669d36fb
SHA-1: 30b37076552e49276836d02dd73d038c27dbbee9
Created: 2015/04/21 0:20:55
Detections: 2
Determination: Ignore detections (false positive)
- Agnitum Outpost as Packed/PECompact
- Bkav FE as HW32.CDB (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\syswow64\iscsicpl.dll
Publisher: Microsoft Corporation
MD5: f945adcef203e6104aec8ec9c337cfd0
SHA-1: 85fe50b2c2fcbec2c09c5039c8f8c1d38523780a
Created: 2009/07/14 8:46:13
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoA (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\local\ggempire\2262982_stp\taskscheduler.dll
Publisher:
MD5: a1ec79f2a57a8eaee2d7b5d909ac4812
SHA-1: a5be0c1a6877cfecace44c10f7a77ae1925f9292
Created: 2013/11/28 15:18:14
Detections: 1
Determination: Ignore detections (false positive)
- Trend Micro House Call as TROJ_GEN.F47V1227 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\roaming\iobit\iobit uninstaller\ppuninstallertemp.exe
Publisher:
Signer: IObit Information Technology
MD5: 28ca7d1bb9fbfca2b529d885e61491d8
SHA-1: 7bc41ba0c2fd59e62d8e5c677b4598b6540d8fb0
Created: 2015/04/18 22:04:12
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\roaming\iobit\iobit uninstaller\uninstalldisplaytemp.exe
Publisher:
Signer: IObit Information Technology
MD5: ab3ffdfc7c8f48efac0fbee6fabb7345
SHA-1: 33a609889b93cd59c0970c38b901172991b10149
Created: 2015/04/18 22:04:11
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\users\user\appdata\roaming\iobit\iobit uninstaller\uninstallpromotetemp.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: da5102d37cafc29e71e9fcf29022dcc2
SHA-1: 2139bb039feb4b7d65b68badc200fd9d99ee9e22
Created: 2015/04/18 22:04:11
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\speech system\system\regsvr32.exe
Publisher: Microsoft Corporation
MD5: 5d1bdc0272e72798500f202b13bd39cc
SHA-1: 32ab4a6b571e4729221eb2e392e6f332aa10fc3e
Created: 2010/12/01 3:41:47
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Worm/Win32.Otwycal.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\utilities\hwsetup.dll
Publisher:
MD5: e902e5c40cb9ed230bc2472bc753e9fb
SHA-1: a8e5ba5e43c67bed7b66633fceb00cd7c0a4a387
Created: 2010/12/01 3:36:24
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\baidu\update\crashul.exe
Publisher: Baidu, Inc.
Signer: Baidu Online Network Technology (Beijing)Co., Ltd
MD5: 1a7048fd88c011904dfc011b96f5288d
SHA-1: 9ec5291b05fa9eea8445c18dc33057b81358ba99
Created: 2014/11/24 9:31:28
Detections: 25
Determination: UndefinedMalware
- Dr.Web as Win32.Runonce.6652 (Undefined)
- Microsoft Security Essentials as Threat.Undefined (Undefined)
- VIPRE Antivirus as Threat.219451 (Undefined)
- avast! as Win32:Oncer (Undefined)
- F-Prot as W32/Thecid.B@mm (Undefined)
- Clam AntiVirus as WIN.Worm.Brontok (Undefined)
- Quick Heal as W32.Runouce.B (Undefined)
- Malwarebytes as Virus.Chir (Undefined)
- Zillya! Antivirus as Worm.Runouce.Win32.2 (Undefined)
- K7 AntiVirus as EmailWorm (Undefined)
- K7 Gateway Antivirus as EmailWorm (Undefined)
- Norman as Malware (Undefined)
- Rising Antivirus as PE:Worm.ChineseHacker-2!23772 (Undefined)
- Comodo Security as EmailWorm.Win32.Runonce.~v001 (Undefined)
- McAfee Web Gateway as Heuristic.LooksLike.Win32.SuspiciousPE.J (Undefined)
- Sophos as W32/Chir-A (Undefined)
- Jiangmin as Win32/cnPeace.b (Undefined)
- Kingsoft AntiVirus as Win32.Type.b.6637 (Undefined)
- Commtouch SDK as W32/Thecid.B@mm (Undefined)
- AhnLab V3 Security as Win32/ChiHack.6652 (Undefined)
- Vba32 AntiVirus as Virus.Win32.Chur.A (Undefined)
- IKARUS anti.virus as Email-Worm.Win32.Runouce (Undefined)
- Qihoo 360 Security as Virus.Win32.CNHacker.C (Undefined)
- Emsisoft Anti-Malware as Generic.Malware.SWX!.702FE106 (Undefined)
- NANO AntiVirus as Trojan.Win32.Click.cquqqp (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\corel\corel ddr move for toshiba\dvd\ulcdrsvr.exe
Publisher: Ulead Systems, Inc.
MD5: 4f02c4afafeb5c2a0d7d46cb07c85f19
SHA-1: fe16ce7c266690a0d9a18f96cc1891c9514e3d83
Created: 2014/03/19 13:20:25
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\corel\corel ddr move for toshiba\dvd\uleaddvdpool.dll
Publisher:
MD5: b023dc62e986b2f55a96e3c806b12b0e
SHA-1: e4a8cdea0436d7e1a6477244e55b2c698918d0fd
Created: 2014/03/19 13:20:25
Detections: 2
Determination: Ignore detections (false positive)
- VirusBuster as Packed/Themida (Undefined)
- Comodo Security as Heur.Pck.Themida (Undefined)

トッテくん
2015/04/21 (Tue) 10:52:59

返信フォームへ

OTL1

OTL logfile created on: 2015/04/21 10:10:40 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\USER\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17728)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

3.80 Gb Total Physical Memory | 2.83 Gb Available Physical Memory | 74.51% Memory free
7.61 Gb Paging File | 6.65 Gb Available in Paging File | 87.49% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 864.47 Gb Total Space | 649.27 Gb Free Space | 75.11% Space Free | Partition Type: NTFS
Drive D: | 50.00 Gb Total Space | 49.56 Gb Free Space | 99.12% Space Free | Partition Type: NTFS

Computer Name: USER-PC | User Name: USER | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2015/04/21 00:20:59 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\USER\Desktop\OTL.exe

[color=#E56717]========== Modules (No Company Name) ==========[/color]

[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - File not found [Auto | Stopped] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe /McCoreSvc -- (McOobeSv)
SRV:[b]64bit:[/b] - [2015/03/13 12:54:00 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2013/05/27 14:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2010/11/05 17:21:52 | 000,822,192 | ---- | M] (TOSHIBA Corporation) [On_Demand | Stopped] -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe -- (TPCHSrv)
SRV:[b]64bit:[/b] - [2010/10/20 14:41:50 | 000,138,656 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Windows\SysNative\TODDSrv.exe -- (TODDSrv)
SRV:[b]64bit:[/b] - [2010/09/28 12:30:28 | 000,489,384 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV:[b]64bit:[/b] - [2010/07/28 10:27:16 | 000,267,192 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files\TOSHIBA\TECO\TecoService.exe -- (TOSHIBA eco Utility Service)
SRV:[b]64bit:[/b] - [2010/02/05 17:44:48 | 000,137,560 | ---- | M] (TOSHIBA Corporation) [On_Demand | Stopped] -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe -- (TOSHIBA HDD SSD Alert Service)
SRV - [2015/04/15 06:10:10 | 000,268,464 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015/02/18 19:11:32 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014/07/14 18:21:46 | 001,390,176 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc)
SRV - [2014/07/14 18:21:06 | 001,767,520 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc)
SRV - [2014/04/11 23:08:08 | 000,103,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2014/03/21 07:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2011/08/31 21:11:40 | 002,425,960 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R)
SRV - [2011/07/11 16:16:06 | 000,057,216 | ---- | M] (TOSHIBA Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)
SRV - [2011/04/04 11:41:16 | 000,079,288 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\TOSHIBA\RegzaLinkDubbing\TosRzTfSvc.exe -- (TosRzTfSvc)
SRV - [2011/03/02 06:38:46 | 000,017,616 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\TOSHIBA\AVApplication\Engine\TAVComplementService.exe -- (TAVComplementService)
SRV - [2011/03/02 06:38:28 | 000,682,696 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVScheduler.exe -- (TAVScheduler)
SRV - [2010/11/02 20:57:58 | 000,087,336 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\CyberLink\SoftDMA\Kernel\DMP\CLHNService.exe -- (CLHNService)
SRV - [2010/08/30 05:19:32 | 000,053,408 | ---- | M] (Ulead Systems, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2010/08/30 05:16:52 | 000,028,320 | ---- | M] () [Auto | Stopped] -- c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe -- (UDSS)
SRV - [2010/05/07 20:22:34 | 000,222,664 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe -- (TPCHKarteSVC)
SRV - [2010/04/13 19:52:04 | 002,533,400 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/04/13 19:52:02 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/03/11 14:06:06 | 000,193,824 | ---- | M] (Protexis Inc.) [Auto | Stopped] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2010/01/28 16:44:40 | 000,249,200 | ---- | M] (TOSHIBA CORPORATION) [Auto | Stopped] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe -- (cfWiMAXService)
SRV - [2009/03/10 18:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) [Auto | Stopped] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2014/03/31 21:06:06 | 000,058,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:[b]64bit:[/b] - [2014/03/17 18:04:00 | 000,168,664 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mkd3kfnt.sys -- (Mkd3kfNt)
DRV:[b]64bit:[/b] - [2014/02/24 11:22:00 | 000,098,520 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2BthF.sys -- (Mkd2Bthf)
DRV:[b]64bit:[/b] - [2014/02/24 11:21:00 | 000,112,856 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2Nadr.sys -- (Mkd2Nadr)
DRV:[b]64bit:[/b] - [2013/10/02 11:22:20 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013/09/05 19:38:50 | 000,175,528 | ---- | M] (Trend Micro Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tmcomm.sys -- (tmcomm)
DRV:[b]64bit:[/b] - [2013/09/05 19:38:50 | 000,109,072 | ---- | M] (Trend Micro Inc.) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\tmactmon.sys -- (tmactmon)
DRV:[b]64bit:[/b] - [2013/09/05 19:38:50 | 000,077,184 | ---- | M] (Trend Micro Inc.) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\tmevtmgr.sys -- (tmevtmgr)
DRV:[b]64bit:[/b] - [2013/03/18 16:51:08 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2012/12/08 02:33:04 | 000,094,520 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tmeevw.sys -- (tmeevw)
DRV:[b]64bit:[/b] - [2012/08/24 13:07:14 | 000,046,392 | ---- | M] (Trend Micro Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TMEBC64.sys -- (TMEBC)
DRV:[b]64bit:[/b] - [2012/08/23 23:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2012/07/06 11:35:58 | 000,210,232 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tmnciesc.sys -- (tmnciesc)
DRV:[b]64bit:[/b] - [2012/05/03 03:27:22 | 000,105,744 | ---- | M] (Trend Micro Inc.) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\tmtdi.sys -- (tmtdi)
DRV:[b]64bit:[/b] - [2012/03/01 15:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2011/06/20 09:07:08 | 001,225,832 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rtl8192se.sys -- (rtl8192se)
DRV:[b]64bit:[/b] - [2011/05/30 16:03:34 | 000,338,536 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsPStor.sys -- (RSPCIESTOR)
DRV:[b]64bit:[/b] - [2011/03/11 15:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011/03/11 15:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2011/01/12 10:18:38 | 010,627,392 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2010/11/20 22:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010/06/24 08:58:14 | 000,024,200 | ---- | M] (Darfon Electronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\DFMousefilter.sys -- (DFMousefilter)
DRV:[b]64bit:[/b] - [2010/06/24 08:57:08 | 000,024,712 | ---- | M] (Darfon Electronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\DFKBfilter.sys -- (DFKBfilter)
DRV:[b]64bit:[/b] - [2010/06/16 13:13:20 | 000,015,536 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TosRzTf.sys -- (TosRzTf)
DRV:[b]64bit:[/b] - [2010/06/03 18:15:30 | 000,482,384 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tos_sps64.sys -- (tos_sps64)
DRV:[b]64bit:[/b] - [2010/03/24 13:55:56 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:[b]64bit:[/b] - [2010/03/04 17:53:00 | 000,075,816 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:[b]64bit:[/b] - [2010/02/27 05:02:12 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:[b]64bit:[/b] - [2009/11/05 13:13:04 | 000,219,640 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tisdbt3d64.sys -- (tisdbt3d64)
DRV:[b]64bit:[/b] - [2009/09/17 12:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:[b]64bit:[/b] - [2009/08/31 15:36:18 | 000,006,656 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hidshim.sys -- (hidshim)
DRV:[b]64bit:[/b] - [2009/08/31 15:36:16 | 000,026,624 | ---- | M] (Nuvoton Technology Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nuvotonhidcir.sys -- (nuvotonhidcir)
DRV:[b]64bit:[/b] - [2009/07/30 20:22:04 | 000,027,784 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV:[b]64bit:[/b] - [2009/07/14 15:31:18 | 000,026,840 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TVALZ_O.SYS -- (TVALZ)
DRV:[b]64bit:[/b] - [2009/07/14 10:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009/07/14 10:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009/07/14 10:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009/07/07 08:51:42 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\FwLnk.sys -- (FwLnk)
DRV:[b]64bit:[/b] - [2009/06/22 17:06:38 | 000,035,008 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PGEffect.sys -- (PGEffect)
DRV:[b]64bit:[/b] - [2009/06/19 19:15:22 | 000,014,472 | ---- | M] (TOSHIBA Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TVALZFL.sys -- (TVALZFL)
DRV:[b]64bit:[/b] - [2009/06/11 05:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009/06/11 05:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009/06/11 05:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009/06/11 05:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2010/11/02 20:58:00 | 000,082,416 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Stopped] -- C:\Program Files (x86)\CyberLink\SoftDMA\Kernel\DMP\NTIPPKernel_64.sys -- (NTIPPKernel)
DRV - [2009/07/14 10:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]

[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{81C29D48-8D3F-4BBC-9824-E87957F028F4}: "URL" = http://search.yahoo.co.jp/search?ei=UTF-8&fr=tospccie&p={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{81C29D48-8D3F-4BBC-9824-E87957F028F4}: "URL" = http://search.yahoo.co.jp/search?ei=UTF-8&fr=tospccie&p={searchTerms}

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-21-164824672-2091262678-2705287026-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-164824672-2091262678-2705287026-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.co.jp/
IE - HKU\S-1-5-21-164824672-2091262678-2705287026-1003\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-164824672-2091262678-2705287026-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-164824672-2091262678-2705287026-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.45.2: C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2: C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.co.jp/NxGame: C:\ProgramData\NexonJP\NGM\npNxGameJP.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\pmang.jp/pmangsupport-1: C:\GameOn\Common files\nppmangsupport_0.dll (gameon)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\tmbepff-7.5@trendmicro.com: C:\PROGRAM FILES (X86)\NTTW\SECURITY\AMSP\MODULE\20002\7.5.1144\7.5.1144\FIREFOXEXTENSION [2014/10/25 23:39:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\tmbepff-7.5@trendmicro.com: C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20002\7.5.1144\7.5.1144\firefoxextension [2014/10/25 23:39:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{22C7F6C6-8D67-4534-92B5-529A0EC09405}: C:\Program Files (x86)\NTTW\SECURITY\AMSP\module\20004\FxExt\firefoxextension\ [2014/10/25 23:39:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{22181a4d-af90-4ca3-a569-faed9118d6bc}: C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\Toolbar\firefoxextension [2014/03/24 16:19:44 | 000,000,000 | ---D | M]

[color=#E56717]========== Chrome ==========[/color]

CHR - plugin: Error reading preferences file
CHR - Extension: Skype Click to Call = C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0\

O1 HOSTS File: ([2009/06/11 06:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll File not found
O2:[b]64bit:[/b] - BHO: (TmIEPlugInBHO Class) - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\module\20004\2.5.1331\6.8.1094\TmIEPlg.dll (Trend Micro Inc.)
O2:[b]64bit:[/b] - BHO: (Yahoo!ツールバーフィッシング警告) - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files\Yahoo!J\Toolbar64\8_0_0_3\Modules\ypho.dll (Yahoo Japan Corporation. )
O2:[b]64bit:[/b] - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\module\20002\7.5.1144\7.5.1144\TmBpIe64.dll (Trend Micro Inc.)
O2:[b]64bit:[/b] - BHO: (Yahoo!ツールバーヘルパー) - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files\Yahoo!J\Toolbar64\8_0_0_3\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O2 - BHO: (TmIEPlugInBHO Class) - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll (Trend Micro Inc.)
O2 - BHO: (Yahoo!ツールバーフィッシング警告) - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ypho.dll (Yahoo Japan Corporation. )
O2 - BHO: (TSToolbarBHO) - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
O2 - BHO: (FlpLauncher Class) - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - C:\Program Files (x86)\E-Book Systems\FlipViewer\fvbho140.dll (E-Book Systems Inc.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\module\20002\7.5.1144\7.5.1144\TmBpIe32.dll (Trend Micro Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Yahoo!ツールバーヘルパー) - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O2 - BHO: (TOSHIBA Media Controller Plug-in) - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar64\8_0_0_3\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3 - HKLM\..\Toolbar: (セキュリティツールバー) - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:[b]64bit:[/b] - HKU\S-1-5-21-164824672-2091262678-2705287026-1003\..\Toolbar\WebBrowser: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar64\8_0_0_3\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3 - HKU\S-1-5-21-164824672-2091262678-2705287026-1003\..\Toolbar\WebBrowser: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O4:[b]64bit:[/b] - HKLM..\Run: [] File not found
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [HSON] C:\Program Files\TOSHIBA\TBS\HSON.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [SmartFaceVWatcher] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatcher.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Teco] C:\Program Files\TOSHIBA\TECO\Teco.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TosNC] C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TosReelTimeMonitor] C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TosTogKeyMon] C:\Program Files\TOSHIBA\FlashCards\TosTogKeyMon.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TosWaitSrv] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Trend Micro Client Framework] C:\Program Files (x86)\NTTW\SECURITY\UniClient\UiFrmWrk\UIWatchDog.exe (Trend Micro Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [Trend Micro Titanium] C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\uiWinMgr.exe (Trend Micro Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [Unattend0000000001{C12B026D-4D16-43C9-9E57-CC575CB7CC38}] C:\tosutils\palakidou\palakidou.exe (AnywhereWorking L.T.D.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AIOKBApp] C:\Windows\AIOKBApp.exe (Darfon Electronics Corp.)
O4 - HKLM..\Run: [dynabook Portal Gadget] C:\Program Files (x86)\dynabook Portal Gadget\dynabook Portal Gadget.exe (TOSHIBA CORPRATION)
O4 - HKLM..\Run: [FlipViewer Library] C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe (E-Book Systems Inc.)
O4 - HKLM..\Run: [NTTW_OSA_AUS] C:\Program Files (x86)\NTTW\OSA_Aus\acs.exe (西日本電信電話株式会社)
O4 - HKLM..\Run: [TAVLauncher] C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVLauncher.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TiltMouse] C:\windows\TiltMouseAPP.exe File not found
O4 - HKLM..\Run: [TKRTL] C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TRCMan] C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TSleepSrv] C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe (TOSHIBA)
O4 - HKLM..\Run: [TSUScheduler] C:\Program Files (x86)\TOSHIBA\Sync Utility\TosSyncScheduler.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TWebCamera] C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe (TOSHIBA CORPORATION.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-164824672-2091262678-2705287026-1003..\Run: [BingSvc] C:\Users\USER\AppData\Local\Microsoft\BingSvc\BingSvc.exe (© 2015 Microsoft Corporation)
O4 - HKU\S-1-5-21-164824672-2091262678-2705287026-1003..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 File not found
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O9:[b]64bit:[/b] - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: TOSHIBA Bulletin Boardへ追加 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom64.dll (TODO: <会社名>)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : TOSHIBA Bulletin Boardへ追加 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom64.dll (TODO: <会社名>)
O9 - Extra Button: 故障かな？と思ったら・・・ - {6CB1FA39-5745-4733-859F-E9C82A68F848} - C:\Program Files (x86)\NTTW\OSA_SupportTool\start_w.exe (西日本電信電話株式会社)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: TOSHIBA Bulletin Boardへ追加 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll (TODO: <会社名>)
O9 - Extra 'Tools' menuitem : TOSHIBA Bulletin Boardへ追加 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll (TODO: <会社名>)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O15:[b]64bit:[/b] - ..Trusted Domains: fresheye.com ([dynabook] http in Trusted sites)
O15:[b]64bit:[/b] - ..Trusted Domains: gmodules.com ([www.ig] http in Trusted sites)
O15 - HKLM\..Trusted Domains: fresheye.com ([dynabook] http in Trusted sites)
O15 - HKLM\..Trusted Domains: gmodules.com ([www.ig] http in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab (Java Plug-in 11.45.2)
O16 - DPF: {CAFEEFAC-0018-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab (Java Plug-in 1.8.0_45)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab (Java Plug-in 11.45.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.11.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D65B87E0-4F71-4832-A556-F7B83384A86E}: DhcpNameServer = 192.168.11.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F733F9EA-4EF5-420A-A8B0-B70A54EFCF68}: DhcpNameServer = 192.168.11.1
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\module\20002\7.5.1144\7.5.1144\TmBpIe64.dll (Trend Micro Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\module\20004\2.5.1331\6.8.1094\TmIEPlg.dll (Trend Micro Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\tmtb - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\tmtbim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\module\20002\7.5.1144\7.5.1144\TmBpIe32.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmtb {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmtbim {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ProToolbarIMRatingActiveX.dll (西日本電信電話株式会社)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{40af75a0-e4e9-11e3-bac2-00266cb41c05}\Shell - "" = AutoRun
O33 - MountPoints2\{40af75a0-e4e9-11e3-bac2-00266cb41c05}\Shell\AutoRun\command - "" = G:\MediaJet.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Unable to start System Restore Service. Error code 1084

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015/04/21 00:24:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\herdProtect
[2015/04/21 00:24:28 | 000,000,000 | ---D | C] -- C:\Program Files\Reason
[2015/04/21 00:20:55 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\USER\Desktop\OTL.exe
[2015/04/20 13:06:35 | 000,000,000 | ---D | C] -- C:\Users\USER\AppData\Roaming\Malwarebytes
[2015/04/20 13:05:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/04/19 21:45:17 | 000,000,000 | ---D | C] -- C:\Users\USER\AppData\Roaming\Baidu
[2015/04/19 21:45:17 | 000,000,000 | ---D | C] -- C:\ProgramData\baidu
[2015/04/19 21:45:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Baidu
[2015/04/19 15:15:38 | 000,000,000 | ---D | C] -- C:\Users\USER\Desktop\ログまとめ
[2015/04/19 15:14:12 | 000,000,000 | ---D | C] -- C:\Users\USER\Desktop\フォルダーまとめ
[2015/04/19 10:28:02 | 000,000,000 | ---D | C] -- C:\Users\USER\AppData\Roaming\Geek Uninstaller
[2015/04/18 22:44:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2015/04/18 22:44:11 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2015/04/18 21:23:47 | 000,000,000 | ---D | C] -- C:\Users\USER\AppData\Roaming\ProductData
[2015/04/18 21:22:54 | 000,000,000 | ---D | C] -- C:\windows\tasks\ImCleanDisabled
[2015/04/18 21:22:40 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2015/04/18 21:22:32 | 000,000,000 | ---D | C] -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
[2015/04/18 21:22:30 | 000,000,000 | ---D | C] -- C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
[2015/04/18 21:22:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\IObit
[2015/04/18 21:19:44 | 000,000,000 | ---D | C] -- C:\Users\USER\AppData\Roaming\IObit
[2015/04/18 21:19:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2015/04/18 21:19:23 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2015/04/18 14:09:05 | 000,000,000 | ---D | C] -- C:\windows\Sun
[2015/04/18 14:07:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2015/04/17 03:54:01 | 000,000,000 | ---D | C] -- C:\Users\USER\AppData\Roaming\pmClient7082
[2015/04/17 01:36:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paperman
[2015/04/16 23:27:18 | 000,000,000 | ---D | C] -- C:\Users\USER\AppData\Local\Intel
[2015/04/16 20:48:38 | 000,000,000 | ---D | C] -- C:\Users\USER\AppData\Local\Downloaded Installations
[2015/04/16 16:53:57 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!J
[2015/04/15 21:32:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2015/04/15 21:32:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2015/04/15 21:32:04 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2015/04/15 04:36:28 | 003,298,816 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wucltux.dll
[2015/04/15 04:36:28 | 000,696,320 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuapi.dll
[2015/04/15 04:36:28 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wuapi.dll
[2015/04/15 04:36:28 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuwebv.dll
[2015/04/15 04:36:28 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wuwebv.dll
[2015/04/15 04:36:28 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuauclt.exe
[2015/04/15 04:36:28 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wudriver.dll
[2015/04/15 04:36:28 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wudriver.dll
[2015/04/15 04:36:28 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WinSetupUI.dll
[2015/04/15 04:36:28 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wups2.dll
[2015/04/15 04:36:28 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuapp.exe
[2015/04/15 04:36:28 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wups.dll
[2015/04/15 04:36:28 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wuapp.exe
[2015/04/15 04:36:28 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wups.dll
[2015/04/15 04:36:28 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wu.upgrade.ps.dll
[2015/04/15 04:36:23 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\generaltel.dll
[2015/04/15 04:36:22 | 001,111,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\aeinv.dll
[2015/04/15 04:36:22 | 000,957,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\appraiser.dll
[2015/04/15 04:36:22 | 000,769,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\invagent.dll
[2015/04/15 04:36:22 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\devinv.dll
[2015/04/15 04:36:22 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\aepic.dll
[2015/04/15 04:36:22 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\acmigration.dll
[2015/04/15 04:36:21 | 000,404,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\gdi32.dll
[2015/04/15 04:36:21 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\aepdu.dll
[2015/04/15 04:36:19 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msxml3r.dll
[2015/04/15 04:36:19 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msxml3r.dll
[2015/04/15 04:36:12 | 005,557,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntoskrnl.exe
[2015/04/15 04:36:11 | 001,727,904 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntdll.dll
[2015/04/15 04:36:11 | 001,163,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\kernel32.dll
[2015/04/15 04:36:11 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KernelBase.dll
[2015/04/15 04:36:10 | 003,920,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntoskrnl.exe
[2015/04/15 04:36:09 | 003,976,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntkrnlpa.exe
[2015/04/15 04:36:08 | 001,461,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\lsasrv.dll
[2015/04/15 04:36:08 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wow64win.dll
[2015/04/15 04:36:07 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\srcore.dll
[2015/04/15 04:36:07 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\conhost.exe
[2015/04/15 04:36:07 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wow64.dll
[2015/04/15 04:36:06 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rstrui.exe
[2015/04/15 04:36:06 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winsrv.dll
[2015/04/15 04:36:05 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ncrypt.dll
[2015/04/15 04:36:05 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sspicli.dll
[2015/04/15 04:36:05 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\smss.exe
[2015/04/15 04:36:04 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\auditpol.exe
[2015/04/15 04:36:04 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\srclient.dll
[2015/04/15 04:36:04 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\auditpol.exe
[2015/04/15 04:36:04 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\csrsrv.dll
[2015/04/15 04:36:04 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\setup16.exe
[2015/04/15 04:36:04 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntvdm64.dll
[2015/04/15 04:36:03 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sspisrv.dll
[2015/04/15 04:36:03 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\secur32.dll
[2015/04/15 04:36:03 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntvdm64.dll
[2015/04/15 04:36:02 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wow64cpu.dll
[2015/04/15 04:36:02 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2015/04/15 04:36:02 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2015/04/15 04:36:02 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wow32.dll
[2015/04/15 04:36:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2015/04/15 04:36:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2015/04/15 04:36:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2015/04/15 04:36:01 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2015/04/15 04:36:01 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2015/04/15 04:36:01 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2015/04/15 04:36:01 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2015/04/15 04:36:01 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2015/04/15 04:36:00 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2015/04/15 04:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2015/04/15 04:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2015/04/15 04:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2015/04/15 04:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2015/04/15 04:35:59 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2015/04/15 04:35:59 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2015/04/15 04:35:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2015/04/15 04:35:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2015/04/15 04:35:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2015/04/15 04:35:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2015/04/15 04:35:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2015/04/15 04:35:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2015/04/15 04:35:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2015/04/15 04:35:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2015/04/15 04:35:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2015/04/15 04:35:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2015/04/15 04:35:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2015/04/15 04:35:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2015/04/15 04:35:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2015/04/15 04:35:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2015/04/15 04:35:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2015/04/15 04:35:58 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2015/04/15 04:35:58 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2015/04/15 04:35:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2015/04/15 04:35:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2015/04/15 04:35:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2015/04/15 04:35:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2015/04/15 04:35:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2015/04/15 04:35:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2015/04/15 04:35:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2015/04/15 04:35:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2015/04/15 04:35:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2015/04/15 04:35:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2015/04/15 04:35:57 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2015/04/15 04:35:57 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2015/04/15 04:35:57 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2015/04/15 04:35:57 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2015/04/15 04:35:57 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2015/04/15 04:35:57 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2015/04/15 04:35:57 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2015/04/15 04:35:57 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2015/04/15 04:35:57 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2015/04/15 04:35:57 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2015/04/15 04:35:57 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2015/04/15 04:35:57 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2015/04/15 04:35:55 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\instnm.exe
[2015/04/15 04:35:54 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\apisetschema.dll
[2015/04/15 04:35:54 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\apisetschema.dll
[2015/04/15 04:35:53 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\user.exe
[2015/04/15 04:35:47 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\adtschema.dll
[2015/04/15 04:35:47 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\adtschema.dll
[2015/04/15 04:35:46 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msaudite.dll
[2015/04/15 04:35:46 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msaudite.dll
[2015/04/15 04:35:46 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msobjs.dll
[2015/04/15 04:35:46 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msobjs.dll
[2015/04/15 04:35:29 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieetwcollector.exe
[2015/04/15 04:35:29 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmled.dll
[2015/04/15 04:35:29 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieetwproxystub.dll
[2015/04/15 04:35:29 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieetwproxystub.dll
[2015/04/15 04:35:29 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iernonce.dll
[2015/04/15 04:35:28 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MshtmlDac.dll
[2015/04/15 04:35:27 | 000,720,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe
[2015/04/15 04:35:27 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\JavaScriptCollectionAgent.dll
[2015/04/15 04:35:27 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iernonce.dll
[2015/04/15 04:35:26 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\JavaScriptCollectionAgent.dll

トッテくん
2015/04/21 (Tue) 10:55:02

返信フォームへ

OTL2

OTL2ログ

[2015/04/15 04:35:24 | 002,052,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\inetcpl.cpl
[2015/04/15 04:35:24 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dll
[2015/04/15 04:35:24 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesetup.dll
[2015/04/15 04:35:23 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MsSpellCheckingFacility.exe
[2015/04/15 04:35:23 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\jscript9diag.dll
[2015/04/15 04:35:23 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieUnatt.exe
[2015/04/15 04:35:23 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieetwcollectorres.dll
[2015/04/15 04:35:22 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll
[2015/04/15 04:35:22 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieui.dll
[2015/04/15 04:35:22 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxtrans.dll
[2015/04/15 04:35:21 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dll
[2015/04/15 04:35:21 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesetup.dll
[2015/04/15 04:35:20 | 002,125,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\inetcpl.cpl
[2015/04/15 04:35:19 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmlmedia.dll
[2015/04/15 04:35:19 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieUnatt.exe
[2015/04/15 04:35:18 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieui.dll
[2015/04/15 04:35:18 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxtmsft.dll
[2015/04/15 04:35:18 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\html.iec
[2015/04/15 04:35:18 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msrating.dll
[2015/04/15 04:35:16 | 006,025,216 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll
[2015/04/15 04:35:16 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshtmlmedia.dll
[2015/04/15 04:35:16 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript9diag.dll
[2015/04/15 04:35:16 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshtmled.dll
[2015/04/15 04:35:15 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\vbscript.dll
[2015/04/15 04:35:15 | 000,417,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\html.iec
[2015/04/15 04:35:14 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msrating.dll
[2015/04/15 04:35:14 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MshtmlDac.dll
[2015/04/15 04:34:20 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\clfsw32.dll
[2015/04/15 04:34:20 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\clfsw32.dll
[2015/04/10 03:48:18 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\DWrite.dll
[2015/04/05 03:00:36 | 000,000,000 | --SD | C] -- C:\windows\SysWow64\GWX
[2015/04/05 03:00:36 | 000,000,000 | --SD | C] -- C:\windows\SysNative\GWX
[2015/04/02 19:59:14 | 006,337,032 | ---- | C] (Geek Uninstaller) -- C:\Users\USER\geek.exe
[2015/04/02 19:59:14 | 006,337,032 | ---- | C] (Geek Uninstaller) -- C:\Users\USER\Desktop\geek.exe
[1 C:\windows\SysNative\*.tmp files -> C:\windows\SysNative\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2015/04/21 10:08:09 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2015/04/21 10:08:06 | 3063,033,856 | -HS- | M] () -- C:\hiberfil.sys
[2015/04/21 09:43:00 | 000,000,690 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/04/21 09:10:00 | 000,000,626 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2015/04/21 08:36:08 | 000,000,518 | ---- | M] () -- C:\windows\tasks\BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B}.job
[2015/04/21 00:24:31 | 000,001,084 | ---- | M] () -- C:\Users\Public\Desktop\herdProtect.lnk
[2015/04/21 00:20:59 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\USER\Desktop\OTL.exe
[2015/04/20 20:44:13 | 000,019,024 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015/04/20 20:44:13 | 000,019,024 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015/04/20 20:36:00 | 000,000,350 | ---- | M] () -- C:\windows\tasks\WeatherTool_start_schedule_task.job
[2015/04/20 20:35:59 | 000,000,686 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/04/19 22:09:45 | 000,000,004 | ---- | M] () -- C:\Users\USER\AppData\Roaming\appdataFr2.bin
[2015/04/19 11:23:39 | 006,337,032 | ---- | M] (Geek Uninstaller) -- C:\Users\USER\Desktop\geek.exe
[2015/04/19 08:53:51 | 006,337,032 | ---- | M] (Geek Uninstaller) -- C:\Users\USER\geek.exe
[2015/04/18 22:44:15 | 000,000,793 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2015/04/18 14:06:27 | 000,098,216 | ---- | M] (Oracle Corporation) -- C:\windows\SysWow64\WindowsAccessBridge-32.dll
[2015/04/17 01:36:23 | 000,001,359 | ---- | M] () -- C:\Users\Public\Desktop\Paperman.lnk
[2015/04/16 20:50:04 | 000,002,001 | ---- | M] () -- C:\Users\Public\Desktop\TOSHIBA Bulletin Board.lnk
[2015/04/16 20:22:37 | 001,434,498 | ---- | M] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2015/04/16 20:22:37 | 000,712,760 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2015/04/16 20:22:37 | 000,447,702 | ---- | M] () -- C:\windows\SysNative\perfh011.dat
[2015/04/16 20:22:37 | 000,144,348 | ---- | M] () -- C:\windows\SysNative\perfc011.dat
[2015/04/16 20:22:37 | 000,144,266 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2015/04/16 20:22:27 | 001,434,498 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2015/04/15 21:32:05 | 000,002,681 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2015/04/15 19:35:34 | 000,236,080 | ---- | M] (Trend Micro Inc.) -- C:\windows\RegBootClean64.exe
[2015/04/15 06:10:10 | 000,778,416 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe
[2015/04/15 06:10:10 | 000,142,512 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
[2015/04/15 04:27:48 | 000,015,876 | ---- | M] () -- C:\windows\SysNative\ScanResults.xml
[2015/04/15 04:22:23 | 000,000,464 | ---- | M] () -- C:\windows\SysNative\ScannerSettings
[2015/03/25 12:24:41 | 003,298,816 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wucltux.dll
[2015/03/25 12:24:41 | 000,191,488 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wuwebv.dll
[2015/03/25 12:24:41 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wudriver.dll
[2015/03/25 12:24:41 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wups2.dll
[2015/03/25 12:24:41 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wups.dll
[2015/03/25 12:24:40 | 000,696,320 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wuapi.dll
[2015/03/25 12:24:08 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\WinSetupUI.dll
[2015/03/25 12:23:58 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wu.upgrade.ps.dll
[2015/03/25 12:23:55 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wuauclt.exe
[2015/03/25 12:23:55 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wuapp.exe
[2015/03/25 12:00:57 | 000,566,784 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\wuapi.dll
[2015/03/25 12:00:57 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\wuwebv.dll
[2015/03/25 12:00:57 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\wudriver.dll
[2015/03/25 12:00:57 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\wups.dll
[2015/03/25 12:00:15 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\wuapp.exe
[2015/03/23 12:25:15 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\generaltel.dll
[2015/03/23 12:25:01 | 000,769,536 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\invagent.dll
[2015/03/23 12:24:56 | 000,419,840 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\devinv.dll
[2015/03/23 12:24:54 | 000,957,952 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\appraiser.dll
[2015/03/23 12:24:53 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\aepdu.dll
[2015/03/23 12:24:53 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\aepic.dll
[2015/03/23 12:24:53 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\acmigration.dll
[2015/03/23 12:17:39 | 001,111,552 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\aeinv.dll
[1 C:\windows\SysNative\*.tmp files -> C:\windows\SysNative\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2015/04/21 00:24:31 | 000,001,084 | ---- | C] () -- C:\Users\Public\Desktop\herdProtect.lnk
[2015/04/20 13:16:13 | 000,000,518 | ---- | C] () -- C:\windows\tasks\BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B}.job
[2015/04/18 22:44:15 | 000,000,793 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2015/04/17 01:36:23 | 000,001,359 | ---- | C] () -- C:\Users\Public\Desktop\Paperman.lnk
[2015/04/16 20:50:04 | 000,002,001 | ---- | C] () -- C:\Users\Public\Desktop\TOSHIBA Bulletin Board.lnk
[2015/04/16 17:49:01 | 000,000,004 | ---- | C] () -- C:\Users\USER\AppData\Roaming\appdataFr2.bin
[2015/04/15 04:35:29 | 000,016,303 | ---- | C] () -- C:\windows\SysWow64\ieuinit.inf
[2015/04/15 04:35:27 | 000,016,303 | ---- | C] () -- C:\windows\SysNative\ieuinit.inf
[2015/04/12 00:12:50 | 000,015,876 | ---- | C] () -- C:\windows\SysNative\ScanResults.xml
[2015/04/12 00:08:48 | 000,000,464 | ---- | C] () -- C:\windows\SysNative\ScannerSettings
[2014/11/23 12:09:20 | 000,023,088 | ---- | C] () -- C:\windows\DCEBoot64.exe
[2014/06/26 14:04:31 | 000,000,020 | ---- | C] () -- C:\windows\SysWow64\hdmrs.bin
[2014/04/25 06:50:52 | 000,000,952 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2014/03/24 16:19:39 | 000,000,242 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2014/03/24 16:18:56 | 000,000,036 | ---- | C] () -- C:\Users\USER\AppData\Local\housecall.guid.cache
[2014/03/19 13:31:05 | 000,000,000 | ---- | C] () -- C:\windows\NDSTray.INI
[2014/03/19 13:19:57 | 001,434,498 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2014/03/19 13:05:47 | 000,006,798 | ---- | C] () -- C:\windows\TiltConfig.ini
[2014/03/19 13:03:49 | 000,451,072 | ---- | C] () -- C:\windows\SysWow64\ISSRemoveSP.exe

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009/07/14 13:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2015/02/13 14:22:33 | 014,177,280 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015/02/13 14:26:18 | 012,875,264 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 10:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 21:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 10:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2015/04/21 09:10:00 | 000,000,626 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2015/04/21 08:36:08 | 000,000,518 | ---- | M] () -- C:\windows\tasks\BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B}.job
[2015/04/20 20:35:59 | 000,000,686 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/04/21 09:43:00 | 000,000,690 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/04/20 20:36:00 | 000,000,350 | ---- | M] () -- C:\windows\tasks\WeatherTool_start_schedule_task.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: ST31000528AS
Partitions: 4
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: Unknown
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 1.00GB
Starting Offset: 1048576
Hidden sectors: 0

DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 864.00GB
Starting Offset: 1573912576
Hidden sectors: 0

DeviceID: Disk #0, Partition #2
PartitionType: Extended w/Extended Int 13
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 50.00GB
Starting Offset: 929796456448
Hidden sectors: 0

DeviceID: Disk #0, Partition #3
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 16.00GB
Starting Offset: 983483547648
Hidden sectors: 0

[color=#E56717]========== Base Services ==========[/color]
SRV:[b]64bit:[/b] - [2009/07/14 10:40:01 | 000,072,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:[b]64bit:[/b] - [2013/02/27 14:47:10 | 000,070,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2009/07/14 10:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:23 | 000,849,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2010/11/20 22:25:45 | 000,705,024 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2015/03/17 14:15:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
SRV:[b]64bit:[/b] - [2009/07/14 10:40:50 | 000,402,944 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2009/07/14 10:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:[b]64bit:[/b] - [2012/07/05 07:13:27 | 000,136,704 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:[b]64bit:[/b] - [2015/02/03 12:30:56 | 000,187,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV - [2015/02/03 12:12:14 | 000,143,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:24 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2010/11/20 22:26:04 | 000,317,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2010/11/20 21:18:30 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2011/03/03 15:24:16 | 000,183,296 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2009/07/14 10:40:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:00 | 000,038,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2009/07/14 10:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:10 | 000,359,424 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:[b]64bit:[/b] - [2010/11/20 22:26:39 | 000,501,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:[b]64bit:[/b] - [2009/07/14 10:41:54 | 000,524,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:26 | 000,067,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:52 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:52 | 000,459,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
SRV - [2009/07/14 10:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2014/12/06 13:17:27 | 000,303,616 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:53 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2011/05/24 20:42:55 | 000,404,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2012/02/11 15:36:02 | 000,559,104 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:[b]64bit:[/b] - [2015/03/17 14:15:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2009/07/14 10:41:53 | 000,099,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:24 | 000,344,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:24 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:25 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2015/03/17 14:15:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:58 | 000,097,280 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:26 | 000,236,032 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:25 | 000,370,688 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2010/11/20 21:21:19 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2010/11/20 22:27:25 | 001,110,016 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:26 | 000,316,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2010/11/20 21:21:28 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2014/12/19 12:06:55 | 000,210,432 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2010/11/20 22:25:27 | 001,600,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2015/02/03 12:30:55 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\audiosrv.dll -- (AudioSrv)
SRV:[b]64bit:[/b] - [2015/02/03 12:30:55 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\audiosrv.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:25 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:[b]64bit:[/b] - [2013/05/27 14:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:28 | 001,646,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (eventlog)
SRV:[b]64bit:[/b] - [2010/11/20 22:26:59 | 000,828,416 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:28 | 000,580,096 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2010/11/20 22:24:58 | 000,128,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2010/11/20 21:17:22 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:56 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2015/03/25 12:24:41 | 002,553,856 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2010/11/20 22:26:07 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:56 | 000,886,784 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:28 | 000,118,784 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

< End of report >

トッテくん
2015/04/21 (Tue) 10:57:50

返信フォームへ

Extras

OTL Extras logfile created on: 2015/04/21 10:10:40 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\USER\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17728)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

3.80 Gb Total Physical Memory | 2.83 Gb Available Physical Memory | 74.51% Memory free
7.61 Gb Paging File | 6.65 Gb Available in Paging File | 87.49% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 864.47 Gb Total Space | 649.27 Gb Free Space | 75.11% Space Free | Partition Type: NTFS
Drive D: | 50.00 Gb Total Space | 49.56 Gb Free Space | 99.12% Space Free | Partition Type: NTFS

Computer Name: USER-PC | User Name: USER | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]

[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-164824672-2091262678-2705287026-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]

[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04AB4B20-CF01-454E-9EEC-A130177ED9BA}" = lport=445 | protocol=6 | dir=in | app=system |
"{06570FFB-18E3-4490-A1A3-7C0EA2FFDA5D}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{0876EA6F-2672-48B4-89DC-0C05976FBFE4}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{0BE334ED-5071-4991-AAC1-7F06FFCA6FA4}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{199FA480-267D-4D84-B731-521EFAEE2CE6}" = rport=137 | protocol=17 | dir=out | app=system |
"{230F9610-7E2D-4477-A907-4ACBA979C613}" = rport=138 | protocol=17 | dir=out | app=system |
"{25B340DA-2165-4039-9906-3B36820E8C81}" = rport=139 | protocol=6 | dir=out | app=system |
"{2EC7E930-A3BD-4E1F-8767-EF09AEECB06E}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{33EDF8BF-9104-4F3F-AC93-8E2F49DCDE04}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{38F80303-2307-4332-BF3D-3A382CC5A7BA}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3CEE349A-ABD5-4BB6-B0A6-3DBD3F928587}" = lport=139 | protocol=6 | dir=in | app=system |
"{4CE866A8-881E-4182-AD6B-023B51BFCAD6}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{61C44CB6-ED7E-463A-AB60-FFFE990A2D61}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6DE0CF53-1191-4564-BDFE-DBB44C17393D}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{89361C71-5361-4E99-B6FF-097C5A09FA5D}" = lport=10243 | protocol=6 | dir=in | app=system |
"{894280A5-6CEF-4794-95D1-4FC5782E49B9}" = rport=445 | protocol=6 | dir=out | app=system |
"{9807915A-826F-45A4-9F4A-FDDCB0B91ECF}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{A413C198-3ECB-4426-80B4-02087A24D915}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A4856728-138B-4864-BA83-5F61E5850077}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{AB5962B1-A7DD-4CFD-B5A7-D5FEE44C86F1}" = lport=138 | protocol=17 | dir=in | app=system |
"{BC56A2D0-5B3B-46FD-B507-520997842692}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{C23BD65F-2855-4F7A-86ED-169343EC2427}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CA8340C6-001F-4259-B271-7557589CB4E1}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{E8B10B37-84ED-4AF1-978E-E0869EF03B9D}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E92401C8-33CC-409B-BB1E-B1FCBBE1BD67}" = lport=137 | protocol=17 | dir=in | app=system |
"{ECD7A27C-771D-4C3A-B508-8E6B1D7655B2}" = rport=10243 | protocol=6 | dir=out | app=system |
"{F445ABDB-8B98-45C1-A730-81EF2F151EA1}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0AD1243F-7BD7-4F59-84C9-88C6C28D2A29}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{17502CD7-4A9B-4F7C-B229-D78CCECCC314}" = protocol=6 | dir=in | app=c:\program files (x86)\toshiba\regzalinkdubbing\tosrzuav.exe |
"{18B941DA-1194-4145-A7DC-F808822F8E3A}" = dir=in | app=c:\program files (x86)\toshiba\regzalinkdubbing\tosrzuav.exe |
"{199A8237-2014-444F-951C-A2EB605FD325}" = protocol=6 | dir=out | app=system |
"{1B6EA568-811E-47BD-A09B-2B42325966A8}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{25B2535B-8D81-4BFE-ABB1-9D84D2DB3479}" = protocol=6 | dir=in | app=c:\program files (x86)\toshiba\regzalinkdubbing\tosrzdms.exe |
"{25ED73CC-BAAC-4880-8EB4-D053E1AAC3E3}" = protocol=6 | dir=in | app=c:\program files (x86)\toshiba\avapplication\ksearch\tosksearch.exe |
"{361E0BEC-7DE1-485E-8EE6-7F97729FF0B9}" = dir=in | app=c:\program files (x86)\toshiba\regzalinkdubbing\tosrzdms.exe |
"{3721E966-503B-4493-BBC2-93935174C75C}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{379B254F-93FA-42D9-946D-E8DA71642C0B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{3EFE1838-2558-4F8F-B028-FC3A420406FC}" = protocol=17 | dir=in | app=c:\program files (x86)\toshiba\avapplication\application\tavapp.exe |
"{40F7BE32-C9F6-414C-A668-D7F41E802CFD}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{4107DE3A-7ACE-498E-AFB4-124C6D3E2C0C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4627CD71-5C7F-4E0C-9520-22FE78537E5D}" = protocol=17 | dir=in | app=c:\programdata\nexonjp\ngm\ngm.exe |
"{4B78803A-38DF-46FE-B807-16313EF1C32D}" = protocol=17 | dir=in | app=c:\programdata\nexonjp\503\nmservice.exe |
"{55AEC50F-79E1-4805-B348-A98FC8DEC680}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{57FD3F34-72C6-4B7D-9CC5-F66E6B963433}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{5EE8326F-EE87-4B5D-9595-DE5475FFB295}" = protocol=6 | dir=in | app=c:\programdata\nexonjp\503\nmservice.exe |
"{65C981C2-0F2C-401C-8ADF-921E84323433}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{69227E45-DAEF-4ECD-B0BF-E412B872AC3A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6D3EB35D-6B55-4597-A6C6-5A3C4937CC8D}" = protocol=6 | dir=in | app=c:\programdata\nexonjp\ngm\ngm.exe |
"{74CBE744-F251-4A4B-B867-D68E67B5671B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7631BADA-BD1C-435F-8F68-50592DC90B84}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{7679E4CC-8384-422C-9E36-43173EDB3629}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7BBA7F74-7AF3-4592-81D5-B2ED6B6B0CAE}" = protocol=17 | dir=in | app=c:\program files (x86)\toshiba\regzalinkdubbing\tosrzuav.exe |
"{7D67A301-7E5A-44A2-861E-A4A7BF496F9D}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{80D01C73-CA5A-4F77-9E5F-F1CC79E0C5F8}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{8100313C-D37B-4D01-A576-4652CB2C78F9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{82A32C5A-F59A-48CD-A449-BB78A27C370D}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{831DE014-C486-462F-B5E9-8FC7EDA7C98B}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{8853837F-9713-4C4E-AA3E-7883CED416FE}" = protocol=17 | dir=in | app=c:\nexon\counter-strike online\bin\cstrike-online.exe |
"{8E74493E-2385-4AD4-B274-FCDCDBC3855E}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{963685B2-000D-42FC-BECC-26E0491171F3}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{A28EA886-863D-4C07-A35C-405BB4D50704}" = protocol=6 | dir=in | app=c:\program files (x86)\toshiba\avapplication\application\tavapp.exe |
"{A64C02A6-30B0-4B41-A228-CBACFE648389}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A8A909E2-0DC5-4668-BCBF-47F5A1173CC1}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{AE1AA5D1-0339-4754-9A68-68FFD0819D90}" = protocol=6 | dir=in | app=c:\program files (x86)\toshiba\avapplication\application\tavlauncher.exe |
"{B500A268-D944-453D-ADAD-71BC1B3FBF45}" = dir=in | app=c:\program files (x86)\cyberlink\softdma\softdma.exe |
"{B5C76AAD-C7C1-4169-89DD-2E540C54EE95}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{C0962D9D-103E-43EF-88E9-1698C81391F0}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{C66B8AEF-1074-4A34-8A83-0BD4C29272C4}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{CB3E1567-7AB4-42EA-92EC-8F26F8CC1853}" = dir=in | app=c:\users\user\appdata\local\microsoft\skydrive\skydrive.exe |
"{E49AD556-CBAE-4D8F-953F-70F100B66552}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E6A805D6-2827-46C7-8044-B4DAC556A1DA}" = protocol=6 | dir=in | app=c:\program files (x86)\toshiba\avapplication\application\tavscheduler.exe |
"{E9D670D3-3977-46A7-8D38-180D579C027E}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{E9FCFB82-6918-400A-9D83-0551F0C8AE3B}" = protocol=17 | dir=in | app=c:\program files (x86)\toshiba\avapplication\ksearch\tosksearch.exe |
"{EA8ACFD0-FC34-45FF-A1E8-03DB4D4DF422}" = protocol=6 | dir=in | app=c:\nexon\counter-strike online\bin\cstrike-online.exe |
"{EC57B21C-68B4-44D1-BF47-449963187BFF}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{EC8B982C-F709-47CC-B28D-89C3F7ED123A}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{ECD60444-8B3F-423C-BBA8-F8BB6A9915CB}" = protocol=17 | dir=in | app=c:\program files (x86)\toshiba\avapplication\application\tavlauncher.exe |
"{F37419BE-08AB-4969-BBFD-F9E0F1DDC9D7}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{FB2C5D79-65A4-4B80-A735-B4E93AEB6CFD}" = protocol=17 | dir=in | app=c:\program files (x86)\toshiba\avapplication\application\tavscheduler.exe |
"TCP Query User{6EF88756-89B4-45D7-8094-4A271F9444FC}C:\gamepot\paperman\paperman.exe" = protocol=6 | dir=in | app=c:\gamepot\paperman\paperman.exe |
"TCP Query User{7999B975-DAED-4E6A-B005-0C8F946BC6CF}C:\program files (x86)\libreoffice 4\program\soffice.bin" = protocol=6 | dir=in | app=c:\program files (x86)\libreoffice 4\program\soffice.bin |
"TCP Query User{BCF881B7-7791-4C02-AA29-BE78537CEDC3}C:\gamepot\paperman\paperman.exe" = protocol=6 | dir=in | app=c:\gamepot\paperman\paperman.exe |
"TCP Query User{F98E4875-F8B1-470F-A89A-3FD28C389B1E}C:\nexon\suddenattack\suddenattack.exe" = protocol=6 | dir=in | app=c:\nexon\suddenattack\suddenattack.exe |
"UDP Query User{26DD87FA-2A9A-457B-A4D4-EC1E23D96666}C:\nexon\suddenattack\suddenattack.exe" = protocol=17 | dir=in | app=c:\nexon\suddenattack\suddenattack.exe |
"UDP Query User{6027EFA8-4056-4EA0-8461-CCF00347C6F8}C:\gamepot\paperman\paperman.exe" = protocol=17 | dir=in | app=c:\gamepot\paperman\paperman.exe |
"UDP Query User{9A0B84A2-43FE-47B0-80FC-0CADEE28A4F0}C:\gamepot\paperman\paperman.exe" = protocol=17 | dir=in | app=c:\gamepot\paperman\paperman.exe |
"UDP Query User{A504E2E8-0E23-4451-8F4C-5C88DB97B0E1}C:\program files (x86)\libreoffice 4\program\soffice.bin" = protocol=17 | dir=in | app=c:\program files (x86)\libreoffice 4\program\soffice.bin |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP493_series" = Canon MP493 series MP Drivers
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{229C190B-7690-40B7-8680-42530179F3E9}" = TOSHIBA Bulletin Board
"{24811C12-F4A9-4D0F-8494-A7B8FE46123C}" = TOSHIBA ReelTime
"{25058321-C33E-496B-8915-6FD64D362CAF}" = Windows Live MIME IFilter
"{26784146-6E05-3FF9-9335-786C7C0FB5BE}" = Microsoft .NET Framework 4.5.2
"{2825F922-4B1C-4243-BD75-2BECE8225385}" = Microsoft SQL Server Native Client
"{28791292-D18D-42FA-AE66-3D3D20AA8618}" = Apple Application Support（64 ビット）
"{309768A4-A2BB-4930-A5A2-8169678C9B4C}" = iCloud
"{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator
"{5ED7462B-EF58-4757-B609-53755021EC34}" = Apple Mobile Device Support
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{63B4D665-34F5-333A-BE00-6DDE0CBD4A6C}" = Microsoft .NET Framework 4.5.2 (JPN)
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{753CE8CF-B752-4BB9-AD7B-EA5F0C54A8BC}" = Microsoft SQL Server VSS Writer
"{7B8D4E8A-EA2B-4A71-BFEB-A4AAAB87C5D0}" = iTunes
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0016-0411-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Japanese) 2010
"{90140000-0018-0411-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Japanese) 2010
"{90140000-001A-0411-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Japanese) 2010
"{90140000-001B-0411-1000-0000000FF1CE}" = Microsoft Office Word MUI (Japanese) 2010
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0411-1000-0000000FF1CE}" = Microsoft Office Proof (Japanese) 2010
"{90140000-0028-0411-0000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2010
"{90140000-0028-0411-1000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2010
"{90140000-002C-0411-1000-0000000FF1CE}" = Microsoft Office Proofing (Japanese) 2010
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0411-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Japanese) 2010
"{90140000-006E-0411-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Japanese) 2010
"{90140000-00A1-0411-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Japanese) 2010
"{91140000-0013-0000-1000-0000000FF1CE}" = Microsoft Office Essentials 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1041" = Microsoft .NET Framework 4.5.2 (日本語)
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-007A-0411-1000-0000000FF1CE}" = Microsoft Outlook Hotmail Connector 64 ビット
"{95140000-0119-0411-1000-0000000FF1CE}" = Microsoft Office ナビ 2010
"{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}" = TOSHIBA PC Health Monitor
"{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}" = セキュリティ対策ツール
"{ABBD4BA9-6703-40D2-AB1E-5BB1F7DB49A4}" = Trend Micro Titanium
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA ecoユーティリティ
"{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}" = TOSHIBA Recovery Media Creator
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{BE2E6D8B-2916-412E-96FA-2CFAF6ADAD74}" = TOSHIBA Gesture Controller
"{CB3CA48C-95CB-412B-B7AE-6F2EA8F89907}" = Windows Live Family Safety
"{CE52672C-A0E9-4450-8875-88A221D5CD50}" = Windows Live ID Sign-in Assistant
"{D2837730-4960-3B35-8088-201387FD3BDB}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - JPN
"{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = 東芝HDD/SSDアラータ
"{D84217C5-AD77-4B53-A81A-1D0582E84DAB}" = dynabookランチャー
"{E2C24FE1-C6BB-4A4B-8B7F-BF2521DEB91E}" = Share64
"{E9FA781F-3E80-4399-825A-AD3E11C28C77}" = MSVCRT110_amd64
"{F67FA545-D8E5-4209-86B1-AEE045D1003F}" = TOSHIBA Face Recognition
"CCleaner" = CCleaner
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - JPN" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語
"Office14.EssentialsR" = Microsoft Office 2010
"WeatherTool" = The Desktop Weather 1.0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{E185BD5C-0E10-479F-AF44-63D3A068446A}" = Corel Digital Studio SE
"{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}" = Windows Live UX Platform
"{024D6C9E-4775-421D-B0D0-D4F123687778}" = Windows Live Essentials
"{04BE4035-3C8E-4B48-BFB8-1655849C0C8B}" = Windows Live Writer
"{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package
"{07AAB66E-4718-422D-9218-4AFB3C922A71}" = Photo Gallery
"{0BE9E708-5DC0-4963-9CFD-0AA519090E79}" = Junk Mail filter update
"{0D795777-9D60-4692-8386-F2B3F2B5E5BF}" = Label@Once 1.0
"{0ECDB550-79ED-4E9E-851B-19A8B2B4EBFA}" = LibreOffice 4.2.2.1
"{139C06F6-2DC5-485F-B34A-D333AA122379}" = セキュリティ申込・設定ツール
"{166799F1-5C97-404A-9EAF-EDF17835713E}" = Microsoft SQL Server 2005 Express Edition (QOSMIOAVCENTER30)
"{16D3A547-A165-4878-9A04-492BB7F56BAC}" = TOSHIBA Hardware Setup
"{190B5883-77C9-4738-8F0D-573076AE3E2F}" = レグザリンク・ダビング
"{197A93CC-BE6B-40CD-B322-8EFD3574AF9D}" = Qosmio AV Center
"{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}" = Windows Live Photo Common
"{21357E10-BDCB-4CDD-B2A3-905DD7ED653D}_is1" = DigiBookBrowser Version 1.5.1.4
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype(TM) 7.3
"{25A48104-B45E-455D-AF0C-71F869AEC719}" = Windows Live Family Safety
"{26A24AE4-039D-4CA4-87B4-2F83218045F0}" = Java 8 Update 45
"{2768E455-F18B-4765-9345-3170994BA63A}" = TOSHIBA Quad Core HD Processor Video Convert Library
"{286B5435-9A16-4A06-8E56-87E7EC4E1315}" = dynabookランチャー用バナー
"{2C303EE0-A595-3543-A71A-931C7AC40EDE}" = Microsoft Primary Interoperability Assemblies 2005
"{2FE00055-C4F3-4F7A-AEDD-E198D54CF12F}" = Apple Application Support（32 ビット）
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}" = QuickTime 7
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3FBF6F99-8EC6-41B4-8527-0A32241B5496}" = Toshiba Speech System NLS TTS Engine(U.S.) Version1.0
"{402ED4A1-8F5B-387A-8688-997ABF58B8F2}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{41C61308-6CFD-4D54-AB6A-7136ED08A18E}" = Windows Live Communications Platform
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A337D61-EF2A-42D2-931C-5C00B67A1417}" = Qosmio AV Center
"{51F0CC36-5EB0-4B9E-8F97-6AE9AD81BD7A}" = PCあんしん点検ユーティリティ
"{52D7E962-5F17-4D7E-858F-956EB09A5CB8}" = Windows Live Writer
"{5705EC66-E894-454D-A014-ADF1DF920C10}" = いつもNAVI PC
"{5E848897-1113-49FE-8FCE-D4BF39EDE254}" = Windows Live UX Platform Language Pack
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{654F7484-88C5-46DC-AB32-C66BCB0E2102}" = TOSHIBA Sleep Utility
"{659CB81C-B54E-4DF1-B618-F35777393A54}" = Windows Live Installer
"{6B1BB7E3-CF20-4842-B1FE-42C251B95E98}" = Windows Live Messenger
"{6C5F3BDC-0A1B-4436-A696-5939629D5C31}" = TOSHIBA DVD PLAYER
"{6D1221A9-17BF-4EC0-81F2-27D30EC30701}" = Skype Click to Call
"{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}" = TOSHIBA Web Camera Application
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{714E162E-CD4F-4F1B-8302-7F5179409C25}" = Windows Live Writer
"{72C24C23-C53D-11D4-88AB-00809880EBD8}" = TOSHIBA Speech Engines Version V9.50
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7E4CB404-F1E4-4E81-A1CB-2CBB310481D1}" = MLE
"{80F696E0-AB85-433E-99E3-8CC6D98CF167}" = TOSHIBA ConfigFree
"{81883FD2-24E3-409E-A07C-5391E55FE21C}" = おたすけナビ
"{85EB368E-30BD-48B5-BDA8-8DE54A9CFFF6}" = Microsoft SQL Server 2005 Tools Express Edition
"{8941893C-32A6-4C03-A71B-DA72A715F5DC}" = Microsoft SQL Server セットアップサポートファイル (英語)
"{8C876A25-6842-4569-9900-E5D696135E30}" = TOSHIBA Supervisor Password
"{8CD72E4A-8FC6-4E7B-BC19-7EA45A6FBC8F}" = PC引越ナビ
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110
"{8E6734E6-E75A-40F4-BCE8-8CCF5DB48A76}" = 動画で解決！操作ガイド－コンテンツ－
"{8EA12696-D38C-44DD-96E5-12C8DF6F8230}" = Windows Live Writer Resources
"{97E3AE69-8FB1-496A-8CA0-AE491902DCD7}" = Movie Maker
"{9999B571-2B39-41D3-B011-A8A485458412}" = レグザリンク・ダビング
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D3D8C60-A55F-4fed-B2B9-173001290E16}" = Realtek WLAN Driver
"{A162AF3F-7908-44E1-A072-67FB887A9517}" = スタートアップツール
"{A190562C-BD9C-49CD-8C52-944A5256062E}" = Toshiba Wireless HID driver
"{A817E01C-0EFB-4DCF-8F49-1B6B5EEDEF94}" = PapermanClient
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA4BF92B-2AAF-11DA-9D78-000129760D75}" = SoftDMA
"{AB4E38F1-DECF-4CBA-B784-BCD13A56CDAC}" = ebi.BookReader3J
"{AC6569FA-6919-442A-8552-073BE69E247A}" = TOSHIBA Service Station
"{B19AC6F9-6B60-431D-AC74-18F1998F35C8}" = TOSHIBA 無線LANらくらく設定
"{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}" = Windows Live PIMT Platform
"{B36C4ACE-2219-464C-9F3F-06C6058731F8}" = パソコンで見るマニュアル
"{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA ecoユーティリティ
"{B5F9E7FC-12BA-4311-9F09-0B32F5FC910F}" = TOSHIBA SD-Video PLAYER
"{B775C26B-EAA8-4A11-ACBF-76E52DF6B805}" = Windows Live Mail
"{C1594429-8296-4652-BF54-9DBE4932A44C}" = Realtek PCIE Card Reader
"{C21D8176-EC78-484D-B702-DD963329EEF8}" = ぱらちゃんV2.3
"{C4EA8443-092F-4818-8B5D-B8E25CC91135}" = TOSHIBA Speech System MT Engine Version 9.0
"{C7A4F26F-F9B0-41B2-8659-99181108CDE3}" = TOSHIBA Media Controller
"{C8FEB019-F2E1-4E8F-886E-AB5C68FE531C}" = Windows Live メール
"{CA9E81B1-BF96-47A1-9AD4-7EF3884370CB}" = dynabook Portal Gadget
"{CCF62642-ECB1-4D2B-80C0-3FD3286AEAED}" = 東芝ファイル同期ユーティリティ
"{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}" = Windows Live SOXE
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D1893000-EA77-493C-8DDD-E262436E959B}" = Windows Live SOXE Definitions
"{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = 東芝HDD/SSDアラータ
"{D589534D-59E9-4833-B867-C8E7008D7ACC}" = おまかせフォトムービー
"{D6D69EE4-00F6-4DCE-B7AF-E90042BDE39B}" = フォトギャラリー
"{DB89C8D2-C509-4000-A132-78F1D445ED69}" = 動画で学ぶシリーズ
"{DD67BE4B-7E62-4215-AFA3-F123A800A389}" = Movie Maker
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1754ED2-CD39-4F5F-AC98-0271EAE1C116}" = Setup
"{E185BD5C-0E10-479F-AF44-63D3A068446A}" = ICA
"{E24A5C1E-8647-43FD-838B-DF7149D492E4}" = DeviceIO
"{E2C2F547-4C5B-45F9-8445-C59E223CCB08}" = ContentHD
"{E3C1C994-CA69-4B3C-A290-C311617DE271}" = Contents
"{E5636C06-A318-4CF3-803B-5BD9F5C10822}" = PureHD
"{E5D50A9A-B973-46DE-89E4-8BDDD8A9F988}" = Share
"{E6ABA0E9-65E7-4366-9770-514ED4341611}" = VIO
"{E703613B-BDAB-433E-A66A-DE0263E3D35D}" = Windows Live Messenger
"{E7EFA8C8-4CDE-4466-8E0E-01C04589ED90}" = ISCOM
"{E91C1011-2083-4DD6-858D-11753DCDFF2D}" = Corel Direct DiscRecorder
"{E9AEE804-7A6F-461A-A99A-DDDB58B75607}" = 動画で解決！操作ガイド
"{EA6625D5-E563-4FE3-8D98-B3F5B64CBC67}" = IPM_OEM
"{EDD9E0C4-B402-40DF-B33D-405CA1E23BA6}" = DFPro
"{EFCD79EC-BC89-46F5-9256-B487CD7E7812}" = FlipViewer 4.5
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}" = TOSHIBA Media Controller Plug-in
"{F2D4D3FE-BE05-4162-8BD6-49302B5399FE}" = LoiLoScope
"{F302B04E-C7B3-11D4-88AB-00809880EBD8}" = LaLaVoice V9.60
"{F3BB7E2D-62E0-4008-8727-588EDC274C25}" = Photo Common
"{FBC79D04-051E-4367-8051-1DB0C893FBE0}" = Nuvoton CIR Device Drivers
"{FEB650EB-7639-444E-9FC2-C33EE6ED1A37}" = TOSHIBA Remote Control Manager
"Adobe Flash Player ActiveX" = Adobe Flash Player 17 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 17 NPAPI
"ebi.SampleContents_is1" = ebi.SampleContents
"Google Chrome" = Google Chrome
"herdProtectScan" = herdProtect Anti-Malware Scanner
"InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package
"InstallShield_{229C190B-7690-40B7-8680-42530179F3E9}" = TOSHIBA Bulletin Board
"InstallShield_{24811C12-F4A9-4D0F-8494-A7B8FE46123C}" = TOSHIBA ReelTime
"InstallShield_{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}" = TOSHIBA Web Camera Application
"InstallShield_{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA ecoユーティリティ
"InstallShield_{BE2E6D8B-2916-412E-96FA-2CFAF6ADAD74}" = 東芝ジェスチャコントローラ
"InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = 東芝HDD/SSDアラータ
"InstallShield_{E91C1011-2083-4DD6-858D-11753DCDFF2D}" = Corel Direct DiscRecorder 3.7
"InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}" = TOSHIBA Face Recognition
"LINE" = LINE
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"RemoteToolGuider.west_is1" = NTT西日本リモートサポートツール
"WinLiveSuite" = Windows Live Essentials
"Yahoo!Jツールバー" = Yahoo!ツールバー
"診断復旧ツール_is1" = 診断復旧ツール

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-164824672-2091262678-2705287026-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"OneDriveSetup.exe" = Microsoft OneDrive

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2014/09/28 18:44:49 | Computer Name = USER-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: MAPLESTORY.EXE、バージョン: 3.332.0.0、タイムスタンプ: 0x54216272
障害が発生しているモジュール名:
MAPLESTORY.EXE、バージョン: 3.332.0.0、タイムスタンプ: 0x54216272 例外コード: 0xc0000005 障害オフセット: 0x01082a5b
障害が発生しているプロセス
ID: 0xd40 障害が発生しているアプリケーションの開始時刻: 0x01cfdb0981bb46c8 障害が発生しているアプリケーションパス: C:\Nexon\MapleStory\MAPLESTORY.EXE
障害が発生しているモジュール
パス: C:\Nexon\MapleStory\MAPLESTORY.EXE レポート ID: 0d253366-4761-11e4-8568-00266cb41c05

Error - 2014/09/29 11:29:14 | Computer Name = USER-PC | Source = Application Hang | ID = 1002
Description = プログラム MapleStory.exe バージョン 3.332.0.0 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、アクション
センターコントロールパネルで、問題の履歴をクリックしてください。プロセス ID: 1af8 開始時刻: 01cfdbcbb6280845 終了時刻: 0 アプリケーション
パス: C:\Nexon\MapleStory\MapleStory.exe レポート ID: 4031e5d7-47ed-11e4-b5c8-00266cb41c05

Error - 2014/09/29 13:06:28 | Computer Name = USER-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: MAPLESTORY.EXE、バージョン: 3.332.0.0、タイムスタンプ: 0x54216272
障害が発生しているモジュール名:
MAPLESTORY.EXE、バージョン: 3.332.0.0、タイムスタンプ: 0x54216272 例外コード: 0xc0000005 障害オフセット: 0x01082a5b
障害が発生しているプロセス
ID: 0x1118 障害が発生しているアプリケーションの開始時刻: 0x01cfdbfa28691924 障害が発生しているアプリケーションパス: C:\Nexon\MapleStory\MAPLESTORY.EXE
障害が発生しているモジュール
パス: C:\Nexon\MapleStory\MAPLESTORY.EXE レポート ID: f311b016-47fa-11e4-b5c8-00266cb41c05

Error - 2014/09/30 8:39:16 | Computer Name = USER-PC | Source = Application Hang | ID = 1002
Description = プログラム MapleStory.exe バージョン 3.332.0.0 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、アクション
センターコントロールパネルで、問題の履歴をクリックしてください。プロセス ID: 1bf4 開始時刻: 01cfdc89a70ef846 終了時刻: 273 アプリケーション
パス: C:\Nexon\MapleStory\MapleStory.exe レポート ID: bb08e539-489e-11e4-a940-00266cb41c05

Error - 2014/10/02 13:05:06 | Computer Name = USER-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: MAPLESTORY.EXE、バージョン: 3.332.0.0、タイムスタンプ: 0x54216272
障害が発生しているモジュール名:
MAPLESTORY.EXE、バージョン: 3.332.0.0、タイムスタンプ: 0x54216272 例外コード: 0xc0000005 障害オフセット: 0x01082a5b
障害が発生しているプロセス
ID: 0x14dc 障害が発生しているアプリケーションの開始時刻: 0x01cfde218966f029 障害が発生しているアプリケーションパス: C:\Nexon\MapleStory\MAPLESTORY.EXE
障害が発生しているモジュール
パス: C:\Nexon\MapleStory\MAPLESTORY.EXE レポート ID: 419e8f9e-4a56-11e4-ab6c-00266cb41c05

Error - 2014/10/03 10:45:38 | Computer Name = USER-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: MAPLESTORY.EXE、バージョン: 3.332.0.0、タイムスタンプ: 0x54216272
障害が発生しているモジュール名:
MAPLESTORY.EXE、バージョン: 3.332.0.0、タイムスタンプ: 0x54216272 例外コード: 0xc0000005 障害オフセット: 0x01082a5b
障害が発生しているプロセス
ID: 0x2098 障害が発生しているアプリケーションの開始時刻: 0x01cfdefafba8800f 障害が発生しているアプリケーションパス: C:\Nexon\MapleStory\MAPLESTORY.EXE
障害が発生しているモジュール
パス: C:\Nexon\MapleStory\MAPLESTORY.EXE レポート ID: f072d8bb-4b0b-11e4-ab6c-00266cb41c05

Error - 2014/10/04 8:58:34 | Computer Name = USER-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: MAPLESTORY.EXE、バージョン: 3.332.0.0、タイムスタンプ: 0x54216272
障害が発生しているモジュール名:
MAPLESTORY.EXE、バージョン: 3.332.0.0、タイムスタンプ: 0x54216272 例外コード: 0xc0000005 障害オフセット: 0x01082a5b
障害が発生しているプロセス
ID: 0xfec 障害が発生しているアプリケーションの開始時刻: 0x01cfdfa970c49380 障害が発生しているアプリケーションパス: C:\Nexon\MapleStory\MAPLESTORY.EXE
障害が発生しているモジュール
パス: C:\Nexon\MapleStory\MAPLESTORY.EXE レポート ID: 258b3f99-4bc6-11e4-887f-00266cb41c05

Error - 2014/10/05 3:29:31 | Computer Name = USER-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: MAPLESTORY.EXE、バージョン: 3.332.0.0、タイムスタンプ: 0x54216272
障害が発生しているモジュール名:
MAPLESTORY.EXE、バージョン: 3.332.0.0、タイムスタンプ: 0x54216272 例外コード: 0xc0000005 障害オフセット: 0x01082a5b
障害が発生しているプロセス
ID: 0x11dc 障害が発生しているアプリケーションの開始時刻: 0x01cfe043a9285a18 障害が発生しているアプリケーションパス: C:\Nexon\MapleStory\MAPLESTORY.EXE
障害が発生しているモジュール
パス: C:\Nexon\MapleStory\MAPLESTORY.EXE レポート ID: 582f346e-4c61-11e4-aecd-00266cb41c05

Error - 2014/10/10 20:24:29 | Computer Name = USER-PC | Source = RasClient | ID = 20227
Description =

Error - 2014/10/10 20:24:56 | Computer Name = USER-PC | Source = RasClient | ID = 20227
Description =

[ Media Center Events ]
Error - 2014/10/10 15:47:00 | Computer Name = USER-PC | Source = MCUpdate | ID = 0
Description = 4:46:59 - インターネットの接続中にエラーが発生しました。 4:46:59 - サーバーと通信できません。.

Error - 2014/10/10 16:47:05 | Computer Name = USER-PC | Source = MCUpdate | ID = 0
Description = 5:47:04 - インターネットの接続中にエラーが発生しました。 5:47:04 - サーバーと通信できません。.

Error - 2014/10/10 17:47:10 | Computer Name = USER-PC | Source = MCUpdate | ID = 0
Description = 6:47:09 - インターネットの接続中にエラーが発生しました。 6:47:09 - サーバーと通信できません。.

Error - 2014/12/09 5:25:09 | Computer Name = USER-PC | Source = MCUpdate | ID = 0
Description = 18:25:08 - MCEClientUX を取得できませんでした (エラー: リモートサーバーに接続できません。)

Error - 2014/12/09 6:25:41 | Computer Name = USER-PC | Source = MCUpdate | ID = 0
Description = 19:25:38 - MCEClientUX を取得できませんでした (エラー: リモートサーバーに接続できません。)

Error - 2014/12/10 5:36:42 | Computer Name = USER-PC | Source = MCUpdate | ID = 0
Description = 18:36:42 - ClientUpdate を取得できませんでした (エラー: リモートサーバーに接続できません。)

Error - 2014/12/12 5:42:05 | Computer Name = USER-PC | Source = MCUpdate | ID = 0
Description = 18:42:04 - MCEClientUX を取得できませんでした (エラー: リモートサーバーに接続できません。)

Error - 2014/12/30 8:55:10 | Computer Name = USER-PC | Source = MCUpdate | ID = 0
Description = 21:55:10 - MCESpotlight を取得できませんでした (エラー: リモートサーバーに接続できません。)

Error - 2014/12/30 8:55:25 | Computer Name = USER-PC | Source = MCUpdate | ID = 0
Description = 21:55:24 - MCEClientUX を取得できませんでした (エラー: リモートサーバーに接続できません。)

Error - 2015/02/03 5:36:06 | Computer Name = USER-PC | Source = MCUpdate | ID = 0
Description = 18:36:06 - Directory を取得できませんでした (エラー: 基礎になる接続が閉じられました: SSL/TLS のセキュリティで保護されているチャネルに対する信頼関係を確立できませんでした)

[ System Events ]
Error - 2015/04/20 21:08:30 | Computer Name = USER-PC | Source = DCOM | ID = 10005
Description =

Error - 2015/04/20 21:08:30 | Computer Name = USER-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/04/20 21:08:30 | Computer Name = USER-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/04/20 21:08:37 | Computer Name = USER-PC | Source = DCOM | ID = 10005
Description =

Error - 2015/04/20 21:08:38 | Computer Name = USER-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/04/20 21:08:38 | Computer Name = USER-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/04/20 21:08:38 | Computer Name = USER-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/04/20 21:08:38 | Computer Name = USER-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/04/20 21:08:38 | Computer Name = USER-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/04/20 21:08:38 | Computer Name = USER-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

< End of report >

トッテくん
2015/04/21 (Tue) 11:03:42

返信フォームへ

OTLで処置を

ログを確認したところ、色々と出てきましたので、OTLで処置を行いましょう。
ただこのOTLは気まぐれで、なかなか正常に処置を行ってくれません。
その場合は最大3回ほど処置を行っていただく形になりますが、ご了承ください。

HPは不要ですので、導入時の指示に従って削除なされてください。

メモ帳を起動させ、以下をコピペしてください。
なお、:OTL、:Files、:Commands等はOTLでの処理方法を決める命令文です。
削除なされないようご注意ください。

------コピペこの下より------
:OTL
DRV:[b]64bit:[/b] - [2014/03/17 18:04:00 | 000,168,664 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mkd3kfnt.sys -- (Mkd3kfNt)
DRV:[b]64bit:[/b] - [2014/02/24 11:22:00 | 000,098,520 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2BthF.sys -- (Mkd2Bthf)
DRV:[b]64bit:[/b] - [2014/02/24 11:21:00 | 000,112,856 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2Nadr.sys -- (Mkd2Nadr)
[2015/04/20 13:06:35 | 000,000,000 | ---D | C] -- C:\Users\USER\AppData\Roaming\Malwarebytes
[2015/04/20 13:05:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/04/19 21:45:17 | 000,000,000 | ---D | C] -- C:\Users\USER\AppData\Roaming\Baidu
[2015/04/19 21:45:17 | 000,000,000 | ---D | C] -- C:\ProgramData\baidu
[2015/04/19 21:45:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Baidu
[2015/04/21 08:36:08 | 000,000,518 | ---- | M] () -- C:\windows\tasks\BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B}.job

:Files
%userprofile%\appdata\local\temp
%userprofile%\downloads\flvplayersetup.exe
c:\program files\common files\mcafee

:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{8E74493E-2385-4AD4-B274-FCDCDBC3855E}"=-
"{E9D670D3-3977-46A7-8D38-180D579C027E}"=-

:Commands
[purity]
[resethosts]
[emptyflash]
[emptyjava]
[emptytemp]
[createrestorepoint]
[reboot]
------コピペこの上まで------

コピペが完了しましたら、分かりやすいお名前をつけて保存してください。
その後、PCをセーフモードで起動させてください。
再度OTLを起動させ、Custom Scan/Fixesの項目内に上記で保存した内容をコピペしてください。
今回は駆除作業のため、その他のチェック項目はありません。
赤い文字の[Run Fix]をクリックして処置を開始してください。
OTLの処置に従って進めてゆき、通常モードで再起動を行う前後いずれかに処置ログが表示されますので、
そちらのログを貼り付けてご連絡ください。
またその際に状況報告もお願いいたします。

IVNO
MAIL
2015/04/21 (Tue) 15:08:55

返信フォームへ

Re: 困っています。お願いします

長かったので大変だったと思います。改めていろいろとありがとうございます。ログ確認お疲れ様です。

作業完了しました。

状況報告はどういった感じのでしょうか？
今のところ問題や異常等はないです。　広告の方も作業開始の初期に1,2回出てそれ以降出ていません。

こちらはログです。

All processes killed
========== OTL ==========
Service Mkd3kfNt stopped successfully!
Service Mkd3kfNt deleted successfully!
C:\Windows\SysNative\drivers\mkd3kfnt.sys moved successfully.
Service Mkd2Bthf stopped successfully!
Service Mkd2Bthf deleted successfully!
C:\Windows\SysNative\drivers\Mkd2BthF.sys moved successfully.
Service Mkd2Nadr stopped successfully!
Service Mkd2Nadr deleted successfully!
C:\Windows\SysNative\drivers\Mkd2Nadr.sys moved successfully.
C:\Users\USER\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\Users\USER\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Users\USER\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Users\USER\AppData\Roaming\Malwarebytes folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Configuration folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\ProgramData\Malwarebytes folder moved successfully.
C:\Users\USER\AppData\Roaming\Baidu\UpdatePlatform\dump folder moved successfully.
C:\Users\USER\AppData\Roaming\Baidu\UpdatePlatform folder moved successfully.
C:\Users\USER\AppData\Roaming\Baidu folder moved successfully.
C:\ProgramData\baidu\update\download folder moved successfully.
C:\ProgramData\baidu\update folder moved successfully.
C:\ProgramData\baidu folder moved successfully.
C:\Program Files (x86)\Baidu\update\x64 folder moved successfully.
C:\Program Files (x86)\Baidu\update folder moved successfully.
C:\Program Files (x86)\Baidu folder moved successfully.
C:\Windows\Tasks\BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B}.job moved successfully.
========== FILES ==========
C:\Users\USER\appdata\local\Temp\~nsu.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\{FC92BDC9-76D1-4205-92E6-061521986B9F} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{FB09B081-89FB-4E28-9516-E4CAE61E3CB4} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{F6827C23-D89B-4F83-89E4-A6F888642F70} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{F26FC0AF-33A0-4562-A146-3E3E1B65F154} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{E66001B8-F9F6-4C2E-8606-7C66DC73A618}\Disk1\old folder moved successfully.
C:\Users\USER\appdata\local\Temp\{E66001B8-F9F6-4C2E-8606-7C66DC73A618}\Disk1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{E66001B8-F9F6-4C2E-8606-7C66DC73A618} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{DD13CB51-3144-4D87-A338-FFAA9E9DB0D5} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{DB5295CD-10A9-4D38-A0BE-B49FD57D81B2} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{DA46F823-4574-4734-97F2-00D7CED0962C} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{D9FBD332-B0E7-41E6-89F4-D0A515C90789} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{d879e580-fff0-40f8-ac19-a832c2516ddc} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{d5be9956-1165-41d4-96fa-7eff7024716f} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{C293A416-4DAB-4FC6-AD72-B2E83B1EB8CE}\Disk1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{C293A416-4DAB-4FC6-AD72-B2E83B1EB8CE} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{BFD2A509-1C2E-4A44-9391-74F5046828B2} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{BF24421F-D413-4F0E-A246-01DBCE084A74}\{9999B571-2B39-41D3-B011-A8A485458412} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{BF24421F-D413-4F0E-A246-01DBCE084A74} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{B771B2E4-E626-4D60-90A9-FD8D819D76A5} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{B4D5AAE4-86B0-465F-96E1-DCB645C229E0}\Disk1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{B4D5AAE4-86B0-465F-96E1-DCB645C229E0} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{B1ADD62C-11A1-4193-BB74-F6D88AA10278}\Disk1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{B1ADD62C-11A1-4193-BB74-F6D88AA10278} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{ADF5E788-84B3-42FF-972F-ABE073952FFB} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{AC76BA86-7AD7-1041-7B44-A95000000001} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{ABDE8252-9713-4575-BB47-F8E2B47E5E9F} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{A969FEDB-AC92-4B33-A9D4-71010C00FFA0}\Disk1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{A969FEDB-AC92-4B33-A9D4-71010C00FFA0} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{A8CC52FC-8C59-4487-AB85-11A25E268991} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{9a28ae17-d44d-410d-95dc-bcef37f53feb} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{999d4151-1258-4e9d-aebe-4e1fef677fac} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{90A24E52-ECF7-47AF-8EB9-47DE3DECB473}\Disk1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{90A24E52-ECF7-47AF-8EB9-47DE3DECB473} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{86D2D51B-6697-4BC5-8F3C-D8E50F743960} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{8662C331-F3A3-44F5-A3A1-4B992141EDBD}\Disk1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{8662C331-F3A3-44F5-A3A1-4B992141EDBD} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{849ABD01-868A-4EC9-AA44-093C1E0478FD} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{83301FD9-7643-445B-A277-C755A5190531} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Tos_sps folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\05 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\04\09 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\04\03 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\04\02 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\04 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\03\04 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\03\03 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\03\02 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\03 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\02\02 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\02\01 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\02 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\01\02 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\01\01 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital\01 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc\Digital folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files\Doc folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1\setup files folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46}\Disk1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{7D036310-7643-4159-840D-85FDF87E6F46} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{786D4252-7D61-48A2-9407-0CEB991E2BD9}\{4A337D61-EF2A-42D2-931C-5C00B67A1417} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{786D4252-7D61-48A2-9407-0CEB991E2BD9} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{736116BC-5CC0-4B63-94D1-61FDAE7AEE33} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{6ED33691-A627-47D4-8DBA-C76F23378B7D} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{6895C6C9-EF77-4B60-AAE6-2905883C19B9} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{6724AD45-468E-4D6E-A838-905BD7DED064} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{66f141a0-08f4-4227-8c6e-a96f6adcd161} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{640B75F7-8F51-4188-9CFA-95EBB520EDD6} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{639720B5-4EBA-464E-B470-7314837422A1} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{60E6E64C-532E-4015-996A-6D9527252148} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{58B187DD-2B24-490A-8549-A8105F65F30B}\{f132af7f-7bca-4ede-8a7c-958108fe7dbc} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{58B187DD-2B24-490A-8549-A8105F65F30B} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{564AB82E-CCD6-4E23-8D63-8DEF498EACAD}\{190B5883-77C9-4738-8F0D-573076AE3E2F} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{564AB82E-CCD6-4E23-8D63-8DEF498EACAD} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{541BEBA8-9B36-47F9-B196-1B45604F063B} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{4947726F-452C-4F49-B702-3E4B209C6A9A} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{44BE4B62-916B-4410-9B0E-95AE99822DC0} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{41bc8587-1133-4ec0-b6a8-3772ba07098c} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{3C7EB04F-3C0C-4C13-9C87-E256E38DDAB6} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{32222D4D-2A8C-4F84-9288-2D9905706FD5} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{2ccc04d1-fce0-42be-b5bf-fb7c336e6edc} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{2BAEF4BD-81EC-425D-A531-CEAA8BEE88BC} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{25BDE683-FC1C-48A0-A2C9-330C5846FFE6} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{216E5141-D4DB-4B1F-9BAD-D8961B192126}\Disk1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\{216E5141-D4DB-4B1F-9BAD-D8961B192126} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{214968E1-C0E5-41EF-92BE-CB8639135A09} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{1CF085F4-7C72-42B0-A89E-1D8D1D492A2E} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{1240B9B0-6E83-451F-A847-8D18F4215DFD} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{0E71C5D0-A86C-473B-A8FF-7DAB32D0E3FC} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{0ca8c0b4-3fd7-4f90-890d-1f05b564e730} folder moved successfully.
C:\Users\USER\appdata\local\Temp\{06653f1f-e0e3-4569-b765-9d8eb2ed4f3d} folder moved successfully.
C:\Users\USER\appdata\local\Temp\WPDNSE folder moved successfully.
C:\Users\USER\appdata\local\Temp\WMPBurn folder moved successfully.
C:\Users\USER\appdata\local\Temp\Trend Micro\UniClient\uiSeAgnt folder moved successfully.
C:\Users\USER\appdata\local\Temp\Trend Micro\UniClient\Debug folder moved successfully.
C:\Users\USER\appdata\local\Temp\Trend Micro\UniClient folder moved successfully.
C:\Users\USER\appdata\local\Temp\Trend Micro folder moved successfully.
C:\Users\USER\appdata\local\Temp\TiInst folder moved successfully.
C:\Users\USER\appdata\local\Temp\Temp1_MyBona.zip folder moved successfully.
C:\Users\USER\appdata\local\Temp\Temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\TC00338100J.temp\x86 folder moved successfully.
C:\Users\USER\appdata\local\Temp\TC00338100J.temp\x64 folder moved successfully.
C:\Users\USER\appdata\local\Temp\TC00338100J.temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\TC00332000F.temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\startup_tool_tmp\StartUp_Tool\InstMSI folder moved successfully.
C:\Users\USER\appdata\local\Temp\startup_tool_tmp\StartUp_Tool folder moved successfully.
C:\Users\USER\appdata\local\Temp\startup_tool_tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\Skype\DbTemp folder moved successfully.
C:\Users\USER\appdata\local\Temp\Skype folder moved successfully.
C:\Users\USER\appdata\local\Temp\Setup00000e4c folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir7316_9379\Local Storage folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir7316_9379\AppCache folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir7316_9379 folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir6396_86 folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir6396_26077 folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir6396_23905 folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir6396_23902 folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir6396_23899 folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir5376_9958\Local Storage folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir5376_9958\AppCache folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir5376_9958 folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir1852_9737\Local Storage folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir1852_9737\AppCache folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir1852_9737 folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir1824_19474\Local Storage folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir1824_19474\AppCache folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir1824_19474 folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir1816_26726\Local Storage folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir1816_26726\AppCache folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir1816_26726 folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir1276_27800 folder moved successfully.
C:\Users\USER\appdata\local\Temp\scoped_dir1276_20300 folder moved successfully.
C:\Users\USER\appdata\local\Temp\RegzaLinkDubbing folder moved successfully.
C:\Users\USER\appdata\local\Temp\Opera NetInstaller folder moved successfully.
C:\Users\USER\appdata\local\Temp\NTTW folder moved successfully.
C:\Users\USER\appdata\local\Temp\nszDF77.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\nsk562C.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\nsa58AC.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\MSS\3.8.150.1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\MSS folder moved successfully.
C:\Users\USER\appdata\local\Temp\msdtadmin folder moved successfully.
C:\Users\USER\appdata\local\Temp\msdt folder moved successfully.
C:\Users\USER\appdata\local\Temp\MATS-Temp\Results folder moved successfully.
C:\Users\USER\appdata\local\Temp\MATS-Temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\luqz6xh.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\lubqrc56.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\lu3txogj.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\lu2036u.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\Low\hsperfdata_USER folder moved successfully.
C:\Users\USER\appdata\local\Temp\Low folder moved successfully.
C:\Users\USER\appdata\local\Temp\line folder moved successfully.
C:\Users\USER\appdata\local\Temp\iss412B.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1414753233\4E6F41EA_stp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1414753233\3BBDD4AE_stp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1414753233\18E489E5_stp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1414753233\129CBDFE_stp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1414753233\06498350_stp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1414753233 folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1242154493\2262800_stp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1242154493\2262345_stp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1242154493\2262250_stp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1242154493\2261950_stp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1242154493\2261918_stp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1242154493\2261883_stp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is1242154493 folder moved successfully.
C:\Users\USER\appdata\local\Temp\is-ONUSS.tmp\_isetup folder moved successfully.
C:\Users\USER\appdata\local\Temp\is-ONUSS.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is-GA03O.tmp\_isetup folder moved successfully.
C:\Users\USER\appdata\local\Temp\is-GA03O.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is-BHF8E.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is-7HIT7.tmp\_isetup folder moved successfully.
C:\Users\USER\appdata\local\Temp\is-7HIT7.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is-72474.tmp\_isetup folder moved successfully.
C:\Users\USER\appdata\local\Temp\is-72474.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\is-10E4C.tmp\_isetup folder moved successfully.
C:\Users\USER\appdata\local\Temp\is-10E4C.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\IntelDLM folder moved successfully.
C:\Users\USER\appdata\local\Temp\InstallHelp folder moved successfully.
C:\Users\USER\appdata\local\Temp\hsperfdata_USER folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\setup.customer.cd\workflow.setup folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\setup.customer.cd\workflow.all folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\setup.customer.cd\func.setup folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\setup.customer.cd\func.all folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\setup.customer.cd folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\redist\FCT folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\redist folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\mail64 folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\kicker folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include\window folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include\not_found_router folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include\logo folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include\license_plus folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include\external_message\E-1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include\external_message\D-3 folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include\external_message\D-2 folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include\external_message\D-1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include\external_message\C-3 folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include\external_message\C-2 folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include\external_message\C-1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include\external_message folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\include folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\device folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\const.xml.files folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\const.module.files folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module\common folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w\module folder moved successfully.
C:\Users\USER\appdata\local\Temp\FEST_NGN_v4.72.4.0_w folder moved successfully.
C:\Users\USER\appdata\local\Temp\easy_start_box\update folder moved successfully.
C:\Users\USER\appdata\local\Temp\easy_start_box folder moved successfully.
C:\Users\USER\appdata\local\Temp\Deployment folder moved successfully.
C:\Users\USER\appdata\local\Temp\chrome_BITS_8352_26551 folder moved successfully.
C:\Users\USER\appdata\local\Temp\BSvcUpdateConfig folder moved successfully.
C:\Users\USER\appdata\local\Temp\B359tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\B338tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\B337tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp\9352 folder moved successfully.
C:\Users\USER\appdata\local\Temp\73FC3B1C-4519-4E57-8129-BD1C8B146037\ja-JP folder moved successfully.
C:\Users\USER\appdata\local\Temp\73FC3B1C-4519-4E57-8129-BD1C8B146037\en-US folder moved successfully.
C:\Users\USER\appdata\local\Temp\73FC3B1C-4519-4E57-8129-BD1C8B146037 folder moved successfully.
C:\Users\USER\appdata\local\Temp\3310DC1F-6367-4B96-966B-89F4E3381A10\ja-JP folder moved successfully.
C:\Users\USER\appdata\local\Temp\3310DC1F-6367-4B96-966B-89F4E3381A10\en-US folder moved successfully.
C:\Users\USER\appdata\local\Temp\3310DC1F-6367-4B96-966B-89F4E3381A10 folder moved successfully.
C:\Users\USER\appdata\local\Temp\204830_20.39.38.TC00398200D.temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\185021_00.37.12.TC00412500A.temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\Tos_sps\x86 folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\Tos_sps\x64 folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\Tos_sps folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\TosRzTf\x86 folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\TosRzTf\x64 folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\TosRzTf folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\SDonly\Utilities\MSVC2005 folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\SDonly\Utilities\FugaLib folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\SDonly\Utilities folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\SDonly\OEM\_CPRM\TargetMain\All folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\SDonly\OEM\_CPRM\TargetMain folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\SDonly\OEM\_CPRM folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\SDonly\OEM folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\SDonly folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\BDSD\Utilities\MSVC2005 folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\BDSD\Utilities\FugaLib folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\BDSD\Utilities folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\BDSD\OEM\_CPRM\TargetMain\All folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\BDSD\OEM\_CPRM\TargetMain folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\BDSD\OEM\_CPRM folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\BDSD\OEM folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove\BDSD folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\RZMove folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\Doc\js folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\Doc\img\common folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\Doc\img folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\Doc\css folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp\Doc folder moved successfully.
C:\Users\USER\appdata\local\Temp\183335_18.41.16.TC00332700H.temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\182600_17.13.34.TC00376200B.temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\174126_01.18.28.TC00641900A.temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\170436_01.42.12.TC50104900A.temp\DriverBin_64bit folder moved successfully.
C:\Users\USER\appdata\local\Temp\170436_01.42.12.TC50104900A.temp\DriverBin_32bit folder moved successfully.
C:\Users\USER\appdata\local\Temp\170436_01.42.12.TC50104900A.temp\APBin_64bit folder moved successfully.
C:\Users\USER\appdata\local\Temp\170436_01.42.12.TC50104900A.temp\APBin_32bit folder moved successfully.
C:\Users\USER\appdata\local\Temp\170436_01.42.12.TC50104900A.temp\APBin folder moved successfully.
C:\Users\USER\appdata\local\Temp\170436_01.42.12.TC50104900A.temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\164354_01.53.35.TC50075900J.temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\162859_20.14.10.TC00444000A.temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\09241700-00001a08-7jtoutp5nk folder moved successfully.
C:\Users\USER\appdata\local\Temp\09241657-00001a08-etzi2kibn9 folder moved successfully.
C:\Users\USER\appdata\local\Temp\09241654-00001a08-6w87exuxvg folder moved successfully.
C:\Users\USER\appdata\local\Temp\021445_10.08.09.TC00640800A.temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\02131330-00000ba8-m7gcku70sg folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\x64 folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\MediaSDK\x64 folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\MediaSDK\win32 folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\MediaSDK folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\zh-TW folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\zh-CN folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\tr-TR folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\th-TH folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\sv-SE folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\sl-SI folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\sk-SK folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\ru-RU folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\pt-PT folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\pt-BR folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\pl-PL folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\nl-NL folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\nb-NO folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\ko-KR folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\ja-JP folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\it-IT folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\hu-HU folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\he-IL folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\fr-FR folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\fi-FI folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\es-ES folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\en-US folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\el-GR folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\de-DE folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\da-DK folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\cs-CZ folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang\ar-SA folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Lang folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\IIPS\x64 folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\IIPS\x32 folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\IIPS folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\ibxHDMI folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\zh-TW folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\zh-CN folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\tr-TR folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\th-TH folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\sv-SE folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\sl-SI folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\sk-SK folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\ru-RU folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\pt-PT folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\pt-BR folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\pl-PL folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\nl-NL folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\nb-NO folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\ko-KR folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\ja-JP folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\it-IT folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\hu-HU folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\he-IL folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\fr-FR folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\fi-FI folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\es-ES folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\en-US folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\el-GR folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\de-DE folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\da-DK folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\cs-CZ folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang\ar-SA folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics\lang folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp\Graphics folder moved successfully.
C:\Users\USER\appdata\local\Temp\020613_01.38.00.TC50075300G.temp folder moved successfully.
C:\Users\USER\appdata\local\Temp\01110919-0000241c-rn0pqjlpqs folder moved successfully.
C:\Users\USER\appdata\local\Temp\01110918-00002708-htje8phplu folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V7_4_1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V7_4_0 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V7_3_3 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V7_3_2 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V7_3_1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V6_5 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V6_2 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V6_1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V5_3 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V5_2_1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V5_2_0 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V5_1 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V4_3 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V4_2 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V2_3_5 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES\V2_3_4 folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp\TAVFILES folder moved successfully.
C:\Users\USER\appdata\local\Temp\000513_17.40.35.TC00449600B.temp folder moved successfully.
Folder move failed. C:\Users\USER\appdata\local\Temp scheduled to be moved on reboot.
C:\Users\USER\downloads\FlvPlayerSetup.exe moved successfully.
File\Folder c:\program files\common files\mcafee not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8E74493E-2385-4AD4-B274-FCDCDBC3855E} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8E74493E-2385-4AD4-B274-FCDCDBC3855E}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E9D670D3-3977-46A7-8D38-180D579C027E} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E9D670D3-3977-46A7-8D38-180D579C027E}\ not found.
========== COMMANDS ==========
C:\windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Public

User: USER
->Flash cache emptied: 2299 bytes

Total Flash Files Cleaned = 0.00 mb

[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Public

User: USER
->Java cache emptied: 1178103 bytes

Total Java Files Cleaned = 1.00 mb

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: USER
->Temp folder emptied: 95332202 bytes
->Temporary Internet Files folder emptied: 414815322 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 401823614 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 1434498 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 383048751 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 43274806 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1,278.00 mb

Unable to start System Restore Service. Error code 1084

OTL by OldTimer - Version 3.2.69.0 log created on 04212015_154507

Files\Folders moved on Reboot...
C:\Users\USER\appdata\local\Temp\Trend Micro\UniClient\uiSeAgnt folder moved successfully.
C:\Users\USER\appdata\local\Temp\Trend Micro\UniClient\Debug folder moved successfully.
C:\Users\USER\appdata\local\Temp\Trend Micro\UniClient folder moved successfully.
C:\Users\USER\appdata\local\Temp\Trend Micro folder moved successfully.
C:\Users\USER\appdata\local\Temp\nsv88B1.tmp folder moved successfully.
C:\Users\USER\appdata\local\Temp folder moved successfully.
File\Folder C:\Users\USER\AppData\Local\Temp\FXSAPIDebugLogFile.txt not found!
File move failed. C:\Users\USER\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

トッテくん
2015/04/21 (Tue) 16:10:20

返信フォームへ

OTLは削除しHJTとCCのログのご提示を

OTLでの処置は珍しく正常に完了した模様です。
OTLは不要となりますので、導入時の指示に従って削除なされてください。

今一度見直しを行いますので、HJTのログ、CCのインストール情報ログを取得し、
それらを貼り付けてご連絡をお願いいたします。

IVNO
MAIL
2015/04/21 (Tue) 16:59:53

返信フォームへ

Re: 困っています。お願いします

作業完了しました。

HJTログ

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 17:40:15, on 2015/04/21
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17728)

Boot mode: Normal

Running processes:
C:\Users\USER\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files (x86)\NTTW\StartUpToolN\StartUpTool_w.exe
C:\Program Files (x86)\TOSHIBA\Sync Utility\TosSyncScheduler.exe
C:\Program Files (x86)\dynabook Portal Gadget\dynabook Portal Gadget.exe
C:\Windows\AIOKBApp.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe
C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVLauncher.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\USER\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll
O2 - BHO: Yahoo!ツールバーフィッシング警告 - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ypho.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
O2 - BHO: FlpLauncher Class - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Microsoft アカウントサインインヘルパー - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20002\7.5.1144\7.5.1144\TmBpIe32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: Yahoo!ツールバーヘルパー - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O3 - Toolbar: Yahoo!ツールバー - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
O3 - Toolbar: セキュリティツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
O4 - HKLM\..\Run: [TSUScheduler] %ProgramFiles(x86)%\TOSHIBA\Sync Utility\TosSyncScheduler.exe
O4 - HKLM\..\Run: [dynabook Portal Gadget] "C:\Program Files (x86)\dynabook Portal Gadget\dynabook Portal Gadget.exe" -atboottime
O4 - HKLM\..\Run: [FlipViewer Library] "C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
O4 - HKLM\..\Run: [TiltMouse] C:\windows\TiltMouseAPP.exe
O4 - HKLM\..\Run: [AIOKBApp] C:\windows\AIOKBApp.exe
O4 - HKLM\..\Run: [TSleepSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
O4 - HKLM\..\Run: [TRCMan] C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe
O4 - HKLM\..\Run: [TKRTL] %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [NTTW_OSA_AUS] "C:\Program Files (x86)\NTTW\OSA_Aus\acs.exe" -silent
O4 - HKLM\..\Run: [TAVLauncher] C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVLauncher.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [BingSvc] C:\Users\USER\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: スタートアップツール.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: 故障かな？と思ったら・・・ - {6CB1FA39-5745-4733-859F-E9C82A68F848} - C:\Program Files (x86)\NTTW\OSA_SupportTool\start_w.exe
O9 - Extra button: OneNote リンクノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンクノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: TOSHIBA Bulletin Boardへ追加 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O9 - Extra 'Tools' menuitem: TOSHIBA Bulletin Boardへ追加 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - Trusted Zone: http://www.ig.gmodules.com (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20002\7.5.1144\7.5.1144\TmBpIe32.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\NTTW\SECURITY\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files (x86)\NTTW\SECURITY\SEC\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Security Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files (x86)\NTTW\SECURITY\AMSP\coreServiceShell.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files (x86)\CyberLink\SoftDMA\Kernel\DMP\CLHNService.exe
O23 - Service: ConfigFree プロファイルサービス (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Activation Service (McAWFwk) - Unknown owner - c:\PROGRA~1\mcafee\msc\mcawfwk.exe (file missing)
O23 - Service: McAfee OOBE Service (McOobeSv) - Unknown owner - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Qosmio AV Center Complement Service (TAVComplementService) - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\AVApplication\Engine\TAVComplementService.exe
O23 - Service: Qosmio AV Center Scheduler Service (TAVScheduler) - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\AVApplication\Application\TAVScheduler.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TOSHIBA TosRzTf Control Service (TosRzTfSvc) - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\RegzaLinkDubbing\TosRzTfSvc.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: UDSS - Unknown owner - c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14709 bytes

CCログ

Adobe Flash Player 17 ActiveX Adobe Systems Incorporated 2015/04/21 6.00 MB 17.0.0.169
Adobe Flash Player 17 NPAPI Adobe Systems Incorporated 2015/04/21 6.00 MB 17.0.0.169
Apple Application Support（32 ビット） Apple Inc. 2015/04/21 94.2 MB 3.1.3
Apple Application Support（64 ビット） Apple Inc. 2015/04/21 107 MB 3.1.3
Apple Mobile Device Support Apple Inc. 2015/04/21 27.9 MB 8.1.1.3
Apple Software Update Apple Inc. 2014/04/02 2.38 MB 2.1.3.127
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver Atheros Communications Inc. 2014/03/19 1.0.0.27
Bonjour Apple Inc. 2014/04/02 2.00 MB 3.0.0.10
Canon MP493 series MP Drivers Canon Inc. 2014/03/24
CCleaner Piriform 2015/04/18 5.04
Corel Digital Studio SE Corel Corporation 2015/04/21 850 MB 1.5.10.200
DigiBookBrowser Version 1.5.1.4 TriWorks Corp.JAPAN 2010/12/01 8.47 MB 1.5.1.4
dynabook Portal Gadget TOSHIBA CORPRATION 2010/12/01 508 KB 2.1.0
dynabookランチャー東芝情報機器株式会社 2010/12/01 839 KB 3.1.0
dynabookランチャー用バナー 2015/04/21
ebi.BookReader3J eBOOK Initiative Japan Co., Ltd. 2010/12/01 17.7 MB 3.70.41
ebi.SampleContents eBOOK Initiative Japan Co., Ltd. 2010/12/01 3.7.0.41_MSI_T
FlipViewer 4.5 E-Book Systems Inc. 2010/12/01 16.7 MB 4.5.1
Google Chrome Google Inc. 2014/04/30 38.0.2125.111
iCloud Apple Inc. 2015/02/03 90.8 MB 4.0.6.28
Intel(R) Graphics Media Accelerator Driver Intel Corporation 8.15.10.2281
Intel(R) Management Engine Components Intel Corporation 6.0.0.1179
Intel(R) Rapid Storage Technology Intel Corporation 9.6.1.1001
iTunes Apple Inc. 2015/04/21 233 MB 12.1.2.27
Java 8 Update 45 Oracle Corporation 2015/04/18 77.1 MB 8.0.450
LaLaVoice V9.60 2015/04/21 9.60.001
LibreOffice 4.2.2.1 The Document Foundation 2014/03/21 439 MB 4.2.2.1
LINE LINE Corporation 2015/04/21 3.7.4.97
LoiLoScope LoiLo 2010/12/01 83.0 MB 1.8.33
Microsoft .NET Framework 4.5.2 Microsoft Corporation 2015/04/08 38.8 MB 4.5.51209
Microsoft .NET Framework 4.5.2 (日本語) Microsoft Corporation 2015/04/16 2.93 MB 4.5.51209
Microsoft Office 2010 Microsoft Corporation 2014/09/25 14.0.7015.1000
Microsoft Office ナビ 2010 Microsoft Corporation 2014/09/25 17.1 MB 14.0.7015.1000
Microsoft OneDrive Microsoft Corporation 2014/09/24 26.7 MB 17.0.4035.0328
Microsoft Outlook Hotmail Connector 64 ビット Microsoft Corporation 2014/09/24 4.60 MB 14.0.5118.5000
Microsoft Primary Interoperability Assemblies 2005 Microsoft Corporation 2010/12/01 7.75 MB 9.0.21022
Microsoft Silverlight Microsoft Corporation 2014/09/25 50.7 MB 5.1.30514.0
Microsoft SQL Server 2005 Microsoft Corporation 2015/04/21
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2010/12/01 1.69 MB 3.1.0000
Microsoft SQL Server Compact 3.5 SP1 English Microsoft Corporation 2014/03/19 2.59 MB 3.5.5692.0
Microsoft SQL Server Native Client Microsoft Corporation 2014/09/25 5.86 MB 9.00.5000.00
Microsoft SQL Server VSS Writer Microsoft Corporation 2014/09/25 1.12 MB 9.00.5000.00
Microsoft SQL Server セットアップサポートファイル (英語) Microsoft Corporation 2014/09/25 31.7 MB 9.00.5000.00
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2014/09/25 292 KB 8.0.61001
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2014/03/19 620 KB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2010/12/01 788 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2014/09/25 788 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2010/12/01 598 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2010/12/01 596 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2014/09/25 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/13 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/13 11.1 MB 10.0.40219
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2015/02/13 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語 Microsoft Corporation 2015/02/13 10.0.50903
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 2010/12/01 1.26 MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2014/03/21 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2014/03/21 1.33 MB 4.20.9876.0
NTT西日本リモートサポートツール西日本電信電話株式会社 2014/03/24
Nuvoton CIR Device Drivers Nuvoton Technology Corporation 2014/03/19 3.40 MB 8.60.2002
PCあんしん点検ユーティリティ TOSHIBA Corporation 2014/03/19 2.87 MB 1.1.1.0
PC引越ナビ東芝情報機器株式会社 2010/12/01 12.6 MB 4.1.0
PlayReady PC Runtime amd64 Microsoft Corporation 2010/12/01 2.05 MB 1.3.0
Qosmio AV Center TOSHIBA CORPORATION 2014/04/05 6.5.1.0
QuickTime 7 Apple Inc. 2014/10/26 70.2 MB 7.76.80.95
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2015/04/21 6.0.1.6132
Realtek PCIE Card Reader Realtek Semiconductor Corp. 2014/04/05 6.1.7601.83
Realtek WLAN Driver REALTEK Semiconductor Corp. 2014/03/19 2.00.0013
Search App by Ask
Skype Click to Call Microsoft Corporation 2015/04/19 9.91 MB 7.3.16540.9015
Skype(TM) 7.3 Skype Technologies S.A. 2015/04/19 49.2 MB 7.3.101
SoftDMA CyberLink Corp. 2015/04/21 1.5.8302
The Desktop Weather 1.0 Baidu Japan Inc. 2014/12/30 1.0.0.35
TOSHIBA Bulletin Board TOSHIBA Corporation 2015/04/21 2.0.10.64
TOSHIBA ConfigFree TOSHIBA CORPORATION 2014/03/19 91.5 MB 8.0.35
TOSHIBA Disc Creator TOSHIBA Corporation 2014/03/19 8.45 MB 2.1.0.4 for x64
TOSHIBA DVD PLAYER TOSHIBA Corporation 2014/03/19 3.01.3.00-B
TOSHIBA ecoユーティリティ TOSHIBA Corporation 2014/03/19 7.22 MB 1.2.20.64
TOSHIBA Face Recognition TOSHIBA Corporation 2015/04/21 3.1.5.64
TOSHIBA Hardware Setup TOSHIBA Corporation 2015/04/21 2.00.02
TOSHIBA Media Controller TOSHIBA CORPORATION 2014/03/19 1.0.85.4
TOSHIBA Media Controller Plug-in TOSHIBA CORPORATION 2014/03/19 4.89 MB 1.0.5.13
TOSHIBA PC Health Monitor TOSHIBA Corporation 2014/03/19 28.7 MB 1.7.2.64
TOSHIBA Recovery Media Creator TOSHIBA Corporation 2010/12/01 2.89 MB 2.1.0.5 for x64
TOSHIBA ReelTime TOSHIBA Corporation 2015/04/21 1.7.16.64
TOSHIBA Remote Control Manager TOSHIBA CORPORATION 2014/03/19 3.0.4.2
TOSHIBA SD-Video PLAYER TOSHIBA Corporation 2014/03/19 1.00.1.01-B
TOSHIBA Service Station TOSHIBA 2015/04/16 2.2.14
TOSHIBA Sleep Utility TOSHIBA Corporation 2014/03/19 1.4.1.5
TOSHIBA Speech Engines Version V9.50 2015/04/21
TOSHIBA Speech System MT Engine Version 9.0 2015/04/21
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0 2015/04/21
TOSHIBA Supervisor Password TOSHIBA Corporation 2015/04/21 2.00.01
TOSHIBA Value Added Package TOSHIBA Corporation 2014/03/19 65.6 MB 1.3.19.64W
TOSHIBA Web Camera Application TOSHIBA Corporation 2014/03/19 13.6 MB 1.1.5.7
Toshiba Wireless HID driver TOSHIBA Corporation 2014/04/05 1.00.006
TOSHIBA 無線LANらくらく設定 TOSHIBA CORPORATION 2010/12/01 19.6 MB 2.0.10.0628.1115
Windows Live Essentials Microsoft Corporation 2014/09/24 16.4.3528.0331
Yahoo!ツールバー Yahoo! JAPAN. 2015/04/21 4.01 MB 8.0.0.3
いつもNAVI PC ZENRIN 2010/12/01 6.1.2
おたすけナビ東芝情報機器株式会社 2010/12/01 20.2 MB 6.1.0
おまかせフォトムービー TOSHIBA CORPORATION 2014/03/19 390 MB 1.1.1500.1
ぱらちゃんV2.3 TOSHIBA Corporation 2010/12/01 33.7 MB 2.3.16
スタートアップツール西日本電信電話株式会社 2015/02/02 2.61 MB 7.3
セキュリティ対策ツール西日本電信電話株式会社 2014/03/24 450 MB 6.11
セキュリティ申込・設定ツール西日本電信電話株式会社 2014/03/24 3.58 MB 6.0.0.7
パソコンで見るマニュアル TOSHIBA CORPORATION 2010/12/01 30.7 MB 0066.02.2101
レグザリンク・ダビング TOSHIBA CORPORATION 2014/04/05 1.0.5.1
動画で学ぶシリーズ TOSHIBA CORPORATION 2010/12/01 554 MB 2010.0302.0001
動画で解決！操作ガイド東芝情報機器株式会社 2010/12/01 15.9 MB 2.1.0
動画で解決！操作ガイド－コンテンツ－東芝情報機器株式会社 2010/12/01 144 KB 2.1.0
東芝HDD/SSDアラータ TOSHIBA Corporation 2010/12/01 39.1 MB 3.1.64.6
東芝ジェスチャコントローラ TOSHIBA Corporation 2015/04/21 2.7.0.9
東芝ファイル同期ユーティリティ TOSHIBA Corporation 2010/12/01 2.0.1
診断復旧ツール西日本電信電話株式会社 2014/06/24 12.5 MB

トッテくん
2015/04/21 (Tue) 17:43:58

返信フォームへ

CCで作業を

Askのデータだけまだ残っていますね。
削除は完了しているはずなのですが、なぜかCC上で表示されているみたいです。

CCを起動させてツール→アンインストール情報を開いてください。
以下のソフトウェアをクリックし、アンインストールを押してください。

Search App by Ask

こちらで削除できなければ、エントリの削除を押して削除してください。
その後CCのアンインストール情報ログを再取得し、貼り付けてご連絡をお願いいたします。

IVNO
MAIL
2015/04/21 (Tue) 20:14:06

返信フォームへ

Re: 困っています。お願いします

どちらも試してみたんですが削除できませんでした。

アンインストールは「現在使用できないネットワークリソースにある」と出て

エントリの削除のほうは「MSIインストーラは削除できません」と出ます。

トッテくん
2015/04/22 (Wed) 00:38:23

返信フォームへ

仕方ありませんので放置しましょう

CCでも削除できないと言うことですね。
本体は既に削除済みですので、CCだけの問題であれば放置することにしましょう。
以下のソフトウェアをご用意ください。

ComboFix(通称:CF)
http://www.bleepingcomputer.com/download/combofix/dl/12/
削除なされる際は実行ファイルをそのまま処分してください。

1週間の様子見を行い、様子見が完了しましたらPCを一度通常モードで再起動させまてください。
再起動が完了しましたらCFをダブルクリックで実行してください。
処置完了まで30分～1時間程度かかりますのでおまちください。
処置が完了すると自動的にログが出力されますので、
そのログを貼り付けて様子見の結果を添えてご連絡ください。

IVNO
MAIL
2015/04/22 (Wed) 17:23:31

返信フォームへ

Re: 困っています。お願いします

こんにちは

１週間程経ちましたが特に異常等はありません。

CFの処置が完了したのでログはります。

よろしくお願いします。

ComboFix 15-04-28.01 - USER 2015/05/02 6:19.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.932.81.1041.18.3895.2454 [GMT 9:00]
Running from: c:\users\USER\Downloads\ComboFix.exe
AV: セキュリティ対策ツール *Enabled/Updated* {B7599298-8445-728A-A5C7-A26A082C8BDA}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: セキュリティ対策ツール *Enabled/Updated* {0C38737C-A27F-7D04-9F77-991873ABC167}
* Resident AV is active
.
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Yahoo!J
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\Config.xml
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\def_bland20.dll
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\def_comment20.dll
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\def_customize20.dll
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\def_search20.dll
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\LocalPlugin.dll
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\Update.xml
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\YahooToolBar.dll
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\yjem.dll
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\yjgh.dll
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\YJImage.dll
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\YJImageToCom.dll
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\yjop.exe
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\YJTools.dll
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\yphb.exe
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\Modules\ypho.dll
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\uninst.exe
c:\program files (x86)\Yahoo!J\Toolbar\7_3_0_12\uninstall.exe
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\address20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\auctions_search20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\auctions20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\autos20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\beauty20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1201247324.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1201247324_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1201247325.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1201247325_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202128924.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202128924_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981017.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981017_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981020.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981020_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981022.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981022_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981024.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981024_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981027.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981027_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981028.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981028_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981030.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981030_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981031.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981031_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981033.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981033_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981035.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981035_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981037.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981037_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981039.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981039_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981041.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981041_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981042.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981042_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981043.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981043_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981045.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981045_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981047.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981047_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981050.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981050_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981051.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981051_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981054.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981054_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981055.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981055_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981056.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981056_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981057.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981057_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981058.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981058_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981065.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981065_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981067.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981067_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981068.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981068_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981069.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981069_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981070.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981070_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981072.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981072_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981077.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981077_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981078.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981078_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981080.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981080_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981081.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981081_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981082.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981082_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981088.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981088_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981090.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981090_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981092.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981092_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981093.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981093_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981094.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981094_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981095.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981095_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981096.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981096_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981097.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981097_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981102.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981102_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981103.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981103_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981105.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981105_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981106.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981106_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981107.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981107_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981109.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981109_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981112.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981112_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981116.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981116_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981117.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981117_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981118.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981118_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981123.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981123_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981124.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981124_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981125.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981125_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981128.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1202981128_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1205838771.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1205838771_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1218693556.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1218693556_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1218693557.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1218693557_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1219829130.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1219829130_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1219998000.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1219998000_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1219998010.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1219998010_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1219998020.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1219998020_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1220005001.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1220005001_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1220005002.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1220005002_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1220005003.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1220005003_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1220005004.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1220005004_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1220005005.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1220005005_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1221099081.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1221099081_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1224121715.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1224121715_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1226312645.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1226312645_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1226369680.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1226369680_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1226973840.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1226973840_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1227071100.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1227071100_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1227669170.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1227669170_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1235114901.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1235114901_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1235114903.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1235114903_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1236338800.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1236338800_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1237167209.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1237167209_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1237426635.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1237426635_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1238145200.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1238145200_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1239240934.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1239240934_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1239956125.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1239956125_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1243494601.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1243494601_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1243497865.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1243497865_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1243577149.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1243577149_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1246266921.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1246266921_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1249022423.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1249022423_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1249022424.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1249022424_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1250666659.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1250666659_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1250830718.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1250830718_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1250832283.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1250832283_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1251969574.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1251969574_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1251970887.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1251970887_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1251971046.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1251971046_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1256865606.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1256865606_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1257915682.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1257915682_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1261125400.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1261125400_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1266386700.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1266386700_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1266386701.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1266386701_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1267435770.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1267435770_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1267492440.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1267492440_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1269504780.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1269504780_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1269504781.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1269504781_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1270088160.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1270088160_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1270088161.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1270088161_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1271232088.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1271232088_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1271305801.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1271305801_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1271305802.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1271305802_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1272338000.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1272338000_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1272338002.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1272338002_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1272613001.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1272613001_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1272613002.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1272613002_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1274864850.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1274864850_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1274864851.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1274864851_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1275458780.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1275458780_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1275458781.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1275458781_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1276058891.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1276058891_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1276058892.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1276058892_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1276745000.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1276745000_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1277892280.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1277892280_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1278301538.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1278301538_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1279162400.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1279162400_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1286276396.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1286276396_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1289988794.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1289988794_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1291788455.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1291788455_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1294744933.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1294744933_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1296814087.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1296814087_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1298878000.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1298878000_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1301472814.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1301472814_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1337145784.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1337145784_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1342776474.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1342776474_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1343630758.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1343630758_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1345195999.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1345195999_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1350376565.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1350376565_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1353564459.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1353564459_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1354091728.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1354091728_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1355467332.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1355467332_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1355888183.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1355888183_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1374145644.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1374145644_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1384222366.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biy1384222366_b.bmp
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\biz_travel20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\blogs20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\bookmarks20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\box20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\bt-link.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\chakumero20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\chiebukuro20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\dic20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\finance20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\fortune20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\games20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\geocities20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\gyao20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\headlines20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\honyaku20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\icon01.gif
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\image_whatsnew.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\insurance20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\ionline_logo.gif
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\kids20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\loco20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\login_btn_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\logo.gif
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\logo_h16px.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\lohaco20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\mail20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\maps20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\medical20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\movies20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\my_auctions20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\my20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\newsbiz20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\partner20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\pets20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\premium20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\r2520_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\realestate20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\searchranking20.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\seiji20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\shinsai_20.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\shopping20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\site_search20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\smartapp20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\sports20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\topix.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\transit20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\travel20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\tv20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\videotopics20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\weather20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\xbrand20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\yahoo-mbga20_2.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ButtonIcon\yahoo8.png
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\def_bland20.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\def_customize20.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\def_epm8.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\def_search20.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\def8_bkm.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\def8_mail.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\def8_weather.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\LocalPlugin8.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\SearchWordRankingPlugin8.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\TopicsPlugin8.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\Update.xml
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\yjem8.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\yjgh.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YJImage.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YJImageToCom.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\yjop.exe
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YJTools.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\yphb.exe
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ypho.dll
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\uninst.exe
c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\uninstall.exe
c:\program files (x86)\Yahoo!J\Toolbar\data\ytcnt.ini
c:\program files (x86)\Yahoo!J\Toolbar\ytcnt.exe
c:\programdata\14467426945141212975
c:\programdata\14467426945141212975\7b454519bbfb9c52c3dbfb790789c784.ini
c:\programdata\ntuser.pol
c:\users\USER\geek.exe
.
.
((((((((((((((((((((((((( Files Created from 2015-04-02 to 2015-05-02 )))))))))))))))))))))))))))))))
.
.
2015-05-02 00:03 . 2015-05-02 00:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-04-24 03:00 . 2015-04-24 03:00 635 ----a-w- c:\windows\system32\drivers\etc\tmsshf.bin
2015-04-23 07:55 . 2015-04-23 07:55 -------- d-----w- c:\users\USER\AppData\Roaming\Unity
2015-04-23 06:16 . 2015-04-23 06:16 -------- d-----w- c:\users\USER\AppData\Local\Unity
2015-04-21 15:46 . 2014-02-24 02:22 98520 ----a-w- c:\windows\system32\drivers\Mkd2BthF.sys
2015-04-21 15:46 . 2014-03-17 09:04 168664 ----a-w- c:\windows\system32\drivers\mkd3kfnt.sys
2015-04-21 15:46 . 2014-02-24 02:21 112856 ----a-w- c:\windows\system32\drivers\Mkd2Nadr.sys
2015-04-21 15:42 . 2015-04-21 15:42 -------- d-----w- c:\program files (x86)\AhnLab
2015-04-21 11:16 . 2015-04-27 22:42 -------- d-----w- C:\Nexon
2015-04-21 06:49 . 2015-05-02 00:03 -------- d-----w- c:\users\USER\AppData\Local\Temp
2015-04-21 06:48 . 2015-04-21 06:48 -------- d-----w- c:\users\USER\AppData\Roaming\Baidu
2015-04-21 06:48 . 2015-04-21 06:48 -------- d-----w- c:\programdata\baidu
2015-04-21 06:48 . 2015-04-21 06:48 -------- d-----w- c:\program files (x86)\Baidu
2015-04-21 02:50 . 2015-04-21 02:50 -------- d-----w- c:\program files\iPod
2015-04-21 02:50 . 2015-04-21 02:50 -------- d-----w- c:\program files (x86)\iTunes
2015-04-21 02:50 . 2015-04-21 02:50 -------- d-----w- c:\programdata\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-04-21 02:50 . 2015-04-21 02:50 -------- d-----w- c:\program files\iTunes
2015-04-20 15:24 . 2015-04-20 15:24 -------- d-----w- c:\program files\Reason
2015-04-19 01:28 . 2015-04-19 01:29 -------- d-----w- c:\users\USER\AppData\Roaming\Geek Uninstaller
2015-04-18 13:44 . 2015-04-18 13:44 -------- d-----w- c:\program files\CCleaner
2015-04-18 12:23 . 2015-04-18 12:23 -------- d-----w- c:\users\USER\AppData\Roaming\ProductData
2015-04-18 12:22 . 2015-04-18 13:03 -------- d-----w- c:\programdata\ProductData
2015-04-18 12:22 . 2015-04-18 12:22 -------- d-----w- c:\programdata\{D76294E6-03B8-4971-AF2E-3F846161A690}
2015-04-18 12:22 . 2015-04-18 12:22 -------- d-----w- c:\programdata\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
2015-04-18 12:22 . 2015-04-18 12:22 -------- d-----w- c:\program files (x86)\Common Files\IObit
2015-04-18 12:19 . 2015-04-18 13:03 -------- d-----w- c:\users\USER\AppData\Roaming\IObit
2015-04-18 12:19 . 2015-04-18 13:05 -------- d-----w- c:\program files (x86)\IObit
2015-04-18 12:19 . 2015-04-18 13:03 -------- d-----w- c:\programdata\IObit
2015-04-18 05:09 . 2015-04-18 05:09 -------- d-----w- c:\windows\Sun
2015-04-18 05:07 . 2015-04-18 05:07 -------- d-----w- c:\program files (x86)\Common Files\Java
2015-04-16 18:54 . 2015-04-16 18:54 -------- d-----w- c:\users\USER\AppData\Roaming\pmClient7082
2015-04-16 14:27 . 2015-04-16 14:27 -------- d-----w- c:\users\USER\AppData\Local\Intel
2015-04-16 11:48 . 2015-04-16 11:48 -------- d-----w- c:\users\USER\AppData\Local\Downloaded Installations
2015-04-16 08:49 . 2015-04-27 03:18 4 ----a-w- c:\users\USER\AppData\Roaming\appdataFr2.bin
2015-04-16 07:53 . 2015-04-16 07:53 -------- d-----w- c:\program files\Yahoo!J
2015-04-15 12:32 . 2015-04-15 12:32 -------- d-----w- c:\program files (x86)\Common Files\Skype
2015-04-15 12:32 . 2015-04-19 04:29 -------- d-----r- c:\program files (x86)\Skype
2015-04-14 19:35 . 2015-03-17 05:11 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 19:34 . 2015-03-04 04:55 367552 ----a-w- c:\windows\system32\clfs.sys
2015-04-14 19:34 . 2015-03-04 04:41 79360 ----a-w- c:\windows\system32\clfsw32.dll
2015-04-14 19:34 . 2015-03-04 04:10 58880 ----a-w- c:\windows\SysWow64\clfsw32.dll
2015-04-09 18:48 . 2013-04-09 23:34 1247744 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-04-09 18:48 . 2013-04-02 22:51 1643520 ----a-w- c:\windows\system32\DWrite.dll
2015-04-04 18:00 . 2015-04-04 18:00 -------- d-s---w- c:\windows\system32\GWX
2015-04-04 18:00 . 2015-04-04 18:00 -------- d-s---w- c:\windows\SysWow64\GWX
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-04-18 05:06 . 2014-07-23 09:09 98216 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2015-04-15 12:25 . 2014-03-19 05:35 128913832 ----a-w- c:\windows\system32\MRT.exe
2015-04-15 10:35 . 2014-09-24 07:44 236080 ----a-w- c:\windows\RegBootClean64.exe
2015-04-14 21:10 . 2014-03-24 15:30 778416 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-04-14 21:10 . 2014-03-24 15:30 142512 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-03-17 04:56 . 2015-04-14 19:36 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-02-26 03:25 . 2015-03-11 09:45 3204096 ----a-w- c:\windows\system32\win32k.sys
2015-02-20 04:41 . 2015-03-11 09:48 41984 ----a-w- c:\windows\system32\lpk.dll
2015-02-20 04:40 . 2015-03-11 09:48 100864 ----a-w- c:\windows\system32\fontsub.dll
2015-02-20 04:40 . 2015-03-11 09:48 14336 ----a-w- c:\windows\system32\dciman32.dll
2015-02-20 04:40 . 2015-03-11 09:48 46080 ----a-w- c:\windows\system32\atmlib.dll
2015-02-20 04:13 . 2015-03-11 09:48 70656 ----a-w- c:\windows\SysWow64\fontsub.dll
2015-02-20 04:13 . 2015-03-11 09:48 10240 ----a-w- c:\windows\SysWow64\dciman32.dll
2015-02-20 04:13 . 2015-03-11 09:48 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2015-02-20 04:12 . 2015-03-11 09:48 25600 ----a-w- c:\windows\SysWow64\lpk.dll
2015-02-20 03:29 . 2015-03-11 09:48 372224 ----a-w- c:\windows\system32\atmfd.dll
2015-02-20 03:09 . 2015-03-11 09:48 299008 ----a-w- c:\windows\SysWow64\atmfd.dll
2015-02-17 06:19 . 2015-02-17 06:19 1614496 ----a-w- c:\windows\system32\FM20.DLL
2015-02-13 05:22 . 2015-03-11 09:46 14177280 ----a-w- c:\windows\system32\shell32.dll
2015-02-04 03:23 . 2015-02-04 03:23 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2015-02-04 03:16 . 2015-03-11 09:41 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2015-02-04 03:13 . 2015-02-04 03:13 869536 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2015-02-04 02:54 . 2015-03-11 09:41 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2015-02-03 03:34 . 2015-03-11 09:48 693176 ----a-w- c:\windows\system32\winload.efi
2015-02-03 03:34 . 2015-03-11 09:48 94656 ----a-w- c:\windows\system32\drivers\mountmgr.sys
2015-02-03 03:33 . 2015-03-11 09:48 616360 ----a-w- c:\windows\system32\winresume.efi
2015-02-03 03:31 . 2015-03-11 09:48 14632960 ----a-w- c:\windows\system32\wmp.dll
2015-02-03 03:31 . 2015-03-11 09:48 782848 ----a-w- c:\windows\system32\wmdrmsdk.dll
2015-02-03 03:31 . 2015-03-11 09:48 229376 ----a-w- c:\windows\system32\wintrust.dll
2015-02-03 03:31 . 2015-03-11 09:45 1424896 ----a-w- c:\windows\system32\WindowsCodecs.dll
2015-02-03 03:31 . 2015-03-11 09:46 215552 ----a-w- c:\windows\system32\ubpm.dll
2015-02-03 03:31 . 2015-03-11 09:48 5120 ----a-w- c:\windows\system32\msdxm.ocx
2015-02-03 03:31 . 2015-03-11 09:48 5120 ----a-w- c:\windows\system32\dxmasf.dll
2015-02-03 03:31 . 2015-03-11 09:48 63488 ----a-w- c:\windows\system32\setbcdlocale.dll
2015-02-03 03:31 . 2015-03-11 09:48 1574400 ----a-w- c:\windows\system32\quartz.dll
2015-02-03 03:31 . 2015-03-11 09:48 500224 ----a-w- c:\windows\system32\AUDIOKSE.dll
2015-02-03 03:31 . 2015-03-11 09:48 371712 ----a-w- c:\windows\system32\qdvd.dll
2015-02-03 03:31 . 2015-03-11 09:48 188416 ----a-w- c:\windows\system32\pcasvc.dll
2015-02-03 03:31 . 2015-03-11 09:48 37376 ----a-w- c:\windows\system32\pcadm.dll
2015-02-03 03:31 . 2015-03-11 09:48 9728 ----a-w- c:\windows\system32\spwmp.dll
2015-02-03 03:31 . 2015-03-11 09:48 641024 ----a-w- c:\windows\system32\msscp.dll
2015-02-03 03:31 . 2015-03-11 09:48 325632 ----a-w- c:\windows\system32\msnetobj.dll
2015-02-03 03:31 . 2015-03-11 09:48 11264 ----a-w- c:\windows\system32\msmmsp.dll
2015-02-03 03:31 . 2015-03-11 09:48 4121600 ----a-w- c:\windows\system32\mf.dll
2015-02-03 03:31 . 2015-03-11 09:48 432128 ----a-w- c:\windows\system32\mfplat.dll
2015-02-03 03:31 . 2015-03-11 09:48 206848 ----a-w- c:\windows\system32\mfps.dll
2015-02-03 03:30 . 2015-03-11 09:48 631808 ----a-w- c:\windows\system32\evr.dll
2015-02-03 03:30 . 2015-03-11 09:48 284672 ----a-w- c:\windows\system32\EncDump.dll
2015-02-03 03:30 . 2015-03-11 09:48 1202176 ----a-w- c:\windows\system32\drmv2clt.dll
2015-02-03 03:30 . 2015-03-11 09:48 497664 ----a-w- c:\windows\system32\drmmgrtn.dll
2015-02-03 03:30 . 2015-03-11 09:48 1480192 ----a-w- c:\windows\system32\crypt32.dll
2015-02-03 03:30 . 2015-03-11 09:48 1069056 ----a-w- c:\windows\system32\cryptui.dll
2015-02-03 03:30 . 2015-03-11 09:48 140288 ----a-w- c:\windows\system32\cryptnet.dll
2015-02-03 03:30 . 2015-03-11 09:48 187904 ----a-w- c:\windows\system32\cryptsvc.dll
2015-02-03 03:30 . 2015-03-11 09:48 82432 ----a-w- c:\windows\system32\cryptsp.dll
2015-02-03 03:30 . 2015-03-11 09:48 842240 ----a-w- c:\windows\system32\blackbox.dll
2015-02-03 03:30 . 2015-03-11 09:48 680960 ----a-w- c:\windows\system32\audiosrv.dll
2015-02-03 03:30 . 2015-03-11 09:48 296448 ----a-w- c:\windows\system32\AudioSes.dll
2015-02-03 03:30 . 2015-03-11 09:48 440832 ----a-w- c:\windows\system32\AudioEng.dll
2015-02-03 03:30 . 2015-03-11 09:48 58880 ----a-w- c:\windows\system32\appidapi.dll
2015-02-03 03:30 . 2015-03-11 09:48 32256 ----a-w- c:\windows\system32\appidsvc.dll
2015-02-03 03:30 . 2015-03-11 09:48 55808 ----a-w- c:\windows\system32\rrinstaller.exe
2015-02-03 03:30 . 2015-03-11 09:48 9728 ----a-w- c:\windows\system32\pcalua.exe
2015-02-03 03:30 . 2015-03-11 09:48 11264 ----a-w- c:\windows\system32\pcawrk.exe
2015-02-03 03:30 . 2015-03-11 09:48 24576 ----a-w- c:\windows\system32\mfpmp.exe
2015-02-03 03:30 . 2015-03-11 09:48 126464 ----a-w- c:\windows\system32\audiodg.exe
2015-02-03 03:30 . 2015-03-11 09:48 146944 ----a-w- c:\windows\system32\appidpolicyconverter.exe
2015-02-03 03:30 . 2015-03-11 09:48 17920 ----a-w- c:\windows\system32\appidcertstorecheck.exe
2015-02-03 03:30 . 2015-03-11 09:48 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2015-02-03 03:29 . 2015-03-11 09:48 8704 ----a-w- c:\windows\system32\pcaevts.dll
2015-02-03 03:28 . 2015-03-11 09:48 2048 ----a-w- c:\windows\system32\mferror.dll
2015-02-03 03:19 . 2015-03-11 09:48 663552 ----a-w- c:\windows\system32\drivers\PEAuth.sys
2015-02-03 03:12 . 2015-03-11 09:48 179200 ----a-w- c:\windows\SysWow64\wintrust.dll
2015-02-03 03:12 . 2015-03-11 09:48 617984 ----a-w- c:\windows\SysWow64\wmdrmsdk.dll
2015-02-03 03:12 . 2015-03-11 09:45 1230848 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2015-02-03 03:12 . 2015-03-11 09:46 171520 ----a-w- c:\windows\SysWow64\ubpm.dll
2015-02-03 03:12 . 2015-03-11 09:48 4096 ----a-w- c:\windows\SysWow64\dxmasf.dll
2015-02-03 03:12 . 2015-03-11 09:48 4096 ----a-w- c:\windows\SysWow64\msdxm.ocx
2015-02-03 03:12 . 2015-03-11 09:48 1329664 ----a-w- c:\windows\SysWow64\quartz.dll
2015-02-03 03:12 . 2015-03-11 09:48 519680 ----a-w- c:\windows\SysWow64\qdvd.dll
2015-02-03 03:12 . 2015-03-11 09:48 442880 ----a-w- c:\windows\SysWow64\AUDIOKSE.dll
2015-02-03 03:12 . 2015-03-11 09:48 8192 ----a-w- c:\windows\SysWow64\spwmp.dll
2015-02-03 03:12 . 2015-03-11 09:48 504320 ----a-w- c:\windows\SysWow64\msscp.dll
2015-02-03 03:12 . 2015-03-11 09:48 265216 ----a-w- c:\windows\SysWow64\msnetobj.dll
2015-02-03 03:12 . 2015-03-11 09:48 3209728 ----a-w- c:\windows\SysWow64\mf.dll
2015-02-03 03:12 . 2015-03-11 09:48 354816 ----a-w- c:\windows\SysWow64\mfplat.dll
2015-02-03 03:12 . 2015-03-11 09:48 103424 ----a-w- c:\windows\SysWow64\mfps.dll
2015-02-03 03:12 . 2015-03-11 09:48 489984 ----a-w- c:\windows\SysWow64\evr.dll
2015-02-03 03:12 . 2015-03-11 09:48 988160 ----a-w- c:\windows\SysWow64\drmv2clt.dll
2015-02-03 03:12 . 2015-03-11 09:48 406016 ----a-w- c:\windows\SysWow64\drmmgrtn.dll
2015-02-03 03:12 . 2015-03-11 09:48 1174528 ----a-w- c:\windows\SysWow64\crypt32.dll
2015-02-03 03:12 . 2015-03-11 09:48 1005056 ----a-w- c:\windows\SysWow64\cryptui.dll
2015-02-03 03:12 . 2015-03-11 09:48 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2015-02-03 03:12 . 2015-03-11 09:48 143872 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2015-02-03 03:12 . 2015-03-11 09:48 81408 ----a-w- c:\windows\SysWow64\cryptsp.dll
2015-02-03 03:12 . 2015-03-11 09:48 744960 ----a-w- c:\windows\SysWow64\blackbox.dll
2015-02-03 03:12 . 2015-03-11 09:48 374784 ----a-w- c:\windows\SysWow64\AudioEng.dll
2015-02-03 03:12 . 2015-03-11 09:48 50688 ----a-w- c:\windows\SysWow64\appidapi.dll
2015-02-03 03:12 . 2015-03-11 09:48 195584 ----a-w- c:\windows\SysWow64\AudioSes.dll
2015-02-03 03:11 . 2015-03-11 09:48 50176 ----a-w- c:\windows\SysWow64\rrinstaller.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2014-09-24 07:55 223432 ----a-w- c:\users\USER\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2014-09-24 07:55 223432 ----a-w- c:\users\USER\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2014-09-24 07:55 223432 ----a-w- c:\users\USER\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2015-03-13 7451928]
"BingSvc"="c:\users\USER\AppData\Local\Microsoft\BingSvc\BingSvc.exe" [2015-04-07 144008]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"dynabook Portal Gadget"="c:\program files (x86)\dynabook Portal Gadget\dynabook Portal Gadget.exe" [2010-11-02 379392]
"FlipViewer Library"="c:\program files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" [2008-12-02 413896]
"AIOKBApp"="c:\windows\AIOKBApp.exe" [2010-06-28 114176]
"ToshibaServiceStation"="c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" [2011-07-11 1298816]
"TRCMan"="c:\program files (x86)\TOSHIBA\TRCMan\TRCMan.exe" [2010-08-20 714104]
"TKRTL"="c:\program files (x86)\TOSHIBA\TKRTL\KarteLite.exe" [2010-05-07 2090416]
"TWebCamera"="c:\program files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" [2010-11-02 2475384]
"IME14 JPN Setup"="c:\progra~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE" [2012-03-13 81200]
"NTTW_OSA_AUS"="c:\program files (x86)\NTTW\OSA_Aus\acs.exe" [2014-01-31 1495136]
"TAVLauncher"="c:\program files (x86)\TOSHIBA\AVApplication\Application\TAVLauncher.exe" [2011-03-01 522936]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2014-10-02 421888]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
スタートアップツール.lnk - c:\windows\Installer\{A162AF3F-7908-44E1-A072-67FB887A9517}\_3B47FDE35444B41F912355.exe [2015-2-2 2238]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\keyboard layouts\e0200411]
Ime File REG_SZ imjp14.ime
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 McOobeSv;McAfee OOBE Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 cpuz134;cpuz134;c:\users\USER\AppData\Local\Temp\cpuz134\cpuz134_x64.sys;c:\users\USER\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 KodeMonL;KodeMonL;c:\windows\KodeMonL.sys;c:\windows\KodeMonL.sys [x]
R3 McAWFwk;McAfee Activation Service;c:\progra~1\mcafee\msc\mcawfwk.exe;c:\progra~1\mcafee\msc\mcawfwk.exe [x]
R3 Mkd2Bthf;Mkd2Bthf;c:\windows\system32\drivers\Mkd2Bthf.sys;c:\windows\SYSNATIVE\drivers\Mkd2Bthf.sys [x]
R3 Mkd3kfNt;Mkd3kfNt;c:\windows\system32\drivers\Mkd3kfNt.sys;c:\windows\SYSNATIVE\drivers\Mkd3kfNt.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys;c:\windows\SYSNATIVE\DRIVERS\rtl8192se.sys [x]
R3 TosRzTf;TOSHIBA TosRzTf Driver;c:\windows\system32\DRIVERS\TosRzTf.sys;c:\windows\SYSNATIVE\DRIVERS\TosRzTf.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 xhunter1;xhunter1;c:\windows\xhunter1.sys;c:\windows\xhunter1.sys [x]
R3 xspirit;xspirit;c:\windows\xspirit.sys;c:\windows\xspirit.sys [x]
S0 TMEBC;TMEBC;c:\windows\system32\DRIVERS\TMEBC64.sys;c:\windows\SYSNATIVE\DRIVERS\TMEBC64.sys [x]
S0 tos_sps64;TOSHIBA tos_sps64 Service;c:\windows\system32\DRIVERS\tos_sps64.sys;c:\windows\SYSNATIVE\DRIVERS\tos_sps64.sys [x]
S1 tmevtmgr;tmevtmgr;c:\windows\system32\DRIVERS\tmevtmgr.sys;c:\windows\SYSNATIVE\DRIVERS\tmevtmgr.sys [x]
S2 Amsp;Security Solution Platform;c:\program files (x86)\NTTW\SECURITY\AMSP\coreServiceShell.exe coreFrameworkHost.exe;c:\program files (x86)\NTTW\SECURITY\AMSP\coreServiceShell.exe coreFrameworkHost.exe [x]
S2 Apple Mobile Device Service;Apple Mobile Device Service;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [x]
S2 CLHNService;CLHNService;c:\program files (x86)\CyberLink\SoftDMA\Kernel\DMP\CLHNService.exe;c:\program files (x86)\CyberLink\SoftDMA\Kernel\DMP\CLHNService.exe [x]
S2 ConfigFree Service;ConfigFree プロファイルサービス;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [x]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [x]
S2 ImeDictUpdateService;Microsoft IME Dictionary Update;c:\program files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE;c:\program files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE [x]
S2 MSSQL$QOSMIOAVCENTER30;SQL Server (QOSMIOAVCENTER30);c:\program files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe;c:\program files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [x]
S2 NTIPPKernel;NTIPPKernel;c:\program files (x86)\CyberLink\SoftDMA\Kernel\DMP\NTIPPKernel_64.sys;c:\program files (x86)\CyberLink\SoftDMA\Kernel\DMP\NTIPPKernel_64.sys [x]
S2 TAVComplementService;Qosmio AV Center Complement Service;c:\program files (x86)\TOSHIBA\AVApplication\Engine\TAVComplementService.exe;c:\program files (x86)\TOSHIBA\AVApplication\Engine\TAVComplementService.exe [x]
S2 TAVScheduler;Qosmio AV Center Scheduler Service;c:\program files (x86)\TOSHIBA\AVApplication\Application\TAVScheduler.exe;c:\program files (x86)\TOSHIBA\AVApplication\Application\TAVScheduler.exe [x]
S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe;c:\program files\TOSHIBA\TECO\TecoService.exe [x]
S2 TosRzTfSvc;TOSHIBA TosRzTf Control Service;c:\program files (x86)\TOSHIBA\RegzaLinkDubbing\TosRzTfSvc.exe;c:\program files (x86)\TOSHIBA\RegzaLinkDubbing\TosRzTfSvc.exe [x]
S2 TPCHKarteSVC;TPCHKarteSVC;c:\program files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe;c:\program files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe [x]
S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys;c:\windows\SYSNATIVE\DRIVERS\TVALZFL.sys [x]
S2 UDSS;UDSS;c:\program files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe;c:\program files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 DFKBfilter;Darfon KB Filter Driver;c:\windows\system32\drivers\DFKBfilter.sys;c:\windows\SYSNATIVE\drivers\DFKBfilter.sys [x]
S3 DFMousefilter;Darfon Mouse Filter Driver;c:\windows\system32\drivers\DFMousefilter.sys;c:\windows\SYSNATIVE\drivers\DFMousefilter.sys [x]
S3 FwLnk;FwLnk Driver;c:\windows\system32\DRIVERS\FwLnk.sys;c:\windows\SYSNATIVE\DRIVERS\FwLnk.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 hidshim;Service for HID-KMDF Shim layer;c:\windows\system32\DRIVERS\hidshim.sys;c:\windows\SYSNATIVE\DRIVERS\hidshim.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 Mkd2Nadr;Mkd2Nadr;c:\windows\system32\drivers\Mkd2Nadr.sys;c:\windows\SYSNATIVE\drivers\Mkd2Nadr.sys [x]
S3 nuvotonhidcir;Nuvoton HID CIR Receiver;c:\windows\system32\DRIVERS\nuvotonhidcir.sys;c:\windows\SYSNATIVE\DRIVERS\nuvotonhidcir.sys [x]
S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys;c:\windows\SYSNATIVE\DRIVERS\pgeffect.sys [x]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPStor.sys [x]
S3 tisdbt3d64;TOSHIBA USB ISDB-T TV Tuner(x64);c:\windows\system32\DRIVERS\tisdbt3d64.sys;c:\windows\SYSNATIVE\DRIVERS\tisdbt3d64.sys [x]
S3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x]
S3 tmeevw;tmeevw;c:\windows\system32\DRIVERS\tmeevw.sys;c:\windows\SYSNATIVE\DRIVERS\tmeevw.sys [x]
S3 tmnciesc;tmnciesc;c:\windows\system32\DRIVERS\tmnciesc.sys;c:\windows\SYSNATIVE\DRIVERS\tmnciesc.sys [x]
S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [x]
S3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-10-27 20:45 1089352 ----a-w- c:\program files (x86)\Google\Chrome\Application\38.0.2125.111\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2015-05-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-24 21:10]
.
2015-05-01 c:\windows\Tasks\BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B}.job
- c:\program files (x86)\baidu\update\baidujp_update.exe [2015-04-21 00:32]
.
2015-05-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-04-30 08:13]
.
2015-05-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-04-30 08:13]
.
2015-05-01 c:\windows\Tasks\WeatherTool_start_schedule_task.job
- c:\program files (x86)\WeatherTool\1.0.0.35\InstallHelper.exe [2014-12-12 09:42]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2014-09-24 07:55 262344 ----a-w- c:\users\USER\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2014-09-24 07:55 262344 ----a-w- c:\users\USER\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2014-09-24 07:55 262344 ----a-w- c:\users\USER\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IME14 JPN Setup"="c:\progra~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE" [2012-03-13 110896]
"TosSENotify"="c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe" [2010-02-05 709976]
"Unattend0000000001{C12B026D-4D16-43C9-9E57-CC575CB7CC38}"="c:\tosutils\palakidou\palakidou.exe" [2010-11-25 1355264]
"Trend Micro Client Framework"="c:\program files (x86)\NTTW\SECURITY\UniClient\UiFrmWrk\UIWatchDog.exe" [2013-09-09 216928]
"Trend Micro Titanium"="c:\program files (x86)\NTTW\SECURITY\SEC\UIFramework\uiWinMgr.exe" [2013-09-16 1127232]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-30 162328]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-30 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-30 417304]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-06-08 10867816]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-06-08 2092648]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2015-04-06 169768]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://yahoo.co.jp/
mStart Page = hxxp://jp.hao123.com/?tn=ime_inner_hp_29_hao123_jp&business_platform&fr=OlQW3FArS%2BNzyz1nFnoRyDtYHLILdnrscbI3YjohRvIgSizzVSRR4G7mODt8
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: {{6CB1FA39-5745-4733-859F-E9C82A68F848} - c:\program files (x86)\NTTW\OSA_SupportTool\start_w.exe
Trusted Zone: fresheye.com\dynabook
Trusted Zone: gmodules.com\www.ig
TCP: DhcpNameServer = 192.168.11.1
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-TSUScheduler - %ProgramFiles(x86)%\TOSHIBA\Sync Utility\TosSyncScheduler.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-TiltMouse - c:\windows\TiltMouseAPP.exe
Wow6432Node-HKLM-Run-TSleepSrv - %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
BHO-{10921475-03CE-4E04-90CE-E2E7EF20C814} - c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
Toolbar-Locked - (no file)
HKLM-Run-TPwrMain - c:\program files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE
HKLM-Run-HSON - c:\program files (x86)\TOSHIBA\TBS\HSON.exe
HKLM-Run-SmoothView - c:\program files (x86)\Toshiba\SmoothView\SmoothView.exe
HKLM-Run-TCrdMain - c:\program files (x86)\TOSHIBA\FlashCards\TCrdMain.exe
HKLM-Run-TosTogKeyMon - c:\program files (x86)\TOSHIBA\FlashCards\TosTogKeyMon.exe
HKLM-Run-SmartFaceVWatcher - c:\program files (x86)\Toshiba\SmartFaceV\SmartFaceVWatcher.exe
HKLM-Run-Teco - c:\program files (x86)\TOSHIBA\TECO\Teco.exe
HKLM-Run-TosWaitSrv - c:\program files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe
HKLM-Run-TosReelTimeMonitor - c:\program files (x86)\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
HKLM-Run-TosNC - c:\program files (x86)\Toshiba\BulletinBoard\TosNcCore.exe
AddRemove-Yahoo!Jツールバー - c:\program files (x86)\Yahoo!J\Toolbar\8_0_0_3\uninst.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\sof

トッテくん
2015/05/02 (Sat) 17:56:17

返信フォームへ

Re: 困っています。お願いします

追加ですいません。

あまり気にせず無視していたんですが、調べてみるとアドウェア関連みたいなので報告します。

頻繁にではないんですがmedia playerを更新する必要があります。というメッセージが出て別ページに飛ばされてしまいます。

注意はしていたんですが、身内が少しインターネット検索等で利用した後から出るようになりました。hao123とFLVplayer(プログラムと機能やCCには表示されていなかったので通常削除しました)がデスクトップに追加されていました。

普段利用しているchromeの方のみであまり使わないIEの方は出ていません。

対処法があればよろしくお願いします。此方の不注意で再度感染してしまい申し訳ないです。

トッテくん
2015/05/03 (Sun) 03:29:44

返信フォームへ

Re: 困っています。お願いします

chromeアンインストール→再インストールで治りました。
最新版じゃなかったからかもしれないです。お騒がせしました。

トッテくん
2015/05/11 (Mon) 16:21:46

返信フォームへ

返信フォーム

Template by マシマロック