お忙しい中失礼いたします。
先日より、ブラウザを開かなくてもインターネットに接続するだけで添付画像のようにセキュリティソフトが反応するようになりました。BlockされたURLから調べていたところ、先日知恵袋で同様の症状に悩んでる方を発見し、こちらで相談させていただく次第です。
どうぞ、お手数をおかけしますが宜しくお願い致します。
知恵袋を拝見して
- pilot
- 2015/02/25 (Wed) 22:47:54
悪代官の伏魔殿掲示板別館
1907190
| 一覧 | 新規投稿 | Home | ワード検索 | 使い方 | 携帯へURLを送る | 管理 |
Re: 知恵袋を拝見して
以下、HJTのログと、CCのログです。
まずはHJTより、
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 23:13:54, on 2015/02/25
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16609)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMECMNT.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\mobsync.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Windows\System32\ThpSrv.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\Justsystems\KazaNavi\kazanavi.exe
C:\Program Files\TrueSuite Access Manager\FpNotifier.exe
C:\Program Files\TrueSuite Access Manager\usbnotify.exe
C:\Program Files\TrueSuite Access Manager\CssSvr.exe
C:\Program Files\TrueSuite Access Manager\PwdBank.exe
C:\Program Files\Trend Micro\OfficeScan Client\PccNTMon.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Bradford Networks\Client Security Agent\bncsaui.exe
C:\Advanced Wheel Mouse\wh_exec.exe
C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
C:\Program Files\Rainmeter\Rainmeter.exe
C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_16_0_0_305_ActiveX.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Kohei\Desktop\HijackThis.exe
O1 - Hosts: ::1 localhost
O2 - BHO: かんたん登録2 - {0DD41AE7-6196-42E7-BDE5-4F393997449E} - C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: FeliCaブラウザエクステンション - {EC5D2125-D8AB-4a18-A599-D97D2731DE19} - C:\Program Files\Sony\FeliCaBrowserExtension\fbe.dll
O3 - Toolbar: かんたん登録2 ツールバー - {833CFE4E-05BD-43A3-97A7-A4E80D742F0F} - C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [ThpSrv] C:\Windows\system32\thpsrv /logon
O4 - HKLM\..\Run: [cfWPSEnabler.exe] cfWPSEnabler.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [KazaNavi] C:\Program Files\JustSystems\KazaNavi\kazanavi.exe /tasktray
O4 - HKLM\..\Run: [FingerPrintNotifer] "C:\Program Files\TrueSuite Access Manager\FpNotifier.exe"
O4 - HKLM\..\Run: [UsbMonitor] "C:\Program Files\TrueSuite Access Manager\usbnotify.exe"
O4 - HKLM\..\Run: [PwdBank] "C:\Program Files\TrueSuite Access Manager\PwdBank.exe"
O4 - HKLM\..\Run: [IME JPN 2007 Migration] C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE /Preload
O4 - HKLM\..\Run: [jswtrayutil] "C:\Program Files\Jumpstart\jswtrayutil.exe"
O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
O4 - HKLM\..\Run: [bncsaui.exe] %ProgramFiles%\Bradford Networks\Client Security Agent\bncsaui.exe
O4 - HKLM\..\Run: [PAC207_Monitor] C:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [WheelMouse] C:\ADVANC~1\wh_exec.exe
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.EXE
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Kohei\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Startup: 東芝ソフトウェア更新チェックツール.lnk = C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O4 - Global Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - Trusted Zone: http://*.remotecall.jp (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei-4/MyFunCardsInitialSetup1.0.1.1.cab
O16 - DPF: {70EE0AA4-5A3A-4052-8FFA-2EEDA43F7942} (Innotive Cibrowser Control 1.2) - http://imedia.ngc.co.jp/ibkoozen/plugin/cibrowser1219.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {AEEF256A-781F-44CE-8ED7-DDEE3ECD26E3} (画像復活) - http://www.isl.co.jp/SILKYPIX/gazou-fukkatsu-2/GazouFukkatsu.1.0.2.19.cab
O16 - DPF: {B3E32D88-8E7F-468F-B0E2-3A300FD4A82C} (Enlite 2.x Simulation Engine Installer) - http://myitlab.pearsoned.com/Pegasus/Modules/SIMIntegration/Resources/ax/stub.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Authentec memory manager service (Authentec memory manager) - AuthenTec Inc. - C:\Windows\system32\TAMSvr.exe
O23 - Service: Client Security Agent Service (BNPagent) - Bradford Networks - C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFreeサービス (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Update Service (gupdate1c985a5209c0790) (gupdate1c985a5209c0790) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PIXUS 使用状況調査プログラム (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Jumpstart Wifi Protected Setup (jswpsapi) - Atheros Communications, Inc. - C:\Program Files\Jumpstart\jswpsapi.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - c:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: OfficeScan NT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: PACSPTISVR - Sony Corporation - c:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - c:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: TOSHIBA HDD Protection (Thpsrv) - TOSHIBA Corporation - C:\Windows\system32\ThpSrv.exe
O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe
O23 - Service: OfficeScan NT Listener (tmlisten) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
O23 - Service: OfficeScan NT Firewall (TmPfw) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\TmPfw.exe
O23 - Service: OfficeScan NT Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\TmProxy.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: TXVDrv Service (TxVDrvSvc) - Texim Corporation. - C:\Program Files\JustSystems\PersonalShelter\TxVDrvSvc.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
--
End of file - 12079 bytes
続きましてCCのログです
Acronis True Image LE Acronis 2009/12/23 153 MB 10.0.5079
Adobe Flash Player 16 ActiveX Adobe Systems Incorporated 2015/02/05 16.0.0.305
Adobe Flash Player 16 NPAPI Adobe Systems Incorporated 2015/02/06 16.0.0.305
Adobe PDF IFilter 6.0 Adobe Systems, Inc. 2008/03/02 19.6 MB 6.0
Adobe Reader X (10.1.13) - Japanese Adobe Systems Incorporated 2014/12/11 10.1.13
Adobe Shockwave Player 11.5 Adobe Systems, Inc. 2011/04/28 8.88 MB 11.5.9.620
Advanced Wheel Mouse 6.0.0.000 2009/07/25 452 KB
Aerosim CRJ200 VFD 2.1.23.1 2010/11/03 159 MB
Apple Application Support Apple Inc. 2014/01/22 64.0 MB 2.3.6
Apple Mobile Device Support Apple Inc. 2014/01/22 24.5 MB 7.0.0.117
Apple Software Update Apple Inc. 2011/10/12 2.38 MB 2.1.3.127
AR_CAD 2011/06/08 8.93 MB
ArcSoft Panorama Maker 4 ArcSoft 2011/03/30 14.6 MB
Atheros Driver Installation Program Atheros 2008/05/18 4.00 KB 7.1
Atheros Wi-Fi Protected Setup Library Atheros 2008/05/18 4.75 MB
Belkin F5D8053 N Wireless USB Adapter Belkin 2009/09/02 2.0.0.04
Boingo Wi-Fi Boingo Wireless, Inc. 2010/08/11 2.29 MB 1.7.0020
Bonjour Apple Inc. 2014/01/22 1.06 MB 3.0.0.10
BUFFALO TurboUSB for FLASH/HDD 2009/12/23
Canon IJ Network Scan Utility 2012/04/21 740 KB
Canon IJ Network Scanner Selector EX Canon Inc. 2015/01/14 1.58 MB 1.5.1.4
Canon IJ Network Tool Canon Inc. 2015/01/14 2.21 MB 3.4.0
Canon IJ Scan Utility Canon Inc. 2015/01/14 7.35 MB 1.1.5.14
Canon MG6100 series MP Drivers 2012/04/21
Canon MP Navigator EX 1.0 2008/07/27 65.9 MB
Canon MP470 series 2008/07/27 11.3 MB
Canon MP470 series User Registration 2008/07/27 528 KB
Canon MX470 series MP Drivers Canon Inc. 2015/01/14 1.00
Canon MX470 series User Registration Canon Inc. 2015/01/14 2.60 MB
Canon My Printer 2008/07/27 2.14 MB
Canon Utilities Easy-PhotoPrint EX 2008/07/27 208 MB
Canon Utilities Solution Menu 2008/07/27 1.59 MB
CCleaner Piriform 2015/02/25 8.12 MB 5.03
CD/DVD静音ユーティリティ TOSHIBA 2008/02/26 608 KB 2.02.01
Client Security Agent Bradford Networks 2008/08/14 4.39 MB 1.6.6.6
Conexant HD Audio Conexant 2008/05/18 1.28 MB 4.36.6.0
DVD MovieWriter for TOSHIBA Ulead Systems, Inc. 2008/01/01 256 MB 5.51
dynabookランチャー 東芝情報機器株式会社 2008/02/26 640 KB 1.0.2
dynabookランチャー用バナー 2008/01/01 796 KB
Edy Viewer bitWallet 2008/02/26 3.18 MB 2.1.1.1
eLIO D-URL Sony Finance International, Inc. 2008/02/26 805 KB 3.1.0.2
Explzh for Windows 2012/07/23 6.93 MB
FeliCa Port Software 2008/01/01 956 KB
FeliCaブラウザエクステンション Sony Corp. 2008/02/26 1.16 MB 1.30.0000
Google Earth Google 2011/11/16 92.7 MB 6.1.0.5001
Google アップデータ Google Inc. 2011/09/27 2.54 MB 2.4.2432.1652
HDMI Control Manager TOSHIBA 2008/02/26 2.04 MB 1.6
Intel(R) Graphics Media Accelerator Driver 2008/01/01
Intel® Matrix Storage Manager 2008/01/01 37.1 MB
its-moNavi PC 2008/01/01 15.6 MB 5.6.0
iTunes Apple Inc. 2014/01/22 214 MB 11.1.3.8
Japanese Fonts Support For Adobe Reader 9 Adobe Systems Incorporated 2010/10/12 16.4 MB 9.0.0
KeyHoleTV 2012/11/02 992 KB
LaLaVoice V9.50 2008/01/01 996 KB
Marvell Miniport Driver Marvell 2008/02/26 2.02 MB 10.51.1.3
McAfee Security Scan Plus McAfee, Inc. 2014/06/11 2.32 MB 3.8.150.1
McAfee SiteAdvisor McAfee, Inc. 2009/03/28 6.15 MB 2.9.258
Microsoft .NET Framework 3.5 Language Pack SP1 - 日本語 Microsoft Corporation 2014/11/12 36.7 MB
Microsoft .NET Framework 3.5 SP1 Microsoft Corporation 2014/11/12 36.7 MB
Microsoft .NET Framework 4.5.1 Microsoft Corporation 2014/11/12 251 MB 4.5.50938
Microsoft Office File Validation Add-In Microsoft Corporation 2014/11/13 10.9 MB 14.0.5130.5003
Microsoft Office IME 2010 (Japanese) Microsoft Corporation 2014/11/12 14.0.6119.5000
Microsoft Office Personal 2007 Microsoft Corporation 2013/06/08 314 MB 12.0.6612.1000
Microsoft Office PowerPoint 2007 Microsoft Corporation 2013/06/08 314 MB 12.0.6612.1000
Microsoft Office ナビ 2007 Microsoft Corporation 2008/03/03 12.0.2213.0
Microsoft Silverlight Microsoft Corporation 2014/11/12 5.1.30514.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 2009/07/29 251 KB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2011/06/15 294 KB 8.0.59193
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Corporation 2011/04/14 592 KB 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2013/02/12 234 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2011/03/29 590 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2011/06/15 594 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2012/04/23 10.0.40219
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 2008/02/26 1.26 MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2008/11/11 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2009/11/30 1.33 MB 4.20.9876.0
NFRMプレーヤ NFRMPCViewer 2.0.3 Faith, Inc. 2008/02/26 4.46 MB
Nikon Message Center Nikon 2011/03/29 204 KB 0.92.000
Nikon Message Center 2 Nikon 2013/02/12 2.05 MB 2.0.1
Nikon Transfer Nikon 2011/03/29 46.6 MB 1.0.2
O2Micro Flash Memory Card Reader Driver (x86) O2Micro 2008/02/26 1.07 MB 3.19.1
OpenMG Secure Module 4.7.01 Sony Corporation 2008/02/27 4.7.01.06151
OpenOffice.org Installer 1.0 Sun Microsystems 2008/06/24 2.38 MB 1.0.9221
PC引越ナビ 東芝パソコンシステム株式会社 2008/02/26 14.4 MB 3.0.1
Picture Control Utility Nikon 2013/02/12 19.5 MB 1.2.2
PIXMA Extended Survey Program 2008/07/27 776 KB
QuickTime Apple Inc. 2014/01/22 74.6 MB 7.74.80.86
Rainmeter 2012/04/23 2.42 MB 2.2 r1116
RealPlayer RealNetworks 2008/07/05 44.6 MB
RescuePRO Deluxe 5.0 LC Technology International, Inc. 2013/01/04 44.9 MB 5.0
ScanSoft OmniPage SE 4 Nuance Communications, Inc. 2008/07/26 166 MB 15.2.0020
SFCard Viewer 2 2008/01/01 828 KB
SimCity 2000 Special Edition 2009/07/21 17.1 MB
SketchUp 8 Trimble Navigation Limited 2013/05/15 84.2 MB 3.0.16950
Skype(TM) 7.0 Skype Technologies S.A. 2015/01/24 27.0 MB 7.0.102
TOSHIBA ConfigFree TOSHIBA Corporation 2008/02/26 68.9 MB 7.1.29
TOSHIBA Disc Creator TOSHIBA Corporation 2008/02/26 8.30 MB 2.0.1.2
TOSHIBA DVD PLAYER TOSHIBA Corporation 2008/02/26 24.2 MB 1.20.11
TOSHIBA Extended Tiles for Windows Mobility Center TOSHIBA Corporation 2008/02/26 1.21 MB 1.01.00
TOSHIBA Hardware Setup TOSHIBA 2008/02/26 2.84 MB 3.00.01.00
TOSHIBA HDD Protection TOSHIBA Corporation 2008/02/26 9.74 MB 2.0.2.3
TOSHIBA Recovery Disc Creator TOSHIBA Corporation 2008/02/27 2.35 MB 2.0.0.1b
TOSHIBA SD Memory Utilities TOSHIBA Corporation 2008/02/26 995 KB 1.8.1.1
TOSHIBA Speech Engines Version V9.50 2008/01/01 1.26 MB
TOSHIBA Speech System MT Engine Version 9.0 2008/01/01 888 KB
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0 2008/01/01 884 KB
TOSHIBA Supervisor Password TOSHIBA 2008/02/26 2.84 MB 3.00.01.00
TOSHIBA Value Added Package TOSHIBA Corporation 2008/02/26 64.0 KB 1.1.14
Trend Micro OfficeScan Client Trend Micro 2014/05/25 194 MB 10.6.5162
TrueSuite Access Manager ABIG 2008/02/27 19.7 MB 1.1.13.13
ViewNX 2 Nikon 2013/02/12 64.4 MB 2.1.2
Windows Media エンコーダ 9 シリーズ 2008/02/27 13.6 MB
かざしてナビ 株式会社ジャストシステム 2008/02/26 4.08 MB 1.00.000
かんたん登録2 株式会社ジャストシステム 2008/02/26 5.75 MB 1.00.000
ぼくは航空管制官2 2008/06/14
ぼくは航空管制官2チャレンジ4! 2008/05/21
ぼくは航空管制官3 体験版 株式会社TechnoBrain 2009/08/26 148 MB 1.0.0
シンプルログオン 株式会社ジャストシステム 2008/02/26 3.42 MB 1.00.000
スクリーンセーバーロック2 株式会社ジャストシステム 2008/02/26 3.73 MB 1.00.000
パソコンで見るマニュアル TOSHIBA CORPORATION 2008/02/26 32.8 MB 0015.01.0201
パソコン設定ガイド 東芝情報機器株式会社 2008/02/26 6.66 MB 1.0.0
パーソナルシェルター 株式会社ジャストシステム 2008/02/26 4.53 MB 1.00.000
東芝お客様登録 2008/01/01 772 KB
東芝ソフトウェア更新チェックツール TOSHIBA 2008/02/27 496 KB 1.1.0
筆ぐるめ Ver.15 富士ソフト株式会社 2008/02/26 495 MB 15.00.0000
まずはHJTより、
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 23:13:54, on 2015/02/25
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16609)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMECMNT.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\mobsync.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Windows\System32\ThpSrv.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\Justsystems\KazaNavi\kazanavi.exe
C:\Program Files\TrueSuite Access Manager\FpNotifier.exe
C:\Program Files\TrueSuite Access Manager\usbnotify.exe
C:\Program Files\TrueSuite Access Manager\CssSvr.exe
C:\Program Files\TrueSuite Access Manager\PwdBank.exe
C:\Program Files\Trend Micro\OfficeScan Client\PccNTMon.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Bradford Networks\Client Security Agent\bncsaui.exe
C:\Advanced Wheel Mouse\wh_exec.exe
C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
C:\Program Files\Rainmeter\Rainmeter.exe
C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_16_0_0_305_ActiveX.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Kohei\Desktop\HijackThis.exe
O1 - Hosts: ::1 localhost
O2 - BHO: かんたん登録2 - {0DD41AE7-6196-42E7-BDE5-4F393997449E} - C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: FeliCaブラウザエクステンション - {EC5D2125-D8AB-4a18-A599-D97D2731DE19} - C:\Program Files\Sony\FeliCaBrowserExtension\fbe.dll
O3 - Toolbar: かんたん登録2 ツールバー - {833CFE4E-05BD-43A3-97A7-A4E80D742F0F} - C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [ThpSrv] C:\Windows\system32\thpsrv /logon
O4 - HKLM\..\Run: [cfWPSEnabler.exe] cfWPSEnabler.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [KazaNavi] C:\Program Files\JustSystems\KazaNavi\kazanavi.exe /tasktray
O4 - HKLM\..\Run: [FingerPrintNotifer] "C:\Program Files\TrueSuite Access Manager\FpNotifier.exe"
O4 - HKLM\..\Run: [UsbMonitor] "C:\Program Files\TrueSuite Access Manager\usbnotify.exe"
O4 - HKLM\..\Run: [PwdBank] "C:\Program Files\TrueSuite Access Manager\PwdBank.exe"
O4 - HKLM\..\Run: [IME JPN 2007 Migration] C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE /Preload
O4 - HKLM\..\Run: [jswtrayutil] "C:\Program Files\Jumpstart\jswtrayutil.exe"
O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
O4 - HKLM\..\Run: [bncsaui.exe] %ProgramFiles%\Bradford Networks\Client Security Agent\bncsaui.exe
O4 - HKLM\..\Run: [PAC207_Monitor] C:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [WheelMouse] C:\ADVANC~1\wh_exec.exe
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.EXE
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Kohei\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Startup: 東芝ソフトウェア更新チェックツール.lnk = C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O4 - Global Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - Trusted Zone: http://*.remotecall.jp (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei-4/MyFunCardsInitialSetup1.0.1.1.cab
O16 - DPF: {70EE0AA4-5A3A-4052-8FFA-2EEDA43F7942} (Innotive Cibrowser Control 1.2) - http://imedia.ngc.co.jp/ibkoozen/plugin/cibrowser1219.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {AEEF256A-781F-44CE-8ED7-DDEE3ECD26E3} (画像復活) - http://www.isl.co.jp/SILKYPIX/gazou-fukkatsu-2/GazouFukkatsu.1.0.2.19.cab
O16 - DPF: {B3E32D88-8E7F-468F-B0E2-3A300FD4A82C} (Enlite 2.x Simulation Engine Installer) - http://myitlab.pearsoned.com/Pegasus/Modules/SIMIntegration/Resources/ax/stub.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Authentec memory manager service (Authentec memory manager) - AuthenTec Inc. - C:\Windows\system32\TAMSvr.exe
O23 - Service: Client Security Agent Service (BNPagent) - Bradford Networks - C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFreeサービス (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Update Service (gupdate1c985a5209c0790) (gupdate1c985a5209c0790) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PIXUS 使用状況調査プログラム (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Jumpstart Wifi Protected Setup (jswpsapi) - Atheros Communications, Inc. - C:\Program Files\Jumpstart\jswpsapi.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - c:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: OfficeScan NT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: PACSPTISVR - Sony Corporation - c:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - c:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: TOSHIBA HDD Protection (Thpsrv) - TOSHIBA Corporation - C:\Windows\system32\ThpSrv.exe
O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe
O23 - Service: OfficeScan NT Listener (tmlisten) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
O23 - Service: OfficeScan NT Firewall (TmPfw) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\TmPfw.exe
O23 - Service: OfficeScan NT Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\TmProxy.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: TXVDrv Service (TxVDrvSvc) - Texim Corporation. - C:\Program Files\JustSystems\PersonalShelter\TxVDrvSvc.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
--
End of file - 12079 bytes
続きましてCCのログです
Acronis True Image LE Acronis 2009/12/23 153 MB 10.0.5079
Adobe Flash Player 16 ActiveX Adobe Systems Incorporated 2015/02/05 16.0.0.305
Adobe Flash Player 16 NPAPI Adobe Systems Incorporated 2015/02/06 16.0.0.305
Adobe PDF IFilter 6.0 Adobe Systems, Inc. 2008/03/02 19.6 MB 6.0
Adobe Reader X (10.1.13) - Japanese Adobe Systems Incorporated 2014/12/11 10.1.13
Adobe Shockwave Player 11.5 Adobe Systems, Inc. 2011/04/28 8.88 MB 11.5.9.620
Advanced Wheel Mouse 6.0.0.000 2009/07/25 452 KB
Aerosim CRJ200 VFD 2.1.23.1 2010/11/03 159 MB
Apple Application Support Apple Inc. 2014/01/22 64.0 MB 2.3.6
Apple Mobile Device Support Apple Inc. 2014/01/22 24.5 MB 7.0.0.117
Apple Software Update Apple Inc. 2011/10/12 2.38 MB 2.1.3.127
AR_CAD 2011/06/08 8.93 MB
ArcSoft Panorama Maker 4 ArcSoft 2011/03/30 14.6 MB
Atheros Driver Installation Program Atheros 2008/05/18 4.00 KB 7.1
Atheros Wi-Fi Protected Setup Library Atheros 2008/05/18 4.75 MB
Belkin F5D8053 N Wireless USB Adapter Belkin 2009/09/02 2.0.0.04
Boingo Wi-Fi Boingo Wireless, Inc. 2010/08/11 2.29 MB 1.7.0020
Bonjour Apple Inc. 2014/01/22 1.06 MB 3.0.0.10
BUFFALO TurboUSB for FLASH/HDD 2009/12/23
Canon IJ Network Scan Utility 2012/04/21 740 KB
Canon IJ Network Scanner Selector EX Canon Inc. 2015/01/14 1.58 MB 1.5.1.4
Canon IJ Network Tool Canon Inc. 2015/01/14 2.21 MB 3.4.0
Canon IJ Scan Utility Canon Inc. 2015/01/14 7.35 MB 1.1.5.14
Canon MG6100 series MP Drivers 2012/04/21
Canon MP Navigator EX 1.0 2008/07/27 65.9 MB
Canon MP470 series 2008/07/27 11.3 MB
Canon MP470 series User Registration 2008/07/27 528 KB
Canon MX470 series MP Drivers Canon Inc. 2015/01/14 1.00
Canon MX470 series User Registration Canon Inc. 2015/01/14 2.60 MB
Canon My Printer 2008/07/27 2.14 MB
Canon Utilities Easy-PhotoPrint EX 2008/07/27 208 MB
Canon Utilities Solution Menu 2008/07/27 1.59 MB
CCleaner Piriform 2015/02/25 8.12 MB 5.03
CD/DVD静音ユーティリティ TOSHIBA 2008/02/26 608 KB 2.02.01
Client Security Agent Bradford Networks 2008/08/14 4.39 MB 1.6.6.6
Conexant HD Audio Conexant 2008/05/18 1.28 MB 4.36.6.0
DVD MovieWriter for TOSHIBA Ulead Systems, Inc. 2008/01/01 256 MB 5.51
dynabookランチャー 東芝情報機器株式会社 2008/02/26 640 KB 1.0.2
dynabookランチャー用バナー 2008/01/01 796 KB
Edy Viewer bitWallet 2008/02/26 3.18 MB 2.1.1.1
eLIO D-URL Sony Finance International, Inc. 2008/02/26 805 KB 3.1.0.2
Explzh for Windows 2012/07/23 6.93 MB
FeliCa Port Software 2008/01/01 956 KB
FeliCaブラウザエクステンション Sony Corp. 2008/02/26 1.16 MB 1.30.0000
Google Earth Google 2011/11/16 92.7 MB 6.1.0.5001
Google アップデータ Google Inc. 2011/09/27 2.54 MB 2.4.2432.1652
HDMI Control Manager TOSHIBA 2008/02/26 2.04 MB 1.6
Intel(R) Graphics Media Accelerator Driver 2008/01/01
Intel® Matrix Storage Manager 2008/01/01 37.1 MB
its-moNavi PC 2008/01/01 15.6 MB 5.6.0
iTunes Apple Inc. 2014/01/22 214 MB 11.1.3.8
Japanese Fonts Support For Adobe Reader 9 Adobe Systems Incorporated 2010/10/12 16.4 MB 9.0.0
KeyHoleTV 2012/11/02 992 KB
LaLaVoice V9.50 2008/01/01 996 KB
Marvell Miniport Driver Marvell 2008/02/26 2.02 MB 10.51.1.3
McAfee Security Scan Plus McAfee, Inc. 2014/06/11 2.32 MB 3.8.150.1
McAfee SiteAdvisor McAfee, Inc. 2009/03/28 6.15 MB 2.9.258
Microsoft .NET Framework 3.5 Language Pack SP1 - 日本語 Microsoft Corporation 2014/11/12 36.7 MB
Microsoft .NET Framework 3.5 SP1 Microsoft Corporation 2014/11/12 36.7 MB
Microsoft .NET Framework 4.5.1 Microsoft Corporation 2014/11/12 251 MB 4.5.50938
Microsoft Office File Validation Add-In Microsoft Corporation 2014/11/13 10.9 MB 14.0.5130.5003
Microsoft Office IME 2010 (Japanese) Microsoft Corporation 2014/11/12 14.0.6119.5000
Microsoft Office Personal 2007 Microsoft Corporation 2013/06/08 314 MB 12.0.6612.1000
Microsoft Office PowerPoint 2007 Microsoft Corporation 2013/06/08 314 MB 12.0.6612.1000
Microsoft Office ナビ 2007 Microsoft Corporation 2008/03/03 12.0.2213.0
Microsoft Silverlight Microsoft Corporation 2014/11/12 5.1.30514.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 2009/07/29 251 KB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2011/06/15 294 KB 8.0.59193
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Corporation 2011/04/14 592 KB 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2013/02/12 234 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2011/03/29 590 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2011/06/15 594 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2012/04/23 10.0.40219
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 2008/02/26 1.26 MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2008/11/11 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2009/11/30 1.33 MB 4.20.9876.0
NFRMプレーヤ NFRMPCViewer 2.0.3 Faith, Inc. 2008/02/26 4.46 MB
Nikon Message Center Nikon 2011/03/29 204 KB 0.92.000
Nikon Message Center 2 Nikon 2013/02/12 2.05 MB 2.0.1
Nikon Transfer Nikon 2011/03/29 46.6 MB 1.0.2
O2Micro Flash Memory Card Reader Driver (x86) O2Micro 2008/02/26 1.07 MB 3.19.1
OpenMG Secure Module 4.7.01 Sony Corporation 2008/02/27 4.7.01.06151
OpenOffice.org Installer 1.0 Sun Microsystems 2008/06/24 2.38 MB 1.0.9221
PC引越ナビ 東芝パソコンシステム株式会社 2008/02/26 14.4 MB 3.0.1
Picture Control Utility Nikon 2013/02/12 19.5 MB 1.2.2
PIXMA Extended Survey Program 2008/07/27 776 KB
QuickTime Apple Inc. 2014/01/22 74.6 MB 7.74.80.86
Rainmeter 2012/04/23 2.42 MB 2.2 r1116
RealPlayer RealNetworks 2008/07/05 44.6 MB
RescuePRO Deluxe 5.0 LC Technology International, Inc. 2013/01/04 44.9 MB 5.0
ScanSoft OmniPage SE 4 Nuance Communications, Inc. 2008/07/26 166 MB 15.2.0020
SFCard Viewer 2 2008/01/01 828 KB
SimCity 2000 Special Edition 2009/07/21 17.1 MB
SketchUp 8 Trimble Navigation Limited 2013/05/15 84.2 MB 3.0.16950
Skype(TM) 7.0 Skype Technologies S.A. 2015/01/24 27.0 MB 7.0.102
TOSHIBA ConfigFree TOSHIBA Corporation 2008/02/26 68.9 MB 7.1.29
TOSHIBA Disc Creator TOSHIBA Corporation 2008/02/26 8.30 MB 2.0.1.2
TOSHIBA DVD PLAYER TOSHIBA Corporation 2008/02/26 24.2 MB 1.20.11
TOSHIBA Extended Tiles for Windows Mobility Center TOSHIBA Corporation 2008/02/26 1.21 MB 1.01.00
TOSHIBA Hardware Setup TOSHIBA 2008/02/26 2.84 MB 3.00.01.00
TOSHIBA HDD Protection TOSHIBA Corporation 2008/02/26 9.74 MB 2.0.2.3
TOSHIBA Recovery Disc Creator TOSHIBA Corporation 2008/02/27 2.35 MB 2.0.0.1b
TOSHIBA SD Memory Utilities TOSHIBA Corporation 2008/02/26 995 KB 1.8.1.1
TOSHIBA Speech Engines Version V9.50 2008/01/01 1.26 MB
TOSHIBA Speech System MT Engine Version 9.0 2008/01/01 888 KB
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0 2008/01/01 884 KB
TOSHIBA Supervisor Password TOSHIBA 2008/02/26 2.84 MB 3.00.01.00
TOSHIBA Value Added Package TOSHIBA Corporation 2008/02/26 64.0 KB 1.1.14
Trend Micro OfficeScan Client Trend Micro 2014/05/25 194 MB 10.6.5162
TrueSuite Access Manager ABIG 2008/02/27 19.7 MB 1.1.13.13
ViewNX 2 Nikon 2013/02/12 64.4 MB 2.1.2
Windows Media エンコーダ 9 シリーズ 2008/02/27 13.6 MB
かざしてナビ 株式会社ジャストシステム 2008/02/26 4.08 MB 1.00.000
かんたん登録2 株式会社ジャストシステム 2008/02/26 5.75 MB 1.00.000
ぼくは航空管制官2 2008/06/14
ぼくは航空管制官2チャレンジ4! 2008/05/21
ぼくは航空管制官3 体験版 株式会社TechnoBrain 2009/08/26 148 MB 1.0.0
シンプルログオン 株式会社ジャストシステム 2008/02/26 3.42 MB 1.00.000
スクリーンセーバーロック2 株式会社ジャストシステム 2008/02/26 3.73 MB 1.00.000
パソコンで見るマニュアル TOSHIBA CORPORATION 2008/02/26 32.8 MB 0015.01.0201
パソコン設定ガイド 東芝情報機器株式会社 2008/02/26 6.66 MB 1.0.0
パーソナルシェルター 株式会社ジャストシステム 2008/02/26 4.53 MB 1.00.000
東芝お客様登録 2008/01/01 772 KB
東芝ソフトウェア更新チェックツール TOSHIBA 2008/02/27 496 KB 1.1.0
筆ぐるめ Ver.15 富士ソフト株式会社 2008/02/26 495 MB 15.00.0000
- pilot
- 2015/02/25 (Wed) 22:51:00
確認事項がございます
こんばんは、IVNOと申します。
確かにマルウェア感染であるのは間違いありません。
しかしログを読む限り、何か業務用PCの臭いがするのですが、
本PCは業務に利用なされておられますか?
そちらをご連絡いただければと思います。
確かにマルウェア感染であるのは間違いありません。
しかしログを読む限り、何か業務用PCの臭いがするのですが、
本PCは業務に利用なされておられますか?
そちらをご連絡いただければと思います。
- IVNO
- 2015/02/25 (Wed) 23:51:26
PCの使用用途に関して
IVNO様、早速のご返信ありがとうございます。
当PCは個人用のPCとして使用しており、業務用としては使用しておりません。
もちろん職場に当PCを持ち込むことはありますが、その際は私用・社用のEメールの確認、webサイトの閲覧の目的で使用するのみです。
学生時代からかれこれ7年近く使用しているPCのため、当時授業に必要で購入したソフトであったり、友人と趣味で導入したCAD等、一般の方が使用していないソフトが導入されているのが業務用に見える原因かと思います。
当PCは個人用のPCとして使用しており、業務用としては使用しておりません。
もちろん職場に当PCを持ち込むことはありますが、その際は私用・社用のEメールの確認、webサイトの閲覧の目的で使用するのみです。
学生時代からかれこれ7年近く使用しているPCのため、当時授業に必要で購入したソフトであったり、友人と趣味で導入したCAD等、一般の方が使用していないソフトが導入されているのが業務用に見える原因かと思います。
- pilot
- 2015/02/26 (Thu) 21:31:57
作業を行いましょう
個人でご利用になられておられるPCなのですね。
それでしたら問題なく処置を行うことができます。
それでは作業準備を行いましょう。
まずはじめに連絡事項がございます。
相談いただいてから回答できるまでに、毎回1日かそれ以上かかる可能性もございます。
ご不便をおかけいたしますが、ご理解とご協力を賜りますよう、お願い申し上げます。
また、回答者側から「解決」と通達があるまで、駆除作業は続いております。
そのため、途中でPCの状況が良くなったかのように感じたからと言って、解決のご案内を待たずして作業を中断なされると、
高確率で再発しているのが現状で、再発時にこちらにお戻りになられる方が続出しております。
回答者から「解決」と「自衛策」の案内があるまでは、作業を続けるようにしてください。
それでは以下の説明を熟読し、順番に作業をお願いします。
既に準備した物もあるはずですが、一応説明を再度見ておいてください。
隠しファイルと拡張子を表示設定にしてください(やり方↓)
http://pasofaq.jp/windows/mycomputer/hiddenfile.htm
http://support.microsoft.com/kb/978449/ja
下記のツールをダウンロードして、基本の使い方を把握しておいてください。
ただし、配布サイトで他のソフトウェアをダウンロードしろと勧めてくるような広告も出てくる可能性がありますが、
それらは絶対にクリックしないでください。
「ATF-Cleaner」(通称:ATF)
説明↓
http://freesoft.tvbok.com/freesoft/pc_system/atf-cleaner.html
ダウンロード↓
http://www.atribune.org/index.php?option=com_content&task=view&id=25&Itemid=1
中央の赤い文字がダウンロードリンクです。
片付けるときはファイルを直接削除してください。
説明ページではWindowsXpと2000対応と書かれてますが、Win7やVistaにも対応です。
Iobit Uninstaller(通称:IU)
公式ページ↓
http://jp.iobit.com/free/iou.html
解説↓
http://milksizegene.blog.fc2.com/blog-entry-282.html
片付けのときはIUを起動中にIUを選択して削除するのですが、ポータブル版をお使いの場合はフォルダごと削除してください。
また、Revo Uninstallerなどの別の削除支援ソフトをお使いの場合は、そちらを利用して削除してください。
「CCleaner」(通称:CC)
説明↓
http://www.gigafree.net/system/clean/ccleaner.html
http://note.chiebukuro.yahoo.co.jp/detail/n178757
ダウンロード↓
http://www.piriform.com/ccleaner/download/standard
最新バージョンをダウンロードするようにしましょう。
なお、インストール時におまけのアプリも勧めてくることがありますが、それらはチェック外してインストールは避けてください。
削除の際はIUなどでアンインストールしてください。
ここで重要な注意です。
CCは本来は高い性能を持つメンテナンスソフトですが、間違った使い方すると
【操作次第ではWindowsが動作しなくなる可能性もある】
ので、ここでは解析ツールとしてのみ使います。
説明をしっかり読んで、こちらが指示した以外の操作はしないようにしてください。
「AdwCleaner」(通称:AC)
http://www.bleepingcomputer.com/download/adwcleaner/dl/125/
ファイル直リンクです。アクセスしてファイルを分かりやすい場所に保存しておいてください。
片付けるときは起動後に「uninstall」ボタンを押せば自動で削除されます。
準備できたら作業を開始しましょう。
まずは、Javaをご利用の方は以下URLの「Javaアンインストール・ツール」と言う文字をクリックし、
最新版の確認と旧バージョンの削除を行われてください。
https://java.com/ja/download/faq/remove_olderversions.xml
Javaの処置が完了した方、Javaを導入されていない方は以下から作業をお願いいたします。
Skypeの最新版は7.1となりますので、アップデートしておいてください。
以降の駆除作業でトラブルが発生しても直ちに復旧できるよう、システムの復元ポイントを手動で作成しましょう。
http://windows.microsoft.com/ja-jp/windows7/create-a-restore-point
しかし、システムの復元はPCにかなりのダメージを与えますので、できれば使わないほうが望ましいです。
システムの復元が必要のない、慎重な作業を心がけましょう。
PCをセーフモードで起動してください(やり方↓)
http://www.pc-master.jp/sousa/s-safemode.html
HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、
こちらが指示した以外のものは絶対にチェックを入れないでください。
O4 - HKLM\..\Run: [jswtrayutil] "C:\Program Files\Jumpstart\jswtrayutil.exe"
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Kohei\AppData\Local\Akamai\netsession_win.exe"
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O15 - Trusted Zone: http://*.remotecall.jp (HKLM)
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei-4/MyFunCardsInitialSetup1.0.1.1.cab
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
上記のFixが完了したら、IU起動させ、以下を削除してください。
Adobe Reader X (10.1.13) - Japanese Adobe Systems Incorporated 2014/12/11 10.1.13
Japanese Fonts Support For Adobe Reader 9 Adobe Systems Incorporated 2010/10/12 16.4 MB 9.0.0
McAfee Security Scan Plus McAfee, Inc. 2014/06/11 2.32 MB 3.8.150.1
削除ボタンを押し、削除が完了したらパワフルスキャンを行い、検出されたごみすべてにチェックを入れて削除してください。
IUでのアンインストールが完了しましたらIUを終了させ、ATFで掃除を行ってください。
Select Allにチェックを入れ、Empty Selectedをクリックします。
ATFでの掃除が完了しましたら、ACを使用してマルウェアの掃除を行いましょう。
ACを起動させ、Scanまたはスキャンをクリックします。
スキャンが終了しましたら、Cleanまたは除去をクリックして掃除を行います。
掃除が完了すると再起動を求められますので、指示に従って通常モードで再起動を行ってください。
これでセーフモードから通常モードに移行します。
再起動が完了すると、ACのログが表示されますので、そちらを一度PC内の分かりやすい場所に保存してください。
その後、CCを起動させてください。
起動したら、「ツール」→「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できますので、
デスクトップ等、分かりやすい場所に最新のログのみ保存しておきましょう。
続いて「InternetExplorer」タブのログ、導入されておられるのであれば「Firefox」タブ、
同じく導入されておられるのであれば「Google Chrome」タブ、そして「スケジュールされたタスク」タブのログを取得してください。
ただし、「コンテキストメニュー」のログは取得していただく必要がございません。
CCの各ログを取得されましたら、CCは終了させて問題ありません。
ACとCCのログを返信欄に貼り付けていただき、ご報告をお願いいたします。
上記ログを確認後、次の作業内容をご案内いたします。
それでしたら問題なく処置を行うことができます。
それでは作業準備を行いましょう。
まずはじめに連絡事項がございます。
相談いただいてから回答できるまでに、毎回1日かそれ以上かかる可能性もございます。
ご不便をおかけいたしますが、ご理解とご協力を賜りますよう、お願い申し上げます。
また、回答者側から「解決」と通達があるまで、駆除作業は続いております。
そのため、途中でPCの状況が良くなったかのように感じたからと言って、解決のご案内を待たずして作業を中断なされると、
高確率で再発しているのが現状で、再発時にこちらにお戻りになられる方が続出しております。
回答者から「解決」と「自衛策」の案内があるまでは、作業を続けるようにしてください。
それでは以下の説明を熟読し、順番に作業をお願いします。
既に準備した物もあるはずですが、一応説明を再度見ておいてください。
隠しファイルと拡張子を表示設定にしてください(やり方↓)
http://pasofaq.jp/windows/mycomputer/hiddenfile.htm
http://support.microsoft.com/kb/978449/ja
下記のツールをダウンロードして、基本の使い方を把握しておいてください。
ただし、配布サイトで他のソフトウェアをダウンロードしろと勧めてくるような広告も出てくる可能性がありますが、
それらは絶対にクリックしないでください。
「ATF-Cleaner」(通称:ATF)
説明↓
http://freesoft.tvbok.com/freesoft/pc_system/atf-cleaner.html
ダウンロード↓
http://www.atribune.org/index.php?option=com_content&task=view&id=25&Itemid=1
中央の赤い文字がダウンロードリンクです。
片付けるときはファイルを直接削除してください。
説明ページではWindowsXpと2000対応と書かれてますが、Win7やVistaにも対応です。
Iobit Uninstaller(通称:IU)
公式ページ↓
http://jp.iobit.com/free/iou.html
解説↓
http://milksizegene.blog.fc2.com/blog-entry-282.html
片付けのときはIUを起動中にIUを選択して削除するのですが、ポータブル版をお使いの場合はフォルダごと削除してください。
また、Revo Uninstallerなどの別の削除支援ソフトをお使いの場合は、そちらを利用して削除してください。
「CCleaner」(通称:CC)
説明↓
http://www.gigafree.net/system/clean/ccleaner.html
http://note.chiebukuro.yahoo.co.jp/detail/n178757
ダウンロード↓
http://www.piriform.com/ccleaner/download/standard
最新バージョンをダウンロードするようにしましょう。
なお、インストール時におまけのアプリも勧めてくることがありますが、それらはチェック外してインストールは避けてください。
削除の際はIUなどでアンインストールしてください。
ここで重要な注意です。
CCは本来は高い性能を持つメンテナンスソフトですが、間違った使い方すると
【操作次第ではWindowsが動作しなくなる可能性もある】
ので、ここでは解析ツールとしてのみ使います。
説明をしっかり読んで、こちらが指示した以外の操作はしないようにしてください。
「AdwCleaner」(通称:AC)
http://www.bleepingcomputer.com/download/adwcleaner/dl/125/
ファイル直リンクです。アクセスしてファイルを分かりやすい場所に保存しておいてください。
片付けるときは起動後に「uninstall」ボタンを押せば自動で削除されます。
準備できたら作業を開始しましょう。
まずは、Javaをご利用の方は以下URLの「Javaアンインストール・ツール」と言う文字をクリックし、
最新版の確認と旧バージョンの削除を行われてください。
https://java.com/ja/download/faq/remove_olderversions.xml
Javaの処置が完了した方、Javaを導入されていない方は以下から作業をお願いいたします。
Skypeの最新版は7.1となりますので、アップデートしておいてください。
以降の駆除作業でトラブルが発生しても直ちに復旧できるよう、システムの復元ポイントを手動で作成しましょう。
http://windows.microsoft.com/ja-jp/windows7/create-a-restore-point
しかし、システムの復元はPCにかなりのダメージを与えますので、できれば使わないほうが望ましいです。
システムの復元が必要のない、慎重な作業を心がけましょう。
PCをセーフモードで起動してください(やり方↓)
http://www.pc-master.jp/sousa/s-safemode.html
HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、
こちらが指示した以外のものは絶対にチェックを入れないでください。
O4 - HKLM\..\Run: [jswtrayutil] "C:\Program Files\Jumpstart\jswtrayutil.exe"
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Kohei\AppData\Local\Akamai\netsession_win.exe"
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O15 - Trusted Zone: http://*.remotecall.jp (HKLM)
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei-4/MyFunCardsInitialSetup1.0.1.1.cab
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
上記のFixが完了したら、IU起動させ、以下を削除してください。
Adobe Reader X (10.1.13) - Japanese Adobe Systems Incorporated 2014/12/11 10.1.13
Japanese Fonts Support For Adobe Reader 9 Adobe Systems Incorporated 2010/10/12 16.4 MB 9.0.0
McAfee Security Scan Plus McAfee, Inc. 2014/06/11 2.32 MB 3.8.150.1
削除ボタンを押し、削除が完了したらパワフルスキャンを行い、検出されたごみすべてにチェックを入れて削除してください。
IUでのアンインストールが完了しましたらIUを終了させ、ATFで掃除を行ってください。
Select Allにチェックを入れ、Empty Selectedをクリックします。
ATFでの掃除が完了しましたら、ACを使用してマルウェアの掃除を行いましょう。
ACを起動させ、Scanまたはスキャンをクリックします。
スキャンが終了しましたら、Cleanまたは除去をクリックして掃除を行います。
掃除が完了すると再起動を求められますので、指示に従って通常モードで再起動を行ってください。
これでセーフモードから通常モードに移行します。
再起動が完了すると、ACのログが表示されますので、そちらを一度PC内の分かりやすい場所に保存してください。
その後、CCを起動させてください。
起動したら、「ツール」→「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できますので、
デスクトップ等、分かりやすい場所に最新のログのみ保存しておきましょう。
続いて「InternetExplorer」タブのログ、導入されておられるのであれば「Firefox」タブ、
同じく導入されておられるのであれば「Google Chrome」タブ、そして「スケジュールされたタスク」タブのログを取得してください。
ただし、「コンテキストメニュー」のログは取得していただく必要がございません。
CCの各ログを取得されましたら、CCは終了させて問題ありません。
ACとCCのログを返信欄に貼り付けていただき、ご報告をお願いいたします。
上記ログを確認後、次の作業内容をご案内いたします。
- IVNO
- 2015/02/26 (Thu) 21:58:06
作業開始
IVNO様
作業を開始いたしました。以下、各ログです。
まずはACより
# AdwCleaner v4.111 - Logfile created 27/02/2015 at 13:29:53
# Updated 18/02/2015 by Xplode
# Database : 2015-02-18.3 [Local]
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Username : Kohei - KOHEI-PC
# Running from : C:\Users\Kohei\Desktop\対策\AdwCleaner.exe
# Option : Cleaning
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll
Key Deleted : HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D518921A-4A03-425E-9873-B9A71756821E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45DD-9B68-D6A12C30E5D7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48DD-9B6D-7A13A3E42127}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40FD-8DAE-FF14757F60C7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local
***** [ Web browsers ] *****
-\\ Internet Explorer v9.0.8112.16609
*************************
AdwCleaner[R0].txt - [3727 bytes] - [27/02/2015 12:50:52]
AdwCleaner[S0].txt - [3716 bytes] - [27/02/2015 13:29:53]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3775 bytes] ##########
続きましてwinのstart up
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
有効 HKCU:Run ehTray.exe Microsoft Corporation C:\Windows\ehome\ehTray.exe
無効 HKCU:Run GameXN "C:\ProgramData\GameXN\GameXNGO.exe" /silent
無効 HKCU:Run GameXN (news) "C:\ProgramData\GameXN\GameXNGO.exe" /n
無効 HKCU:Run GameXN (update) "C:\ProgramData\GameXN\GameXNGO.exe" /u
有効 HKCU:Run Skype Skype Technologies S.A. "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
無効 HKCU:Run swg "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
有効 HKCU:Run TOSCDSPD TOSCDSPD.EXE
有効 HKLM:Run 00TCrdMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
有効 HKLM:Run Acronis Scheduler2 Service Acronis "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
有効 HKLM:Run AcronisTimounterMonitor Acronis C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
無効 HKLM:Run AppleSyncNotifier C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
無効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run bncsaui.exe Bradford Networks %ProgramFiles%\Bradford Networks\Client Security Agent\bncsaui.exe
無効 HKLM:Run Boingo Wi-Fi "C:\Program Files\Boingo\Boingo Wi-Fi\Boingo.lnk"
無効 HKLM:Run CanonMyPrinter CANON INC. C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
無効 HKLM:Run CanonSolutionMenu CANON INC. C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
有効 HKLM:Run cfWPSEnabler.exe cfWPSEnabler.exe
有効 HKLM:Run FingerPrintNotifer AuthenTec, Inc "C:\Program Files\TrueSuite Access Manager\FpNotifier.exe"
無効 HKLM:Run FlipViewer Library "C:\Program Files\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
無効 HKLM:Run Google Desktop Search "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
無効 HKLM:Run HDMICtrlMan TOSHIBA Corporation. C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe
有効 HKLM:Run HotKeysCmds Intel Corporation C:\Windows\system32\hkcmd.exe
有効 HKLM:Run HSON TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TBS\HSON.exe
無効 HKLM:Run IFP4 "C:\Program Files\Digital Arts\IFP4\app\IFP4.exe" /s
有効 HKLM:Run IgfxTray Intel Corporation C:\Windows\system32\igfxtray.exe
有効 HKLM:Run IJNetworkScannerSelectorEX CANON INC. C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
無効 HKLM:Run IJNetworkScanUtility CANON INC. C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
有効 HKLM:Run IME JPN 2007 Migration Microsoft Corporation C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE /Preload
有効 HKLM:Run IME14 JPN Setup Microsoft Corporation C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
有効 HKLM:Run Installation Sources
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run KazaNavi 株式会社ジャストシステム C:\Program Files\JustSystems\KazaNavi\kazanavi.exe /tasktray
有効 HKLM:Run NDSTray.exe NDSTray.exe
無効 HKLM:Run Nikon Message Center 2 Nikon Corporation C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe -s
有効 HKLM:Run OfficeScanNT Monitor Trend Micro Inc. "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
無効 HKLM:Run OpwareSE4 Nuance Communications, Inc. "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
有効 HKLM:Run PAC207_Monitor PixArt Imaging Incorporation C:\Windows\PixArt\PAC207\Monitor.exe
有効 HKLM:Run Persistence Intel Corporation C:\Windows\system32\igfxpers.exe
有効 HKLM:Run PwdBank Arachnoid Biometrics Identification Group "C:\Program Files\TrueSuite Access Manager\PwdBank.exe"
無効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run SmoothView TOSHIBA Corporation %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
無効 HKLM:Run SSBkgdUpdate Nuance Communications, Inc. "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
有効 HKLM:Run ThpSrv C:\Windows\system32\thpsrv /logon
有効 HKLM:Run TPwrMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
有効 HKLM:Run TrueImageMonitor.exe Acronis C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
有効 HKLM:Run UsbMonitor "C:\Program Files\TrueSuite Access Manager\usbnotify.exe"
有効 HKLM:Run WheelMouse C:\ADVANC~1\wh_exec.exe
有効 HKLM:Run Windows Defender Microsoft Corporation %ProgramFiles%\Windows Defender\MSASCui.exe -hide
無効 Startup Common Nikon Monitor.lnk Nikon Corporation C:\PROGRA~1\COMMON~1\Nikon\Monitor\NKMONI~1.EXE
有効 Startup Common Rainmeter.lnk Rainmeter (Open Source Software) C:\Program Files\Rainmeter\Rainmeter.exe
無効 Startup User autobahn.lnk Swarmcast, Inc. C:\PROGRA~2\Autobahn\autobahn.exe
有効 Startup User 東芝ソフトウェア更新チェックツール.lnk TOSHIBA CORPORATION C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe
次がIEのstart upです
無効 Extension Research Microsoft Corporation C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
有効 Helper ExplorerWnd Helper IObit C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
無効 Helper FeliCaブラウザエクステンション Sony Corp. C:\Program Files\Sony\FeliCaBrowserExtension\fbe.dll
有効 Helper McAfee SiteAdvisor BHO McAfee, Inc. c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
無効 Helper RealPlayer Download and Record Plugin for Internet Explorer RealPlayer C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll
無効 Helper かんたん登録2 株式会社ジャストシステム C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
有効 Toolbar McAfee SiteAdvisor Toolbar McAfee, Inc. c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
無効 Toolbar かんたん登録2 ツールバー 株式会社ジャストシステム C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
最後がスケジュールのstart upです
有効 Task Adobe Acrobat Update Task Adobe Systems Incorporated C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
有効 Task Adobe Flash Player Updater Adobe Systems Incorporated C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore C:\Program Files\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task RunAsStdUser Task for VeohWebPlayer C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe /VistaRunAsStdUser
有効 Task Task_ShellExecuteAs Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" "http://www.gomplayer.jp/?utm_source=promo&utm_medium=pic&utm_campaign=cancel"
有効 Task Uninstaller_SkipUac_Kohei IObit C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
有効 Task {031599B4-325B-4A14-ABC2-6C0E99FD4BC6} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\Windows\HSUN32.EXE -c C:\kln89sim\SETUP.INF
有効 Task {174282E8-64DB-484A-9D33-0D611EEC45B9} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.1.0.112/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;alreadyoffered
有効 Task {61C76F60-8B95-4DDA-A083-C7A11C19CED4} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.5.0.119/ja/go/help.faq.installer?LastError=1618
有効 Task {78A1BCDA-BBC6-4674-9970-376AC188F864} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "C:\Users\Kohei\AppData\Local\Temp\Temp7_KLN89B GPS Simulator Installation Files.zip\KLN89B GPS Simulator Installation Files\SETUP.EXE"
有効 Task {85DFD183-3E38-4D6C-9540-B131861C2694} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://www.skype.com/go/downloading?source=installer&ver=6.18.0.106&LastError=-9
有効 Task {F79570FE-568E-435C-88F3-2F90D50876BE} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.1.0.112/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:offered-installed;madedefault
有効 Task {F8AF6504-6C32-42FD-A3B4-D3404DE54974} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://www.skype.com/go/downloading?source=lightinstaller&ver=7.1.0.105&LastError=-9
以上です。宜しくお願い致します。
作業を開始いたしました。以下、各ログです。
まずはACより
# AdwCleaner v4.111 - Logfile created 27/02/2015 at 13:29:53
# Updated 18/02/2015 by Xplode
# Database : 2015-02-18.3 [Local]
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Username : Kohei - KOHEI-PC
# Running from : C:\Users\Kohei\Desktop\対策\AdwCleaner.exe
# Option : Cleaning
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll
Key Deleted : HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D518921A-4A03-425E-9873-B9A71756821E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45DD-9B68-D6A12C30E5D7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48DD-9B6D-7A13A3E42127}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40FD-8DAE-FF14757F60C7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local
***** [ Web browsers ] *****
-\\ Internet Explorer v9.0.8112.16609
*************************
AdwCleaner[R0].txt - [3727 bytes] - [27/02/2015 12:50:52]
AdwCleaner[S0].txt - [3716 bytes] - [27/02/2015 13:29:53]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3775 bytes] ##########
続きましてwinのstart up
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
有効 HKCU:Run ehTray.exe Microsoft Corporation C:\Windows\ehome\ehTray.exe
無効 HKCU:Run GameXN "C:\ProgramData\GameXN\GameXNGO.exe" /silent
無効 HKCU:Run GameXN (news) "C:\ProgramData\GameXN\GameXNGO.exe" /n
無効 HKCU:Run GameXN (update) "C:\ProgramData\GameXN\GameXNGO.exe" /u
有効 HKCU:Run Skype Skype Technologies S.A. "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
無効 HKCU:Run swg "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
有効 HKCU:Run TOSCDSPD TOSCDSPD.EXE
有効 HKLM:Run 00TCrdMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
有効 HKLM:Run Acronis Scheduler2 Service Acronis "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
有効 HKLM:Run AcronisTimounterMonitor Acronis C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
無効 HKLM:Run AppleSyncNotifier C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
無効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run bncsaui.exe Bradford Networks %ProgramFiles%\Bradford Networks\Client Security Agent\bncsaui.exe
無効 HKLM:Run Boingo Wi-Fi "C:\Program Files\Boingo\Boingo Wi-Fi\Boingo.lnk"
無効 HKLM:Run CanonMyPrinter CANON INC. C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
無効 HKLM:Run CanonSolutionMenu CANON INC. C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
有効 HKLM:Run cfWPSEnabler.exe cfWPSEnabler.exe
有効 HKLM:Run FingerPrintNotifer AuthenTec, Inc "C:\Program Files\TrueSuite Access Manager\FpNotifier.exe"
無効 HKLM:Run FlipViewer Library "C:\Program Files\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
無効 HKLM:Run Google Desktop Search "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
無効 HKLM:Run HDMICtrlMan TOSHIBA Corporation. C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe
有効 HKLM:Run HotKeysCmds Intel Corporation C:\Windows\system32\hkcmd.exe
有効 HKLM:Run HSON TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TBS\HSON.exe
無効 HKLM:Run IFP4 "C:\Program Files\Digital Arts\IFP4\app\IFP4.exe" /s
有効 HKLM:Run IgfxTray Intel Corporation C:\Windows\system32\igfxtray.exe
有効 HKLM:Run IJNetworkScannerSelectorEX CANON INC. C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
無効 HKLM:Run IJNetworkScanUtility CANON INC. C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
有効 HKLM:Run IME JPN 2007 Migration Microsoft Corporation C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE /Preload
有効 HKLM:Run IME14 JPN Setup Microsoft Corporation C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
有効 HKLM:Run Installation Sources
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run KazaNavi 株式会社ジャストシステム C:\Program Files\JustSystems\KazaNavi\kazanavi.exe /tasktray
有効 HKLM:Run NDSTray.exe NDSTray.exe
無効 HKLM:Run Nikon Message Center 2 Nikon Corporation C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe -s
有効 HKLM:Run OfficeScanNT Monitor Trend Micro Inc. "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
無効 HKLM:Run OpwareSE4 Nuance Communications, Inc. "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
有効 HKLM:Run PAC207_Monitor PixArt Imaging Incorporation C:\Windows\PixArt\PAC207\Monitor.exe
有効 HKLM:Run Persistence Intel Corporation C:\Windows\system32\igfxpers.exe
有効 HKLM:Run PwdBank Arachnoid Biometrics Identification Group "C:\Program Files\TrueSuite Access Manager\PwdBank.exe"
無効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run SmoothView TOSHIBA Corporation %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
無効 HKLM:Run SSBkgdUpdate Nuance Communications, Inc. "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
有効 HKLM:Run ThpSrv C:\Windows\system32\thpsrv /logon
有効 HKLM:Run TPwrMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
有効 HKLM:Run TrueImageMonitor.exe Acronis C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
有効 HKLM:Run UsbMonitor "C:\Program Files\TrueSuite Access Manager\usbnotify.exe"
有効 HKLM:Run WheelMouse C:\ADVANC~1\wh_exec.exe
有効 HKLM:Run Windows Defender Microsoft Corporation %ProgramFiles%\Windows Defender\MSASCui.exe -hide
無効 Startup Common Nikon Monitor.lnk Nikon Corporation C:\PROGRA~1\COMMON~1\Nikon\Monitor\NKMONI~1.EXE
有効 Startup Common Rainmeter.lnk Rainmeter (Open Source Software) C:\Program Files\Rainmeter\Rainmeter.exe
無効 Startup User autobahn.lnk Swarmcast, Inc. C:\PROGRA~2\Autobahn\autobahn.exe
有効 Startup User 東芝ソフトウェア更新チェックツール.lnk TOSHIBA CORPORATION C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe
次がIEのstart upです
無効 Extension Research Microsoft Corporation C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
有効 Helper ExplorerWnd Helper IObit C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
無効 Helper FeliCaブラウザエクステンション Sony Corp. C:\Program Files\Sony\FeliCaBrowserExtension\fbe.dll
有効 Helper McAfee SiteAdvisor BHO McAfee, Inc. c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
無効 Helper RealPlayer Download and Record Plugin for Internet Explorer RealPlayer C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll
無効 Helper かんたん登録2 株式会社ジャストシステム C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
有効 Toolbar McAfee SiteAdvisor Toolbar McAfee, Inc. c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
無効 Toolbar かんたん登録2 ツールバー 株式会社ジャストシステム C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
最後がスケジュールのstart upです
有効 Task Adobe Acrobat Update Task Adobe Systems Incorporated C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
有効 Task Adobe Flash Player Updater Adobe Systems Incorporated C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore C:\Program Files\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task RunAsStdUser Task for VeohWebPlayer C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe /VistaRunAsStdUser
有効 Task Task_ShellExecuteAs Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" "http://www.gomplayer.jp/?utm_source=promo&utm_medium=pic&utm_campaign=cancel"
有効 Task Uninstaller_SkipUac_Kohei IObit C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
有効 Task {031599B4-325B-4A14-ABC2-6C0E99FD4BC6} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\Windows\HSUN32.EXE -c C:\kln89sim\SETUP.INF
有効 Task {174282E8-64DB-484A-9D33-0D611EEC45B9} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.1.0.112/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;alreadyoffered
有効 Task {61C76F60-8B95-4DDA-A083-C7A11C19CED4} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.5.0.119/ja/go/help.faq.installer?LastError=1618
有効 Task {78A1BCDA-BBC6-4674-9970-376AC188F864} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "C:\Users\Kohei\AppData\Local\Temp\Temp7_KLN89B GPS Simulator Installation Files.zip\KLN89B GPS Simulator Installation Files\SETUP.EXE"
有効 Task {85DFD183-3E38-4D6C-9540-B131861C2694} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://www.skype.com/go/downloading?source=installer&ver=6.18.0.106&LastError=-9
有効 Task {F79570FE-568E-435C-88F3-2F90D50876BE} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.1.0.112/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:offered-installed;madedefault
有効 Task {F8AF6504-6C32-42FD-A3B4-D3404DE54974} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://www.skype.com/go/downloading?source=lightinstaller&ver=7.1.0.105&LastError=-9
以上です。宜しくお願い致します。
- pilot
- 2015/02/27 (Fri) 14:26:44
ACは削除しMBAMでスキャンを
ログを確認いたしましたが、本体はひとつも検出なしでしたね。
ACは不要となりますので、ACを起動させてアンインストールボタンを押して削除なされてください。
以下のソフトウェアをご用意ください。
Malwarebytes Anti-Malware(通称:MBAM)
旧バージョンダウンロード↓(ファイル直リンクです。表示して数秒後にダウンロード開始の表示が出ます)
http://www.oldapps.com/malwarebytes.php?old_malwarebytes=12090?download
最新バージョンには動作しなくなるなどの不具合があるため、ここでは旧バージョンを利用します。
インストールの最後に出てくるMalwarebytes Anti-Malware Pro版の無料試用を開始する。のチェックを外します。
このソフトウェアは日本語対応ではありますが、初回起動時は文字化けしておりますので、以下の手順で日本語化を行ってください。
MBAMを起動させてください。
MBAMを起動時に自動アップデートが始まります。
最新バージョンをダウンロードしたと表示されたら、必ずキャンセルを押してください。
次にウイルス定義ファイルのアップデートが始まりますので、アップデート終了までお待ちください。
ウイルス定義ファイルのバージョンアップが完了すると、再度最新バージョンをダウンロードしたと出ますので、
再びキャンセルを押してアップデートを中止してください。
MBAMが起動したら設定タブを開き、Languageの項目の部分をJapaneseに再度変更することで日本語化が可能です。
この段階ではスキャンは行いませんので、設定が完了したらMBAMを終了させておいてください。
最新バージョンと旧バージョンは操作方法が大幅に異なりますので、
万一バージョン2.0以降を導入されてしまった場合はご連絡ください。
片付け時はセーフモードからIUを利用してアンインストールしてください。
ここで使うのはFree(無償版)です。
準備が完了しましたら作業を開始いたします。
CCを起動させ、ツール→スタートアップの各項目を開き、
該当するものを無効→エントリの削除の順番でクリックしてください。
スケジュールされたタスク
有効 Task Task_ShellExecuteAs Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" "http://www.gomplayer.jp/?utm_source=promo&utm_medium=pic&utm_campaign=cancel"
有効 Task {031599B4-325B-4A14-ABC2-6C0E99FD4BC6} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\Windows\HSUN32.EXE -c C:\kln89sim\SETUP.INF
有効 Task {78A1BCDA-BBC6-4674-9970-376AC188F864} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "C:\Users\Kohei\AppData\Local\Temp\Temp7_KLN89B GPS Simulator Installation Files.zip\KLN89B GPS Simulator Installation Files\SETUP.EXE"
無効にできないもの、既に無効になっているものはそのままエントリの削除を、
エントリが存在しない場合は放置で先に進みましょう。
CCでの作業が完了しましたら、PCをセーフモードで起動してください。
MBAMを使ってスキャンしてください。
MBAMを起動させます。
フルスキャンを選択し、スキャン開始をクリックします。
スキャン終了まで30分~1時間半程度お待ちください。
スキャンが完了したら、詳細を表示をクリックします。
検出されたものの一覧が出ますので、検出されたものすべてを駆除するため、
検出されたものの左側にあるチェックボックスすべてにチェックを入れます。
すべての箇所にチェックを入れたら選択されたアイテムを隔離ボタンを押します。
処置の設定が完了するとPCの再起動を促されますので、指示に従って通常モードで再起動してください。
再起動後にログが出ますので、取得されたログを貼り付け、ご報告をお願いいたします。
ACは不要となりますので、ACを起動させてアンインストールボタンを押して削除なされてください。
以下のソフトウェアをご用意ください。
Malwarebytes Anti-Malware(通称:MBAM)
旧バージョンダウンロード↓(ファイル直リンクです。表示して数秒後にダウンロード開始の表示が出ます)
http://www.oldapps.com/malwarebytes.php?old_malwarebytes=12090?download
最新バージョンには動作しなくなるなどの不具合があるため、ここでは旧バージョンを利用します。
インストールの最後に出てくるMalwarebytes Anti-Malware Pro版の無料試用を開始する。のチェックを外します。
このソフトウェアは日本語対応ではありますが、初回起動時は文字化けしておりますので、以下の手順で日本語化を行ってください。
MBAMを起動させてください。
MBAMを起動時に自動アップデートが始まります。
最新バージョンをダウンロードしたと表示されたら、必ずキャンセルを押してください。
次にウイルス定義ファイルのアップデートが始まりますので、アップデート終了までお待ちください。
ウイルス定義ファイルのバージョンアップが完了すると、再度最新バージョンをダウンロードしたと出ますので、
再びキャンセルを押してアップデートを中止してください。
MBAMが起動したら設定タブを開き、Languageの項目の部分をJapaneseに再度変更することで日本語化が可能です。
この段階ではスキャンは行いませんので、設定が完了したらMBAMを終了させておいてください。
最新バージョンと旧バージョンは操作方法が大幅に異なりますので、
万一バージョン2.0以降を導入されてしまった場合はご連絡ください。
片付け時はセーフモードからIUを利用してアンインストールしてください。
ここで使うのはFree(無償版)です。
準備が完了しましたら作業を開始いたします。
CCを起動させ、ツール→スタートアップの各項目を開き、
該当するものを無効→エントリの削除の順番でクリックしてください。
スケジュールされたタスク
有効 Task Task_ShellExecuteAs Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" "http://www.gomplayer.jp/?utm_source=promo&utm_medium=pic&utm_campaign=cancel"
有効 Task {031599B4-325B-4A14-ABC2-6C0E99FD4BC6} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\Windows\HSUN32.EXE -c C:\kln89sim\SETUP.INF
有効 Task {78A1BCDA-BBC6-4674-9970-376AC188F864} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "C:\Users\Kohei\AppData\Local\Temp\Temp7_KLN89B GPS Simulator Installation Files.zip\KLN89B GPS Simulator Installation Files\SETUP.EXE"
無効にできないもの、既に無効になっているものはそのままエントリの削除を、
エントリが存在しない場合は放置で先に進みましょう。
CCでの作業が完了しましたら、PCをセーフモードで起動してください。
MBAMを使ってスキャンしてください。
MBAMを起動させます。
フルスキャンを選択し、スキャン開始をクリックします。
スキャン終了まで30分~1時間半程度お待ちください。
スキャンが完了したら、詳細を表示をクリックします。
検出されたものの一覧が出ますので、検出されたものすべてを駆除するため、
検出されたものの左側にあるチェックボックスすべてにチェックを入れます。
すべての箇所にチェックを入れたら選択されたアイテムを隔離ボタンを押します。
処置の設定が完了するとPCの再起動を促されますので、指示に従って通常モードで再起動してください。
再起動後にログが出ますので、取得されたログを貼り付け、ご報告をお願いいたします。
- IVNO
- 2015/02/27 (Fri) 14:36:46
MBAMスキャン完
IVNO様
MBAMによるスキャンが完了いたしました。
以下、ログです。
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
定義バージョン: v2015.02.27.04
Windows Vista Service Pack 2 x86 NTFS (セーフモード)
Internet Explorer 9.0.8112.16421
Kohei :: KOHEI-PC [管理者]
2015/02/27 21:24:21
mbam-log-2015-02-27 (21-24-21).txt
スキャンタイプ: フルスキャン (C:\|D:\|)
有効なスキャン領域: メモリ | スタートアップ | レジストリ | ファイルシステム | ヒューリスティック/追加アイテムのスキャン | ヒューリスティック/Shuriken エンジンを使用してスキャン | 不審なプログラム (PUP) | 不審な変更 (PUM)
無効なスキャン領域: ピア・ツー・ピアプログラム(P2P)
スキャンしたアイテム数: 575805
経過時間: 1 時間, 54 分, 6 秒
メモリプロセスの検出: 0
(悪意のあるアイテムは検出されていません。)
メモリモジュールの検出: 0
(悪意のあるアイテムは検出されていません。)
レジストリキーの検出: 1
HKCU\SOFTWARE\3721 (PUP.BitSpirit) -> 正常に隔離され削除されました。
レジストリ値の検出: 0
(悪意のあるアイテムは検出されていません。)
レジストリデータ項目の検出: 0
(悪意のあるアイテムは検出されていません。)
フォルダの検出: 0
(悪意のあるアイテムは検出されていません。)
ファイルの検出: 0
(悪意のあるアイテムは検出されていません。)
(終)
MBAMによるスキャンが完了いたしました。
以下、ログです。
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
定義バージョン: v2015.02.27.04
Windows Vista Service Pack 2 x86 NTFS (セーフモード)
Internet Explorer 9.0.8112.16421
Kohei :: KOHEI-PC [管理者]
2015/02/27 21:24:21
mbam-log-2015-02-27 (21-24-21).txt
スキャンタイプ: フルスキャン (C:\|D:\|)
有効なスキャン領域: メモリ | スタートアップ | レジストリ | ファイルシステム | ヒューリスティック/追加アイテムのスキャン | ヒューリスティック/Shuriken エンジンを使用してスキャン | 不審なプログラム (PUP) | 不審な変更 (PUM)
無効なスキャン領域: ピア・ツー・ピアプログラム(P2P)
スキャンしたアイテム数: 575805
経過時間: 1 時間, 54 分, 6 秒
メモリプロセスの検出: 0
(悪意のあるアイテムは検出されていません。)
メモリモジュールの検出: 0
(悪意のあるアイテムは検出されていません。)
レジストリキーの検出: 1
HKCU\SOFTWARE\3721 (PUP.BitSpirit) -> 正常に隔離され削除されました。
レジストリ値の検出: 0
(悪意のあるアイテムは検出されていません。)
レジストリデータ項目の検出: 0
(悪意のあるアイテムは検出されていません。)
フォルダの検出: 0
(悪意のあるアイテムは検出されていません。)
ファイルの検出: 0
(悪意のあるアイテムは検出されていません。)
(終)
- pilot
- 2015/02/27 (Fri) 22:34:57
数時間の様子見後に状況報告をお願いいたします
ログを拝見させていただきました。
MBAMで1件の検出がありましたね。
MBAMは不要ですので、導入時の指示に従って削除なされてください。
それでは数時間の様子見を行い、その結果をご連絡ください。
お時間がお時間ですので明日でも結構です。
様子見の際に導入なされておられるすべてのブラウザで動作確認をお願いいたします。
MBAMで1件の検出がありましたね。
MBAMは不要ですので、導入時の指示に従って削除なされてください。
それでは数時間の様子見を行い、その結果をご連絡ください。
お時間がお時間ですので明日でも結構です。
様子見の際に導入なされておられるすべてのブラウザで動作確認をお願いいたします。
- IVNO
- 2015/02/27 (Fri) 22:40:43
Re: 知恵袋を拝見して
IVNO様
早速のご返信ありがとうございます。
明日の夜まで当PCを使う時間がないと思われるので、ご連絡が明日の夜になることをご了承お願いいたします。
早速のご返信ありがとうございます。
明日の夜まで当PCを使う時間がないと思われるので、ご連絡が明日の夜になることをご了承お願いいたします。
- pilot
- 2015/02/27 (Fri) 22:46:32
経過報告
IVNO様
ようやくPCを使用するまとまった時間が取れたので2時間ほど使用しております。
インターネットに接続してもTrend Micro Office Scanが何かを検出することもなく、導入している唯一のブラウザであるIEも快適に動作しておりました。
しかし、一時間半ほど経過した地点で"GIGAZINE"というwebサイトを閲覧した際に一件、下記のURLがブロックされました。
ttp://loadm.exelator.com/load/?p=204&g= 101&build=f8a154ec-6965-4800-b740-2612136fef29&j=0 (最初のhを外し、途中スペースを入れてあります。)
すぐに該当サイトの閲覧を中止し、その後30分間ほど様々なwebサイトを閲覧しておりますが、検出は無しです。
以上、状況確認となります。
ようやくPCを使用するまとまった時間が取れたので2時間ほど使用しております。
インターネットに接続してもTrend Micro Office Scanが何かを検出することもなく、導入している唯一のブラウザであるIEも快適に動作しておりました。
しかし、一時間半ほど経過した地点で"GIGAZINE"というwebサイトを閲覧した際に一件、下記のURLがブロックされました。
ttp://loadm.exelator.com/load/?p=204&g= 101&build=f8a154ec-6965-4800-b740-2612136fef29&j=0 (最初のhを外し、途中スペースを入れてあります。)
すぐに該当サイトの閲覧を中止し、その後30分間ほど様々なwebサイトを閲覧しておりますが、検出は無しです。
以上、状況確認となります。
- pilot
- 2015/02/28 (Sat) 22:37:42
もう少し調べてみましょう
GIGAZINEさんでそのサイトが出てくるのは普通じゃないですので、
もう少しPC内を調べてみましょう。
以下のソフトウェアをご用意ください。
HerdProtect(通称:HP)
http://www.herdprotect.com/downloads.aspx
インストール版でもポータブル版でも構いません。
インストール版の場合、アンインストールの際は、セーフモードでIUを利用してアンインストールされてください。
また、トレンドマイクロのウイルスバスターとの相性が悪いとの報告も受けております。
相性の問題でスキャンが正常にできないときは、その旨をご報告ください。
さらに、本ソフトウェアにより検出されたものすべてがマルウェアと言うわけではありません。
HPは駆除機能もありますが、まずは駆除は行わず、検出のみに使用いたします。
OldTimer Listit(通称:OTL)
http://oldtimer.geekstogo.com/OTL.exe
直リンクです。デスクトップ等、分かりやすい場所に保存してください。
削除する際は起動後に「Cleanup」ボタンを押すことにより、自動的に削除されます。
準備ができましたら、まずゲームのインストーラーなど、極端に重たいファイルがある場合は、
そちらの不要ファイルを事前にPC内から手動削除し、ごみ箱からも消しておいてください。
これらをHPが不審プログラムとして拾うと、1日や2日は平気でスキャンにかかってしまいます。
PCが通常モードで起動していることを確認し、HerdProtectを起動させます。
ソフトウェアの特性として、ファイルのスキャンにインターネット回線を利用します。
インターネット回線がご利用できないセーフモード時では正常に動作しませんので、
セーフモードで起動中の場合は通常モードに切り替えてください。
Scanボタンがありますので、こちらを押してスキャンを行ってください。
スキャンに必要な情報を収集したり、発見された不審なソフトウェアを
各種セキュリティソフトで調査している間は、スキャン作業が停止します。
スキャンが進行しないからと言ってフリーズしたわけではありませんので、
スキャンが完了するまで今しばらくお待ちください。
スキャンが完了しましたらスキャン結果が表示されますので、
画面右上にあるSave resultsという文字をクリックしてログを出力してください。
ログは任意のお名前をつけて、分かりやすいところに保存してください。
以下をメモ帳にコピペしてください。
------コピペこの下より------
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
CREATERESTOREPOINT
------コピペこの上まで------
コピペが完了しましたら、任意のお名前をつけて分かりやすい場所に保存されてください。
保存が完了しましたら、PCをセーフモードで起動させてください。
OTLを起動させ、表示画面上部中央にあるScan All Usersにチェックを入れてください。
設定が完了しましたら、Custom Scan/Fixesの項目内に先ほど保存したメモ帳の内容を貼り付けてください。
コピペが完了しましたらメモ帳を終了させ、[Run Scan]をクリックしてスキャンを行ってください。
スキャン完了まで数分程度かかりますので、今しばらくお待ちください。
スキャンが完了しましたら、OTLを保存した場所と同じところに、
OTL.txtとExtras.txtが出力されますので、こちら2つと先に保存したHPのログを貼り付けてご連絡ください。
なお、OTLもHPもその特性上、非常に長文となりがちです。
こちらの掲示板の文字数上限がひらがな換算で約3万文字、ローマ字換算で約6万文字です。
(より正確には件名を含めてJIS換算65,535バイトまで。全角文字・全角記号2バイト、
半角文字・半角記号1バイト、絵文字等特殊文字3バイト)
確実に文字数オーバーとなりますので、余裕を見て5万5千文字程度になるように、
以下のURLの文字数カウンター等で確認しつつ、ログを分割されてご連絡ください。
http://www2u.biglobe.ne.jp/~yuichi/rest/strcount.html
もう少しPC内を調べてみましょう。
以下のソフトウェアをご用意ください。
HerdProtect(通称:HP)
http://www.herdprotect.com/downloads.aspx
インストール版でもポータブル版でも構いません。
インストール版の場合、アンインストールの際は、セーフモードでIUを利用してアンインストールされてください。
また、トレンドマイクロのウイルスバスターとの相性が悪いとの報告も受けております。
相性の問題でスキャンが正常にできないときは、その旨をご報告ください。
さらに、本ソフトウェアにより検出されたものすべてがマルウェアと言うわけではありません。
HPは駆除機能もありますが、まずは駆除は行わず、検出のみに使用いたします。
OldTimer Listit(通称:OTL)
http://oldtimer.geekstogo.com/OTL.exe
直リンクです。デスクトップ等、分かりやすい場所に保存してください。
削除する際は起動後に「Cleanup」ボタンを押すことにより、自動的に削除されます。
準備ができましたら、まずゲームのインストーラーなど、極端に重たいファイルがある場合は、
そちらの不要ファイルを事前にPC内から手動削除し、ごみ箱からも消しておいてください。
これらをHPが不審プログラムとして拾うと、1日や2日は平気でスキャンにかかってしまいます。
PCが通常モードで起動していることを確認し、HerdProtectを起動させます。
ソフトウェアの特性として、ファイルのスキャンにインターネット回線を利用します。
インターネット回線がご利用できないセーフモード時では正常に動作しませんので、
セーフモードで起動中の場合は通常モードに切り替えてください。
Scanボタンがありますので、こちらを押してスキャンを行ってください。
スキャンに必要な情報を収集したり、発見された不審なソフトウェアを
各種セキュリティソフトで調査している間は、スキャン作業が停止します。
スキャンが進行しないからと言ってフリーズしたわけではありませんので、
スキャンが完了するまで今しばらくお待ちください。
スキャンが完了しましたらスキャン結果が表示されますので、
画面右上にあるSave resultsという文字をクリックしてログを出力してください。
ログは任意のお名前をつけて、分かりやすいところに保存してください。
以下をメモ帳にコピペしてください。
------コピペこの下より------
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
CREATERESTOREPOINT
------コピペこの上まで------
コピペが完了しましたら、任意のお名前をつけて分かりやすい場所に保存されてください。
保存が完了しましたら、PCをセーフモードで起動させてください。
OTLを起動させ、表示画面上部中央にあるScan All Usersにチェックを入れてください。
設定が完了しましたら、Custom Scan/Fixesの項目内に先ほど保存したメモ帳の内容を貼り付けてください。
コピペが完了しましたらメモ帳を終了させ、[Run Scan]をクリックしてスキャンを行ってください。
スキャン完了まで数分程度かかりますので、今しばらくお待ちください。
スキャンが完了しましたら、OTLを保存した場所と同じところに、
OTL.txtとExtras.txtが出力されますので、こちら2つと先に保存したHPのログを貼り付けてご連絡ください。
なお、OTLもHPもその特性上、非常に長文となりがちです。
こちらの掲示板の文字数上限がひらがな換算で約3万文字、ローマ字換算で約6万文字です。
(より正確には件名を含めてJIS換算65,535バイトまで。全角文字・全角記号2バイト、
半角文字・半角記号1バイト、絵文字等特殊文字3バイト)
確実に文字数オーバーとなりますので、余裕を見て5万5千文字程度になるように、
以下のURLの文字数カウンター等で確認しつつ、ログを分割されてご連絡ください。
http://www2u.biglobe.ne.jp/~yuichi/rest/strcount.html
- IVNO
- 2015/03/01 (Sun) 12:02:42
追加でveohも処置を
こんばんは。
よければちょっと追加でひとつ作業してもらえますか。
CCを起動して「スケジュールされたタスク」タブ内の下記を右クリックから「無効」にしたあと「エントリの削除」してください。
>有効 Task RunAsStdUser Task for VeohWebPlayer C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe /VistaRunAsStdUser
このveoh系もいろいろと評価よくないものです。
この作業はIVNOさんが指示されたOTLでのスキャンの前後どちらに実行してもいいですが、OTLのスキャンとログ保存ができたらそのあとしばらくPC状態を様子見後に、OTLログとともに状態報告も教えてください
よければちょっと追加でひとつ作業してもらえますか。
CCを起動して「スケジュールされたタスク」タブ内の下記を右クリックから「無効」にしたあと「エントリの削除」してください。
>有効 Task RunAsStdUser Task for VeohWebPlayer C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe /VistaRunAsStdUser
このveoh系もいろいろと評価よくないものです。
この作業はIVNOさんが指示されたOTLでのスキャンの前後どちらに実行してもいいですが、OTLのスキャンとログ保存ができたらそのあとしばらくPC状態を様子見後に、OTLログとともに状態報告も教えてください
- 悪代官
- 2015/03/01 (Sun) 18:31:27
HPとOTLのご報告
IVNO様、悪代官様、お世話になっております。
HPとOTLによるスキャンが完了いたしました。ご指示いただいたVeohの処置はOTLスキャンの前に実行いたしました。
時間の関係上、スキャン後の様子見は30分ほどしかできておりませんが、今のところ問題なしです。
以下、初めにHPのログです。
Saved date: 2015/03/02 0:10:57
Files detected: 112
Files scanned: 9,105
Processes scanned: 94
Modules scanned: 655
ASEPs scanned: 483
Downloads scanned: 0
Deep analysis: 352/63
---------------------------------------------------------------------------------
Files
---------------------------------------------------------------------------------
File path: c:\program files\common files\microsoft shared\vs7debug\mdm.exe
Publisher: Microsoft Corporation
MD5: 7cf1b716372b89568ae4c0fe769f5869
SHA-1: 85b15a1b69dbbb2a39ce2b2cb6d8209e300f8065
Created: 2006/10/26 14:40:34
Detections: 1
Determination: Ignore detections (false positive)
- Boost by Reason as Optional.Service.MicrosoftCorporation.D
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\uninstallmonitor.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 399f5ac332cd0b07be87212e3c0bf76d
SHA-1: ea7f2e72a1659f7adbbbd7cb820995948a6ca135
Created: 2015/02/27 10:44:42
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\smartlogservice\tosipcsrv.exe
Publisher: TOSHIBA Corporation
MD5: 22690dffc7f2a18279a7a0489aa02bac
SHA-1: c2d94bc49586a1ea94927753a9b2dc2b8af84bfe
Created: 2007/12/03 18:03:52
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\flashcards\tcrdmain.exe
Publisher: TOSHIBA Corporation
MD5: e9e5692f51d6032a1105c7be27fc0bae
SHA-1: ecf409a1cbee41faa202a23d3f421b7443a7bd3e
Created: 2008/01/22 15:25:26
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Malware.Win32.xPack.m (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\hdd protection\notifythp.dll
Publisher:
MD5: f7ad9283aa8262ba94d6f2d0059413df
SHA-1: 65655bab1108cb296eeb9c23ccc99284b7c82883
Created: 2007/12/19 13:12:38
Detections: 1
Determination: Ignore detections (false positive)
- McAfee Web Gateway as Heuristic.BehavesLike.Win32.Suspicious-DTR.K
---------------------------------------------------------------------------------
File path: c:\program files\truesuite access manager\pwdbank.exe
Publisher: Arachnoid Biometrics Identification Group
MD5: 7961110ea15f869e1daa820d335a9c35
SHA-1: c6abf88bbfdfd719b42ae3c37e06a3beaf861eb6
Created: 2008/02/27 11:05:43
Detections: 1
Determination: Ignore detections (false positive)
- Rising Antivirus as PE:Trojan.Win32.EBack.a!1075334441 (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\system32\toddsrv.exe
Publisher: TOSHIBA Corporation
Signer: TOSHIBA CORPORATION
MD5: c5ac715b65b01788abc22d10749dddd8
SHA-1: 4cfbf7d2257345eb1adf0a962c8d5acafad70350
Created: 2008/02/26 19:16:24
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\liveupdate\liveupdate.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 87aac3cbd2c5d5ac6ca87ad08a228241
SHA-1: aacd36907710af4589aa9edb3d1c4263892f39fa
Created: 2015/02/27 10:44:51
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\mscsptisrv.exe
Publisher: Sony Corporation
MD5: 6f51b51e0ca956a251829d7f34094f81
SHA-1: 4115d5e82b957c1bc09050c7cbcd7060e2dc82be
Created: 2007/06/15 21:01:44
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\pacsptisvr.exe
Publisher: Sony Corporation
MD5: a6b1530c603b0f4135d45d3fee673825
SHA-1: 6518c50cc4d76f0569abc069e96ea15a738af0b6
Created: 2007/06/15 20:26:44
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\system32\drivers\amdk7.sys
Publisher: Microsoft Corporation
MD5: 18f29b49ad23ecee3d2a826c725c8d48
SHA-1: 4da88ed74e63cc5346052fd1a2d7e30bd57d5e2a
Created: 2006/11/02 18:30:18
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Trojan.Heur.Lq0@uSR9FBn (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\uninstallexplorer32.dll
Publisher: IObit
Signer: IObit Information Technology
MD5: 100c1eeb3eb296ddc9c55393330b5baf
SHA-1: b75d587b96d646a6bfb1d53b4c16f95c01c12943
Created: 2015/02/27 10:44:50
Detections: 1
Determination: Ignore detections (false positive)
- CMC Antivirus as Packed.Win32.Obfuscated.10!O
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\update_ob\realsched.exe
Publisher: RealNetworks, Inc.
Signer: RealNetworks, Inc.
MD5: 89d583fc41d48328128a974c25afaeb7
SHA-1: c461acc8a13041a87b8fcfd67b8c0bbf8c950cb2
Created: 2008/07/05 10:05:35
Detections: 2
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
- Comodo Security as Heur.Suspicious
---------------------------------------------------------------------------------
File path: c:\windows\temp\._msige60\program files\google\google earth\client\ge_expat.dll
Publisher:
MD5: 53b3e519c347682a20f7df7f9ee3e38f
SHA-1: 3ec047d304645056a54a6b20826ac62fb5428170
Created: 2011/06/28 20:38:32
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Packed/Win32.Katusha.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\temp\._msige60\program files\google\google earth\client\googleearth.exe
Publisher: Google
MD5: 6bb00663fbe9978fe2be61b99b8375d8
SHA-1: de3db3fd1aec9dffcd4c52edfa1052d8e247b6c9
Created: 2011/06/28 20:38:32
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\temp\._msige60\program files\google\google earth\plugin\geplugin.exe
Publisher: Google
MD5: 6bb00663fbe9978fe2be61b99b8375d8
SHA-1: de3db3fd1aec9dffcd4c52edfa1052d8e247b6c9
Created: 2011/06/28 20:38:32
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\temp\._msige60\program files\google\google earth\plugin\ge_expat.dll
Publisher:
MD5: 53b3e519c347682a20f7df7f9ee3e38f
SHA-1: 3ec047d304645056a54a6b20826ac62fb5428170
Created: 2011/06/28 20:38:32
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Packed/Win32.Katusha.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\temp\._msige61\program files\google\google earth\client\gpsbabel.exe
Publisher:
MD5: c29b2413bc9915dfcddcd2d55c5c4e72
SHA-1: 63d689cb807f35e55df6f02324a0fde48c7bda28
Created: 2011/11/17 9:56:18
Detections: 1
Determination: Ignore detections (false positive)
- eSafe as Win32.Application (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\temp\._msige61\program files\google\google earth\client\plugins\npgeinprocessplugin.dll
Publisher: Google
MD5: e555ca3444a7e25cb87eb17b22c889f9
SHA-1: 9d5af9baa975e8187b07f677664837e457adc293
Created: 2011/11/17 9:56:23
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\users\kohei\downloads\sm32_320.exe
Publisher:
MD5: 0cc1e985ae01697027b1de8e9232fbf6
SHA-1: a94901c3c52fe1828a5663897936c0c26fedc9f7
Created: 2008/06/28 11:08:13
Detections: 2
Determination: Ignore detections (false positive)
- NANO AntiVirus as Trojan.Win32.PePatch.dgapgf (Undefined)
- Antiy Labs AVL as Trojan[Packed]/Win32.PePatch (Undefined)
---------------------------------------------------------------------------------
File path: c:\users\kohei\downloads\advancedwheelmuose_vi\advancedwheelmuose_vi.exe
Publisher:
MD5: 3b1493de0c1f80d6463bac60267f59f2
SHA-1: 2c97fa2641bee30ac9e3e545ea85ce56e343f766
Created: 2009/07/25 19:43:13
Detections: 2
Determination: Ignore detections (false positive)
- The Hacker as Trojan/Nilage.hnq (Undefined)
- Kingsoft AntiVirus as Win32.Troj.DeepScan.a.(kcloud) (Undefined)
---------------------------------------------------------------------------------
File path: c:\users\kohei\desktop\hijackthis.exe
Publisher: Trend Micro Inc.
MD5: 47811d50390a86a17102d7496e6eabb9
SHA-1: 2623749cdb27887f6746acdee7e8065475f8b541
Created: 2015/02/25 22:48:32
Detections: 2
Determination: Ignore detections (false positive)
- Kingsoft AntiVirus as Win32.HeurC.KVM099.a.(kcloud) (Undefined)
- Rising Antivirus as PE:Trojan.VBInject!1.6546 (Undefined)
---------------------------------------------------------------------------------
File path: c:\users\kohei\desktop\対策\otl.exe
Publisher: OldTimer Tools
MD5: 4adcfee16ee9978f06157634669d36fb
SHA-1: 30b37076552e49276836d02dd73d038c27dbbee9
Created: 2015/03/01 20:59:03
Detections: 2
Determination: Ignore detections (false positive)
- Agnitum Outpost as Packed/PECompact
- Bkav FE as HW32.CDB (Undefined)
---------------------------------------------------------------------------------
File path: c:\users\kohei\desktop\対策\iobituninstaller-4-2-6-2\iobituninstaller-4-2-6-2\iobituninstaller-jp42.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 001de5a072ab18262968f4f656452f18
SHA-1: d9d3a96140383887b1bc8e00e565f1baaca16e54
Created: 2015/02/27 10:44:03
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\windows\blueangels2005_saver.scr
Publisher: ScreenTime Media
MD5: a823d296831ebe34b51ee4ab015db767
SHA-1: 5d703a017af20f3278de46b42e109532ef59f306
Created: 2008/11/07 8:07:40
Detections: 1
Determination: Ignore detections (false positive)
- eSafe as Suspicious File
---------------------------------------------------------------------------------
File path: c:\windows\system32\auxiliarydisplaycpl.dll
Publisher: Microsoft Corporation
MD5: 79b0ec7806b563475a211c5b0f9a4b9c
SHA-1: fc47aca774c29d94c50984122a7606e8ca9e468d
Created: 2009/07/07 21:54:08
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoA (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\system32\p207usd.dll
Publisher: PixArt Imaging Inc.
MD5: a65d74a3d16effa59f5c2cf1c817a5eb
SHA-1: aaa2be7cbadf01da58abdeccb588a5c2ef2600b5
Created: 2006/10/13 2:57:32
Detections: 1
Determination: Ignore detections (false positive)
- Trend Micro House Call as HV_ZYX_BK082892.TOMC (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\system32\vrvd302.dll
Publisher: Rsupport Corporation
Signer: Rsupport Co., Ltd.
MD5: d340d94a07390b73440cebb7048b7c80
SHA-1: 7a799e2853f1d3d0def800f42aff45f3a9c3a095
Created: 2008/02/26 17:49:27
Detections: 1
Determination: Ignore detections (false positive)
- Vba32 AntiVirus as Signed-Backdoor.Win32.Agent.ezs (Undefined)
---------------------------------------------------------------------------------
File path: c:\programdata\application data\autobahn\autobahn.exe
Publisher:
Signer: Swarmcast, Inc.
MD5: 1b61739a1dac59dc4310d5b45be2f64d
SHA-1: 7abe8ea8c2fd9f181657d334589591b0a67f5f32
Created: 2008/09/12 23:48:40
Detections: 3
Determination: Ignore detections (false positive)
- eSafe as Suspicious File
- Vba32 AntiVirus as suspected of Downloader.Zlob.11 (Undefined)
- Panda Antivirus as Suspicious file
---------------------------------------------------------------------------------
File path: c:\programdata\autobahn\autobahn.exe
Publisher:
Signer: Swarmcast, Inc.
MD5: 1b61739a1dac59dc4310d5b45be2f64d
SHA-1: 7abe8ea8c2fd9f181657d334589591b0a67f5f32
Created: 2008/09/12 23:48:40
Detections: 3
Determination: Ignore detections (false positive)
- eSafe as Suspicious File
- Vba32 AntiVirus as suspected of Downloader.Zlob.11 (Undefined)
- Panda Antivirus as Suspicious file
---------------------------------------------------------------------------------
File path: c:\program files\aerosim\aerosim crj200 vfd 2.1.23.1\zxmldll.dll
Publisher:
MD5: 3c777831d0b450207679411064b420a8
SHA-1: 949da0d2df93ac366fbd461a1458f709db8a0180
Created: 2010/11/03 12:00:15
Detections: 1
Determination: Inconclusive
- F-Secure as Gen:Variant.Adware.Strictor.71370 (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\canon\ijereg\mx470 series\res0013.dll
Publisher: CANON INC.
MD5: ab6d579b8dbf4bc2560f91061d935296
SHA-1: 7f09020a9dae19c6adbc71697e80bbc560e41c55
Created: 2015/01/14 16:28:20
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Trojan.Iframe.KX (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\canonbj\ijprinter\canon mg6100 series\cncisco3.dll
Publisher: Canon Inc.
MD5: 01028580cc047439c55dcfb92f3a39a8
SHA-1: 86c3d3924acc6b5559faa07814c47ff4120b0786
Created: 2012/04/21 13:11:34
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\apple\mobile device support\applemobiledevicehelper.exe
Publisher: Apple Inc.
Signer: Apple Inc.
MD5: 7a2b89c606c245a2b7e4ba708f654ff9
SHA-1: 807f0e6c89c92f23d3c78f2cd6f079fe050246a0
Created: 2013/09/07 9:20:40
Detections: 1
Determination: Ignore detections (false positive)
- Agnitum Outpost as Trojan.Graftor (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\apple\mobile device support\ath.exe
Publisher: Apple Inc.
Signer: Apple Inc.
MD5: 08fc5ed8a003a8302e9f9d3e225f9a8a
SHA-1: 6f66d56ba5a3cac9f8f34c5e5f7414bbe77fc7ab
Created: 2013/09/07 9:14:40
Detections: 1
Determination: Ignore detections (false positive)
- Agnitum Outpost as Trojan.Graftor (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\installshield\updateservice\issch.exe
Publisher: InstallShield Software Corporation
MD5: d2aeadfd998706b4216315b2bd3fa79e
SHA-1: 38cc63c7120b42a36c1b937c4687967c83319349
Created: 2005/02/17 7:15:20
Detections: 1
Determination: Ignore detections (false positive)
- Boost by Reason as Optional.Startup.InstallShieldSoftwareCorporation.F
---------------------------------------------------------------------------------
File path: c:\program files\common files\nikon\monitor\nkmonitor.exe
Publisher: Nikon Corporation
MD5: c12ef776375161398861d819139d84c5
SHA-1: f246ffe58be2cdcaa1b66e1390df4fe14bef8d04
Created: 2007/10/19 11:10:42
Detections: 1
Determination: Ignore detections (false positive)
- Clam AntiVirus as Win.Trojan.Agent-335551 (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\nikon\picture control utility\colorado.dll
Publisher: Nikon Corporation
MD5: 96f3357cfec3478dcfe05aa0c9d730b3
SHA-1: a4503c6cd584b604aae125fde5578493e89bf2c3
Created: 2011/01/07 13:30:22
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\codecs\mp4v.dll
Publisher:
MD5: 5f7fb979ec912d6cc23d0042c0928117
SHA-1: 0608aeeb39f3567afb3d4400c9b2cec40a015a88
Created: 2008/07/05 10:05:48
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Gen:Adware.SMSHoax (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\codecs\rv10.dll
Publisher: RealNetworks, Inc.
MD5: 5386fafb42df59560785f29da7ad89b6
SHA-1: 9122a34a984bc02c218405e1366c978a35482f77
Created: 2008/07/05 10:05:46
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Trojan.Heur.Oq0@uWDjaho (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\plugins\amrff.dll
Publisher:
MD5: 3a2daff32bb23da6343157d982e87905
SHA-1: 98d7d5f9acd9180b7a1c394f98314d26c82658e1
Created: 2008/07/05 10:05:48
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Gen:Variant.Symmi.34535 (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\plugins\wmsechnd.dll
Publisher: RealNetworks, Inc.
MD5: a3ea5e9ebf3b91a04d259b1af5bcafc7
SHA-1: 207863c7662ccbde2dee1f679395a7a4e17ebbd7
Created: 2008/07/05 10:05:48
Detections: 1
Determination: Ignore detections (false positive)
- CMC Antivirus as Packed.Win32.TDSS.2!O
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\update_ob\r1puninst.exe
Publisher: RealNetworks, Inc.
MD5: 78783b0d1e3f3702a2448ae6f06dd57c
SHA-1: b2ed252dc64dc3b6fde3f71fdd25ca952dd800bf
Created: 2008/07/05 10:05:35
Detections: 1
Determination: Ignore detections (false positive)
- McAfee Web Gateway as Heuristic.BehavesLike.Win32.Downloader.H
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\update_ob\realonemessagecenter.exe
Publisher: RealNetworks, Inc.
MD5: 758ed074b0918aeff2a27c356a0c4831
SHA-1: a26fca7d847e5ce5e1461f4b401c7e52caa0a57c
Created: 2008/07/05 10:05:35
Detections: 1
Determination: Ignore detections (false positive)
- Boost by Reason as Optional.RealNetworks.U
---------------------------------------------------------------------------------
File path: c:\program files\common files\reallusion\ct player\msvcrt.dll
Publisher: Microsoft Corporation
MD5: 94b9df0a49516c4b74a51dab70c1fe7c
SHA-1: 980326a06aa449a05db75ef32ccc4badb4e678c4
Created: 2008/08/27 7:23:01
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\atpfringe.dll
Publisher: Sony Corporation
MD5: ff0cc133fcf1b96977636afb1d304c86
SHA-1: 7eacaa8ca95902779041e516155e6a87bff9da52
Created: 2007/06/15 20:42:22
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\cdrformatter.dll
Publisher: Sony Corporation
MD5: 2ddbd349c438ee5d1431ad8c10935356
SHA-1: 50520b805776e13aa009421f0217effeb9a6292c
Created: 2007/06/15 20:41:30
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\cdwalkman.dll
Publisher: Sony Corporation
MD5: 7be9666abb157272c99415815e8b5383
SHA-1: 72c59ee4e5227d55e67173bc024a788d13b8a72e
Created: 2007/06/15 20:50:48
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\himd.dll
Publisher: Sony Corporation
MD5: ee92265b52c6eecada49cce5153df05b
SHA-1: 9fbc6ec1eab0e526d280b27922e54362a678acf9
Created: 2007/06/15 20:54:50
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\id3parser.dll
Publisher: Sony Corporation
MD5: 8199a96d495bf975ea37d23e1498c296
SHA-1: 62245c5e242aaa386064dadbed5322af87bba950
Created: 2007/06/15 20:43:42
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\mspro.dll
Publisher: Sony Corporation
MD5: db18d88b3781622b3d2a532c4f15b70f
SHA-1: 0b97bb3fb39386f3c2eb1e06e223d3e9fb8392ec
Created: 2007/06/15 21:02:52
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\mswm.dll
Publisher: Sony Corporation
MD5: f096835d35b5767a81cb50a67fe40ad8
SHA-1: ccfeabf3ee0192f71b65be8ffe052ba01f38f3f1
Created: 2007/06/15 20:49:16
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\netmd.dll
Publisher: Sony Corporation
MD5: f0d2d134ff996a291c8ad22cbd9becbc
SHA-1: 6c7a6918b7d097484c35c7c435029a155afb09fb
Created: 2007/06/15 20:48:36
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\netmdapi.dll
Publisher: Sony Corporation
MD5: 81390c8cca7c20b8a7ecbbdcb1c36c92
SHA-1: ee46b15f97a7e2cb05f2f38fb9bdea3841224161
Created: 2007/06/15 20:43:50
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\opcatp.dll
Publisher: Sony Corporation
MD5: 25889522e91872c520b45d0f5a403017
SHA-1: f62eb0003679b58d6012ee1a049b942a12000521
Created: 2007/06/15 20:45:00
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\opcds.dll
Publisher: Sony Corporation
MD5: ec7666be1560abe4232a941b445cd5d1
SHA-1: a1f10ee3fdccde596f53336e56671546527d9feb
Created: 2007/06/15 20:46:56
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\opchimd.dll
Publisher: Sony Corporation
MD5: f46a90a13bf599c6a69c8283b83057ee
SHA-1: 513c42f73f782f875a3fda3ad15b97b625881c8d
Created: 2007/06/15 21:00:26
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\opcomg.dll
Publisher: Sony Corporation
MD5: 36288edcc7e5272e3a2734451bd7dd30
SHA-1: 4b4077213a144296c193a8790bb06afc5bea9857
Created: 2007/06/15 20:40:58
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\cddareadcom.dll
Publisher: Sony Corporation
MD5: fcc9dcce37ef33b40446890ed476d269
SHA-1: 716026a9259f4a95ec6aecf90736d7514f005bc1
Created: 2007/06/15 20:40:08
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\ea3fringelib.dll
Publisher: Sony Corporation
MD5: 6959fbee2776b17770814c4e5d49227c
SHA-1: 10063b28994b58a00e8b72c9acc9f6fb2510596a
Created: 2007/06/15 20:28:52
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\mp4comp.dll
Publisher: Sony Corporation
MD5: 62eff132b3dff0b05f2843cbc0cf0f35
SHA-1: 905132fce7a1ac22a24a6b5b6247031aa6d5e5c0
Created: 2007/06/15 20:30:08
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\omgcolog.dll
Publisher: Sony Corporation
MD5: 0f655e15161c8c4503c6db5cdf9f9551
SHA-1: f2769a921439abb428305b50b3957ae72219be8e
Created: 2007/06/15 20:29:08
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\omgea3frng.dll
Publisher: Sony Corporation
MD5: 478e3336b62344d94d2d0677223051d8
SHA-1: 33d6fd2e844e47b8c07b7ba1814a430023cba089
Created: 2007/06/15 20:29:04
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\omgmisc.dll
Publisher: Sony Corporation
MD5: f59793de943ce1092088fc4ea9711eb8
SHA-1: fc9e345a024492eccc8f8b579d31d08d9d353502
Created: 2007/06/15 20:32:54
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\omgmp4libwrapper.dll
Publisher: Sony Corporation
MD5: 70590a47a29fbcbcebdcdbd51307b3c9
SHA-1: c826844172dd3490a4b930ec32088da926c8e15a
Created: 2007/06/15 20:33:24
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\omgpdman.dll
Publisher: Sony Corporation
MD5: c41a101bdc5e6302666a7270809c4233
SHA-1: 8c2972e3368292e5ac49adb256bf9ef30aa952bc
Created: 2007/06/15 20:44:08
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\opccd3.dll
Publisher: Sony Corporation
MD5: cff132734227125a207194ebba5b7013
SHA-1: d75bfb2e1895045502a160327632a7f7a8d88e1f
Created: 2007/06/15 20:46:34
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\opcmp4.dll
Publisher: Sony Corporation
MD5: 9169029de43116cb5ab28cc34727f3a8
SHA-1: 4876501391b87724c6094377301b952bf04c0069
Created: 2007/06/15 20:41:50
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\salwrap.dll
Publisher: Sony Corporation
MD5: b31fc5c34294c99d962d1c87f0df50e3
SHA-1: 5d90bdb399cb23388a629860531be9e6901cc213
Created: 2007/06/15 20:29:26
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\installchecker\installchecktool.exe
Publisher:
MD5: 86a4572e370286828039b71478714079
SHA-1: 42a098c06acf607346b8b8dca86810d243ff60eb
Created: 2007/06/15 21:14:24
Detections: 3
Determination: Inconclusive
- McAfee as Artemis!86A4572E3702 (Undefined)
- Rising Antivirus as Trojan.Win32.Generic.12C02896 (Undefined)
- Panda Antivirus as Suspicious file
---------------------------------------------------------------------------------
File path: c:\program files\explzh\declha.exe
Publisher: pon software
MD5: fe2a015b4fcf6a3bcb0a5db253a5d838
SHA-1: 6334adfcd6446a6ca15d9b2bd7a5883cf4cd62ae
Created: 2012/07/23 23:57:34
Detections: 1
Determination: Ignore detections (false positive)
- Kingsoft AntiVirus as Win32.PSWTroj.Ruftar.t.(kcloud) (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\faith\nfrmpcviewer\sqlite3.dll
Publisher:
MD5: bbb8e34cfe84a1e0579e1d4d9000b427
SHA-1: 24ea75ceb7907883d15cb17d361a583307174b8c
Created: 2008/02/26 20:27:08
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoB (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\google\google earth\client\gpsbabel.exe
Publisher:
MD5: c29b2413bc9915dfcddcd2d55c5c4e72
SHA-1: 63d689cb807f35e55df6f02324a0fde48c7bda28
Created: 2011/10/18 4:03:41
Detections: 1
Determination: Ignore detections (false positive)
- eSafe as Win32.Application (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\google\google earth\client\plugins\npgeinprocessplugin.dll
Publisher: Google
MD5: e555ca3444a7e25cb87eb17b22c889f9
SHA-1: 9d5af9baa975e8187b07f677664837e457adc293
Created: 2011/10/18 3:38:39
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\installshield installation information\{fedd27a0-b306-45ef-bf58-b527406b42c8}\setup.exe
Publisher: TOSHIBA Corporation
MD5: ec55772853c70b0fad29e5a178d3b711
SHA-1: c66c49336c52eb03d8d98e210988b8d3adefd3cd
Created: 2008/02/26 19:08:41
Detections: 3
Determination: UndefinedMalware
- Agnitum Outpost as Trojan.Genome (Undefined)
- VIPRE Antivirus as Trojan.Win32.Generic (Undefined)
- Sunbelt AntiMalware as Porn-Dialer.Win32.CapreDeam.N (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\iobitdownloader.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 1781e6512bc8114722f633cbddd54148
SHA-1: 6ea0ba0e57dbec3aa3492f516d199c080cf5c399
Created: 2015/02/27 10:44:44
Detections: 2
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
- Rising Antivirus as PE:Virus.Shodi!1.9B9C (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\iobituninstaler.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 001de5a072ab18262968f4f656452f18
SHA-1: d9d3a96140383887b1bc8e00e565f1baaca16e54
Created: 2015/02/27 10:44:50
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\liveupdate.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 87aac3cbd2c5d5ac6ca87ad08a228241
SHA-1: aacd36907710af4589aa9edb3d1c4263892f39fa
Created: 2015/02/27 10:44:42
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\ppuninstaller.exe
Publisher:
Signer: IObit Information Technology
MD5: 28ca7d1bb9fbfca2b529d885e61491d8
SHA-1: 7bc41ba0c2fd59e62d8e5c677b4598b6540d8fb0
Created: 2015/02/27 10:44:44
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\sendbugreportnew.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 1e2b2e40c35f825eef62ab7453b5a997
SHA-1: 2deb6b44db7f41b6da5658e4c7605abdc8a421b6
Created: 2015/02/27 10:44:43
Detections: 2
Determination: Ignore detections (false positive)
- CMC Antivirus as Packed.Win32.Obfuscated.10!O
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\uninstalldisplay.exe
Publisher:
Signer: IObit Information Technology
MD5: 781a75acfb56fc8349bebbdcc027a970
SHA-1: a8c62dbe24fdfa3d7ea003513a2f508a46748fa0
Created: 2015/02/27 10:44:49
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\uninstall_mitor.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: d7abab4673f01bae817114c383f0f949
SHA-1: 17c182daa496a6b017655df08d9a59e8a482f2c8
Created: 2015/02/27 10:44:41
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\rainmeter\skininstaller.exe
Publisher:
Signer: Rainmeter (Open Source Software)
MD5: bd026e47b87ba4598409a5aa6ed8c0ec
SHA-1: 977bd1e4c411ab27b85e88fa39b360ce30fa5c1e
Created: 2012/01/08 23:32:58
Detections: 1
Determination: Ignore detections (false positive)
- IKARUS anti.virus as Win32.SuspectCrc (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\real\realplayer\dbghelp.dll
Publisher: Microsoft Corporation
MD5: 9ccbfa69ac67aed98e1c8a11ffa2a630
SHA-1: a61d66bb8dd8db1effadd00df1b5fbc696e26767
Created: 2008/07/05 10:05:49
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Trojan.Heur.Oq0@uqjKLLd (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\real\realplayer\plugins\rjm4pln.dll
Publisher:
MD5: 8bcba6260cfa5f289a4568dd65963e50
SHA-1: 00b037cb31e967b3debff718fff86e5daea3a0f8
Created: 2008/07/05 10:05:48
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\real\realplayer\plugins\teamp3.dll
Publisher: RealNetworks, Inc.
MD5: 0677b4a7058e717541daf776be130eb3
SHA-1: ad1f2677a8af16a991be7e33f04bf98927108b6b
Created: 2008/07/05 10:05:50
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Malware.Win32.xPack.g (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\real\realplayer\plugins\teawma.dll
Publisher: RealNetworks, Inc.
MD5: 0677689310b358e318e9016abe018528
SHA-1: 3473998c7019d63b52433ee6bcfa7c88c17aeba5
Created: 2008/07/05 10:05:48
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Malware.Win32.xPack.g (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\real\realplayer\rpplugins\rpap3260.dll
Publisher: RealNetworks, Inc.
MD5: 92900487120bf58ebed5a187a85a63f9
SHA-1: ee2846fced4a193274709bc0880787e91f5a29ab
Created: 2008/07/05 10:05:38
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\real\realplayer\rpplugins\rput3260.dll
Publisher: RealNetworks, Inc.
MD5: f50a2c2baea084660f6f59210bed022c
SHA-1: 020f6a47380689013b2c30783d60b658aa7c1459
Created: 2008/07/05 10:05:38
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Variant.Adware.Graftor.123584 (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\scansoft\omnipagese4\p4dll.dll
Publisher: E-W Software
MD5: 3c3f7734ec7a82c5944001ec2614eb82
SHA-1: 3ff4ac654cc7ea3b2dc6d43b70ecb3b5d1331bf0
Created: 2007/02/05 1:56:10
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Trojan.Generic.6429040 (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\flashcards\tcrdcase.exe
Publisher: TOSHIBA Corporation
MD5: 649d6a159541607f5a4862856a7b1c33
SHA-1: 5fa61418e0f7a1a944a48b61204a518c1b7b5c03
Created: 2007/12/14 22:31:18
Detections: 1
Determination: Ignore detections (false positive)
- Norman as Obfuscated_VPE
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\hdd protection\delreglf.exe
Publisher:
MD5: 9db431e1e1054b8b8b9b0393b829b607
SHA-1: 8220dd69cc1e685e272e1145bdbdadeb49a163f2
Created: 2006/08/31 17:04:06
Detections: 1
Determination: Ignore detections (false positive)
- McAfee Web Gateway as Heuristic.BehavesLike.Win32.Suspicious.H
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\pcdiag\mfc42.dll
Publisher: Microsoft Corporation
MD5: 71ad9ea933ace083add86bbe4f265d8b
SHA-1: 094929e01d6fcb22a0194f0b0ce32b7e3c80696b
Created: 2001/03/30 13:13:48
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Variant.Adware.Strictor.18030 (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\speech system\system\regsvr32.exe
Publisher: Microsoft Corporation
MD5: 5d1bdc0272e72798500f202b13bd39cc
SHA-1: 32ab4a6b571e4729221eb2e392e6f332aa10fc3e
Created: 2008/02/26 19:32:23
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Worm/Win32.Otwycal.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\speech system\system\toshookm.dll
Publisher: Toshiba Corporation.
MD5: 033b1b8158128ecde5213a6c3e2374f5
SHA-1: a29c2f8b512664bef26a74f19e84f18d630b7e79
Created: 2008/02/26 19:33:03
Detections: 1
Determination: Ignore detections (false positive)
- CMC Antivirus as Packed.Win32.FakeAV-Crypter.6!O
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\toshiba disc creator\toddsrv.exe
Publisher: TOSHIBA Corporation
Signer: TOSHIBA CORPORATION
MD5: c5ac715b65b01788abc22d10749dddd8
SHA-1: 4cfbf7d2257345eb1adf0a962c8d5acafad70350
Created: 2007/11/21 18:23:32
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\toshiba recovery disc creator\toddsrv.exe
Publisher: TOSHIBA Corporation
Signer: TOSHIBA CORPORATION
MD5: c5ac715b65b01788abc22d10749dddd8
SHA-1: 4cfbf7d2257345eb1adf0a962c8d5acafad70350
Created: 2007/11/21 18:23:32
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\trend micro\vb2008_1610\setup\engine\32bit\0x22000080\tmbmsrv.exe
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 86f5745e7bb6bb34e597b4428066956d
SHA-1: e7bcc73f3e979f666e72044772310dbc7693866d
Created: 2008/03/08 12:06:18
Detections: 2
Determination: Ignore detections (false positive)
- Clam AntiVirus as Win.Trojan.Agent-189633 (Undefined)
- Emsisoft Anti-Malware as Gen:Adware.MPlug (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\trend micro\vb2008_1610\setup\function\32bit\158\tmpfwctl.dll
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 6704370eb6f6656ef97ae142f92c728f
SHA-1: efb7969e8642b0115a13e581db8678c767c9d3f4
Created: 2008/03/08 12:06:22
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious File With Covert Attributes
---------------------------------------------------------------------------------
File path: c:\program files\truesuite access manager\fpmanager.exe
Publisher: Authentec,Inc
MD5: 3980dbb00a1021cf6fb460a93fc79604
SHA-1: affe05dec7bcdeccbaf8632720e6d259a041c87d
Created: 2008/02/27 11:05:45
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Worm.Generic.293457 (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\truesuite access manager\mgrtool.exe
Publisher: ABIG
MD5: 4399af6dbbb42bd2a503594d74aa1b52
SHA-1: b7907e974c49f77bfa60eeeb6f704c2319259975
Created: 2008/02/27 11:05:47
Detections: 2
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Trojan-Dropper.Win32.Dapato!IK (Undefined)
- IKARUS anti.virus as Trojan-Dropper.Win32.Dapato (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd discrecorder 2.2\ucimg.dll
Publisher: Ulead Systems, Inc.
MD5: 9224dc1a21565b068594c8359f274207
SHA-1: 5190e89780ca92c7c20b7d3ca2364ad059372c80
Created: 2008/02/27 9:36:09
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Adware.SMSHoax (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd discrecorder 2.2\ulspdec.dll
Publisher: Ulead Systems, Inc.
MD5: 9b70b58ea65410140fa1f6972109af08
SHA-1: c713e682df22815871f454f7c491f7b2acce03b0
Created: 2008/02/27 9:36:10
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Android.Trojan.Boqx (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd discrecorder 2.2\fio\fiorc2.dll
Publisher: Ulead Systems, Inc.
MD5: 9d4fe7df0bd0e45bcc2ba2c285ec8025
SHA-1: ba82b25e5f7d25fb53758de6d1def284d0634d12
Created: 2008/02/27 9:36:12
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Packed.Win32.Krap.hm!A2
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd moviewriter 5\mflogservice.dll
Publisher:
MD5: 10d9c58a656b0dae197df30fc5451981
SHA-1: c206905fa80fc0655d3d76c5022280d9557cc954
Created: 2008/02/27 9:34:36
Detections: 1
Determination: Ignore detections (false positive)
- Sunbelt AntiMalware as Henbang.A (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd moviewriter 5\ucimg.dll
Publisher: Ulead Systems, Inc.
MD5: 9224dc1a21565b068594c8359f274207
SHA-1: 5190e89780ca92c7c20b7d3ca2364ad059372c80
Created: 2008/02/27 9:34:42
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Adware.SMSHoax (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd moviewriter 5\ulspdec.dll
Publisher: Ulead Systems, Inc.
MD5: 9b70b58ea65410140fa1f6972109af08
SHA-1: c713e682df22815871f454f7c491f7b2acce03b0
Created: 2008/02/27 9:34:43
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Android.Trojan.Boqx (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd moviewriter 5\umfcommdlg.dll
Publisher:
MD5: 91b8be671ec0af1be12654cb144199b7
SHA-1: 08521ddf19f7c128be63c595f0ba69ea5c55c102
Created: 2008/02/27 9:34:43
Detections: 1
Determination: Ignore detections (false positive)
- Sunbelt AntiMalware as AdWare.Win32.DN (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd moviewriter 5\umfnormaledittask.dll
Publisher:
MD5: 0bed920f9c23bdd15ed306d947f62212
SHA-1: ac41d35eceb624a8e8ea44eeeafed9d7dedee0fb
Created: 2008/02/27 9:34:43
Detections: 1
Determination: Ignore detections (false positive)
- Sunbelt AntiMalware as AdWare.Win32.DN (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd moviewriter 5\fio\fiorc2.dll
Publisher: Ulead Systems, Inc.
MD5: 9d4fe7df0bd0e45bcc2ba2c285ec8025
SHA-1: ba82b25e5f7d25fb53758de6d1def284d0634d12
Created: 2008/02/27 9:34:45
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Packed.Win32.Krap.hm!A2
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd tweak and fit 2.1\uliblzw.dll
Publisher:
MD5: 8018545f7b5842cb1ffe6a6910722a4e
SHA-1: d5de48914d6790968ed37b25a980f23887a3418f
Created: 2008/02/27 9:37:09
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Backdoor.Generic.99581 (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd tweak and fit 2.1\vcvrt32.dll
Publisher: Ulead Systems, Inc.
MD5: 50522753302c0f6c39f9ff24e2d08fcc
SHA-1: 8f7de6acd54162f071fa86555c1142f8a1ed678a
Created: 2008/02/27 9:37:10
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan/Win32.KeyLogger.gen (Undefined)
HPとOTLによるスキャンが完了いたしました。ご指示いただいたVeohの処置はOTLスキャンの前に実行いたしました。
時間の関係上、スキャン後の様子見は30分ほどしかできておりませんが、今のところ問題なしです。
以下、初めにHPのログです。
Saved date: 2015/03/02 0:10:57
Files detected: 112
Files scanned: 9,105
Processes scanned: 94
Modules scanned: 655
ASEPs scanned: 483
Downloads scanned: 0
Deep analysis: 352/63
---------------------------------------------------------------------------------
Files
---------------------------------------------------------------------------------
File path: c:\program files\common files\microsoft shared\vs7debug\mdm.exe
Publisher: Microsoft Corporation
MD5: 7cf1b716372b89568ae4c0fe769f5869
SHA-1: 85b15a1b69dbbb2a39ce2b2cb6d8209e300f8065
Created: 2006/10/26 14:40:34
Detections: 1
Determination: Ignore detections (false positive)
- Boost by Reason as Optional.Service.MicrosoftCorporation.D
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\uninstallmonitor.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 399f5ac332cd0b07be87212e3c0bf76d
SHA-1: ea7f2e72a1659f7adbbbd7cb820995948a6ca135
Created: 2015/02/27 10:44:42
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\smartlogservice\tosipcsrv.exe
Publisher: TOSHIBA Corporation
MD5: 22690dffc7f2a18279a7a0489aa02bac
SHA-1: c2d94bc49586a1ea94927753a9b2dc2b8af84bfe
Created: 2007/12/03 18:03:52
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\flashcards\tcrdmain.exe
Publisher: TOSHIBA Corporation
MD5: e9e5692f51d6032a1105c7be27fc0bae
SHA-1: ecf409a1cbee41faa202a23d3f421b7443a7bd3e
Created: 2008/01/22 15:25:26
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Malware.Win32.xPack.m (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\hdd protection\notifythp.dll
Publisher:
MD5: f7ad9283aa8262ba94d6f2d0059413df
SHA-1: 65655bab1108cb296eeb9c23ccc99284b7c82883
Created: 2007/12/19 13:12:38
Detections: 1
Determination: Ignore detections (false positive)
- McAfee Web Gateway as Heuristic.BehavesLike.Win32.Suspicious-DTR.K
---------------------------------------------------------------------------------
File path: c:\program files\truesuite access manager\pwdbank.exe
Publisher: Arachnoid Biometrics Identification Group
MD5: 7961110ea15f869e1daa820d335a9c35
SHA-1: c6abf88bbfdfd719b42ae3c37e06a3beaf861eb6
Created: 2008/02/27 11:05:43
Detections: 1
Determination: Ignore detections (false positive)
- Rising Antivirus as PE:Trojan.Win32.EBack.a!1075334441 (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\system32\toddsrv.exe
Publisher: TOSHIBA Corporation
Signer: TOSHIBA CORPORATION
MD5: c5ac715b65b01788abc22d10749dddd8
SHA-1: 4cfbf7d2257345eb1adf0a962c8d5acafad70350
Created: 2008/02/26 19:16:24
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\liveupdate\liveupdate.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 87aac3cbd2c5d5ac6ca87ad08a228241
SHA-1: aacd36907710af4589aa9edb3d1c4263892f39fa
Created: 2015/02/27 10:44:51
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\mscsptisrv.exe
Publisher: Sony Corporation
MD5: 6f51b51e0ca956a251829d7f34094f81
SHA-1: 4115d5e82b957c1bc09050c7cbcd7060e2dc82be
Created: 2007/06/15 21:01:44
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\pacsptisvr.exe
Publisher: Sony Corporation
MD5: a6b1530c603b0f4135d45d3fee673825
SHA-1: 6518c50cc4d76f0569abc069e96ea15a738af0b6
Created: 2007/06/15 20:26:44
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\system32\drivers\amdk7.sys
Publisher: Microsoft Corporation
MD5: 18f29b49ad23ecee3d2a826c725c8d48
SHA-1: 4da88ed74e63cc5346052fd1a2d7e30bd57d5e2a
Created: 2006/11/02 18:30:18
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Trojan.Heur.Lq0@uSR9FBn (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\uninstallexplorer32.dll
Publisher: IObit
Signer: IObit Information Technology
MD5: 100c1eeb3eb296ddc9c55393330b5baf
SHA-1: b75d587b96d646a6bfb1d53b4c16f95c01c12943
Created: 2015/02/27 10:44:50
Detections: 1
Determination: Ignore detections (false positive)
- CMC Antivirus as Packed.Win32.Obfuscated.10!O
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\update_ob\realsched.exe
Publisher: RealNetworks, Inc.
Signer: RealNetworks, Inc.
MD5: 89d583fc41d48328128a974c25afaeb7
SHA-1: c461acc8a13041a87b8fcfd67b8c0bbf8c950cb2
Created: 2008/07/05 10:05:35
Detections: 2
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
- Comodo Security as Heur.Suspicious
---------------------------------------------------------------------------------
File path: c:\windows\temp\._msige60\program files\google\google earth\client\ge_expat.dll
Publisher:
MD5: 53b3e519c347682a20f7df7f9ee3e38f
SHA-1: 3ec047d304645056a54a6b20826ac62fb5428170
Created: 2011/06/28 20:38:32
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Packed/Win32.Katusha.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\temp\._msige60\program files\google\google earth\client\googleearth.exe
Publisher: Google
MD5: 6bb00663fbe9978fe2be61b99b8375d8
SHA-1: de3db3fd1aec9dffcd4c52edfa1052d8e247b6c9
Created: 2011/06/28 20:38:32
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\temp\._msige60\program files\google\google earth\plugin\geplugin.exe
Publisher: Google
MD5: 6bb00663fbe9978fe2be61b99b8375d8
SHA-1: de3db3fd1aec9dffcd4c52edfa1052d8e247b6c9
Created: 2011/06/28 20:38:32
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\temp\._msige60\program files\google\google earth\plugin\ge_expat.dll
Publisher:
MD5: 53b3e519c347682a20f7df7f9ee3e38f
SHA-1: 3ec047d304645056a54a6b20826ac62fb5428170
Created: 2011/06/28 20:38:32
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Packed/Win32.Katusha.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\temp\._msige61\program files\google\google earth\client\gpsbabel.exe
Publisher:
MD5: c29b2413bc9915dfcddcd2d55c5c4e72
SHA-1: 63d689cb807f35e55df6f02324a0fde48c7bda28
Created: 2011/11/17 9:56:18
Detections: 1
Determination: Ignore detections (false positive)
- eSafe as Win32.Application (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\temp\._msige61\program files\google\google earth\client\plugins\npgeinprocessplugin.dll
Publisher: Google
MD5: e555ca3444a7e25cb87eb17b22c889f9
SHA-1: 9d5af9baa975e8187b07f677664837e457adc293
Created: 2011/11/17 9:56:23
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\users\kohei\downloads\sm32_320.exe
Publisher:
MD5: 0cc1e985ae01697027b1de8e9232fbf6
SHA-1: a94901c3c52fe1828a5663897936c0c26fedc9f7
Created: 2008/06/28 11:08:13
Detections: 2
Determination: Ignore detections (false positive)
- NANO AntiVirus as Trojan.Win32.PePatch.dgapgf (Undefined)
- Antiy Labs AVL as Trojan[Packed]/Win32.PePatch (Undefined)
---------------------------------------------------------------------------------
File path: c:\users\kohei\downloads\advancedwheelmuose_vi\advancedwheelmuose_vi.exe
Publisher:
MD5: 3b1493de0c1f80d6463bac60267f59f2
SHA-1: 2c97fa2641bee30ac9e3e545ea85ce56e343f766
Created: 2009/07/25 19:43:13
Detections: 2
Determination: Ignore detections (false positive)
- The Hacker as Trojan/Nilage.hnq (Undefined)
- Kingsoft AntiVirus as Win32.Troj.DeepScan.a.(kcloud) (Undefined)
---------------------------------------------------------------------------------
File path: c:\users\kohei\desktop\hijackthis.exe
Publisher: Trend Micro Inc.
MD5: 47811d50390a86a17102d7496e6eabb9
SHA-1: 2623749cdb27887f6746acdee7e8065475f8b541
Created: 2015/02/25 22:48:32
Detections: 2
Determination: Ignore detections (false positive)
- Kingsoft AntiVirus as Win32.HeurC.KVM099.a.(kcloud) (Undefined)
- Rising Antivirus as PE:Trojan.VBInject!1.6546 (Undefined)
---------------------------------------------------------------------------------
File path: c:\users\kohei\desktop\対策\otl.exe
Publisher: OldTimer Tools
MD5: 4adcfee16ee9978f06157634669d36fb
SHA-1: 30b37076552e49276836d02dd73d038c27dbbee9
Created: 2015/03/01 20:59:03
Detections: 2
Determination: Ignore detections (false positive)
- Agnitum Outpost as Packed/PECompact
- Bkav FE as HW32.CDB (Undefined)
---------------------------------------------------------------------------------
File path: c:\users\kohei\desktop\対策\iobituninstaller-4-2-6-2\iobituninstaller-4-2-6-2\iobituninstaller-jp42.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 001de5a072ab18262968f4f656452f18
SHA-1: d9d3a96140383887b1bc8e00e565f1baaca16e54
Created: 2015/02/27 10:44:03
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\windows\blueangels2005_saver.scr
Publisher: ScreenTime Media
MD5: a823d296831ebe34b51ee4ab015db767
SHA-1: 5d703a017af20f3278de46b42e109532ef59f306
Created: 2008/11/07 8:07:40
Detections: 1
Determination: Ignore detections (false positive)
- eSafe as Suspicious File
---------------------------------------------------------------------------------
File path: c:\windows\system32\auxiliarydisplaycpl.dll
Publisher: Microsoft Corporation
MD5: 79b0ec7806b563475a211c5b0f9a4b9c
SHA-1: fc47aca774c29d94c50984122a7606e8ca9e468d
Created: 2009/07/07 21:54:08
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoA (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\system32\p207usd.dll
Publisher: PixArt Imaging Inc.
MD5: a65d74a3d16effa59f5c2cf1c817a5eb
SHA-1: aaa2be7cbadf01da58abdeccb588a5c2ef2600b5
Created: 2006/10/13 2:57:32
Detections: 1
Determination: Ignore detections (false positive)
- Trend Micro House Call as HV_ZYX_BK082892.TOMC (Undefined)
---------------------------------------------------------------------------------
File path: c:\windows\system32\vrvd302.dll
Publisher: Rsupport Corporation
Signer: Rsupport Co., Ltd.
MD5: d340d94a07390b73440cebb7048b7c80
SHA-1: 7a799e2853f1d3d0def800f42aff45f3a9c3a095
Created: 2008/02/26 17:49:27
Detections: 1
Determination: Ignore detections (false positive)
- Vba32 AntiVirus as Signed-Backdoor.Win32.Agent.ezs (Undefined)
---------------------------------------------------------------------------------
File path: c:\programdata\application data\autobahn\autobahn.exe
Publisher:
Signer: Swarmcast, Inc.
MD5: 1b61739a1dac59dc4310d5b45be2f64d
SHA-1: 7abe8ea8c2fd9f181657d334589591b0a67f5f32
Created: 2008/09/12 23:48:40
Detections: 3
Determination: Ignore detections (false positive)
- eSafe as Suspicious File
- Vba32 AntiVirus as suspected of Downloader.Zlob.11 (Undefined)
- Panda Antivirus as Suspicious file
---------------------------------------------------------------------------------
File path: c:\programdata\autobahn\autobahn.exe
Publisher:
Signer: Swarmcast, Inc.
MD5: 1b61739a1dac59dc4310d5b45be2f64d
SHA-1: 7abe8ea8c2fd9f181657d334589591b0a67f5f32
Created: 2008/09/12 23:48:40
Detections: 3
Determination: Ignore detections (false positive)
- eSafe as Suspicious File
- Vba32 AntiVirus as suspected of Downloader.Zlob.11 (Undefined)
- Panda Antivirus as Suspicious file
---------------------------------------------------------------------------------
File path: c:\program files\aerosim\aerosim crj200 vfd 2.1.23.1\zxmldll.dll
Publisher:
MD5: 3c777831d0b450207679411064b420a8
SHA-1: 949da0d2df93ac366fbd461a1458f709db8a0180
Created: 2010/11/03 12:00:15
Detections: 1
Determination: Inconclusive
- F-Secure as Gen:Variant.Adware.Strictor.71370 (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\canon\ijereg\mx470 series\res0013.dll
Publisher: CANON INC.
MD5: ab6d579b8dbf4bc2560f91061d935296
SHA-1: 7f09020a9dae19c6adbc71697e80bbc560e41c55
Created: 2015/01/14 16:28:20
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Trojan.Iframe.KX (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\canonbj\ijprinter\canon mg6100 series\cncisco3.dll
Publisher: Canon Inc.
MD5: 01028580cc047439c55dcfb92f3a39a8
SHA-1: 86c3d3924acc6b5559faa07814c47ff4120b0786
Created: 2012/04/21 13:11:34
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\apple\mobile device support\applemobiledevicehelper.exe
Publisher: Apple Inc.
Signer: Apple Inc.
MD5: 7a2b89c606c245a2b7e4ba708f654ff9
SHA-1: 807f0e6c89c92f23d3c78f2cd6f079fe050246a0
Created: 2013/09/07 9:20:40
Detections: 1
Determination: Ignore detections (false positive)
- Agnitum Outpost as Trojan.Graftor (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\apple\mobile device support\ath.exe
Publisher: Apple Inc.
Signer: Apple Inc.
MD5: 08fc5ed8a003a8302e9f9d3e225f9a8a
SHA-1: 6f66d56ba5a3cac9f8f34c5e5f7414bbe77fc7ab
Created: 2013/09/07 9:14:40
Detections: 1
Determination: Ignore detections (false positive)
- Agnitum Outpost as Trojan.Graftor (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\installshield\updateservice\issch.exe
Publisher: InstallShield Software Corporation
MD5: d2aeadfd998706b4216315b2bd3fa79e
SHA-1: 38cc63c7120b42a36c1b937c4687967c83319349
Created: 2005/02/17 7:15:20
Detections: 1
Determination: Ignore detections (false positive)
- Boost by Reason as Optional.Startup.InstallShieldSoftwareCorporation.F
---------------------------------------------------------------------------------
File path: c:\program files\common files\nikon\monitor\nkmonitor.exe
Publisher: Nikon Corporation
MD5: c12ef776375161398861d819139d84c5
SHA-1: f246ffe58be2cdcaa1b66e1390df4fe14bef8d04
Created: 2007/10/19 11:10:42
Detections: 1
Determination: Ignore detections (false positive)
- Clam AntiVirus as Win.Trojan.Agent-335551 (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\nikon\picture control utility\colorado.dll
Publisher: Nikon Corporation
MD5: 96f3357cfec3478dcfe05aa0c9d730b3
SHA-1: a4503c6cd584b604aae125fde5578493e89bf2c3
Created: 2011/01/07 13:30:22
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\codecs\mp4v.dll
Publisher:
MD5: 5f7fb979ec912d6cc23d0042c0928117
SHA-1: 0608aeeb39f3567afb3d4400c9b2cec40a015a88
Created: 2008/07/05 10:05:48
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Gen:Adware.SMSHoax (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\codecs\rv10.dll
Publisher: RealNetworks, Inc.
MD5: 5386fafb42df59560785f29da7ad89b6
SHA-1: 9122a34a984bc02c218405e1366c978a35482f77
Created: 2008/07/05 10:05:46
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Trojan.Heur.Oq0@uWDjaho (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\plugins\amrff.dll
Publisher:
MD5: 3a2daff32bb23da6343157d982e87905
SHA-1: 98d7d5f9acd9180b7a1c394f98314d26c82658e1
Created: 2008/07/05 10:05:48
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Gen:Variant.Symmi.34535 (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\plugins\wmsechnd.dll
Publisher: RealNetworks, Inc.
MD5: a3ea5e9ebf3b91a04d259b1af5bcafc7
SHA-1: 207863c7662ccbde2dee1f679395a7a4e17ebbd7
Created: 2008/07/05 10:05:48
Detections: 1
Determination: Ignore detections (false positive)
- CMC Antivirus as Packed.Win32.TDSS.2!O
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\update_ob\r1puninst.exe
Publisher: RealNetworks, Inc.
MD5: 78783b0d1e3f3702a2448ae6f06dd57c
SHA-1: b2ed252dc64dc3b6fde3f71fdd25ca952dd800bf
Created: 2008/07/05 10:05:35
Detections: 1
Determination: Ignore detections (false positive)
- McAfee Web Gateway as Heuristic.BehavesLike.Win32.Downloader.H
---------------------------------------------------------------------------------
File path: c:\program files\common files\real\update_ob\realonemessagecenter.exe
Publisher: RealNetworks, Inc.
MD5: 758ed074b0918aeff2a27c356a0c4831
SHA-1: a26fca7d847e5ce5e1461f4b401c7e52caa0a57c
Created: 2008/07/05 10:05:35
Detections: 1
Determination: Ignore detections (false positive)
- Boost by Reason as Optional.RealNetworks.U
---------------------------------------------------------------------------------
File path: c:\program files\common files\reallusion\ct player\msvcrt.dll
Publisher: Microsoft Corporation
MD5: 94b9df0a49516c4b74a51dab70c1fe7c
SHA-1: 980326a06aa449a05db75ef32ccc4badb4e678c4
Created: 2008/08/27 7:23:01
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\atpfringe.dll
Publisher: Sony Corporation
MD5: ff0cc133fcf1b96977636afb1d304c86
SHA-1: 7eacaa8ca95902779041e516155e6a87bff9da52
Created: 2007/06/15 20:42:22
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\cdrformatter.dll
Publisher: Sony Corporation
MD5: 2ddbd349c438ee5d1431ad8c10935356
SHA-1: 50520b805776e13aa009421f0217effeb9a6292c
Created: 2007/06/15 20:41:30
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\cdwalkman.dll
Publisher: Sony Corporation
MD5: 7be9666abb157272c99415815e8b5383
SHA-1: 72c59ee4e5227d55e67173bc024a788d13b8a72e
Created: 2007/06/15 20:50:48
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\himd.dll
Publisher: Sony Corporation
MD5: ee92265b52c6eecada49cce5153df05b
SHA-1: 9fbc6ec1eab0e526d280b27922e54362a678acf9
Created: 2007/06/15 20:54:50
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\id3parser.dll
Publisher: Sony Corporation
MD5: 8199a96d495bf975ea37d23e1498c296
SHA-1: 62245c5e242aaa386064dadbed5322af87bba950
Created: 2007/06/15 20:43:42
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\mspro.dll
Publisher: Sony Corporation
MD5: db18d88b3781622b3d2a532c4f15b70f
SHA-1: 0b97bb3fb39386f3c2eb1e06e223d3e9fb8392ec
Created: 2007/06/15 21:02:52
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\mswm.dll
Publisher: Sony Corporation
MD5: f096835d35b5767a81cb50a67fe40ad8
SHA-1: ccfeabf3ee0192f71b65be8ffe052ba01f38f3f1
Created: 2007/06/15 20:49:16
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\netmd.dll
Publisher: Sony Corporation
MD5: f0d2d134ff996a291c8ad22cbd9becbc
SHA-1: 6c7a6918b7d097484c35c7c435029a155afb09fb
Created: 2007/06/15 20:48:36
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\netmdapi.dll
Publisher: Sony Corporation
MD5: 81390c8cca7c20b8a7ecbbdcb1c36c92
SHA-1: ee46b15f97a7e2cb05f2f38fb9bdea3841224161
Created: 2007/06/15 20:43:50
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\opcatp.dll
Publisher: Sony Corporation
MD5: 25889522e91872c520b45d0f5a403017
SHA-1: f62eb0003679b58d6012ee1a049b942a12000521
Created: 2007/06/15 20:45:00
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\opcds.dll
Publisher: Sony Corporation
MD5: ec7666be1560abe4232a941b445cd5d1
SHA-1: a1f10ee3fdccde596f53336e56671546527d9feb
Created: 2007/06/15 20:46:56
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\opchimd.dll
Publisher: Sony Corporation
MD5: f46a90a13bf599c6a69c8283b83057ee
SHA-1: 513c42f73f782f875a3fda3ad15b97b625881c8d
Created: 2007/06/15 21:00:26
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\avlib\opcomg.dll
Publisher: Sony Corporation
MD5: 36288edcc7e5272e3a2734451bd7dd30
SHA-1: 4b4077213a144296c193a8790bb06afc5bea9857
Created: 2007/06/15 20:40:58
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\cddareadcom.dll
Publisher: Sony Corporation
MD5: fcc9dcce37ef33b40446890ed476d269
SHA-1: 716026a9259f4a95ec6aecf90736d7514f005bc1
Created: 2007/06/15 20:40:08
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\ea3fringelib.dll
Publisher: Sony Corporation
MD5: 6959fbee2776b17770814c4e5d49227c
SHA-1: 10063b28994b58a00e8b72c9acc9f6fb2510596a
Created: 2007/06/15 20:28:52
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\mp4comp.dll
Publisher: Sony Corporation
MD5: 62eff132b3dff0b05f2843cbc0cf0f35
SHA-1: 905132fce7a1ac22a24a6b5b6247031aa6d5e5c0
Created: 2007/06/15 20:30:08
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\omgcolog.dll
Publisher: Sony Corporation
MD5: 0f655e15161c8c4503c6db5cdf9f9551
SHA-1: f2769a921439abb428305b50b3957ae72219be8e
Created: 2007/06/15 20:29:08
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\omgea3frng.dll
Publisher: Sony Corporation
MD5: 478e3336b62344d94d2d0677223051d8
SHA-1: 33d6fd2e844e47b8c07b7ba1814a430023cba089
Created: 2007/06/15 20:29:04
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\omgmisc.dll
Publisher: Sony Corporation
MD5: f59793de943ce1092088fc4ea9711eb8
SHA-1: fc9e345a024492eccc8f8b579d31d08d9d353502
Created: 2007/06/15 20:32:54
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\omgmp4libwrapper.dll
Publisher: Sony Corporation
MD5: 70590a47a29fbcbcebdcdbd51307b3c9
SHA-1: c826844172dd3490a4b930ec32088da926c8e15a
Created: 2007/06/15 20:33:24
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\omgpdman.dll
Publisher: Sony Corporation
MD5: c41a101bdc5e6302666a7270809c4233
SHA-1: 8c2972e3368292e5ac49adb256bf9ef30aa952bc
Created: 2007/06/15 20:44:08
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\opccd3.dll
Publisher: Sony Corporation
MD5: cff132734227125a207194ebba5b7013
SHA-1: d75bfb2e1895045502a160327632a7f7a8d88e1f
Created: 2007/06/15 20:46:34
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\opcmp4.dll
Publisher: Sony Corporation
MD5: 9169029de43116cb5ab28cc34727f3a8
SHA-1: 4876501391b87724c6094377301b952bf04c0069
Created: 2007/06/15 20:41:50
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\salwrap.dll
Publisher: Sony Corporation
MD5: b31fc5c34294c99d962d1c87f0df50e3
SHA-1: 5d90bdb399cb23388a629860531be9e6901cc213
Created: 2007/06/15 20:29:26
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\common files\sony shared\openmg\installchecker\installchecktool.exe
Publisher:
MD5: 86a4572e370286828039b71478714079
SHA-1: 42a098c06acf607346b8b8dca86810d243ff60eb
Created: 2007/06/15 21:14:24
Detections: 3
Determination: Inconclusive
- McAfee as Artemis!86A4572E3702 (Undefined)
- Rising Antivirus as Trojan.Win32.Generic.12C02896 (Undefined)
- Panda Antivirus as Suspicious file
---------------------------------------------------------------------------------
File path: c:\program files\explzh\declha.exe
Publisher: pon software
MD5: fe2a015b4fcf6a3bcb0a5db253a5d838
SHA-1: 6334adfcd6446a6ca15d9b2bd7a5883cf4cd62ae
Created: 2012/07/23 23:57:34
Detections: 1
Determination: Ignore detections (false positive)
- Kingsoft AntiVirus as Win32.PSWTroj.Ruftar.t.(kcloud) (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\faith\nfrmpcviewer\sqlite3.dll
Publisher:
MD5: bbb8e34cfe84a1e0579e1d4d9000b427
SHA-1: 24ea75ceb7907883d15cb17d361a583307174b8c
Created: 2008/02/26 20:27:08
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoB (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\google\google earth\client\gpsbabel.exe
Publisher:
MD5: c29b2413bc9915dfcddcd2d55c5c4e72
SHA-1: 63d689cb807f35e55df6f02324a0fde48c7bda28
Created: 2011/10/18 4:03:41
Detections: 1
Determination: Ignore detections (false positive)
- eSafe as Win32.Application (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\google\google earth\client\plugins\npgeinprocessplugin.dll
Publisher: Google
MD5: e555ca3444a7e25cb87eb17b22c889f9
SHA-1: 9d5af9baa975e8187b07f677664837e457adc293
Created: 2011/10/18 3:38:39
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\installshield installation information\{fedd27a0-b306-45ef-bf58-b527406b42c8}\setup.exe
Publisher: TOSHIBA Corporation
MD5: ec55772853c70b0fad29e5a178d3b711
SHA-1: c66c49336c52eb03d8d98e210988b8d3adefd3cd
Created: 2008/02/26 19:08:41
Detections: 3
Determination: UndefinedMalware
- Agnitum Outpost as Trojan.Genome (Undefined)
- VIPRE Antivirus as Trojan.Win32.Generic (Undefined)
- Sunbelt AntiMalware as Porn-Dialer.Win32.CapreDeam.N (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\iobitdownloader.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 1781e6512bc8114722f633cbddd54148
SHA-1: 6ea0ba0e57dbec3aa3492f516d199c080cf5c399
Created: 2015/02/27 10:44:44
Detections: 2
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
- Rising Antivirus as PE:Virus.Shodi!1.9B9C (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\iobituninstaler.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 001de5a072ab18262968f4f656452f18
SHA-1: d9d3a96140383887b1bc8e00e565f1baaca16e54
Created: 2015/02/27 10:44:50
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\liveupdate.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 87aac3cbd2c5d5ac6ca87ad08a228241
SHA-1: aacd36907710af4589aa9edb3d1c4263892f39fa
Created: 2015/02/27 10:44:42
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\ppuninstaller.exe
Publisher:
Signer: IObit Information Technology
MD5: 28ca7d1bb9fbfca2b529d885e61491d8
SHA-1: 7bc41ba0c2fd59e62d8e5c677b4598b6540d8fb0
Created: 2015/02/27 10:44:44
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\sendbugreportnew.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 1e2b2e40c35f825eef62ab7453b5a997
SHA-1: 2deb6b44db7f41b6da5658e4c7605abdc8a421b6
Created: 2015/02/27 10:44:43
Detections: 2
Determination: Ignore detections (false positive)
- CMC Antivirus as Packed.Win32.Obfuscated.10!O
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\uninstalldisplay.exe
Publisher:
Signer: IObit Information Technology
MD5: 781a75acfb56fc8349bebbdcc027a970
SHA-1: a8c62dbe24fdfa3d7ea003513a2f508a46748fa0
Created: 2015/02/27 10:44:49
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\iobit\iobit uninstaller\uninstall_mitor.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: d7abab4673f01bae817114c383f0f949
SHA-1: 17c182daa496a6b017655df08d9a59e8a482f2c8
Created: 2015/02/27 10:44:41
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\rainmeter\skininstaller.exe
Publisher:
Signer: Rainmeter (Open Source Software)
MD5: bd026e47b87ba4598409a5aa6ed8c0ec
SHA-1: 977bd1e4c411ab27b85e88fa39b360ce30fa5c1e
Created: 2012/01/08 23:32:58
Detections: 1
Determination: Ignore detections (false positive)
- IKARUS anti.virus as Win32.SuspectCrc (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\real\realplayer\dbghelp.dll
Publisher: Microsoft Corporation
MD5: 9ccbfa69ac67aed98e1c8a11ffa2a630
SHA-1: a61d66bb8dd8db1effadd00df1b5fbc696e26767
Created: 2008/07/05 10:05:49
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Trojan.Heur.Oq0@uqjKLLd (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\real\realplayer\plugins\rjm4pln.dll
Publisher:
MD5: 8bcba6260cfa5f289a4568dd65963e50
SHA-1: 00b037cb31e967b3debff718fff86e5daea3a0f8
Created: 2008/07/05 10:05:48
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\real\realplayer\plugins\teamp3.dll
Publisher: RealNetworks, Inc.
MD5: 0677b4a7058e717541daf776be130eb3
SHA-1: ad1f2677a8af16a991be7e33f04bf98927108b6b
Created: 2008/07/05 10:05:50
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Malware.Win32.xPack.g (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\real\realplayer\plugins\teawma.dll
Publisher: RealNetworks, Inc.
MD5: 0677689310b358e318e9016abe018528
SHA-1: 3473998c7019d63b52433ee6bcfa7c88c17aeba5
Created: 2008/07/05 10:05:48
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Malware.Win32.xPack.g (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\real\realplayer\rpplugins\rpap3260.dll
Publisher: RealNetworks, Inc.
MD5: 92900487120bf58ebed5a187a85a63f9
SHA-1: ee2846fced4a193274709bc0880787e91f5a29ab
Created: 2008/07/05 10:05:38
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious Self Modifying File (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\real\realplayer\rpplugins\rput3260.dll
Publisher: RealNetworks, Inc.
MD5: f50a2c2baea084660f6f59210bed022c
SHA-1: 020f6a47380689013b2c30783d60b658aa7c1459
Created: 2008/07/05 10:05:38
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Variant.Adware.Graftor.123584 (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\scansoft\omnipagese4\p4dll.dll
Publisher: E-W Software
MD5: 3c3f7734ec7a82c5944001ec2614eb82
SHA-1: 3ff4ac654cc7ea3b2dc6d43b70ecb3b5d1331bf0
Created: 2007/02/05 1:56:10
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Trojan.Generic.6429040 (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\flashcards\tcrdcase.exe
Publisher: TOSHIBA Corporation
MD5: 649d6a159541607f5a4862856a7b1c33
SHA-1: 5fa61418e0f7a1a944a48b61204a518c1b7b5c03
Created: 2007/12/14 22:31:18
Detections: 1
Determination: Ignore detections (false positive)
- Norman as Obfuscated_VPE
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\hdd protection\delreglf.exe
Publisher:
MD5: 9db431e1e1054b8b8b9b0393b829b607
SHA-1: 8220dd69cc1e685e272e1145bdbdadeb49a163f2
Created: 2006/08/31 17:04:06
Detections: 1
Determination: Ignore detections (false positive)
- McAfee Web Gateway as Heuristic.BehavesLike.Win32.Suspicious.H
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\pcdiag\mfc42.dll
Publisher: Microsoft Corporation
MD5: 71ad9ea933ace083add86bbe4f265d8b
SHA-1: 094929e01d6fcb22a0194f0b0ce32b7e3c80696b
Created: 2001/03/30 13:13:48
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Variant.Adware.Strictor.18030 (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\speech system\system\regsvr32.exe
Publisher: Microsoft Corporation
MD5: 5d1bdc0272e72798500f202b13bd39cc
SHA-1: 32ab4a6b571e4729221eb2e392e6f332aa10fc3e
Created: 2008/02/26 19:32:23
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Worm/Win32.Otwycal.gen (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\speech system\system\toshookm.dll
Publisher: Toshiba Corporation.
MD5: 033b1b8158128ecde5213a6c3e2374f5
SHA-1: a29c2f8b512664bef26a74f19e84f18d630b7e79
Created: 2008/02/26 19:33:03
Detections: 1
Determination: Ignore detections (false positive)
- CMC Antivirus as Packed.Win32.FakeAV-Crypter.6!O
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\toshiba disc creator\toddsrv.exe
Publisher: TOSHIBA Corporation
Signer: TOSHIBA CORPORATION
MD5: c5ac715b65b01788abc22d10749dddd8
SHA-1: 4cfbf7d2257345eb1adf0a962c8d5acafad70350
Created: 2007/11/21 18:23:32
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\toshiba\toshiba recovery disc creator\toddsrv.exe
Publisher: TOSHIBA Corporation
Signer: TOSHIBA CORPORATION
MD5: c5ac715b65b01788abc22d10749dddd8
SHA-1: 4cfbf7d2257345eb1adf0a962c8d5acafad70350
Created: 2007/11/21 18:23:32
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\trend micro\vb2008_1610\setup\engine\32bit\0x22000080\tmbmsrv.exe
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 86f5745e7bb6bb34e597b4428066956d
SHA-1: e7bcc73f3e979f666e72044772310dbc7693866d
Created: 2008/03/08 12:06:18
Detections: 2
Determination: Ignore detections (false positive)
- Clam AntiVirus as Win.Trojan.Agent-189633 (Undefined)
- Emsisoft Anti-Malware as Gen:Adware.MPlug (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\trend micro\vb2008_1610\setup\function\32bit\158\tmpfwctl.dll
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 6704370eb6f6656ef97ae142f92c728f
SHA-1: efb7969e8642b0115a13e581db8678c767c9d3f4
Created: 2008/03/08 12:06:22
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Heuristic: Suspicious File With Covert Attributes
---------------------------------------------------------------------------------
File path: c:\program files\truesuite access manager\fpmanager.exe
Publisher: Authentec,Inc
MD5: 3980dbb00a1021cf6fb460a93fc79604
SHA-1: affe05dec7bcdeccbaf8632720e6d259a041c87d
Created: 2008/02/27 11:05:45
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Worm.Generic.293457 (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\truesuite access manager\mgrtool.exe
Publisher: ABIG
MD5: 4399af6dbbb42bd2a503594d74aa1b52
SHA-1: b7907e974c49f77bfa60eeeb6f704c2319259975
Created: 2008/02/27 11:05:47
Detections: 2
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Trojan-Dropper.Win32.Dapato!IK (Undefined)
- IKARUS anti.virus as Trojan-Dropper.Win32.Dapato (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd discrecorder 2.2\ucimg.dll
Publisher: Ulead Systems, Inc.
MD5: 9224dc1a21565b068594c8359f274207
SHA-1: 5190e89780ca92c7c20b7d3ca2364ad059372c80
Created: 2008/02/27 9:36:09
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Adware.SMSHoax (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd discrecorder 2.2\ulspdec.dll
Publisher: Ulead Systems, Inc.
MD5: 9b70b58ea65410140fa1f6972109af08
SHA-1: c713e682df22815871f454f7c491f7b2acce03b0
Created: 2008/02/27 9:36:10
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Android.Trojan.Boqx (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd discrecorder 2.2\fio\fiorc2.dll
Publisher: Ulead Systems, Inc.
MD5: 9d4fe7df0bd0e45bcc2ba2c285ec8025
SHA-1: ba82b25e5f7d25fb53758de6d1def284d0634d12
Created: 2008/02/27 9:36:12
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Packed.Win32.Krap.hm!A2
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd moviewriter 5\mflogservice.dll
Publisher:
MD5: 10d9c58a656b0dae197df30fc5451981
SHA-1: c206905fa80fc0655d3d76c5022280d9557cc954
Created: 2008/02/27 9:34:36
Detections: 1
Determination: Ignore detections (false positive)
- Sunbelt AntiMalware as Henbang.A (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd moviewriter 5\ucimg.dll
Publisher: Ulead Systems, Inc.
MD5: 9224dc1a21565b068594c8359f274207
SHA-1: 5190e89780ca92c7c20b7d3ca2364ad059372c80
Created: 2008/02/27 9:34:42
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Adware.SMSHoax (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd moviewriter 5\ulspdec.dll
Publisher: Ulead Systems, Inc.
MD5: 9b70b58ea65410140fa1f6972109af08
SHA-1: c713e682df22815871f454f7c491f7b2acce03b0
Created: 2008/02/27 9:34:43
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Android.Trojan.Boqx (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd moviewriter 5\umfcommdlg.dll
Publisher:
MD5: 91b8be671ec0af1be12654cb144199b7
SHA-1: 08521ddf19f7c128be63c595f0ba69ea5c55c102
Created: 2008/02/27 9:34:43
Detections: 1
Determination: Ignore detections (false positive)
- Sunbelt AntiMalware as AdWare.Win32.DN (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd moviewriter 5\umfnormaledittask.dll
Publisher:
MD5: 0bed920f9c23bdd15ed306d947f62212
SHA-1: ac41d35eceb624a8e8ea44eeeafed9d7dedee0fb
Created: 2008/02/27 9:34:43
Detections: 1
Determination: Ignore detections (false positive)
- Sunbelt AntiMalware as AdWare.Win32.DN (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd moviewriter 5\fio\fiorc2.dll
Publisher: Ulead Systems, Inc.
MD5: 9d4fe7df0bd0e45bcc2ba2c285ec8025
SHA-1: ba82b25e5f7d25fb53758de6d1def284d0634d12
Created: 2008/02/27 9:34:45
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Packed.Win32.Krap.hm!A2
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd tweak and fit 2.1\uliblzw.dll
Publisher:
MD5: 8018545f7b5842cb1ffe6a6910722a4e
SHA-1: d5de48914d6790968ed37b25a980f23887a3418f
Created: 2008/02/27 9:37:09
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Backdoor.Generic.99581 (Undefined)
---------------------------------------------------------------------------------
File path: c:\program files\ulead systems\dvd moviewriter for toshiba\ulead dvd tweak and fit 2.1\vcvrt32.dll
Publisher: Ulead Systems, Inc.
MD5: 50522753302c0f6c39f9ff24e2d08fcc
SHA-1: 8f7de6acd54162f071fa86555c1142f8a1ed678a
Created: 2008/02/27 9:37:10
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan/Win32.KeyLogger.gen (Undefined)
- pilot
- 2015/03/01 (Sun) 23:59:14
OTL.txt
続きまして、OTL.txtです。
OTL logfile created on: 2015/03/02 0:17:37 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kohei\Desktop\対策
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd
2.99 Gb Total Physical Memory | 2.50 Gb Available Physical Memory | 83.61% Memory free
6.18 Gb Paging File | 5.91 Gb Available in Paging File | 95.62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 127.79 Gb Total Space | 25.05 Gb Free Space | 19.60% Space Free | Partition Type: NTFS
Drive D: | 9.99 Gb Total Space | 9.99 Gb Free Space | 100.00% Space Free | Partition Type: FAT32
Computer Name: KOHEI-PC | User Name: Kohei | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2015/03/01 20:59:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kohei\Desktop\対策\OTL.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
[color=#E56717]========== Services (SafeList) ==========[/color]
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc -- (gupdatem)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Google\Update\GoogleUpdate.exe /svc -- (gupdate1c985a5209c0790)
SRV - [2015/02/27 10:44:42 | 002,635,552 | ---- | M] (IObit) [Auto | Stopped] -- C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc)
SRV - [2015/02/06 00:12:23 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015/01/02 19:45:12 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014/12/19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/12/11 07:39:00 | 002,324,760 | ---- | M] (Trend Micro Inc.) [Auto | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\NTRtScan.exe -- (ntrtscan)
SRV - [2013/11/16 18:56:04 | 002,260,128 | ---- | M] (Trend Micro Inc.) [Auto | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\TmListen.exe -- (tmlisten)
SRV - [2013/10/23 18:01:36 | 000,345,112 | ---- | M] (Trend Micro Inc.) [On_Demand | Stopped] -- C:\Program Files\Trend Micro\BM\TMBMSRV.exe -- (TMBMServer)
SRV - [2013/07/02 07:37:42 | 000,689,176 | ---- | M] (Trend Micro Inc.) [On_Demand | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\TmProxy.exe -- (TmProxy)
SRV - [2011/04/16 03:26:56 | 000,497,272 | ---- | M] (Trend Micro Inc.) [On_Demand | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\TmPfw.exe -- (TmPfw)
SRV - [2009/02/12 02:06:36 | 000,210,216 | ---- | M] () [Auto | Stopped] -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2008/02/24 04:32:10 | 002,645,384 | ---- | M] (Bradford Networks) [Auto | Stopped] -- C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe -- (BNPagent)
SRV - [2008/02/18 13:29:20 | 000,083,312 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe -- (TNaviSrv)
SRV - [2008/01/21 12:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008/01/17 17:27:34 | 000,431,456 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV - [2007/12/25 14:07:14 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto | Stopped] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)
SRV - [2007/12/22 13:00:00 | 000,056,096 | ---- | M] (Texim Corporation.) [Auto | Stopped] -- C:\Program Files\Justsystems\PersonalShelter\TxVDrvSvc.exe -- (TxVDrvSvc)
SRV - [2007/12/19 19:45:30 | 000,526,976 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Windows\System32\ThpSrv.exe -- (Thpsrv)
SRV - [2007/12/03 18:03:52 | 000,126,976 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe -- (TOSHIBA SMART Log Service)
SRV - [2007/11/21 18:23:32 | 000,129,632 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Windows\System32\TODDSrv.exe -- (TODDSrv)
SRV - [2007/10/30 01:35:40 | 000,937,984 | ---- | M] (Atheros Communications, Inc.) [On_Demand | Stopped] -- C:\Program Files\Jumpstart\jswpsapi.exe -- (jswpsapi)
SRV - [2007/10/15 10:01:22 | 000,049,152 | ---- | M] (AuthenTec Inc.) [Auto | Stopped] -- C:\Windows\System32\TAMSvr.exe -- (Authentec memory manager)
SRV - [2007/08/08 03:12:02 | 000,406,808 | ---- | M] (Acronis) [Auto | Stopped] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2007/06/15 21:01:44 | 000,045,056 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV)
SRV - [2007/06/15 20:42:26 | 000,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV)
SRV - [2007/06/15 20:26:44 | 000,057,344 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR)
SRV - [2007/04/14 01:49:00 | 000,101,528 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2007/02/12 17:43:44 | 000,065,536 | ---- | M] (O2Micro International) [Auto | Stopped] -- C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe -- (o2flash)
SRV - [2006/08/23 17:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\DRIVERS\iaNvStor.sys -- (iaNvStor)
DRV - [2014/08/31 13:04:46 | 000,281,400 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\TmXPFlt.sys -- (TmFilter)
DRV - [2014/08/31 13:04:40 | 000,038,200 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\tmpreflt.sys -- (TmPreFilter)
DRV - [2014/08/31 12:48:04 | 001,557,912 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\vsapiNT.sys -- (VSApiNt)
DRV - [2013/09/02 15:58:48 | 000,263,072 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\tmcomm.sys -- (tmcomm)
DRV - [2013/08/29 17:30:00 | 000,075,600 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\tmactmon.sys -- (tmactmon)
DRV - [2013/08/29 17:29:54 | 000,062,704 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\tmevtmgr.sys -- (tmevtmgr)
DRV - [2013/06/19 05:09:06 | 000,090,712 | ---- | M] (Trend Micro Inc.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\tmtdi.sys -- (tmtdi)
DRV - [2012/06/22 07:50:26 | 000,146,232 | ---- | M] (Trend Micro Inc.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\tmlwf.sys -- (TmLwf)
DRV - [2012/06/22 06:51:26 | 000,282,936 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\tmwfp.sys -- (tmWfp)
DRV - [2010/01/25 09:30:52 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2009/12/23 22:01:07 | 000,400,864 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\timntr.sys -- (timounter)
DRV - [2009/12/23 22:01:07 | 000,040,064 | ---- | M] (Acronis) [File_System | Auto | Stopped] -- C:\Windows\System32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2009/12/23 22:01:06 | 000,120,992 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\snapman.sys -- (snapman)
DRV - [2009/04/10 23:06:28 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDScan.sys -- (WSDScan)
DRV - [2008/07/29 20:05:04 | 000,919,552 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2008/07/23 06:10:40 | 000,017,280 | R--- | M] (BUFFALO INC.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bfturboh.sys -- (bfturboh)
DRV - [2008/04/23 09:33:30 | 000,038,856 | ---- | M] (Teruten Co. LTD.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\GDISpy.sys -- (GDISpyDevice)
DRV - [2008/02/18 13:04:38 | 000,285,184 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tos_sps32.sys -- (tos_sps32)
DRV - [2008/02/03 00:04:02 | 000,043,440 | ---- | M] (Alfa Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\AlfaFF.sys -- (AlfaFF)
DRV - [2008/02/01 12:46:08 | 000,187,904 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\CHDART.sys -- (CnxtHdAudAddService)
DRV - [2008/01/21 12:23:21 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV - [2008/01/15 11:34:58 | 000,048,472 | ---- | M] (O2Micro ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\o2media.sys -- (O2MDRDR)
DRV - [2008/01/12 00:05:48 | 000,028,280 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\thpdrv.sys -- (Thpdrv)
DRV - [2007/12/22 13:00:00 | 000,028,064 | ---- | M] (Texim Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\TxVDrv.sys -- (TxVDrv)
DRV - [2007/11/09 15:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)
DRV - [2007/09/06 17:28:44 | 000,146,560 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ATSwpDrv.sys -- (ATSWPDRV)
DRV - [2007/09/04 11:30:24 | 000,013,336 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\Thpevm.sys -- (Thpevm)
DRV - [2007/08/31 18:43:32 | 000,020,352 | ---- | M] (Atheros Communications, Inc.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\jswpslwf.sys -- (jswpslwf)
DRV - [2007/08/16 13:49:48 | 000,552,448 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netr28u.sys -- (netr28u)
DRV - [2007/06/06 16:21:32 | 000,111,616 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV - [2007/05/31 21:58:42 | 000,011,552 | ---- | M] (Rsupport Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VRVD302.sys -- (VRVD302)
DRV - [2007/04/09 17:13:00 | 000,008,192 | ---- | M] (TOSHIBA) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\QIOMem.sys -- (QIOMem)
DRV - [2007/01/26 10:22:18 | 000,058,368 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Sonyddpu.sys -- (Sonyddpu)
DRV - [2007/01/26 00:45:02 | 000,006,784 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\whfltr2k.sys -- (whfltr2k)
DRV - [2006/10/18 12:50:04 | 000,016,128 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV - [2004/04/26 09:38:20 | 000,006,885 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\whmice2k.sys -- (whmice2k)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dynabook.fresheye.com/cgi-bin/login.cgi
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.jword.jp/jwd_sb_srchcust.htm?ielang={SUB_RFC1766}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.jword.jp/jwd_sb_srchasst.htm?ielang={SUB_RFC1766}
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.co.jp/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7TSHJ
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.co.jp/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7TSHJ_ja
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "AutoConfigURL" = http://local.swarmcast.net:8001/proxy.pac
[color=#E56717]========== FireFox ==========[/color]
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.46: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord [2008/07/05 10:05:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2010/03/03 15:56:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{22C7F6C6-8D67-4534-92B5-529A0EC09405}: C:\Program Files\Trend Micro\OfficeScan Client\FirefoxExtension [2015/02/25 10:18:07 | 000,000,000 | ---D | M]
O1 HOSTS File: ([2006/09/19 07:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (かんたん登録2) - {0DD41AE7-6196-42E7-BDE5-4F393997449E} - C:\Program Files\Justsystems\SimpleAutoInput\AtInBnd.dll (株式会社ジャストシステム)
O2 - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
O2 - BHO: (TmIEPlugInBHO Class) - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll (Trend Micro Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O2 - BHO: (FeliCaブラウザエクステンション) - {EC5D2125-D8AB-4a18-A599-D97D2731DE19} - C:\Program Files\Sony\FeliCaBrowserExtension\fbe.dll (Sony Corp.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O3 - HKLM\..\Toolbar: (かんたん登録2 ツールバー) - {833CFE4E-05BD-43A3-97A7-A4E80D742F0F} - C:\Program Files\Justsystems\SimpleAutoInput\AtInBnd.dll (株式会社ジャストシステム)
O3 - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [bncsaui.exe] C:\Program Files\Bradford Networks\Client Security Agent\bncsaui.exe (Bradford Networks)
O4 - HKLM..\Run: [cfWPSEnabler.exe] cfWPSEnabler.exe File not found
O4 - HKLM..\Run: [FingerPrintNotifer] C:\Program Files\TrueSuite Access Manager\FpNotifier.exe (AuthenTec, Inc)
O4 - HKLM..\Run: [HSON] C:\Program Files\TOSHIBA\TBS\HSON.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [IJNetworkScannerSelectorEX] C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (CANON INC.)
O4 - HKLM..\Run: [Installation Sources] File not found
O4 - HKLM..\Run: [KazaNavi] C:\Program Files\JustSystems\KazaNavi\kazanavi.exe (株式会社ジャストシステム)
O4 - HKLM..\Run: [NDSTray.exe] NDSTray.exe File not found
O4 - HKLM..\Run: [OfficeScanNT Monitor] C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe (Trend Micro Inc.)
O4 - HKLM..\Run: [PAC207_Monitor] C:\Windows\PixArt\PAC207\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [PwdBank] C:\Program Files\TrueSuite Access Manager\PwdBank.exe (Arachnoid Biometrics Identification Group)
O4 - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [ThpSrv] C:\Windows\System32\thpsrv.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe (Acronis)
O4 - HKLM..\Run: [UsbMonitor] C:\Program Files\TrueSuite Access Manager\usbnotify.exe ()
O4 - HKLM..\Run: [WheelMouse] C:\Advanced Wheel Mouse\wh_exec.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001..\Run: [TOSCDSPD] TOSCDSPD.EXE File not found
O4 - Startup: C:\Users\Kohei\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\東芝ソフトウェア更新チェックツール.lnk = C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe (TOSHIBA CORPORATION)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1
O7 - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: fresheye.com ([dynabook] http in Trusted sites)
O15 - HKLM\..Trusted Domains: remotecall.jp ([]https in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {70EE0AA4-5A3A-4052-8FFA-2EEDA43F7942} http://imedia.ngc.co.jp/ibkoozen/plugin/cibrowser1219.cab (Innotive Cibrowser Control 1.2)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {AEEF256A-781F-44CE-8ED7-DDEE3ECD26E3} http://www.isl.co.jp/SILKYPIX/gazou-fukkatsu-2/GazouFukkatsu.1.0.2.19.cab (画像復活)
O16 - DPF: {B3E32D88-8E7F-468F-B0E2-3A300FD4A82C} http://myitlab.pearsoned.com/Pegasus/Modules/SIMIntegration/Resources/ax/stub.cab (Enlite 2.x Simulation Engine Installer)
O16 - DPF: {CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0018-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.231.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0076DC59-51AD-4243-BC5F-88F7F1260C46}: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2B5B74B1-563F-44DA-BC8B-F744F8AF471E}: DhcpNameServer = 192.168.231.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{50663F84-2549-4160-979B-5E03AED20CB1}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{68499189-7961-4C19-96D5-9B3E8693D430}: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6F244C72-DF38-43B5-AF6E-09693073C008}: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7318C3BE-5DBC-4FC2-BBA5-ADF5F6111D55}: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8760B5A2-9170-48DC-8914-807F4D4F1D7B}: DhcpNameServer = 192.168.231.1
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O18 - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll (Trend Micro Inc.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Kohei\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows フォト ギャラリー壁紙.jpg
O24 - Desktop BackupWallPaper: C:\Users\Kohei\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows フォト ギャラリー壁紙.jpg
O30 - LSA: Authentication Packages - (relog_ap) - C:\Windows\System32\relog_ap.dll (Acronis)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/19 07:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{14d78e6b-0b06-11df-a356-c09f0fa8bc53}\Shell - "" = AutoRun
O33 - MountPoints2\{14d78e6b-0b06-11df-a356-c09f0fa8bc53}\Shell\AutoRun\command - "" = I:\LaunchU3.exe -a
O33 - MountPoints2\{6869f252-e5e3-11de-8fd3-aaccdd350122}\Shell - "" = AutoRun
O33 - MountPoints2\{6869f252-e5e3-11de-8fd3-aaccdd350122}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\{7fa4d9d2-a6d5-11e4-969d-92e30ee75e10}\Shell - "" = AutoRun
O33 - MountPoints2\{7fa4d9d2-a6d5-11e4-969d-92e30ee75e10}\Shell\AutoRun\command - "" = F:\MediaJet.exe
O33 - MountPoints2\{88f9171f-0b2e-11e1-97a3-aded213ac52b}\Shell - "" = AutoRun
O33 - MountPoints2\{88f9171f-0b2e-11e1-97a3-aded213ac52b}\Shell\AutoRun\command - "" = "F:\WD SmartWare.exe" autoplay=true
O33 - MountPoints2\{f8112fde-23c1-11df-9ecb-9d5031779c74}\Shell\AutoRun\command - "" = F:\.\EncryptionTool\MaxtorEncryption.exe
O33 - MountPoints2\{f8112fed-23c1-11df-9ecb-cde59f25427a}\Shell - "" = AutoRun
O33 - MountPoints2\{f8112fed-23c1-11df-9ecb-cde59f25427a}\Shell\AutoRun\command - "" = I:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Unable to start System Restore Service. Error code 1084
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2015/03/01 21:05:14 | 000,000,000 | ---D | C] -- C:\Program Files\Reason
[2015/02/27 21:12:55 | 000,000,000 | ---D | C] -- C:\Users\Kohei\AppData\Roaming\Malwarebytes
[2015/02/27 21:12:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/02/27 10:45:17 | 000,000,000 | ---D | C] -- C:\Users\Kohei\AppData\Roaming\ProductData
[2015/02/27 10:44:51 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2015/02/27 10:44:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
[2015/02/27 10:44:49 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2015/02/27 10:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2015/02/27 10:44:36 | 000,000,000 | ---D | C] -- C:\Users\Kohei\AppData\Roaming\IObit
[2015/02/27 09:22:50 | 000,000,000 | ---D | C] -- C:\Users\Kohei\Desktop\対策
[2015/02/25 23:32:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2015/02/25 23:32:39 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2015/02/25 22:53:37 | 001,810,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2015/02/25 22:48:32 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Kohei\Desktop\HijackThis.exe
[2015/02/25 18:34:13 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2015/02/25 18:34:12 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2015/02/25 18:34:12 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2015/02/25 18:34:12 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2015/02/25 18:34:12 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2015/02/25 18:34:11 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2015/02/25 18:34:11 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2015/02/25 18:34:10 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2015/02/25 18:34:10 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2015/02/25 18:34:09 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2015/02/25 18:34:09 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2015/02/25 18:34:08 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2015/02/25 18:33:16 | 002,063,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2015/02/18 22:14:23 | 000,000,000 | ---D | C] -- C:\Program Files\iPod(123)
[2015/02/18 22:13:37 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes(124)
[2015/02/18 22:13:37 | 000,000,000 | ---D | C] -- C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
[2015/02/18 21:57:21 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime(138)
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Kohei\AppData\Local\*.tmp files -> C:\Users\Kohei\AppData\Local\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2015/03/02 00:14:49 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/03/02 00:13:08 | 000,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2015/03/02 00:13:08 | 000,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2015/03/02 00:12:00 | 000,000,626 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/03/01 23:48:00 | 000,000,678 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/03/01 22:48:10 | 000,000,674 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/03/01 20:50:35 | 000,009,591 | ---- | M] () -- C:\Windows\cfgall.ini
[2015/03/01 20:48:43 | 000,000,436 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics
[2015/02/27 23:54:21 | 000,000,266 | ---- | M] () -- C:\Windows\tasks\Uninstaller_SkipUac_Kohei.job
[2015/02/27 23:17:55 | 000,001,356 | ---- | M] () -- C:\Users\Kohei\AppData\Local\d3d9caps.dat
[2015/02/27 10:44:51 | 000,001,032 | ---- | M] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2015/02/25 23:32:42 | 000,000,815 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2015/02/25 22:48:33 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Kohei\Desktop\HijackThis.exe
[2015/02/25 21:39:42 | 000,473,176 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2015/02/12 00:09:57 | 008,901,066 | ---- | M] () -- C:\Windows\System32\perfh011.dat
[2015/02/12 00:09:56 | 006,146,372 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015/02/12 00:09:56 | 005,467,438 | ---- | M] () -- C:\Windows\System32\perfc011.dat
[2015/02/12 00:09:56 | 005,355,846 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015/02/11 23:27:32 | 000,000,020 | -H-- | M] () -- C:\ProgramData\PKP_DLet.DAT
[2015/02/06 00:12:22 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2015/02/06 00:12:22 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2015/02/05 00:47:14 | 000,002,551 | ---- | M] () -- C:\Users\Kohei\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office PowerPoint 2007.lnk
[2015/02/02 21:42:40 | 000,002,531 | ---- | M] () -- C:\Users\Kohei\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Kohei\AppData\Local\*.tmp files -> C:\Users\Kohei\AppData\Local\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2015/02/27 11:04:41 | 000,000,266 | ---- | C] () -- C:\Windows\tasks\Uninstaller_SkipUac_Kohei.job
[2015/02/27 10:44:51 | 000,001,032 | ---- | C] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2015/02/25 23:32:42 | 000,000,815 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/02/13 07:54:51 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Sound Effects
[2013/02/13 07:54:51 | 000,000,268 | RH-- | C] () -- C:\Users\Kohei\AppData\Roaming\Services
[2013/02/13 07:54:50 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Solid Colors
[2013/02/13 07:54:50 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Smooth Strings
[2013/02/13 07:54:50 | 000,000,268 | RH-- | C] () -- C:\Users\Kohei\AppData\Roaming\Scripts Menu
[2013/02/13 07:54:50 | 000,000,268 | RH-- | C] () -- C:\Users\Kohei\AppData\Roaming\Screen Savers
[2013/02/13 07:54:50 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLev.DAT
[2013/02/13 07:54:50 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLes.DAT
[2013/02/13 07:54:49 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLet.DAT
[2013/01/04 21:35:36 | 000,000,958 | ---- | C] () -- C:\Users\Kohei\RPDLX2011.lic
[2012/04/21 00:47:25 | 000,000,242 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/10/30 07:40:35 | 000,004,096 | -H-- | C] () -- C:\Users\Kohei\AppData\Local\keyfile3.drm
[2011/06/12 14:40:50 | 000,000,000 | ---- | C] () -- C:\Users\Kohei\AppData\Local\{07686A5C-C488-434F-9C5D-F19346C695B0}
[2011/06/04 05:08:30 | 000,000,133 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2011/05/21 09:46:20 | 000,000,000 | ---- | C] () -- C:\Users\Kohei\AppData\Local\{215CBE06-3B69-40DC-BD06-EAE5A193F806}
[2011/03/30 07:33:47 | 000,000,268 | RH-- | C] () -- C:\Users\Kohei\AppData\Roaming\programs
[2011/03/30 07:33:47 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Action
[2011/03/30 07:33:47 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Echo
[2011/03/30 07:33:46 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLck.DAT
[2011/03/30 07:33:43 | 000,000,268 | RH-- | C] () -- C:\Users\Kohei\AppData\Roaming\vhosts
[2011/03/30 07:33:43 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Action Clauses
[2011/03/30 07:33:43 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Electric Clav
[2011/03/30 07:28:40 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLbx.DAT
[2011/03/30 07:18:50 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Sampler Instruments
[2011/03/30 07:18:50 | 000,000,268 | RH-- | C] () -- C:\Users\Kohei\AppData\Roaming\Rule Actions
[2011/03/30 07:18:50 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdu.DAT
[2010/03/31 03:07:42 | 000,001,356 | ---- | C] () -- C:\Users\Kohei\AppData\Local\d3d9caps.dat
[2008/05/18 22:56:25 | 000,157,184 | ---- | C] () -- C:\Users\Kohei\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[color=#E56717]========== ZeroAccess Check ==========[/color]
[2006/11/02 22:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
"ThreadingModel" = Both
"" = C:\$Recycle.Bin\S-1-5-21-2725075760-2042039286-2420676443-1001\$7c80b81e058881db2d711bad2c561c5c\n.
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/03/25 23:26:04 | 011,587,584 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 00:28:20 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 00:28:26 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[color=#E56717]========== Custom Scans ==========[/color]
[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2015/03/02 00:12:00 | 000,000,626 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2009/07/27 22:16:55 | 000,000,690 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2015/03/01 22:48:10 | 000,000,674 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/03/01 23:48:00 | 000,000,678 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/02/27 23:54:21 | 000,000,266 | ---- | M] () -- C:\Windows\tasks\Uninstaller_SkipUac_Kohei.job
[color=#E56717]========== Drive Information ==========[/color]
Physical Drives
---------------
Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: TOSHIBA MK1646GSX
Partitions: 4
Status: OK
Status Info: 0
Partitions
---------------
DeviceID: Disk #0, Partition #0
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 1.00GB
Starting Offset: 1048576
Hidden sectors: 0
DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 128.00GB
Starting Offset: 1573912576
Hidden sectors: 0
DeviceID: Disk #0, Partition #2
PartitionType: Extended w/Extended Int 13
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 10.00GB
Starting Offset: 138791616512
Hidden sectors: 0
DeviceID: Disk #0, Partition #3
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 10.00GB
Starting Offset: 149529034752
Hidden sectors: 0
[color=#E56717]========== Base Services ==========[/color]
SRV - [2006/11/02 19:46:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc)
SRV - [2014/06/02 20:30:29 | 000,033,280 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2008/01/21 12:24:14 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2009/04/11 00:28:24 | 000,758,784 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2009/04/11 00:28:20 | 000,334,848 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\BFE.DLL -- (BFE)
SRV - [2011/11/17 00:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lsass.exe -- (KeyIso)
SRV - [2009/04/11 00:28:20 | 000,268,800 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2008/01/21 12:24:36 | 000,081,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2013/07/08 14:16:55 | 000,133,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2009/04/11 00:28:26 | 000,550,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2009/04/11 00:28:20 | 000,204,288 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\dhcpcsvc.dll -- (Dhcp)
SRV - [2011/03/03 01:44:27 | 000,086,528 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2008/01/21 12:25:01 | 000,057,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\eapsvc.dll -- (EapHost)
SRV - [2009/04/11 00:28:20 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2008/01/21 12:24:09 | 000,288,256 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2009/04/11 00:28:22 | 000,364,032 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV - [2009/04/11 00:28:26 | 000,311,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2008/01/21 12:24:54 | 000,045,056 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\mmcss.dll -- (MMCSS)
SRV - [2008/01/21 12:24:11 | 000,274,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2008/01/21 12:24:23 | 000,237,056 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\netprofm.dll -- (netprofm)
SRV - [2014/12/06 13:14:36 | 000,174,080 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2008/01/21 12:24:47 | 000,018,432 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2009/04/11 00:28:26 | 000,222,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2010/08/18 00:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2011/11/17 00:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage)
SRV - [2009/04/11 00:28:20 | 000,564,224 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\emdmgmt.dll -- (EMDMgmt)
SRV - [2008/01/21 12:24:19 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2009/04/11 00:28:26 | 000,262,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2009/04/11 00:28:26 | 000,550,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2008/01/21 12:24:35 | 000,019,968 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2011/11/17 00:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2009/04/11 00:28:28 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wscsvc.dll -- (wscsvc)
SRV - [2010/09/07 02:20:29 | 000,125,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2009/07/10 21:47:42 | 000,247,808 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
SRV - [2009/04/11 00:27:50 | 003,408,896 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\SLsvc.exe -- (slsvc)
SRV - [2010/11/05 04:55:12 | 000,601,600 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2009/04/11 00:28:26 | 000,242,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2009/07/10 21:47:42 | 000,247,808 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\shsvcs.dll -- (Themes)
SRV - [2014/12/06 13:14:51 | 000,153,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2009/04/11 00:28:12 | 001,055,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2014/10/03 11:17:16 | 000,316,928 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2014/10/03 11:17:16 | 000,316,928 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\audiosrv.dll -- (AudioEndpointBuilder)
SRV - [2008/01/21 12:23:27 | 000,104,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2008/01/21 12:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/04/11 00:28:26 | 001,017,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (Eventlog)
SRV - [2009/04/11 00:28:22 | 000,407,552 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc)
SRV - [2009/04/11 00:28:26 | 000,453,120 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wiaservc.dll -- (stisvc)
SRV - [2009/04/11 00:27:46 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msiexec.exe -- (msiserver)
SRV - [2009/04/11 00:28:26 | 000,162,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt)
SRV - [2012/06/03 08:19:17 | 001,933,848 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2009/04/11 00:28:20 | 000,175,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2009/07/12 05:01:42 | 000,513,536 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2009/06/10 21:42:23 | 000,160,256 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:63238B95
< End of report >
OTL logfile created on: 2015/03/02 0:17:37 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kohei\Desktop\対策
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd
2.99 Gb Total Physical Memory | 2.50 Gb Available Physical Memory | 83.61% Memory free
6.18 Gb Paging File | 5.91 Gb Available in Paging File | 95.62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 127.79 Gb Total Space | 25.05 Gb Free Space | 19.60% Space Free | Partition Type: NTFS
Drive D: | 9.99 Gb Total Space | 9.99 Gb Free Space | 100.00% Space Free | Partition Type: FAT32
Computer Name: KOHEI-PC | User Name: Kohei | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2015/03/01 20:59:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kohei\Desktop\対策\OTL.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
[color=#E56717]========== Services (SafeList) ==========[/color]
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc -- (gupdatem)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Google\Update\GoogleUpdate.exe /svc -- (gupdate1c985a5209c0790)
SRV - [2015/02/27 10:44:42 | 002,635,552 | ---- | M] (IObit) [Auto | Stopped] -- C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc)
SRV - [2015/02/06 00:12:23 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015/01/02 19:45:12 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014/12/19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/12/11 07:39:00 | 002,324,760 | ---- | M] (Trend Micro Inc.) [Auto | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\NTRtScan.exe -- (ntrtscan)
SRV - [2013/11/16 18:56:04 | 002,260,128 | ---- | M] (Trend Micro Inc.) [Auto | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\TmListen.exe -- (tmlisten)
SRV - [2013/10/23 18:01:36 | 000,345,112 | ---- | M] (Trend Micro Inc.) [On_Demand | Stopped] -- C:\Program Files\Trend Micro\BM\TMBMSRV.exe -- (TMBMServer)
SRV - [2013/07/02 07:37:42 | 000,689,176 | ---- | M] (Trend Micro Inc.) [On_Demand | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\TmProxy.exe -- (TmProxy)
SRV - [2011/04/16 03:26:56 | 000,497,272 | ---- | M] (Trend Micro Inc.) [On_Demand | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\TmPfw.exe -- (TmPfw)
SRV - [2009/02/12 02:06:36 | 000,210,216 | ---- | M] () [Auto | Stopped] -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2008/02/24 04:32:10 | 002,645,384 | ---- | M] (Bradford Networks) [Auto | Stopped] -- C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe -- (BNPagent)
SRV - [2008/02/18 13:29:20 | 000,083,312 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe -- (TNaviSrv)
SRV - [2008/01/21 12:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008/01/17 17:27:34 | 000,431,456 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV - [2007/12/25 14:07:14 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto | Stopped] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)
SRV - [2007/12/22 13:00:00 | 000,056,096 | ---- | M] (Texim Corporation.) [Auto | Stopped] -- C:\Program Files\Justsystems\PersonalShelter\TxVDrvSvc.exe -- (TxVDrvSvc)
SRV - [2007/12/19 19:45:30 | 000,526,976 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Windows\System32\ThpSrv.exe -- (Thpsrv)
SRV - [2007/12/03 18:03:52 | 000,126,976 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe -- (TOSHIBA SMART Log Service)
SRV - [2007/11/21 18:23:32 | 000,129,632 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Windows\System32\TODDSrv.exe -- (TODDSrv)
SRV - [2007/10/30 01:35:40 | 000,937,984 | ---- | M] (Atheros Communications, Inc.) [On_Demand | Stopped] -- C:\Program Files\Jumpstart\jswpsapi.exe -- (jswpsapi)
SRV - [2007/10/15 10:01:22 | 000,049,152 | ---- | M] (AuthenTec Inc.) [Auto | Stopped] -- C:\Windows\System32\TAMSvr.exe -- (Authentec memory manager)
SRV - [2007/08/08 03:12:02 | 000,406,808 | ---- | M] (Acronis) [Auto | Stopped] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2007/06/15 21:01:44 | 000,045,056 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV)
SRV - [2007/06/15 20:42:26 | 000,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV)
SRV - [2007/06/15 20:26:44 | 000,057,344 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR)
SRV - [2007/04/14 01:49:00 | 000,101,528 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2007/02/12 17:43:44 | 000,065,536 | ---- | M] (O2Micro International) [Auto | Stopped] -- C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe -- (o2flash)
SRV - [2006/08/23 17:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\DRIVERS\iaNvStor.sys -- (iaNvStor)
DRV - [2014/08/31 13:04:46 | 000,281,400 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\TmXPFlt.sys -- (TmFilter)
DRV - [2014/08/31 13:04:40 | 000,038,200 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\tmpreflt.sys -- (TmPreFilter)
DRV - [2014/08/31 12:48:04 | 001,557,912 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Program Files\Trend Micro\OfficeScan Client\vsapiNT.sys -- (VSApiNt)
DRV - [2013/09/02 15:58:48 | 000,263,072 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\tmcomm.sys -- (tmcomm)
DRV - [2013/08/29 17:30:00 | 000,075,600 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\tmactmon.sys -- (tmactmon)
DRV - [2013/08/29 17:29:54 | 000,062,704 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\tmevtmgr.sys -- (tmevtmgr)
DRV - [2013/06/19 05:09:06 | 000,090,712 | ---- | M] (Trend Micro Inc.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\tmtdi.sys -- (tmtdi)
DRV - [2012/06/22 07:50:26 | 000,146,232 | ---- | M] (Trend Micro Inc.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\tmlwf.sys -- (TmLwf)
DRV - [2012/06/22 06:51:26 | 000,282,936 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\tmwfp.sys -- (tmWfp)
DRV - [2010/01/25 09:30:52 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2009/12/23 22:01:07 | 000,400,864 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\timntr.sys -- (timounter)
DRV - [2009/12/23 22:01:07 | 000,040,064 | ---- | M] (Acronis) [File_System | Auto | Stopped] -- C:\Windows\System32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2009/12/23 22:01:06 | 000,120,992 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\snapman.sys -- (snapman)
DRV - [2009/04/10 23:06:28 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDScan.sys -- (WSDScan)
DRV - [2008/07/29 20:05:04 | 000,919,552 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2008/07/23 06:10:40 | 000,017,280 | R--- | M] (BUFFALO INC.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bfturboh.sys -- (bfturboh)
DRV - [2008/04/23 09:33:30 | 000,038,856 | ---- | M] (Teruten Co. LTD.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\GDISpy.sys -- (GDISpyDevice)
DRV - [2008/02/18 13:04:38 | 000,285,184 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tos_sps32.sys -- (tos_sps32)
DRV - [2008/02/03 00:04:02 | 000,043,440 | ---- | M] (Alfa Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\AlfaFF.sys -- (AlfaFF)
DRV - [2008/02/01 12:46:08 | 000,187,904 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\CHDART.sys -- (CnxtHdAudAddService)
DRV - [2008/01/21 12:23:21 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV - [2008/01/15 11:34:58 | 000,048,472 | ---- | M] (O2Micro ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\o2media.sys -- (O2MDRDR)
DRV - [2008/01/12 00:05:48 | 000,028,280 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\thpdrv.sys -- (Thpdrv)
DRV - [2007/12/22 13:00:00 | 000,028,064 | ---- | M] (Texim Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\TxVDrv.sys -- (TxVDrv)
DRV - [2007/11/09 15:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)
DRV - [2007/09/06 17:28:44 | 000,146,560 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ATSwpDrv.sys -- (ATSWPDRV)
DRV - [2007/09/04 11:30:24 | 000,013,336 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\Thpevm.sys -- (Thpevm)
DRV - [2007/08/31 18:43:32 | 000,020,352 | ---- | M] (Atheros Communications, Inc.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\jswpslwf.sys -- (jswpslwf)
DRV - [2007/08/16 13:49:48 | 000,552,448 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netr28u.sys -- (netr28u)
DRV - [2007/06/06 16:21:32 | 000,111,616 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV - [2007/05/31 21:58:42 | 000,011,552 | ---- | M] (Rsupport Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VRVD302.sys -- (VRVD302)
DRV - [2007/04/09 17:13:00 | 000,008,192 | ---- | M] (TOSHIBA) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\QIOMem.sys -- (QIOMem)
DRV - [2007/01/26 10:22:18 | 000,058,368 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Sonyddpu.sys -- (Sonyddpu)
DRV - [2007/01/26 00:45:02 | 000,006,784 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\whfltr2k.sys -- (whfltr2k)
DRV - [2006/10/18 12:50:04 | 000,016,128 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV - [2004/04/26 09:38:20 | 000,006,885 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\whmice2k.sys -- (whmice2k)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dynabook.fresheye.com/cgi-bin/login.cgi
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.jword.jp/jwd_sb_srchcust.htm?ielang={SUB_RFC1766}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.jword.jp/jwd_sb_srchasst.htm?ielang={SUB_RFC1766}
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.co.jp/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7TSHJ
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.co.jp/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7TSHJ_ja
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "AutoConfigURL" = http://local.swarmcast.net:8001/proxy.pac
[color=#E56717]========== FireFox ==========[/color]
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.46: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord [2008/07/05 10:05:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2010/03/03 15:56:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{22C7F6C6-8D67-4534-92B5-529A0EC09405}: C:\Program Files\Trend Micro\OfficeScan Client\FirefoxExtension [2015/02/25 10:18:07 | 000,000,000 | ---D | M]
O1 HOSTS File: ([2006/09/19 07:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (かんたん登録2) - {0DD41AE7-6196-42E7-BDE5-4F393997449E} - C:\Program Files\Justsystems\SimpleAutoInput\AtInBnd.dll (株式会社ジャストシステム)
O2 - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
O2 - BHO: (TmIEPlugInBHO Class) - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll (Trend Micro Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O2 - BHO: (FeliCaブラウザエクステンション) - {EC5D2125-D8AB-4a18-A599-D97D2731DE19} - C:\Program Files\Sony\FeliCaBrowserExtension\fbe.dll (Sony Corp.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O3 - HKLM\..\Toolbar: (かんたん登録2 ツールバー) - {833CFE4E-05BD-43A3-97A7-A4E80D742F0F} - C:\Program Files\Justsystems\SimpleAutoInput\AtInBnd.dll (株式会社ジャストシステム)
O3 - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [bncsaui.exe] C:\Program Files\Bradford Networks\Client Security Agent\bncsaui.exe (Bradford Networks)
O4 - HKLM..\Run: [cfWPSEnabler.exe] cfWPSEnabler.exe File not found
O4 - HKLM..\Run: [FingerPrintNotifer] C:\Program Files\TrueSuite Access Manager\FpNotifier.exe (AuthenTec, Inc)
O4 - HKLM..\Run: [HSON] C:\Program Files\TOSHIBA\TBS\HSON.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [IJNetworkScannerSelectorEX] C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (CANON INC.)
O4 - HKLM..\Run: [Installation Sources] File not found
O4 - HKLM..\Run: [KazaNavi] C:\Program Files\JustSystems\KazaNavi\kazanavi.exe (株式会社ジャストシステム)
O4 - HKLM..\Run: [NDSTray.exe] NDSTray.exe File not found
O4 - HKLM..\Run: [OfficeScanNT Monitor] C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe (Trend Micro Inc.)
O4 - HKLM..\Run: [PAC207_Monitor] C:\Windows\PixArt\PAC207\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [PwdBank] C:\Program Files\TrueSuite Access Manager\PwdBank.exe (Arachnoid Biometrics Identification Group)
O4 - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [ThpSrv] C:\Windows\System32\thpsrv.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe (Acronis)
O4 - HKLM..\Run: [UsbMonitor] C:\Program Files\TrueSuite Access Manager\usbnotify.exe ()
O4 - HKLM..\Run: [WheelMouse] C:\Advanced Wheel Mouse\wh_exec.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001..\Run: [TOSCDSPD] TOSCDSPD.EXE File not found
O4 - Startup: C:\Users\Kohei\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\東芝ソフトウェア更新チェックツール.lnk = C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe (TOSHIBA CORPORATION)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1
O7 - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: fresheye.com ([dynabook] http in Trusted sites)
O15 - HKLM\..Trusted Domains: remotecall.jp ([]https in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {70EE0AA4-5A3A-4052-8FFA-2EEDA43F7942} http://imedia.ngc.co.jp/ibkoozen/plugin/cibrowser1219.cab (Innotive Cibrowser Control 1.2)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {AEEF256A-781F-44CE-8ED7-DDEE3ECD26E3} http://www.isl.co.jp/SILKYPIX/gazou-fukkatsu-2/GazouFukkatsu.1.0.2.19.cab (画像復活)
O16 - DPF: {B3E32D88-8E7F-468F-B0E2-3A300FD4A82C} http://myitlab.pearsoned.com/Pegasus/Modules/SIMIntegration/Resources/ax/stub.cab (Enlite 2.x Simulation Engine Installer)
O16 - DPF: {CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0018-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.231.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0076DC59-51AD-4243-BC5F-88F7F1260C46}: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2B5B74B1-563F-44DA-BC8B-F744F8AF471E}: DhcpNameServer = 192.168.231.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{50663F84-2549-4160-979B-5E03AED20CB1}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{68499189-7961-4C19-96D5-9B3E8693D430}: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6F244C72-DF38-43B5-AF6E-09693073C008}: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7318C3BE-5DBC-4FC2-BBA5-ADF5F6111D55}: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8760B5A2-9170-48DC-8914-807F4D4F1D7B}: DhcpNameServer = 192.168.231.1
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O18 - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll (Trend Micro Inc.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Kohei\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows フォト ギャラリー壁紙.jpg
O24 - Desktop BackupWallPaper: C:\Users\Kohei\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows フォト ギャラリー壁紙.jpg
O30 - LSA: Authentication Packages - (relog_ap) - C:\Windows\System32\relog_ap.dll (Acronis)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/19 07:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{14d78e6b-0b06-11df-a356-c09f0fa8bc53}\Shell - "" = AutoRun
O33 - MountPoints2\{14d78e6b-0b06-11df-a356-c09f0fa8bc53}\Shell\AutoRun\command - "" = I:\LaunchU3.exe -a
O33 - MountPoints2\{6869f252-e5e3-11de-8fd3-aaccdd350122}\Shell - "" = AutoRun
O33 - MountPoints2\{6869f252-e5e3-11de-8fd3-aaccdd350122}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\{7fa4d9d2-a6d5-11e4-969d-92e30ee75e10}\Shell - "" = AutoRun
O33 - MountPoints2\{7fa4d9d2-a6d5-11e4-969d-92e30ee75e10}\Shell\AutoRun\command - "" = F:\MediaJet.exe
O33 - MountPoints2\{88f9171f-0b2e-11e1-97a3-aded213ac52b}\Shell - "" = AutoRun
O33 - MountPoints2\{88f9171f-0b2e-11e1-97a3-aded213ac52b}\Shell\AutoRun\command - "" = "F:\WD SmartWare.exe" autoplay=true
O33 - MountPoints2\{f8112fde-23c1-11df-9ecb-9d5031779c74}\Shell\AutoRun\command - "" = F:\.\EncryptionTool\MaxtorEncryption.exe
O33 - MountPoints2\{f8112fed-23c1-11df-9ecb-cde59f25427a}\Shell - "" = AutoRun
O33 - MountPoints2\{f8112fed-23c1-11df-9ecb-cde59f25427a}\Shell\AutoRun\command - "" = I:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Unable to start System Restore Service. Error code 1084
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2015/03/01 21:05:14 | 000,000,000 | ---D | C] -- C:\Program Files\Reason
[2015/02/27 21:12:55 | 000,000,000 | ---D | C] -- C:\Users\Kohei\AppData\Roaming\Malwarebytes
[2015/02/27 21:12:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/02/27 10:45:17 | 000,000,000 | ---D | C] -- C:\Users\Kohei\AppData\Roaming\ProductData
[2015/02/27 10:44:51 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2015/02/27 10:44:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
[2015/02/27 10:44:49 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2015/02/27 10:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2015/02/27 10:44:36 | 000,000,000 | ---D | C] -- C:\Users\Kohei\AppData\Roaming\IObit
[2015/02/27 09:22:50 | 000,000,000 | ---D | C] -- C:\Users\Kohei\Desktop\対策
[2015/02/25 23:32:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2015/02/25 23:32:39 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2015/02/25 22:53:37 | 001,810,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2015/02/25 22:48:32 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Kohei\Desktop\HijackThis.exe
[2015/02/25 18:34:13 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2015/02/25 18:34:12 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2015/02/25 18:34:12 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2015/02/25 18:34:12 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2015/02/25 18:34:12 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2015/02/25 18:34:11 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2015/02/25 18:34:11 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2015/02/25 18:34:10 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2015/02/25 18:34:10 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2015/02/25 18:34:09 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2015/02/25 18:34:09 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2015/02/25 18:34:08 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2015/02/25 18:33:16 | 002,063,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2015/02/18 22:14:23 | 000,000,000 | ---D | C] -- C:\Program Files\iPod(123)
[2015/02/18 22:13:37 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes(124)
[2015/02/18 22:13:37 | 000,000,000 | ---D | C] -- C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
[2015/02/18 21:57:21 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime(138)
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Kohei\AppData\Local\*.tmp files -> C:\Users\Kohei\AppData\Local\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2015/03/02 00:14:49 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/03/02 00:13:08 | 000,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2015/03/02 00:13:08 | 000,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2015/03/02 00:12:00 | 000,000,626 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/03/01 23:48:00 | 000,000,678 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/03/01 22:48:10 | 000,000,674 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/03/01 20:50:35 | 000,009,591 | ---- | M] () -- C:\Windows\cfgall.ini
[2015/03/01 20:48:43 | 000,000,436 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics
[2015/02/27 23:54:21 | 000,000,266 | ---- | M] () -- C:\Windows\tasks\Uninstaller_SkipUac_Kohei.job
[2015/02/27 23:17:55 | 000,001,356 | ---- | M] () -- C:\Users\Kohei\AppData\Local\d3d9caps.dat
[2015/02/27 10:44:51 | 000,001,032 | ---- | M] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2015/02/25 23:32:42 | 000,000,815 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2015/02/25 22:48:33 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Kohei\Desktop\HijackThis.exe
[2015/02/25 21:39:42 | 000,473,176 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2015/02/12 00:09:57 | 008,901,066 | ---- | M] () -- C:\Windows\System32\perfh011.dat
[2015/02/12 00:09:56 | 006,146,372 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015/02/12 00:09:56 | 005,467,438 | ---- | M] () -- C:\Windows\System32\perfc011.dat
[2015/02/12 00:09:56 | 005,355,846 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015/02/11 23:27:32 | 000,000,020 | -H-- | M] () -- C:\ProgramData\PKP_DLet.DAT
[2015/02/06 00:12:22 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2015/02/06 00:12:22 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2015/02/05 00:47:14 | 000,002,551 | ---- | M] () -- C:\Users\Kohei\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office PowerPoint 2007.lnk
[2015/02/02 21:42:40 | 000,002,531 | ---- | M] () -- C:\Users\Kohei\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Kohei\AppData\Local\*.tmp files -> C:\Users\Kohei\AppData\Local\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2015/02/27 11:04:41 | 000,000,266 | ---- | C] () -- C:\Windows\tasks\Uninstaller_SkipUac_Kohei.job
[2015/02/27 10:44:51 | 000,001,032 | ---- | C] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2015/02/25 23:32:42 | 000,000,815 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/02/13 07:54:51 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Sound Effects
[2013/02/13 07:54:51 | 000,000,268 | RH-- | C] () -- C:\Users\Kohei\AppData\Roaming\Services
[2013/02/13 07:54:50 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Solid Colors
[2013/02/13 07:54:50 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Smooth Strings
[2013/02/13 07:54:50 | 000,000,268 | RH-- | C] () -- C:\Users\Kohei\AppData\Roaming\Scripts Menu
[2013/02/13 07:54:50 | 000,000,268 | RH-- | C] () -- C:\Users\Kohei\AppData\Roaming\Screen Savers
[2013/02/13 07:54:50 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLev.DAT
[2013/02/13 07:54:50 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLes.DAT
[2013/02/13 07:54:49 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLet.DAT
[2013/01/04 21:35:36 | 000,000,958 | ---- | C] () -- C:\Users\Kohei\RPDLX2011.lic
[2012/04/21 00:47:25 | 000,000,242 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/10/30 07:40:35 | 000,004,096 | -H-- | C] () -- C:\Users\Kohei\AppData\Local\keyfile3.drm
[2011/06/12 14:40:50 | 000,000,000 | ---- | C] () -- C:\Users\Kohei\AppData\Local\{07686A5C-C488-434F-9C5D-F19346C695B0}
[2011/06/04 05:08:30 | 000,000,133 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2011/05/21 09:46:20 | 000,000,000 | ---- | C] () -- C:\Users\Kohei\AppData\Local\{215CBE06-3B69-40DC-BD06-EAE5A193F806}
[2011/03/30 07:33:47 | 000,000,268 | RH-- | C] () -- C:\Users\Kohei\AppData\Roaming\programs
[2011/03/30 07:33:47 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Action
[2011/03/30 07:33:47 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Echo
[2011/03/30 07:33:46 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLck.DAT
[2011/03/30 07:33:43 | 000,000,268 | RH-- | C] () -- C:\Users\Kohei\AppData\Roaming\vhosts
[2011/03/30 07:33:43 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Action Clauses
[2011/03/30 07:33:43 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Electric Clav
[2011/03/30 07:28:40 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLbx.DAT
[2011/03/30 07:18:50 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Sampler Instruments
[2011/03/30 07:18:50 | 000,000,268 | RH-- | C] () -- C:\Users\Kohei\AppData\Roaming\Rule Actions
[2011/03/30 07:18:50 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdu.DAT
[2010/03/31 03:07:42 | 000,001,356 | ---- | C] () -- C:\Users\Kohei\AppData\Local\d3d9caps.dat
[2008/05/18 22:56:25 | 000,157,184 | ---- | C] () -- C:\Users\Kohei\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[color=#E56717]========== ZeroAccess Check ==========[/color]
[2006/11/02 22:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
"ThreadingModel" = Both
"" = C:\$Recycle.Bin\S-1-5-21-2725075760-2042039286-2420676443-1001\$7c80b81e058881db2d711bad2c561c5c\n.
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/03/25 23:26:04 | 011,587,584 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 00:28:20 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 00:28:26 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[color=#E56717]========== Custom Scans ==========[/color]
[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2015/03/02 00:12:00 | 000,000,626 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2009/07/27 22:16:55 | 000,000,690 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2015/03/01 22:48:10 | 000,000,674 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/03/01 23:48:00 | 000,000,678 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/02/27 23:54:21 | 000,000,266 | ---- | M] () -- C:\Windows\tasks\Uninstaller_SkipUac_Kohei.job
[color=#E56717]========== Drive Information ==========[/color]
Physical Drives
---------------
Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: TOSHIBA MK1646GSX
Partitions: 4
Status: OK
Status Info: 0
Partitions
---------------
DeviceID: Disk #0, Partition #0
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 1.00GB
Starting Offset: 1048576
Hidden sectors: 0
DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 128.00GB
Starting Offset: 1573912576
Hidden sectors: 0
DeviceID: Disk #0, Partition #2
PartitionType: Extended w/Extended Int 13
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 10.00GB
Starting Offset: 138791616512
Hidden sectors: 0
DeviceID: Disk #0, Partition #3
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 10.00GB
Starting Offset: 149529034752
Hidden sectors: 0
[color=#E56717]========== Base Services ==========[/color]
SRV - [2006/11/02 19:46:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc)
SRV - [2014/06/02 20:30:29 | 000,033,280 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2008/01/21 12:24:14 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2009/04/11 00:28:24 | 000,758,784 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2009/04/11 00:28:20 | 000,334,848 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\BFE.DLL -- (BFE)
SRV - [2011/11/17 00:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lsass.exe -- (KeyIso)
SRV - [2009/04/11 00:28:20 | 000,268,800 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2008/01/21 12:24:36 | 000,081,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2013/07/08 14:16:55 | 000,133,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2009/04/11 00:28:26 | 000,550,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2009/04/11 00:28:20 | 000,204,288 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\dhcpcsvc.dll -- (Dhcp)
SRV - [2011/03/03 01:44:27 | 000,086,528 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2008/01/21 12:25:01 | 000,057,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\eapsvc.dll -- (EapHost)
SRV - [2009/04/11 00:28:20 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2008/01/21 12:24:09 | 000,288,256 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2009/04/11 00:28:22 | 000,364,032 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV - [2009/04/11 00:28:26 | 000,311,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2008/01/21 12:24:54 | 000,045,056 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\mmcss.dll -- (MMCSS)
SRV - [2008/01/21 12:24:11 | 000,274,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2008/01/21 12:24:23 | 000,237,056 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\netprofm.dll -- (netprofm)
SRV - [2014/12/06 13:14:36 | 000,174,080 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2008/01/21 12:24:47 | 000,018,432 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2009/04/11 00:28:26 | 000,222,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2010/08/18 00:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2011/11/17 00:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage)
SRV - [2009/04/11 00:28:20 | 000,564,224 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\emdmgmt.dll -- (EMDMgmt)
SRV - [2008/01/21 12:24:19 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2009/04/11 00:28:26 | 000,262,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2009/04/11 00:28:26 | 000,550,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2008/01/21 12:24:35 | 000,019,968 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2011/11/17 00:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2009/04/11 00:28:28 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wscsvc.dll -- (wscsvc)
SRV - [2010/09/07 02:20:29 | 000,125,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2009/07/10 21:47:42 | 000,247,808 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
SRV - [2009/04/11 00:27:50 | 003,408,896 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\SLsvc.exe -- (slsvc)
SRV - [2010/11/05 04:55:12 | 000,601,600 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2009/04/11 00:28:26 | 000,242,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2009/07/10 21:47:42 | 000,247,808 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\shsvcs.dll -- (Themes)
SRV - [2014/12/06 13:14:51 | 000,153,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2009/04/11 00:28:12 | 001,055,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2014/10/03 11:17:16 | 000,316,928 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2014/10/03 11:17:16 | 000,316,928 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\audiosrv.dll -- (AudioEndpointBuilder)
SRV - [2008/01/21 12:23:27 | 000,104,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2008/01/21 12:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/04/11 00:28:26 | 001,017,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (Eventlog)
SRV - [2009/04/11 00:28:22 | 000,407,552 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc)
SRV - [2009/04/11 00:28:26 | 000,453,120 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wiaservc.dll -- (stisvc)
SRV - [2009/04/11 00:27:46 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msiexec.exe -- (msiserver)
SRV - [2009/04/11 00:28:26 | 000,162,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt)
SRV - [2012/06/03 08:19:17 | 001,933,848 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2009/04/11 00:28:20 | 000,175,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2009/07/12 05:01:42 | 000,513,536 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2009/06/10 21:42:23 | 000,160,256 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:63238B95
< End of report >
- pilot
- 2015/03/02 (Mon) 00:02:01
Extras.txt
最後にExtras.txtです。宜しくお願い致します。
OTL Extras logfile created on: 2015/03/02 0:17:37 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kohei\Desktop\対策
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd
2.99 Gb Total Physical Memory | 2.50 Gb Available Physical Memory | 83.61% Memory free
6.18 Gb Paging File | 5.91 Gb Available in Paging File | 95.62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 127.79 Gb Total Space | 25.05 Gb Free Space | 19.60% Space Free | Partition Type: NTFS
Drive D: | 9.99 Gb Total Space | 9.99 Gb Free Space | 100.00% Space Free | Partition Type: FAT32
Computer Name: KOHEI-PC | User Name: Kohei | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (チ晙厓虍Microsoft Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (チ晙厓虍Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [FindArchive] -- C:\Program Files\Explzh\Explzh.exe /f %1 (pon software)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
"AutoUpdateDisableNotify" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[color=#E56717]========== Firewall Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[color=#E56717]========== Authorized Applications List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe" = C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe -- (Bradford Networks)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe" = C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe -- (Bradford Networks)
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02F6D5C9-F6EE-45C1-913B-BB86C5DCE36D}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{08E6AE81-5462-4D84-AB4D-53B7522E9AD1}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{356B200E-E307-4456-ABAC-F8A98899F936}" = lport=445 | protocol=6 | dir=in | app=system |
"{3C659521-FCB3-4555-9F2C-4F2348B20DC3}" = lport=139 | protocol=6 | dir=in | app=system |
"{42AFFEBD-9892-4062-948C-2D60C83E95EE}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{45B9F171-384E-4A37-9977-AE8C87EE665D}" = rport=137 | protocol=17 | dir=out | app=system |
"{4A8ACA67-5BDF-480C-B812-2CFFA85C0CF6}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{533C06ED-1B4B-4387-A021-E4D3F22E823C}" = rport=2869 | protocol=6 | dir=out | app=system |
"{6C7B273E-082B-4D62-8AF9-8435A946E2D1}" = lport=138 | protocol=17 | dir=in | app=system |
"{8DA513F8-50E3-4041-A136-2741D57D645F}" = lport=2869 | protocol=6 | dir=in | app=system |
"{8EE1AF84-D1A3-46D4-B0B9-8FDFBF0E63AA}" = rport=445 | protocol=6 | dir=out | app=system |
"{973B72B3-1D15-46EE-A2B8-F7DA504383AB}" = rport=138 | protocol=17 | dir=out | app=system |
"{A10410A1-F515-4CCD-A946-F8715D8D90AB}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{AC937C3C-DEDA-492A-95FE-2BA9A709BA8F}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{BC7CDEA1-7108-473D-9101-A63E1B578F4F}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{BDFFA1CC-AC4D-4DB3-BDB5-9145569527A5}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{BF7CB6B9-098B-4662-9DAC-DCE35C477797}" = lport=137 | protocol=17 | dir=in | app=system |
"{EADF3F8F-FC1E-43C0-824D-C6961DCEF1C2}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{F3B3465C-0C66-4548-ACE5-1233743CAE85}" = rport=139 | protocol=6 | dir=out | app=system |
"{FC815CEA-13F5-4067-9D9E-9BE004A0DABD}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00ACD27C-EE21-4646-951C-D7A446953D2F}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{0A2CF51D-3638-4F7B-A03A-9590652065CA}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0A786C9A-44E1-420A-AD1B-DF969D9988EA}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{224BDAD6-5CE0-4DB3-8989-965CED71A809}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{24F1E633-52C3-40C1-AC1D-772AD81484A3}" = protocol=17 | dir=in | app=c:\program files\veoh networks\veohwebplayer\veohwebplayer.exe |
"{28ED0939-8857-49F4-BCAE-D1114D369492}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{2BF8DB73-77D3-44DD-9FAC-AC90A5B2566F}" = protocol=6 | dir=in | app=c:\program files\veoh networks\veohwebplayer\veohwebplayer.exe |
"{2F4C09B2-3D3B-4007-BA25-5242D8C01A59}" = protocol=6 | dir=in | app=c:\program files\justsystems\beatjam network player\bjncreg.exe |
"{332B9226-CF3E-470F-B6D9-4219AFD6E403}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{33C22571-BF6B-41F1-B0C5-D4C7AFEF3E4A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{391DFE0D-70D2-4E06-BDF7-403AB36A30A5}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{3BA4829A-72FF-45FF-9201-051044F77244}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{3C548422-7CA1-4844-B101-F0332B353A07}" = protocol=6 | dir=in | app=c:\program files\justsystems\beatjam network player\netbj.exe |
"{3C777FAF-0F3D-4B90-8AC5-134A840332F9}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{51374E3D-3F87-46A7-91D3-A4EAFDB6CFA8}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{55FFF656-BCD0-42B0-92C1-933AEE62937C}" = protocol=17 | dir=in | app=c:\program files\justsystems\beatjam music server\beatjamupnpservice.exe |
"{5F08B562-D087-4EE7-AD28-D75A02A4934B}" = protocol=17 | dir=in | app=c:\program files\justsystems\beatjam music server\svrmgr.exe |
"{6BFFA027-18ED-4753-BD35-64FB4BCDB637}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6CB7890A-2C04-4BE8-97B5-21DC6F37BFA7}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{6F52F07B-55F4-4A10-9CAF-C2494E6DCCA5}" = protocol=6 | dir=in | app=c:\program files\justsystems\beatjam music server\beatjamhttpservice.exe |
"{70963FB4-0AE7-4A2D-9706-9A1187B4170F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{70B9BD5B-6345-4AE8-A7C1-09D2055501E9}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7145A468-E7C9-4680-816E-9F4C63D01D3E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{726FE5A8-3ACA-439C-B8BE-5D3464309036}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{72ED6BBB-2CEE-4207-9D1B-FE1C38BBC6F1}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{77D11B8A-A7A4-461B-87D2-86891AE08CC5}" = dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{77F28886-E80D-4AB3-AF44-FDC904C7EB9F}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{78B2AD24-8CF0-438F-85FD-A99FB769CEDB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7CF0AD84-04E8-437E-8BDD-0B5AE8F5B548}" = protocol=17 | dir=in | app=c:\program files\justsystems\beatjam network player\netbj.exe |
"{82860883-A1A4-424B-A06C-A7F3DFCD71ED}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{85E144CA-E62E-43BE-86B1-AB109CFDE116}" = protocol=17 | dir=in | app=c:\program files\justsystems\beatjam music server\beatjamhttpservice.exe |
"{8A03C1F7-7D74-4F28-9F76-02CCAA06CA03}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8D19973B-5E31-4DAA-9465-AA4C948F303A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9A4A0579-DD60-4D0B-8962-486CEF29F0EA}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A019DB44-2631-49F7-868D-28F8968061F3}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A561ECE5-8BEF-4766-8CE7-E197FDA6B458}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{AAF7E298-0592-48B2-8E45-851CF30F0FBA}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{AF01BC39-503D-415F-AF39-FA3CF23B993A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{B5CD9CAB-B1F7-4EC6-80CB-7B84085D74C8}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{BEF638F2-173C-4743-8861-4D144E304B6D}" = protocol=17 | dir=out | app=c:\program files\windows media player\wmplayer.exe |
"{BF4F4A13-4C58-442C-974D-FA995C082CDB}" = protocol=6 | dir=in | app=c:\program files\justsystems\beatjam music server\svrmgr.exe |
"{C59F9AFD-3C03-47FE-A951-B63307379084}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C6A8C536-08C8-4B96-AC1C-662D0F1EB667}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{CFEAF14D-91B6-4AED-B13E-A90AAE07BDD0}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{CFFDC9F1-247F-4722-A048-EF39A07612D6}" = protocol=6 | dir=in | app=c:\program files\justsystems\beatjam music server\beatjamupnpservice.exe |
"{D57EFBB4-7232-414E-8BE8-614764E83BBE}" = protocol=17 | dir=in | app=c:\program files\bradford networks\client security agent\bndaemon.exe |
"{DEB6F43E-0125-4C1B-AC55-3790552E7029}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{E1CB7293-501B-46D4-93FB-C8DBD87B6CF7}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{E4F7CB67-3C03-433F-B53C-9C949C9A4DEF}" = protocol=17 | dir=in | app=c:\program files\windows media player\wmplayer.exe |
"{E8AFA4EA-7132-4796-A3B5-0F507EF43715}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{EB93B5AB-EDD0-4643-BD27-C6DF73A678FB}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{EF42E538-8A99-4E07-9E7E-CE1A91008567}" = protocol=6 | dir=in | app=c:\program files\bradford networks\client security agent\bndaemon.exe |
"{F10FFB39-DC8D-4816-8B01-A89FCAE8F9F9}" = protocol=6 | dir=out | app=c:\program files\windows media player\wmplayer.exe |
"{F2CFB96A-07A1-4FCF-B577-8E6C4CBACAFA}" = protocol=17 | dir=in | app=c:\program files\justsystems\beatjam network player\bjncreg.exe |
"TCP Query User{3549421C-69BB-4E88-B0B8-04529FED61C5}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{4FBDE0E2-AD69-46B2-B77D-3A289F888EAA}C:\program files\itunes\itunes.exe" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"TCP Query User{52847522-1A9D-4F11-AAE9-CD8E57541C4C}C:\program files\real\realplayer\realplay.exe" = protocol=6 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"TCP Query User{54CC4876-4D8E-4010-99AC-A224F47FA0E1}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{60546032-8D57-47B7-ACEE-A5F65047B092}C:\users\kohei\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\kohei\appdata\local\akamai\netsession_win.exe |
"TCP Query User{855B38B3-0130-4A14-9B3E-DC6512D469CD}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{862F55C4-9D33-4467-9C1C-0833597B68C6}C:\programdata\autobahn\autobahn.exe" = protocol=6 | dir=in | app=c:\programdata\autobahn\autobahn.exe |
"TCP Query User{8964EA6D-D3B6-436E-8022-BC81FF32BA16}C:\program files\keyholetv\keyholetv.exe" = protocol=6 | dir=in | app=c:\program files\keyholetv\keyholetv.exe |
"TCP Query User{95D4C6F5-ADB3-4E32-80ED-FA5D34064257}C:\program files\real\realplayer\realplay.exe" = protocol=6 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"TCP Query User{CB41BCF1-2248-47CE-B5D5-72972E57E1D5}C:\program files\keyholetv\keyholetv.exe" = protocol=6 | dir=in | app=c:\program files\keyholetv\keyholetv.exe |
"TCP Query User{D9A139C1-1CB9-442D-8545-E6B88B00E968}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{DDD0C477-3AC4-4A2C-9773-EF8B51D9838C}C:\programdata\autobahn\autobahn.exe" = protocol=6 | dir=in | app=c:\programdata\autobahn\autobahn.exe |
"UDP Query User{028E84DD-3C07-41E9-B9BD-BF618986ABC1}C:\program files\real\realplayer\realplay.exe" = protocol=17 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"UDP Query User{16406500-00AC-425D-AB71-34BE1A88E51E}C:\program files\keyholetv\keyholetv.exe" = protocol=17 | dir=in | app=c:\program files\keyholetv\keyholetv.exe |
"UDP Query User{1DE8D92C-E21A-443F-9CD2-99FDA9195AFE}C:\programdata\autobahn\autobahn.exe" = protocol=17 | dir=in | app=c:\programdata\autobahn\autobahn.exe |
"UDP Query User{1FD94E62-E762-460E-989E-9FC71CE3CC44}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{2210FEFD-8086-4724-B8C7-DC6AD15855A7}C:\program files\keyholetv\keyholetv.exe" = protocol=17 | dir=in | app=c:\program files\keyholetv\keyholetv.exe |
"UDP Query User{2D446178-3698-40DF-9869-E18E25EB79F8}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{3EA29D96-8EC1-4130-B7A3-E1B7F180A686}C:\programdata\autobahn\autobahn.exe" = protocol=17 | dir=in | app=c:\programdata\autobahn\autobahn.exe |
"UDP Query User{57D9D1D6-A04F-4AB9-9715-D3F2FCA857AA}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{5BB24263-58D6-48CC-BAA5-AE60AA21258B}C:\users\kohei\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\kohei\appdata\local\akamai\netsession_win.exe |
"UDP Query User{7AAC18E0-7999-4728-B064-6A3EF6C5599F}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{B3DD1573-3760-49FA-83BE-0042B00878AB}C:\program files\real\realplayer\realplay.exe" = protocol=17 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}" = Apple Mobile Device Support
"{07C29220-655C-4A89-A55B-838B884C5EB9}" = 筆ぐるめ Ver.15
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6100_series" = Canon MG6100 series MP Drivers
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP470_series" = Canon MP470 series
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX470_series" = Canon MX470 series MP Drivers
"{11D2C5F8-F379-4659-85BE-DCE1D8D60FB8}" = OpenOffice.org Installer 1.0
"{156E4680-CA1F-4D45-AE9F-D6731E37C175}" = FeliCa Port Software
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype(TM) 7.1
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Driver Installation Program
"{286B5435-9A16-4A06-8E56-87E7EC4E1315}" = dynabookランチャー用バナー
"{308D7DDC-4C2E-4015-9D74-1C53865D1A88}" = 東芝ソフトウェア更新チェックツール
"{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}" = McAfee SiteAdvisor
"{372B31CF-77FB-4E29-860C-A0EA2985AB7F}" = O2Micro Flash Memory Card Reader Driver (x86)
"{3D104259-DDE9-4331-BFAC-39F712735E10}" = BeatJam
"{3FBF6F99-8EC6-41B4-8527-0A32241B5496}" = Toshiba Speech System NLS TTS Engine(U.S.) Version1.0
"{4087BD66-5D8E-4AA3-BA92-F6B014E04C97}" = 東芝お客様登録
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{48D2C608-6E46-4978-A2D4-67E34F95E971}" = かんたん登録2
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{491DD193-1B57-4D1C-8B14-18B96992A89F}" = TOSHIBA Supervisor Password
"{4D2C94B0-CD0E-4095-8A6A-D46CCCF8D975}" = SketchUp 8
"{4EE63BCE-7D9C-40E0-B770-07C6181EF55C}_is1" = RescuePRO Deluxe 5.0
"{50AD75E8-547E-4998-8C06-BF5CEEF30813}" = Acronis True Image LE
"{50C95732-A23F-416E-B95D-0F4E717F26FA}" = パソコンで見るマニュアル
"{52573F8D-F099-4CB5-9EDE-5C27ECB4A02B}" = TOSHIBA Hardware Setup
"{588D523F-4828-4285-9E33-AD1A6AED30D1}" = Client Security Agent
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator
"{5E862EC5-40B2-4A7E-A87D-B504E141318A}" = スクリーンセーバーロック2
"{600D85D0-14E9-4B52-A125-F31668C6BE96}" = FeliCaブラウザエクステンション
"{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center
"{6C5F3BDC-0A1B-4436-A696-5939629D5C31}" = TOSHIBA DVD PLAYER
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{72C24C23-C53D-11D4-88AB-00809880EBD8}" = TOSHIBA Speech Engines Version V9.50
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78C6A78A-8B03-48C8-A47C-78BA1FCA2307}" = TOSHIBA ConfigFree
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7BEF543F-300A-4B75-BB8C-ECB48008823B}" = OpenMG Secure Module 4.7.01
"{80B62962-9C52-43A2-879B-3018E5B7A5D6}" = かざしてナビ
"{818114C2-6B73-43D6-80E3-680776C5D31A}" = eLIO D-URL
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87441A59-5E64-4096-A170-14EFE67200C3}" = Picture Control Utility
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C67F36C-C8C0-4820-A836-0DE3DBFC1A45}" = パソコン設定ガイド
"{90120000-0016-0411-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Japanese) 2007
"{90120000-0016-0411-0000-0000000FF1CE}_PERSONALR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0411-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Japanese) 2007
"{90120000-0018-0411-0000-0000000FF1CE}_POWERPOINTR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0411-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Japanese) 2007
"{90120000-001A-0411-0000-0000000FF1CE}_PERSONALR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0411-0000-0000000FF1CE}" = Microsoft Office Word MUI (Japanese) 2007
"{90120000-001B-0411-0000-0000000FF1CE}_PERSONALR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PERSONALR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}_POWERPOINTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0411-0000-0000000FF1CE}" = Microsoft Office Proof (Japanese) 2007
"{90120000-001F-0411-0000-0000000FF1CE}_PERSONALR_{8B0BBAAA-BB10-41E1-B27E-24CF08CBB253}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0411-0000-0000000FF1CE}_POWERPOINTR_{8B0BBAAA-BB10-41E1-B27E-24CF08CBB253}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0028-0411-0000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2007
"{90120000-0028-0411-0000-0000000FF1CE}_PERSONALR_{277B1BCF-97A7-40F2-87A5-3CACB0E9714B}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0028-0411-0000-0000000FF1CE}_POWERPOINTR_{277B1BCF-97A7-40F2-87A5-3CACB0E9714B}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0411-0000-0000000FF1CE}" = Microsoft Office Proofing (Japanese) 2007
"{90120000-006E-0411-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Japanese) 2007
"{90120000-006E-0411-0000-0000000FF1CE}_PERSONALR_{84C84010-F698-443E-84B4-A82DD01A17FE}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0411-0000-0000000FF1CE}_POWERPOINTR_{84C84010-F698-443E-84B4-A82DD01A17FE}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-0028-0411-0000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2010
"{90140000-0121-0411-0000-0000000FF1CE}" = Microsoft Office IMESS (Japanese) 2010
"{90140000-0122-0000-0000-0000000FF1CE}" = Microsoft Office IME 2010
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{91120000-0018-0000-0000-0000000FF1CE}" = Microsoft Office PowerPoint 2007
"{91120000-0018-0000-0000-0000000FF1CE}_POWERPOINTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{91120000-0033-0000-0000-0000000FF1CE}" = Microsoft Office Personal 2007
"{91120000-0033-0000-0000-0000000FF1CE}_PERSONALR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{932245FB-2F3B-3E2E-B8AB-BDE96E434F21}" = Microsoft .NET Framework 3.5 Language Pack SP1 - jpn
"{94A90C69-71C1-470A-88F5-AA47ECC96B40}" = TOSHIBA HDD Protection
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}" = CD/DVD静音ユーティリティ
"{A2075A09-28AA-4D30-9BCC-82EAD9FA51BD}" = TrueSuite Access Manager
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A991D480-1349-4FDD-983C-19241910A9E1}" = Microsoft Office ナビ 2007
"{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager
"{AC76BA86-7AD7-5760-0000-900000000003}" = Japanese Fonts Support For Adobe Reader 9
"{AD650226-3335-45BB-9640-D8C973366A1A}" = パーソナルシェルター
"{B014EE44-9197-4513-9613-71E6EB1B514E}" = Nikon Message Center 2
"{B0BCDCBD-863D-4CAB-BF68-8D1F6B1BDC13}" = Atheros Wi-Fi Protected Setup Library
"{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser
"{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}" = TOSHIBA Recovery Disc Creator
"{B67BAFBA-4C9F-48FA-9496-933E3B255044}" = QuickTime
"{C19384F4-1D40-4A0D-8891-08B8E229D9A1}" = PC引越ナビ
"{C197BC08-3D82-4651-8886-E68C21578A38}" = iTunes
"{C4EA8443-092F-4818-8B5D-B8E25CC91135}" = TOSHIBA Speech System MT Engine Version 9.0
"{C950420B-4182-49EA-850A-A6A2ABF06C6B}" = Marvell Miniport Driver
"{C99E6F22-FD0E-4D6E-925A-268AD1C050D6}" = its-moNavi PC
"{CBDF64B0-8CAB-45C7-B3B2-4637C9F88769}" = HDMI Control Manager
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{D30F9503-071B-4354-827D-C72D8E75BB05}" = Edy Viewer
"{D45E8C45-B601-4A80-AFD8-E16338744DE1}" = ArcSoft Panorama Maker 4
"{DDD62492-32A7-412B-8AF1-2CF032AD42E3}" = ViewNX 2
"{DE8D76CC-CE95-44C7-99D0-EA76BA0E25EE}" = Boingo Wi-Fi
"{DEE88727-779B-47A9-ACEF-F87CA5F92A65}" = ScanSoft OmniPage SE 4
"{E171C361-7760-4D52-A6A4-6D22D8735689}" = シンプルログオン
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media エンコーダ 9 シリーズ
"{E6607F5B-50E7-4B54-81B7-F0600E3C8CF4}" = Belkin F5D8053 N Wireless USB Adapter
"{E9757890-7EC5-46C8-99AB-B00F07B6525C}" = Nikon Transfer
"{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}" = TOSHIBA SD Memory Utilities
"{ED46C765-9EB0-4D4A-AD6C-29CF7E8007B0}" = SFCard Viewer 2
"{F0936E35-B71F-4155-884A-6A5F654C31DB}" = dynabookランチャー
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}" = DVD MovieWriter for TOSHIBA
"{F302B04E-C7B3-11D4-88AB-00809880EBD8}" = LaLaVoice V9.50
"{F6D47FFC-F78E-4C71-AF33-0D922CD0F327}" = ぼくは航空管制官3 体験版
"{FEDD27A0-B306-45EF-BF58-B527406B42C8}" = TOSHIBA Value Added Package
"Adobe Flash Player ActiveX" = Adobe Flash Player 16 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 16 NPAPI
"Adobe PDF IFilter 6.0" = Adobe PDF IFilter 6.0
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Aerosim CRJ200 VFD 2.1.23.1" = Aerosim CRJ200 VFD 2.1.23.1
"AR_CAD" = AR_CAD
"Canon MP470 series User Registration" = Canon MP470 series User Registration
"Canon MX470 series User Registration" = Canon MX470 series User Registration
"Canon_IJ_Network_Scan_UTILITY" = Canon IJ Network Scan Utility
"Canon_IJ_Network_Scanner_Selector_EX" = Canon IJ Network Scanner Selector EX
"Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
"Canon_IJ_Scan_Utility" = Canon IJ Scan Utility
"CANONIJPLM100" = PIXMA Extended Survey Program
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Explzh" = Explzh for Windows
"Google Updater" = Google アップデータ
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"IME14SS.1041" = Microsoft Office IME 2010 (Japanese)
"InstallShield_{491DD193-1B57-4D1C-8B14-18B96992A89F}" = TOSHIBA Supervisor Password
"InstallShield_{52573F8D-F099-4CB5-9EDE-5C27ECB4A02B}" = TOSHIBA Hardware Setup
"InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center
"InstallShield_{7BEF543F-300A-4B75-BB8C-ECB48008823B}" = OpenMG Secure Module 4.7.01
"InstallShield_{E6607F5B-50E7-4B54-81B7-F0600E3C8CF4}" = Belkin F5D8053 N Wireless USB Adapter
"InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}" = TOSHIBA Value Added Package
"IObitUninstall" = IObit Uninstaller
"KeyHoleTV" = KeyHoleTV
"Microsoft .NET Framework 3.5 Language Pack SP1 - jpn" = Microsoft .NET Framework 3.5 Language Pack SP1 - 日本語
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Office Navi 2007 12.0.2213.0" = Microsoft Office ナビ 2007
"MP Navigator EX 1.0" = Canon MP Navigator EX 1.0
"NFRMPCViewer_is1" = NFRMプレーヤ NFRMPCViewer 2.0.3
"OfficeScanNT" = Trend Micro OfficeScan Client
"PERSONALR" = Microsoft Office Personal 2007
"POWERPOINTR" = Microsoft Office PowerPoint 2007
"Rainmeter" = Rainmeter
"RealPlayer 6.0" = RealPlayer
"SimCity 2000 アンインストール" = SimCity 2000 Special Edition
"UN070618" = BUFFALO TurboUSB for FLASH/HDD
"WheelMouse" = Advanced Wheel Mouse 6.0.0.000
"Windows Media Encoder 9" = Windows Media エンコーダ 9 シリーズ
"ぼくは航空管制官2" = ぼくは航空管制官2
"ぼくは航空管制官2チャレンジ4!" = ぼくは航空管制官2チャレンジ4!
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
[HKEY_USERS\S-1-5-21-2725075760-2042039286-2420676443-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
[ Application Events ]
Error - 2015/02/27 9:30:11 | Computer Name = Kohei-PC | Source = Windows Search Service | ID = 3013
Description =
Error - 2015/02/27 9:54:01 | Computer Name = Kohei-PC | Source = EventSystem | ID = 4609
Description =
Error - 2015/02/27 9:54:42 | Computer Name = Kohei-PC | Source = WinMgmt | ID = 10
Description =
Error - 2015/02/27 10:06:07 | Computer Name = Kohei-PC | Source = EventSystem | ID = 4609
Description =
Error - 2015/02/27 10:06:32 | Computer Name = Kohei-PC | Source = EventSystem | ID = 4609
Description =
Error - 2015/02/27 10:12:41 | Computer Name = Kohei-PC | Source = WinMgmt | ID = 10
Description =
Error - 2015/02/28 7:08:37 | Computer Name = Kohei-PC | Source = WinMgmt | ID = 10
Description =
Error - 2015/03/01 6:44:27 | Computer Name = Kohei-PC | Source = WinMgmt | ID = 10
Description =
Error - 2015/03/01 10:15:28 | Computer Name = Kohei-PC | Source = EventSystem | ID = 4609
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7026
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:53 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
< End of report >
OTL Extras logfile created on: 2015/03/02 0:17:37 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kohei\Desktop\対策
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd
2.99 Gb Total Physical Memory | 2.50 Gb Available Physical Memory | 83.61% Memory free
6.18 Gb Paging File | 5.91 Gb Available in Paging File | 95.62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 127.79 Gb Total Space | 25.05 Gb Free Space | 19.60% Space Free | Partition Type: NTFS
Drive D: | 9.99 Gb Total Space | 9.99 Gb Free Space | 100.00% Space Free | Partition Type: FAT32
Computer Name: KOHEI-PC | User Name: Kohei | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (チ晙厓虍Microsoft Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (チ晙厓虍Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [FindArchive] -- C:\Program Files\Explzh\Explzh.exe /f %1 (pon software)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
"AutoUpdateDisableNotify" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[color=#E56717]========== Firewall Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[color=#E56717]========== Authorized Applications List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe" = C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe -- (Bradford Networks)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe" = C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe -- (Bradford Networks)
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02F6D5C9-F6EE-45C1-913B-BB86C5DCE36D}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{08E6AE81-5462-4D84-AB4D-53B7522E9AD1}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{356B200E-E307-4456-ABAC-F8A98899F936}" = lport=445 | protocol=6 | dir=in | app=system |
"{3C659521-FCB3-4555-9F2C-4F2348B20DC3}" = lport=139 | protocol=6 | dir=in | app=system |
"{42AFFEBD-9892-4062-948C-2D60C83E95EE}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{45B9F171-384E-4A37-9977-AE8C87EE665D}" = rport=137 | protocol=17 | dir=out | app=system |
"{4A8ACA67-5BDF-480C-B812-2CFFA85C0CF6}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{533C06ED-1B4B-4387-A021-E4D3F22E823C}" = rport=2869 | protocol=6 | dir=out | app=system |
"{6C7B273E-082B-4D62-8AF9-8435A946E2D1}" = lport=138 | protocol=17 | dir=in | app=system |
"{8DA513F8-50E3-4041-A136-2741D57D645F}" = lport=2869 | protocol=6 | dir=in | app=system |
"{8EE1AF84-D1A3-46D4-B0B9-8FDFBF0E63AA}" = rport=445 | protocol=6 | dir=out | app=system |
"{973B72B3-1D15-46EE-A2B8-F7DA504383AB}" = rport=138 | protocol=17 | dir=out | app=system |
"{A10410A1-F515-4CCD-A946-F8715D8D90AB}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{AC937C3C-DEDA-492A-95FE-2BA9A709BA8F}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{BC7CDEA1-7108-473D-9101-A63E1B578F4F}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{BDFFA1CC-AC4D-4DB3-BDB5-9145569527A5}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{BF7CB6B9-098B-4662-9DAC-DCE35C477797}" = lport=137 | protocol=17 | dir=in | app=system |
"{EADF3F8F-FC1E-43C0-824D-C6961DCEF1C2}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{F3B3465C-0C66-4548-ACE5-1233743CAE85}" = rport=139 | protocol=6 | dir=out | app=system |
"{FC815CEA-13F5-4067-9D9E-9BE004A0DABD}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00ACD27C-EE21-4646-951C-D7A446953D2F}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{0A2CF51D-3638-4F7B-A03A-9590652065CA}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0A786C9A-44E1-420A-AD1B-DF969D9988EA}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{224BDAD6-5CE0-4DB3-8989-965CED71A809}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{24F1E633-52C3-40C1-AC1D-772AD81484A3}" = protocol=17 | dir=in | app=c:\program files\veoh networks\veohwebplayer\veohwebplayer.exe |
"{28ED0939-8857-49F4-BCAE-D1114D369492}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{2BF8DB73-77D3-44DD-9FAC-AC90A5B2566F}" = protocol=6 | dir=in | app=c:\program files\veoh networks\veohwebplayer\veohwebplayer.exe |
"{2F4C09B2-3D3B-4007-BA25-5242D8C01A59}" = protocol=6 | dir=in | app=c:\program files\justsystems\beatjam network player\bjncreg.exe |
"{332B9226-CF3E-470F-B6D9-4219AFD6E403}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{33C22571-BF6B-41F1-B0C5-D4C7AFEF3E4A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{391DFE0D-70D2-4E06-BDF7-403AB36A30A5}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{3BA4829A-72FF-45FF-9201-051044F77244}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{3C548422-7CA1-4844-B101-F0332B353A07}" = protocol=6 | dir=in | app=c:\program files\justsystems\beatjam network player\netbj.exe |
"{3C777FAF-0F3D-4B90-8AC5-134A840332F9}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{51374E3D-3F87-46A7-91D3-A4EAFDB6CFA8}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{55FFF656-BCD0-42B0-92C1-933AEE62937C}" = protocol=17 | dir=in | app=c:\program files\justsystems\beatjam music server\beatjamupnpservice.exe |
"{5F08B562-D087-4EE7-AD28-D75A02A4934B}" = protocol=17 | dir=in | app=c:\program files\justsystems\beatjam music server\svrmgr.exe |
"{6BFFA027-18ED-4753-BD35-64FB4BCDB637}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6CB7890A-2C04-4BE8-97B5-21DC6F37BFA7}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{6F52F07B-55F4-4A10-9CAF-C2494E6DCCA5}" = protocol=6 | dir=in | app=c:\program files\justsystems\beatjam music server\beatjamhttpservice.exe |
"{70963FB4-0AE7-4A2D-9706-9A1187B4170F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{70B9BD5B-6345-4AE8-A7C1-09D2055501E9}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7145A468-E7C9-4680-816E-9F4C63D01D3E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{726FE5A8-3ACA-439C-B8BE-5D3464309036}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{72ED6BBB-2CEE-4207-9D1B-FE1C38BBC6F1}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{77D11B8A-A7A4-461B-87D2-86891AE08CC5}" = dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{77F28886-E80D-4AB3-AF44-FDC904C7EB9F}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{78B2AD24-8CF0-438F-85FD-A99FB769CEDB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7CF0AD84-04E8-437E-8BDD-0B5AE8F5B548}" = protocol=17 | dir=in | app=c:\program files\justsystems\beatjam network player\netbj.exe |
"{82860883-A1A4-424B-A06C-A7F3DFCD71ED}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{85E144CA-E62E-43BE-86B1-AB109CFDE116}" = protocol=17 | dir=in | app=c:\program files\justsystems\beatjam music server\beatjamhttpservice.exe |
"{8A03C1F7-7D74-4F28-9F76-02CCAA06CA03}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8D19973B-5E31-4DAA-9465-AA4C948F303A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9A4A0579-DD60-4D0B-8962-486CEF29F0EA}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A019DB44-2631-49F7-868D-28F8968061F3}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A561ECE5-8BEF-4766-8CE7-E197FDA6B458}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{AAF7E298-0592-48B2-8E45-851CF30F0FBA}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{AF01BC39-503D-415F-AF39-FA3CF23B993A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{B5CD9CAB-B1F7-4EC6-80CB-7B84085D74C8}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{BEF638F2-173C-4743-8861-4D144E304B6D}" = protocol=17 | dir=out | app=c:\program files\windows media player\wmplayer.exe |
"{BF4F4A13-4C58-442C-974D-FA995C082CDB}" = protocol=6 | dir=in | app=c:\program files\justsystems\beatjam music server\svrmgr.exe |
"{C59F9AFD-3C03-47FE-A951-B63307379084}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C6A8C536-08C8-4B96-AC1C-662D0F1EB667}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{CFEAF14D-91B6-4AED-B13E-A90AAE07BDD0}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{CFFDC9F1-247F-4722-A048-EF39A07612D6}" = protocol=6 | dir=in | app=c:\program files\justsystems\beatjam music server\beatjamupnpservice.exe |
"{D57EFBB4-7232-414E-8BE8-614764E83BBE}" = protocol=17 | dir=in | app=c:\program files\bradford networks\client security agent\bndaemon.exe |
"{DEB6F43E-0125-4C1B-AC55-3790552E7029}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{E1CB7293-501B-46D4-93FB-C8DBD87B6CF7}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{E4F7CB67-3C03-433F-B53C-9C949C9A4DEF}" = protocol=17 | dir=in | app=c:\program files\windows media player\wmplayer.exe |
"{E8AFA4EA-7132-4796-A3B5-0F507EF43715}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{EB93B5AB-EDD0-4643-BD27-C6DF73A678FB}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{EF42E538-8A99-4E07-9E7E-CE1A91008567}" = protocol=6 | dir=in | app=c:\program files\bradford networks\client security agent\bndaemon.exe |
"{F10FFB39-DC8D-4816-8B01-A89FCAE8F9F9}" = protocol=6 | dir=out | app=c:\program files\windows media player\wmplayer.exe |
"{F2CFB96A-07A1-4FCF-B577-8E6C4CBACAFA}" = protocol=17 | dir=in | app=c:\program files\justsystems\beatjam network player\bjncreg.exe |
"TCP Query User{3549421C-69BB-4E88-B0B8-04529FED61C5}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{4FBDE0E2-AD69-46B2-B77D-3A289F888EAA}C:\program files\itunes\itunes.exe" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"TCP Query User{52847522-1A9D-4F11-AAE9-CD8E57541C4C}C:\program files\real\realplayer\realplay.exe" = protocol=6 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"TCP Query User{54CC4876-4D8E-4010-99AC-A224F47FA0E1}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{60546032-8D57-47B7-ACEE-A5F65047B092}C:\users\kohei\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\kohei\appdata\local\akamai\netsession_win.exe |
"TCP Query User{855B38B3-0130-4A14-9B3E-DC6512D469CD}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{862F55C4-9D33-4467-9C1C-0833597B68C6}C:\programdata\autobahn\autobahn.exe" = protocol=6 | dir=in | app=c:\programdata\autobahn\autobahn.exe |
"TCP Query User{8964EA6D-D3B6-436E-8022-BC81FF32BA16}C:\program files\keyholetv\keyholetv.exe" = protocol=6 | dir=in | app=c:\program files\keyholetv\keyholetv.exe |
"TCP Query User{95D4C6F5-ADB3-4E32-80ED-FA5D34064257}C:\program files\real\realplayer\realplay.exe" = protocol=6 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"TCP Query User{CB41BCF1-2248-47CE-B5D5-72972E57E1D5}C:\program files\keyholetv\keyholetv.exe" = protocol=6 | dir=in | app=c:\program files\keyholetv\keyholetv.exe |
"TCP Query User{D9A139C1-1CB9-442D-8545-E6B88B00E968}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{DDD0C477-3AC4-4A2C-9773-EF8B51D9838C}C:\programdata\autobahn\autobahn.exe" = protocol=6 | dir=in | app=c:\programdata\autobahn\autobahn.exe |
"UDP Query User{028E84DD-3C07-41E9-B9BD-BF618986ABC1}C:\program files\real\realplayer\realplay.exe" = protocol=17 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"UDP Query User{16406500-00AC-425D-AB71-34BE1A88E51E}C:\program files\keyholetv\keyholetv.exe" = protocol=17 | dir=in | app=c:\program files\keyholetv\keyholetv.exe |
"UDP Query User{1DE8D92C-E21A-443F-9CD2-99FDA9195AFE}C:\programdata\autobahn\autobahn.exe" = protocol=17 | dir=in | app=c:\programdata\autobahn\autobahn.exe |
"UDP Query User{1FD94E62-E762-460E-989E-9FC71CE3CC44}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{2210FEFD-8086-4724-B8C7-DC6AD15855A7}C:\program files\keyholetv\keyholetv.exe" = protocol=17 | dir=in | app=c:\program files\keyholetv\keyholetv.exe |
"UDP Query User{2D446178-3698-40DF-9869-E18E25EB79F8}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{3EA29D96-8EC1-4130-B7A3-E1B7F180A686}C:\programdata\autobahn\autobahn.exe" = protocol=17 | dir=in | app=c:\programdata\autobahn\autobahn.exe |
"UDP Query User{57D9D1D6-A04F-4AB9-9715-D3F2FCA857AA}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{5BB24263-58D6-48CC-BAA5-AE60AA21258B}C:\users\kohei\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\kohei\appdata\local\akamai\netsession_win.exe |
"UDP Query User{7AAC18E0-7999-4728-B064-6A3EF6C5599F}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{B3DD1573-3760-49FA-83BE-0042B00878AB}C:\program files\real\realplayer\realplay.exe" = protocol=17 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}" = Apple Mobile Device Support
"{07C29220-655C-4A89-A55B-838B884C5EB9}" = 筆ぐるめ Ver.15
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6100_series" = Canon MG6100 series MP Drivers
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP470_series" = Canon MP470 series
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX470_series" = Canon MX470 series MP Drivers
"{11D2C5F8-F379-4659-85BE-DCE1D8D60FB8}" = OpenOffice.org Installer 1.0
"{156E4680-CA1F-4D45-AE9F-D6731E37C175}" = FeliCa Port Software
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype(TM) 7.1
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Driver Installation Program
"{286B5435-9A16-4A06-8E56-87E7EC4E1315}" = dynabookランチャー用バナー
"{308D7DDC-4C2E-4015-9D74-1C53865D1A88}" = 東芝ソフトウェア更新チェックツール
"{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}" = McAfee SiteAdvisor
"{372B31CF-77FB-4E29-860C-A0EA2985AB7F}" = O2Micro Flash Memory Card Reader Driver (x86)
"{3D104259-DDE9-4331-BFAC-39F712735E10}" = BeatJam
"{3FBF6F99-8EC6-41B4-8527-0A32241B5496}" = Toshiba Speech System NLS TTS Engine(U.S.) Version1.0
"{4087BD66-5D8E-4AA3-BA92-F6B014E04C97}" = 東芝お客様登録
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{48D2C608-6E46-4978-A2D4-67E34F95E971}" = かんたん登録2
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{491DD193-1B57-4D1C-8B14-18B96992A89F}" = TOSHIBA Supervisor Password
"{4D2C94B0-CD0E-4095-8A6A-D46CCCF8D975}" = SketchUp 8
"{4EE63BCE-7D9C-40E0-B770-07C6181EF55C}_is1" = RescuePRO Deluxe 5.0
"{50AD75E8-547E-4998-8C06-BF5CEEF30813}" = Acronis True Image LE
"{50C95732-A23F-416E-B95D-0F4E717F26FA}" = パソコンで見るマニュアル
"{52573F8D-F099-4CB5-9EDE-5C27ECB4A02B}" = TOSHIBA Hardware Setup
"{588D523F-4828-4285-9E33-AD1A6AED30D1}" = Client Security Agent
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator
"{5E862EC5-40B2-4A7E-A87D-B504E141318A}" = スクリーンセーバーロック2
"{600D85D0-14E9-4B52-A125-F31668C6BE96}" = FeliCaブラウザエクステンション
"{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center
"{6C5F3BDC-0A1B-4436-A696-5939629D5C31}" = TOSHIBA DVD PLAYER
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{72C24C23-C53D-11D4-88AB-00809880EBD8}" = TOSHIBA Speech Engines Version V9.50
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78C6A78A-8B03-48C8-A47C-78BA1FCA2307}" = TOSHIBA ConfigFree
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7BEF543F-300A-4B75-BB8C-ECB48008823B}" = OpenMG Secure Module 4.7.01
"{80B62962-9C52-43A2-879B-3018E5B7A5D6}" = かざしてナビ
"{818114C2-6B73-43D6-80E3-680776C5D31A}" = eLIO D-URL
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87441A59-5E64-4096-A170-14EFE67200C3}" = Picture Control Utility
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C67F36C-C8C0-4820-A836-0DE3DBFC1A45}" = パソコン設定ガイド
"{90120000-0016-0411-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Japanese) 2007
"{90120000-0016-0411-0000-0000000FF1CE}_PERSONALR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0411-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Japanese) 2007
"{90120000-0018-0411-0000-0000000FF1CE}_POWERPOINTR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0411-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Japanese) 2007
"{90120000-001A-0411-0000-0000000FF1CE}_PERSONALR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0411-0000-0000000FF1CE}" = Microsoft Office Word MUI (Japanese) 2007
"{90120000-001B-0411-0000-0000000FF1CE}_PERSONALR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PERSONALR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}_POWERPOINTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0411-0000-0000000FF1CE}" = Microsoft Office Proof (Japanese) 2007
"{90120000-001F-0411-0000-0000000FF1CE}_PERSONALR_{8B0BBAAA-BB10-41E1-B27E-24CF08CBB253}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0411-0000-0000000FF1CE}_POWERPOINTR_{8B0BBAAA-BB10-41E1-B27E-24CF08CBB253}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0028-0411-0000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2007
"{90120000-0028-0411-0000-0000000FF1CE}_PERSONALR_{277B1BCF-97A7-40F2-87A5-3CACB0E9714B}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0028-0411-0000-0000000FF1CE}_POWERPOINTR_{277B1BCF-97A7-40F2-87A5-3CACB0E9714B}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0411-0000-0000000FF1CE}" = Microsoft Office Proofing (Japanese) 2007
"{90120000-006E-0411-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Japanese) 2007
"{90120000-006E-0411-0000-0000000FF1CE}_PERSONALR_{84C84010-F698-443E-84B4-A82DD01A17FE}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0411-0000-0000000FF1CE}_POWERPOINTR_{84C84010-F698-443E-84B4-A82DD01A17FE}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-0028-0411-0000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2010
"{90140000-0121-0411-0000-0000000FF1CE}" = Microsoft Office IMESS (Japanese) 2010
"{90140000-0122-0000-0000-0000000FF1CE}" = Microsoft Office IME 2010
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{91120000-0018-0000-0000-0000000FF1CE}" = Microsoft Office PowerPoint 2007
"{91120000-0018-0000-0000-0000000FF1CE}_POWERPOINTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{91120000-0033-0000-0000-0000000FF1CE}" = Microsoft Office Personal 2007
"{91120000-0033-0000-0000-0000000FF1CE}_PERSONALR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{932245FB-2F3B-3E2E-B8AB-BDE96E434F21}" = Microsoft .NET Framework 3.5 Language Pack SP1 - jpn
"{94A90C69-71C1-470A-88F5-AA47ECC96B40}" = TOSHIBA HDD Protection
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}" = CD/DVD静音ユーティリティ
"{A2075A09-28AA-4D30-9BCC-82EAD9FA51BD}" = TrueSuite Access Manager
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A991D480-1349-4FDD-983C-19241910A9E1}" = Microsoft Office ナビ 2007
"{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager
"{AC76BA86-7AD7-5760-0000-900000000003}" = Japanese Fonts Support For Adobe Reader 9
"{AD650226-3335-45BB-9640-D8C973366A1A}" = パーソナルシェルター
"{B014EE44-9197-4513-9613-71E6EB1B514E}" = Nikon Message Center 2
"{B0BCDCBD-863D-4CAB-BF68-8D1F6B1BDC13}" = Atheros Wi-Fi Protected Setup Library
"{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser
"{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}" = TOSHIBA Recovery Disc Creator
"{B67BAFBA-4C9F-48FA-9496-933E3B255044}" = QuickTime
"{C19384F4-1D40-4A0D-8891-08B8E229D9A1}" = PC引越ナビ
"{C197BC08-3D82-4651-8886-E68C21578A38}" = iTunes
"{C4EA8443-092F-4818-8B5D-B8E25CC91135}" = TOSHIBA Speech System MT Engine Version 9.0
"{C950420B-4182-49EA-850A-A6A2ABF06C6B}" = Marvell Miniport Driver
"{C99E6F22-FD0E-4D6E-925A-268AD1C050D6}" = its-moNavi PC
"{CBDF64B0-8CAB-45C7-B3B2-4637C9F88769}" = HDMI Control Manager
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{D30F9503-071B-4354-827D-C72D8E75BB05}" = Edy Viewer
"{D45E8C45-B601-4A80-AFD8-E16338744DE1}" = ArcSoft Panorama Maker 4
"{DDD62492-32A7-412B-8AF1-2CF032AD42E3}" = ViewNX 2
"{DE8D76CC-CE95-44C7-99D0-EA76BA0E25EE}" = Boingo Wi-Fi
"{DEE88727-779B-47A9-ACEF-F87CA5F92A65}" = ScanSoft OmniPage SE 4
"{E171C361-7760-4D52-A6A4-6D22D8735689}" = シンプルログオン
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media エンコーダ 9 シリーズ
"{E6607F5B-50E7-4B54-81B7-F0600E3C8CF4}" = Belkin F5D8053 N Wireless USB Adapter
"{E9757890-7EC5-46C8-99AB-B00F07B6525C}" = Nikon Transfer
"{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}" = TOSHIBA SD Memory Utilities
"{ED46C765-9EB0-4D4A-AD6C-29CF7E8007B0}" = SFCard Viewer 2
"{F0936E35-B71F-4155-884A-6A5F654C31DB}" = dynabookランチャー
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}" = DVD MovieWriter for TOSHIBA
"{F302B04E-C7B3-11D4-88AB-00809880EBD8}" = LaLaVoice V9.50
"{F6D47FFC-F78E-4C71-AF33-0D922CD0F327}" = ぼくは航空管制官3 体験版
"{FEDD27A0-B306-45EF-BF58-B527406B42C8}" = TOSHIBA Value Added Package
"Adobe Flash Player ActiveX" = Adobe Flash Player 16 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 16 NPAPI
"Adobe PDF IFilter 6.0" = Adobe PDF IFilter 6.0
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Aerosim CRJ200 VFD 2.1.23.1" = Aerosim CRJ200 VFD 2.1.23.1
"AR_CAD" = AR_CAD
"Canon MP470 series User Registration" = Canon MP470 series User Registration
"Canon MX470 series User Registration" = Canon MX470 series User Registration
"Canon_IJ_Network_Scan_UTILITY" = Canon IJ Network Scan Utility
"Canon_IJ_Network_Scanner_Selector_EX" = Canon IJ Network Scanner Selector EX
"Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
"Canon_IJ_Scan_Utility" = Canon IJ Scan Utility
"CANONIJPLM100" = PIXMA Extended Survey Program
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Explzh" = Explzh for Windows
"Google Updater" = Google アップデータ
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"IME14SS.1041" = Microsoft Office IME 2010 (Japanese)
"InstallShield_{491DD193-1B57-4D1C-8B14-18B96992A89F}" = TOSHIBA Supervisor Password
"InstallShield_{52573F8D-F099-4CB5-9EDE-5C27ECB4A02B}" = TOSHIBA Hardware Setup
"InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center
"InstallShield_{7BEF543F-300A-4B75-BB8C-ECB48008823B}" = OpenMG Secure Module 4.7.01
"InstallShield_{E6607F5B-50E7-4B54-81B7-F0600E3C8CF4}" = Belkin F5D8053 N Wireless USB Adapter
"InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}" = TOSHIBA Value Added Package
"IObitUninstall" = IObit Uninstaller
"KeyHoleTV" = KeyHoleTV
"Microsoft .NET Framework 3.5 Language Pack SP1 - jpn" = Microsoft .NET Framework 3.5 Language Pack SP1 - 日本語
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Office Navi 2007 12.0.2213.0" = Microsoft Office ナビ 2007
"MP Navigator EX 1.0" = Canon MP Navigator EX 1.0
"NFRMPCViewer_is1" = NFRMプレーヤ NFRMPCViewer 2.0.3
"OfficeScanNT" = Trend Micro OfficeScan Client
"PERSONALR" = Microsoft Office Personal 2007
"POWERPOINTR" = Microsoft Office PowerPoint 2007
"Rainmeter" = Rainmeter
"RealPlayer 6.0" = RealPlayer
"SimCity 2000 アンインストール" = SimCity 2000 Special Edition
"UN070618" = BUFFALO TurboUSB for FLASH/HDD
"WheelMouse" = Advanced Wheel Mouse 6.0.0.000
"Windows Media Encoder 9" = Windows Media エンコーダ 9 シリーズ
"ぼくは航空管制官2" = ぼくは航空管制官2
"ぼくは航空管制官2チャレンジ4!" = ぼくは航空管制官2チャレンジ4!
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
[HKEY_USERS\S-1-5-21-2725075760-2042039286-2420676443-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
[ Application Events ]
Error - 2015/02/27 9:30:11 | Computer Name = Kohei-PC | Source = Windows Search Service | ID = 3013
Description =
Error - 2015/02/27 9:54:01 | Computer Name = Kohei-PC | Source = EventSystem | ID = 4609
Description =
Error - 2015/02/27 9:54:42 | Computer Name = Kohei-PC | Source = WinMgmt | ID = 10
Description =
Error - 2015/02/27 10:06:07 | Computer Name = Kohei-PC | Source = EventSystem | ID = 4609
Description =
Error - 2015/02/27 10:06:32 | Computer Name = Kohei-PC | Source = EventSystem | ID = 4609
Description =
Error - 2015/02/27 10:12:41 | Computer Name = Kohei-PC | Source = WinMgmt | ID = 10
Description =
Error - 2015/02/28 7:08:37 | Computer Name = Kohei-PC | Source = WinMgmt | ID = 10
Description =
Error - 2015/03/01 6:44:27 | Computer Name = Kohei-PC | Source = WinMgmt | ID = 10
Description =
Error - 2015/03/01 10:15:28 | Computer Name = Kohei-PC | Source = EventSystem | ID = 4609
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7026
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:07 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 2015/03/01 10:16:53 | Computer Name = Kohei-PC | Source = Service Control Manager | ID = 7001
Description =
< End of report >
- pilot
- 2015/03/02 (Mon) 00:04:49
処置するのですがお願いがあります
ログを確認いたしました。
それで早速なのですが、少々検証をさせていただけないでしょうか。
ログを見たところ017、内部DHCPがどうにも怪しいのですが、こちらは現段階では処置せず置いておき、
今回の処置の後でloadm.exelator.comが表示されるか否かをしばらく様子見を行ってからお知らせいただけないでしょうか。
これでloadm.exelator.comが表示されなくなれば削除した中にそれを表示させるソフトウェアがありますし、
まだ表示されるなら削除した以外で残っていると判断できますので。
お手数ですが同一の事例がここ以外で多発しているため、ほかの方のためにもご協力をお願いいたします。
とは言え駆除用のスクリプトは私が記述してしまうのでお願いと言うより強要に近くなってしまい申し訳ありません。
HPは不要ですので、導入時の指示に従って削除なされてください。
メモ帳を起動させ、以下をコピペしてください。
なお、:OTL、:Files、:Commandsの3つはOTLでの処理方法を決める命令文です。
削除なされないようご注意ください。
------コピペこの下より------
:OTL
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.jword.jp/jwd_sb_srchcust.htm?ielang={SUB_RFC1766}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.jword.jp/jwd_sb_srchasst.htm?ielang={SUB_RFC1766}
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "AutoConfigURL" = http://local.swarmcast.net:8001/proxy.pac
O3 - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [cfWPSEnabler.exe] cfWPSEnabler.exe File not found
[2015/02/27 21:12:55 | 000,000,000 | ---D | C] -- C:\Users\Kohei\AppData\Roaming\Malwarebytes
[2015/02/27 21:12:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
:Files
c:\program files\veoh networks
C:\users\kohei\appdata\local\akamai
:Commands
[purity]
[resethosts]
[emptytemp]
[createrestorepoint]
[reboot]
------コピペこの上まで------
コピペが完了しましたら、分かりやすいお名前をつけて保存してください。
その後、PCをセーフモードで起動させてください。
再度OTLを起動させ、Custom Scan/Fixesの項目内に上記で保存した内容をコピペしてください。
今回は駆除作業のため、その他のチェック項目はありません。
赤い文字の[Run Fix]をクリックして処置を開始してください。
OTLの処置に従って進めてゆき、通常モードで再起動を行うと処置ログが表示されますので、
そちらのログを貼り付けてご連絡ください。
またその際に状況報告もお願いいたします。
それで早速なのですが、少々検証をさせていただけないでしょうか。
ログを見たところ017、内部DHCPがどうにも怪しいのですが、こちらは現段階では処置せず置いておき、
今回の処置の後でloadm.exelator.comが表示されるか否かをしばらく様子見を行ってからお知らせいただけないでしょうか。
これでloadm.exelator.comが表示されなくなれば削除した中にそれを表示させるソフトウェアがありますし、
まだ表示されるなら削除した以外で残っていると判断できますので。
お手数ですが同一の事例がここ以外で多発しているため、ほかの方のためにもご協力をお願いいたします。
とは言え駆除用のスクリプトは私が記述してしまうのでお願いと言うより強要に近くなってしまい申し訳ありません。
HPは不要ですので、導入時の指示に従って削除なされてください。
メモ帳を起動させ、以下をコピペしてください。
なお、:OTL、:Files、:Commandsの3つはOTLでの処理方法を決める命令文です。
削除なされないようご注意ください。
------コピペこの下より------
:OTL
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.jword.jp/jwd_sb_srchcust.htm?ielang={SUB_RFC1766}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.jword.jp/jwd_sb_srchasst.htm?ielang={SUB_RFC1766}
IE - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "AutoConfigURL" = http://local.swarmcast.net:8001/proxy.pac
O3 - HKU\S-1-5-21-2725075760-2042039286-2420676443-1001\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [cfWPSEnabler.exe] cfWPSEnabler.exe File not found
[2015/02/27 21:12:55 | 000,000,000 | ---D | C] -- C:\Users\Kohei\AppData\Roaming\Malwarebytes
[2015/02/27 21:12:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
:Files
c:\program files\veoh networks
C:\users\kohei\appdata\local\akamai
:Commands
[purity]
[resethosts]
[emptytemp]
[createrestorepoint]
[reboot]
------コピペこの上まで------
コピペが完了しましたら、分かりやすいお名前をつけて保存してください。
その後、PCをセーフモードで起動させてください。
再度OTLを起動させ、Custom Scan/Fixesの項目内に上記で保存した内容をコピペしてください。
今回は駆除作業のため、その他のチェック項目はありません。
赤い文字の[Run Fix]をクリックして処置を開始してください。
OTLの処置に従って進めてゆき、通常モードで再起動を行うと処置ログが表示されますので、
そちらのログを貼り付けてご連絡ください。
またその際に状況報告もお願いいたします。
- IVNO
- 2015/03/02 (Mon) 01:10:09
処置結果
IVNO様
お世話になっております。
もちろん、私に出来ることでしたら可能な範囲で皆様にご協力いたします。
以下、OTLのログです。
All processes killed
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-2725075760-2042039286-2420676443-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2725075760-2042039286-2420676443-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\cfWPSEnabler.exe deleted successfully.
C:\Users\Kohei\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\Users\Kohei\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Users\Kohei\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Users\Kohei\AppData\Roaming\Malwarebytes folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Configuration folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\ProgramData\Malwarebytes folder moved successfully.
========== FILES ==========
File\Folder c:\program files\veoh networks not found.
File\Folder C:\users\kohei\appdata\local\akamai not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Kohei
->Temp folder emptied: 3086489 bytes
->Temporary Internet Files folder emptied: 2886481411 bytes
->Java cache emptied: 3166364 bytes
->Flash cache emptied: 969 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 519571490 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 3,254.00 mb
Unable to start System Restore Service. Error code 1084
OTL by OldTimer - Version 3.2.69.0 log created on 03022015_102814
Files\Folders moved on Reboot...
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
お世話になっております。
もちろん、私に出来ることでしたら可能な範囲で皆様にご協力いたします。
以下、OTLのログです。
All processes killed
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-2725075760-2042039286-2420676443-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2725075760-2042039286-2420676443-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\cfWPSEnabler.exe deleted successfully.
C:\Users\Kohei\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\Users\Kohei\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Users\Kohei\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Users\Kohei\AppData\Roaming\Malwarebytes folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Configuration folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\ProgramData\Malwarebytes folder moved successfully.
========== FILES ==========
File\Folder c:\program files\veoh networks not found.
File\Folder C:\users\kohei\appdata\local\akamai not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Kohei
->Temp folder emptied: 3086489 bytes
->Temporary Internet Files folder emptied: 2886481411 bytes
->Java cache emptied: 3166364 bytes
->Flash cache emptied: 969 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 519571490 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 3,254.00 mb
Unable to start System Restore Service. Error code 1084
OTL by OldTimer - Version 3.2.69.0 log created on 03022015_102814
Files\Folders moved on Reboot...
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
- pilot
- 2015/03/02 (Mon) 11:56:54
状況報告
IVNO様
先ほどのOTLログの際に報告し忘れたので追記いたします。
スキャン後2時間ほど使用しておりますが、何かを検出することもなく、快適に作動しております。
先ほどのOTLログの際に報告し忘れたので追記いたします。
スキャン後2時間ほど使用しておりますが、何かを検出することもなく、快適に作動しております。
- pilot
- 2015/03/02 (Mon) 12:03:36
様子見を行いログのご提示を
と言うことは今回のOTLで削除されているかもしれませんが、まだ油断はできそうにないですね。
現段階では異常はないとのことですので、今後も安定してPCがご利用いただけるかどうか調べることにしましょう。
ニコニコ動画で本性上が多発している模様です。
お手数ですがニコニコ動画もご確認いただけたらと思います。
1週間の様子見を行い、その結果をお知らせください。
様子見期間中はPCに導入なされているすべてのブラウザを、可能なら1日に1回ずつは動作確認し、
再発の可能性がないかの調査を行ってください。
様子見期間が終了するか、あるいは症状が発生、再発のいずれの状態になったとしても、
HJTのログ、CCのインストール情報ログ、同じくCCのスタートアップの各ログを取得し、
それらすべてを貼り付けて様子見の結果あるいは発生した症状の詳細を添えてご連絡ください。
現段階では異常はないとのことですので、今後も安定してPCがご利用いただけるかどうか調べることにしましょう。
ニコニコ動画で本性上が多発している模様です。
お手数ですがニコニコ動画もご確認いただけたらと思います。
1週間の様子見を行い、その結果をお知らせください。
様子見期間中はPCに導入なされているすべてのブラウザを、可能なら1日に1回ずつは動作確認し、
再発の可能性がないかの調査を行ってください。
様子見期間が終了するか、あるいは症状が発生、再発のいずれの状態になったとしても、
HJTのログ、CCのインストール情報ログ、同じくCCのスタートアップの各ログを取得し、
それらすべてを貼り付けて様子見の結果あるいは発生した症状の詳細を添えてご連絡ください。
- IVNO
- 2015/03/02 (Mon) 12:21:47
承知いたしました
IVNO様
承知いたしました。では一週間ほど様子見ののち、お知らせします。
承知いたしました。では一週間ほど様子見ののち、お知らせします。
- pilot
- 2015/03/02 (Mon) 12:50:01
様子見結果報告
IVNO様、悪代官様、ご無沙汰しております。
一週間ほどの様子見が完了いたしました。当PCを使用できない日もありましたが、基本的には一日につき3時間ほど、多い日では5時間ほど使用致しました。
IEの動作確認、ニコニコ動画での確認などいたしましたが、何事もなく快適に使用できております。
以下、各ログです。
まずはHJTより、
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:58:16, on 2015/03/09
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16609)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Windows\System32\ThpSrv.exe
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMECMNT.EXE
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\Justsystems\KazaNavi\kazanavi.exe
C:\Program Files\TrueSuite Access Manager\FpNotifier.exe
C:\Program Files\TrueSuite Access Manager\usbnotify.exe
C:\Program Files\TrueSuite Access Manager\CssSvr.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\TrueSuite Access Manager\PwdBank.exe
C:\Program Files\Trend Micro\OfficeScan Client\PccNTMon.exe
C:\Program Files\Bradford Networks\Client Security Agent\bncsaui.exe
C:\Advanced Wheel Mouse\wh_exec.exe
C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Rainmeter\Rainmeter.exe
C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_16_0_0_305_ActiveX.exe
C:\Users\Kohei\Desktop\HijackThis.exe
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: かんたん登録2 - {0DD41AE7-6196-42E7-BDE5-4F393997449E} - C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: FeliCaブラウザエクステンション - {EC5D2125-D8AB-4a18-A599-D97D2731DE19} - C:\Program Files\Sony\FeliCaBrowserExtension\fbe.dll
O3 - Toolbar: かんたん登録2 ツールバー - {833CFE4E-05BD-43A3-97A7-A4E80D742F0F} - C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [ThpSrv] C:\Windows\system32\thpsrv /logon
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [KazaNavi] C:\Program Files\JustSystems\KazaNavi\kazanavi.exe /tasktray
O4 - HKLM\..\Run: [FingerPrintNotifer] "C:\Program Files\TrueSuite Access Manager\FpNotifier.exe"
O4 - HKLM\..\Run: [UsbMonitor] "C:\Program Files\TrueSuite Access Manager\usbnotify.exe"
O4 - HKLM\..\Run: [PwdBank] "C:\Program Files\TrueSuite Access Manager\PwdBank.exe"
O4 - HKLM\..\Run: [IME JPN 2007 Migration] C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE /Preload
O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
O4 - HKLM\..\Run: [bncsaui.exe] %ProgramFiles%\Bradford Networks\Client Security Agent\bncsaui.exe
O4 - HKLM\..\Run: [PAC207_Monitor] C:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [WheelMouse] C:\ADVANC~1\wh_exec.exe
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.EXE
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - Startup: 東芝ソフトウェア更新チェックツール.lnk = C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe
O4 - Global Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {70EE0AA4-5A3A-4052-8FFA-2EEDA43F7942} (Innotive Cibrowser Control 1.2) - http://imedia.ngc.co.jp/ibkoozen/plugin/cibrowser1219.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {AEEF256A-781F-44CE-8ED7-DDEE3ECD26E3} (画像復活) - http://www.isl.co.jp/SILKYPIX/gazou-fukkatsu-2/GazouFukkatsu.1.0.2.19.cab
O16 - DPF: {B3E32D88-8E7F-468F-B0E2-3A300FD4A82C} (Enlite 2.x Simulation Engine Installer) - http://myitlab.pearsoned.com/Pegasus/Modules/SIMIntegration/Resources/ax/stub.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Authentec memory manager service (Authentec memory manager) - AuthenTec Inc. - C:\Windows\system32\TAMSvr.exe
O23 - Service: Client Security Agent Service (BNPagent) - Bradford Networks - C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFreeサービス (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Update Service (gupdate1c985a5209c0790) (gupdate1c985a5209c0790) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PIXUS 使用状況調査プログラム (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Jumpstart Wifi Protected Setup (jswpsapi) - Atheros Communications, Inc. - C:\Program Files\Jumpstart\jswpsapi.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: MSCSPTISRV - Sony Corporation - c:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: OfficeScan NT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: PACSPTISVR - Sony Corporation - c:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - c:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: TOSHIBA HDD Protection (Thpsrv) - TOSHIBA Corporation - C:\Windows\system32\ThpSrv.exe
O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe
O23 - Service: OfficeScan NT Listener (tmlisten) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
O23 - Service: OfficeScan NT Firewall (TmPfw) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\TmPfw.exe
O23 - Service: OfficeScan NT Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\TmProxy.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: TXVDrv Service (TxVDrvSvc) - Texim Corporation. - C:\Program Files\JustSystems\PersonalShelter\TxVDrvSvc.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
--
End of file - 11355 bytes
一週間ほどの様子見が完了いたしました。当PCを使用できない日もありましたが、基本的には一日につき3時間ほど、多い日では5時間ほど使用致しました。
IEの動作確認、ニコニコ動画での確認などいたしましたが、何事もなく快適に使用できております。
以下、各ログです。
まずはHJTより、
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:58:16, on 2015/03/09
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16609)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Windows\System32\ThpSrv.exe
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMECMNT.EXE
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\Justsystems\KazaNavi\kazanavi.exe
C:\Program Files\TrueSuite Access Manager\FpNotifier.exe
C:\Program Files\TrueSuite Access Manager\usbnotify.exe
C:\Program Files\TrueSuite Access Manager\CssSvr.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\TrueSuite Access Manager\PwdBank.exe
C:\Program Files\Trend Micro\OfficeScan Client\PccNTMon.exe
C:\Program Files\Bradford Networks\Client Security Agent\bncsaui.exe
C:\Advanced Wheel Mouse\wh_exec.exe
C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Rainmeter\Rainmeter.exe
C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_16_0_0_305_ActiveX.exe
C:\Users\Kohei\Desktop\HijackThis.exe
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: かんたん登録2 - {0DD41AE7-6196-42E7-BDE5-4F393997449E} - C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: FeliCaブラウザエクステンション - {EC5D2125-D8AB-4a18-A599-D97D2731DE19} - C:\Program Files\Sony\FeliCaBrowserExtension\fbe.dll
O3 - Toolbar: かんたん登録2 ツールバー - {833CFE4E-05BD-43A3-97A7-A4E80D742F0F} - C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [ThpSrv] C:\Windows\system32\thpsrv /logon
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [KazaNavi] C:\Program Files\JustSystems\KazaNavi\kazanavi.exe /tasktray
O4 - HKLM\..\Run: [FingerPrintNotifer] "C:\Program Files\TrueSuite Access Manager\FpNotifier.exe"
O4 - HKLM\..\Run: [UsbMonitor] "C:\Program Files\TrueSuite Access Manager\usbnotify.exe"
O4 - HKLM\..\Run: [PwdBank] "C:\Program Files\TrueSuite Access Manager\PwdBank.exe"
O4 - HKLM\..\Run: [IME JPN 2007 Migration] C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE /Preload
O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
O4 - HKLM\..\Run: [bncsaui.exe] %ProgramFiles%\Bradford Networks\Client Security Agent\bncsaui.exe
O4 - HKLM\..\Run: [PAC207_Monitor] C:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [WheelMouse] C:\ADVANC~1\wh_exec.exe
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.EXE
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - Startup: 東芝ソフトウェア更新チェックツール.lnk = C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe
O4 - Global Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {70EE0AA4-5A3A-4052-8FFA-2EEDA43F7942} (Innotive Cibrowser Control 1.2) - http://imedia.ngc.co.jp/ibkoozen/plugin/cibrowser1219.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {AEEF256A-781F-44CE-8ED7-DDEE3ECD26E3} (画像復活) - http://www.isl.co.jp/SILKYPIX/gazou-fukkatsu-2/GazouFukkatsu.1.0.2.19.cab
O16 - DPF: {B3E32D88-8E7F-468F-B0E2-3A300FD4A82C} (Enlite 2.x Simulation Engine Installer) - http://myitlab.pearsoned.com/Pegasus/Modules/SIMIntegration/Resources/ax/stub.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Authentec memory manager service (Authentec memory manager) - AuthenTec Inc. - C:\Windows\system32\TAMSvr.exe
O23 - Service: Client Security Agent Service (BNPagent) - Bradford Networks - C:\Program Files\Bradford Networks\Client Security Agent\bndaemon.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFreeサービス (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Update Service (gupdate1c985a5209c0790) (gupdate1c985a5209c0790) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PIXUS 使用状況調査プログラム (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Jumpstart Wifi Protected Setup (jswpsapi) - Atheros Communications, Inc. - C:\Program Files\Jumpstart\jswpsapi.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: MSCSPTISRV - Sony Corporation - c:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: OfficeScan NT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: PACSPTISVR - Sony Corporation - c:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - c:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: TOSHIBA HDD Protection (Thpsrv) - TOSHIBA Corporation - C:\Windows\system32\ThpSrv.exe
O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe
O23 - Service: OfficeScan NT Listener (tmlisten) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
O23 - Service: OfficeScan NT Firewall (TmPfw) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\TmPfw.exe
O23 - Service: OfficeScan NT Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\TmProxy.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: TXVDrv Service (TxVDrvSvc) - Texim Corporation. - C:\Program Files\JustSystems\PersonalShelter\TxVDrvSvc.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
--
End of file - 11355 bytes
- pilot
- 2015/03/09 (Mon) 22:49:15
結果報告その2
続きまして、CCのログです。
インストール情報から、
Acronis True Image LE Acronis 2009/12/23 153 MB 10.0.5079
Adobe Flash Player 16 ActiveX Adobe Systems Incorporated 2015/02/05 16.0.0.305
Adobe Flash Player 16 NPAPI Adobe Systems Incorporated 2015/02/06 16.0.0.305
Adobe PDF IFilter 6.0 Adobe Systems, Inc. 2008/03/02 19.6 MB 6.0
Adobe Reader X (10.1.13) - Japanese
Adobe Shockwave Player 11.5 Adobe Systems, Inc. 2011/04/28 8.88 MB 11.5.9.620
Advanced Wheel Mouse 6.0.0.000 2009/07/25 452 KB
Aerosim CRJ200 VFD 2.1.23.1 2010/11/03 159 MB
Apple Application Support Apple Inc. 2014/01/22 64.0 MB 2.3.6
Apple Mobile Device Support Apple Inc. 2014/01/22 24.5 MB 7.0.0.117
Apple Software Update Apple Inc. 2011/10/12 2.38 MB 2.1.3.127
AR_CAD 2011/06/08 8.93 MB
ArcSoft Panorama Maker 4 ArcSoft 2011/03/30 14.6 MB
Atheros Driver Installation Program Atheros 2008/05/18 4.00 KB 7.1
Atheros Wi-Fi Protected Setup Library Atheros 2008/05/18 4.75 MB
Belkin F5D8053 N Wireless USB Adapter Belkin 2009/09/02 2.0.0.04
Boingo Wi-Fi Boingo Wireless, Inc. 2010/08/11 2.29 MB 1.7.0020
Bonjour Apple Inc. 2014/01/22 1.06 MB 3.0.0.10
BUFFALO TurboUSB for FLASH/HDD 2009/12/23
Canon IJ Network Scan Utility 2012/04/21 740 KB
Canon IJ Network Scanner Selector EX Canon Inc. 2015/01/14 1.58 MB 1.5.1.4
Canon IJ Network Tool Canon Inc. 2015/01/14 2.21 MB 3.4.0
Canon IJ Scan Utility Canon Inc. 2015/01/14 7.35 MB 1.1.5.14
Canon MG6100 series MP Drivers 2012/04/21
Canon MP Navigator EX 1.0 2008/07/27 65.9 MB
Canon MP470 series 2008/07/27 11.3 MB
Canon MP470 series User Registration 2008/07/27 528 KB
Canon MX470 series MP Drivers Canon Inc. 2015/01/14 1.00
Canon MX470 series User Registration Canon Inc. 2015/01/14 2.60 MB
Canon My Printer 2008/07/27 2.14 MB
Canon Utilities Easy-PhotoPrint EX 2008/07/27 208 MB
Canon Utilities Solution Menu 2008/07/27 1.59 MB
CCleaner Piriform 2015/02/25 8.12 MB 5.03
CD/DVD静音ユーティリティ TOSHIBA 2008/02/26 608 KB 2.02.01
Client Security Agent Bradford Networks 2008/08/14 4.39 MB 1.6.6.6
Conexant HD Audio Conexant 2008/05/18 1.28 MB 4.36.6.0
DVD MovieWriter for TOSHIBA Ulead Systems, Inc. 2008/01/01 256 MB 5.51
dynabookランチャー 東芝情報機器株式会社 2008/02/26 640 KB 1.0.2
dynabookランチャー用バナー 2008/01/01 796 KB
Edy Viewer bitWallet 2008/02/26 3.18 MB 2.1.1.1
eLIO D-URL Sony Finance International, Inc. 2008/02/26 805 KB 3.1.0.2
Explzh for Windows 2012/07/23 6.93 MB
FeliCa Port Software 2008/01/01 956 KB
FeliCaブラウザエクステンション Sony Corp. 2008/02/26 1.16 MB 1.30.0000
Google Earth Google 2011/11/16 92.7 MB 6.1.0.5001
Google アップデータ Google Inc. 2011/09/27 2.54 MB 2.4.2432.1652
HDMI Control Manager TOSHIBA 2008/02/26 2.04 MB 1.6
Intel(R) Graphics Media Accelerator Driver 2008/01/01
Intel® Matrix Storage Manager 2008/01/01 37.1 MB
IObit Uninstaller IObit 2015/02/27 34.8 MB 4.2.6.2
its-moNavi PC 2008/01/01 15.6 MB 5.6.0
iTunes Apple Inc. 2014/01/22 214 MB 11.1.3.8
Japanese Fonts Support For Adobe Reader 9 Adobe Systems Incorporated 2010/10/12 16.4 MB 9.0.0
KeyHoleTV 2012/11/02 992 KB
LaLaVoice V9.50 2008/01/01 996 KB
Marvell Miniport Driver Marvell 2008/02/26 2.02 MB 10.51.1.3
McAfee SiteAdvisor McAfee, Inc. 2009/03/28 6.15 MB 2.9.258
Microsoft .NET Framework 3.5 Language Pack SP1 - 日本語 Microsoft Corporation 2014/11/12 36.7 MB
Microsoft .NET Framework 3.5 SP1 Microsoft Corporation 2014/11/12 36.7 MB
Microsoft .NET Framework 4.5.1 Microsoft Corporation 2014/11/12 251 MB 4.5.50938
Microsoft Office File Validation Add-In Microsoft Corporation 2014/11/13 10.9 MB 14.0.5130.5003
Microsoft Office IME 2010 (Japanese) Microsoft Corporation 2014/11/12 14.0.6119.5000
Microsoft Office Personal 2007 Microsoft Corporation 2013/06/08 314 MB 12.0.6612.1000
Microsoft Office PowerPoint 2007 Microsoft Corporation 2013/06/08 314 MB 12.0.6612.1000
Microsoft Office ナビ 2007 Microsoft Corporation 2008/03/03 12.0.2213.0
Microsoft Silverlight Microsoft Corporation 2014/11/12 248 MB 5.1.30514.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 2009/07/29 251 KB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2013/02/12 2.61 MB 8.0.59193
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Corporation 2011/04/14 592 KB 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2013/02/12 234 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2011/03/29 590 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2011/06/15 594 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2012/04/23 12.2 MB 10.0.40219
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 2008/02/26 1.26 MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2008/11/11 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2009/11/30 1.33 MB 4.20.9876.0
NFRMプレーヤ NFRMPCViewer 2.0.3 Faith, Inc. 2008/02/26 4.46 MB
Nikon Message Center Nikon 2011/03/29 204 KB 0.92.000
Nikon Message Center 2 Nikon 2013/02/12 2.05 MB 2.0.1
Nikon Transfer Nikon 2011/03/29 46.6 MB 1.0.2
O2Micro Flash Memory Card Reader Driver (x86) O2Micro 2008/02/26 1.07 MB 3.19.1
OpenMG Secure Module 4.7.01 Sony Corporation 2008/02/27 4.7.01.06151
OpenOffice.org Installer 1.0 Sun Microsystems 2008/06/24 2.38 MB 1.0.9221
PC引越ナビ 東芝パソコンシステム株式会社 2008/02/26 14.4 MB 3.0.1
Picture Control Utility Nikon 2013/02/12 19.5 MB 1.2.2
PIXMA Extended Survey Program 2008/07/27 776 KB
QuickTime Apple Inc. 2014/01/22 74.6 MB 7.74.80.86
Rainmeter 2012/04/23 2.42 MB 2.2 r1116
RealPlayer RealNetworks 2008/07/05 44.6 MB
RescuePRO Deluxe 5.0 LC Technology International, Inc. 2013/01/04 44.9 MB 5.0
ScanSoft OmniPage SE 4 Nuance Communications, Inc. 2008/07/26 166 MB 15.2.0020
SFCard Viewer 2 2008/01/01 828 KB
SimCity 2000 Special Edition 2009/07/21 17.1 MB
SketchUp 8 Trimble Navigation Limited 2013/05/15 84.2 MB 3.0.16950
Skype(TM) 7.1 Skype Technologies S.A. 2015/02/27 47.8 MB 7.1.105
TOSHIBA ConfigFree TOSHIBA Corporation 2008/02/26 68.9 MB 7.1.29
TOSHIBA Disc Creator TOSHIBA Corporation 2008/02/26 8.30 MB 2.0.1.2
TOSHIBA DVD PLAYER TOSHIBA Corporation 2008/02/26 24.2 MB 1.20.11
TOSHIBA Extended Tiles for Windows Mobility Center TOSHIBA Corporation 2008/02/26 1.21 MB 1.01.00
TOSHIBA Hardware Setup TOSHIBA 2008/02/26 2.84 MB 3.00.01.00
TOSHIBA HDD Protection TOSHIBA Corporation 2008/02/26 9.74 MB 2.0.2.3
TOSHIBA Recovery Disc Creator TOSHIBA Corporation 2008/02/27 2.35 MB 2.0.0.1b
TOSHIBA SD Memory Utilities TOSHIBA Corporation 2008/02/26 995 KB 1.8.1.1
TOSHIBA Speech Engines Version V9.50 2008/01/01 1.26 MB
TOSHIBA Speech System MT Engine Version 9.0 2008/01/01 888 KB
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0 2008/01/01 884 KB
TOSHIBA Supervisor Password TOSHIBA 2008/02/26 2.84 MB 3.00.01.00
TOSHIBA Value Added Package TOSHIBA Corporation 2008/02/26 64.0 KB 1.1.14
Trend Micro OfficeScan Client Trend Micro 2014/05/25 194 MB 10.6.5162
TrueSuite Access Manager ABIG 2008/02/27 19.7 MB 1.1.13.13
ViewNX 2 Nikon 2013/02/12 64.4 MB 2.1.2
Windows Media エンコーダ 9 シリーズ 2008/02/27 13.6 MB
かざしてナビ 株式会社ジャストシステム 2008/02/26 4.08 MB 1.00.000
かんたん登録2 株式会社ジャストシステム 2008/02/26 5.75 MB 1.00.000
ぼくは航空管制官2 2008/06/14
ぼくは航空管制官2チャレンジ4! 2008/05/21
ぼくは航空管制官3 体験版 株式会社TechnoBrain 2009/08/26 148 MB 1.0.0
シンプルログオン 株式会社ジャストシステム 2008/02/26 3.42 MB 1.00.000
スクリーンセーバーロック2 株式会社ジャストシステム 2008/02/26 3.73 MB 1.00.000
パソコンで見るマニュアル TOSHIBA CORPORATION 2008/02/26 32.8 MB 0015.01.0201
パソコン設定ガイド 東芝情報機器株式会社 2008/02/26 6.66 MB 1.0.0
パーソナルシェルター 株式会社ジャストシステム 2008/02/26 4.53 MB 1.00.000
東芝お客様登録 2008/01/01 772 KB
東芝ソフトウェア更新チェックツール TOSHIBA 2008/02/27 496 KB 1.1.0
筆ぐるめ Ver.15 富士ソフト株式会社 2008/02/26 495 MB 15.00.0000
続きまして、Windowsのスタートアップ
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
有効 HKCU:Run ehTray.exe Microsoft Corporation C:\Windows\ehome\ehTray.exe
無効 HKCU:Run GameXN "C:\ProgramData\GameXN\GameXNGO.exe" /silent
無効 HKCU:Run GameXN (news) "C:\ProgramData\GameXN\GameXNGO.exe" /n
無効 HKCU:Run GameXN (update) "C:\ProgramData\GameXN\GameXNGO.exe" /u
有効 HKCU:Run Skype Skype Technologies S.A. "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
無効 HKCU:Run swg "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
有効 HKCU:Run TOSCDSPD TOSCDSPD.EXE
有効 HKLM:Run 00TCrdMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
有効 HKLM:Run Acronis Scheduler2 Service Acronis "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
有効 HKLM:Run AcronisTimounterMonitor Acronis C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
無効 HKLM:Run AppleSyncNotifier C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
無効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run bncsaui.exe Bradford Networks %ProgramFiles%\Bradford Networks\Client Security Agent\bncsaui.exe
無効 HKLM:Run Boingo Wi-Fi "C:\Program Files\Boingo\Boingo Wi-Fi\Boingo.lnk"
無効 HKLM:Run CanonMyPrinter CANON INC. C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
無効 HKLM:Run CanonSolutionMenu CANON INC. C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
有効 HKLM:Run FingerPrintNotifer AuthenTec, Inc "C:\Program Files\TrueSuite Access Manager\FpNotifier.exe"
無効 HKLM:Run FlipViewer Library "C:\Program Files\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
無効 HKLM:Run Google Desktop Search "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
無効 HKLM:Run HDMICtrlMan TOSHIBA Corporation. C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe
有効 HKLM:Run HotKeysCmds Intel Corporation C:\Windows\system32\hkcmd.exe
有効 HKLM:Run HSON TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TBS\HSON.exe
無効 HKLM:Run IFP4 "C:\Program Files\Digital Arts\IFP4\app\IFP4.exe" /s
有効 HKLM:Run IgfxTray Intel Corporation C:\Windows\system32\igfxtray.exe
有効 HKLM:Run IJNetworkScannerSelectorEX CANON INC. C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
無効 HKLM:Run IJNetworkScanUtility CANON INC. C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
有効 HKLM:Run IME JPN 2007 Migration Microsoft Corporation C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE /Preload
有効 HKLM:Run IME14 JPN Setup Microsoft Corporation C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
有効 HKLM:Run Installation Sources
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run KazaNavi 株式会社ジャストシステム C:\Program Files\JustSystems\KazaNavi\kazanavi.exe /tasktray
有効 HKLM:Run NDSTray.exe NDSTray.exe
無効 HKLM:Run Nikon Message Center 2 Nikon Corporation C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe -s
有効 HKLM:Run OfficeScanNT Monitor Trend Micro Inc. "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
無効 HKLM:Run OpwareSE4 Nuance Communications, Inc. "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
有効 HKLM:Run PAC207_Monitor PixArt Imaging Incorporation C:\Windows\PixArt\PAC207\Monitor.exe
有効 HKLM:Run Persistence Intel Corporation C:\Windows\system32\igfxpers.exe
有効 HKLM:Run PwdBank Arachnoid Biometrics Identification Group "C:\Program Files\TrueSuite Access Manager\PwdBank.exe"
無効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run SmoothView TOSHIBA Corporation %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
無効 HKLM:Run SSBkgdUpdate Nuance Communications, Inc. "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
有効 HKLM:Run ThpSrv C:\Windows\system32\thpsrv /logon
有効 HKLM:Run TPwrMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
有効 HKLM:Run TrueImageMonitor.exe Acronis C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
有効 HKLM:Run UsbMonitor "C:\Program Files\TrueSuite Access Manager\usbnotify.exe"
有効 HKLM:Run WheelMouse C:\ADVANC~1\wh_exec.exe
有効 HKLM:Run Windows Defender Microsoft Corporation %ProgramFiles%\Windows Defender\MSASCui.exe -hide
無効 Startup Common Nikon Monitor.lnk Nikon Corporation C:\PROGRA~1\COMMON~1\Nikon\Monitor\NKMONI~1.EXE
有効 Startup Common Rainmeter.lnk Rainmeter (Open Source Software) C:\Program Files\Rainmeter\Rainmeter.exe
無効 Startup User autobahn.lnk Swarmcast, Inc. C:\PROGRA~2\Autobahn\autobahn.exe
有効 Startup User 東芝ソフトウェア更新チェックツール.lnk TOSHIBA CORPORATION C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe
次がIEのスタートアップです
無効 Extension Research Microsoft Corporation C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
有効 Helper ExplorerWnd Helper IObit C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
無効 Helper FeliCaブラウザエクステンション Sony Corp. C:\Program Files\Sony\FeliCaBrowserExtension\fbe.dll
有効 Helper McAfee SiteAdvisor BHO McAfee, Inc. c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
無効 Helper RealPlayer Download and Record Plugin for Internet Explorer RealPlayer C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll
無効 Helper かんたん登録2 株式会社ジャストシステム C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
有効 Toolbar McAfee SiteAdvisor Toolbar McAfee, Inc. c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
無効 Toolbar かんたん登録2 ツールバー 株式会社ジャストシステム C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
最後にスケジュールされたタスクのスタートアップです
有効 Task Adobe Acrobat Update Task Adobe Systems Incorporated C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
有効 Task Adobe Flash Player Updater Adobe Systems Incorporated C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore C:\Program Files\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task Uninstaller_SkipUac_Kohei IObit C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
有効 Task {174282E8-64DB-484A-9D33-0D611EEC45B9} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.1.0.112/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;alreadyoffered
有効 Task {61C76F60-8B95-4DDA-A083-C7A11C19CED4} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.5.0.119/ja/go/help.faq.installer?LastError=1618
有効 Task {85DFD183-3E38-4D6C-9540-B131861C2694} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://www.skype.com/go/downloading?source=installer&ver=6.18.0.106&LastError=-9
有効 Task {F79570FE-568E-435C-88F3-2F90D50876BE} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.1.0.112/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:offered-installed;madedefault
有効 Task {F8AF6504-6C32-42FD-A3B4-D3404DE54974} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://www.skype.com/go/downloading?source=lightinstaller&ver=7.1.0.105&LastError=-9
以上となります。
インストール情報から、
Acronis True Image LE Acronis 2009/12/23 153 MB 10.0.5079
Adobe Flash Player 16 ActiveX Adobe Systems Incorporated 2015/02/05 16.0.0.305
Adobe Flash Player 16 NPAPI Adobe Systems Incorporated 2015/02/06 16.0.0.305
Adobe PDF IFilter 6.0 Adobe Systems, Inc. 2008/03/02 19.6 MB 6.0
Adobe Reader X (10.1.13) - Japanese
Adobe Shockwave Player 11.5 Adobe Systems, Inc. 2011/04/28 8.88 MB 11.5.9.620
Advanced Wheel Mouse 6.0.0.000 2009/07/25 452 KB
Aerosim CRJ200 VFD 2.1.23.1 2010/11/03 159 MB
Apple Application Support Apple Inc. 2014/01/22 64.0 MB 2.3.6
Apple Mobile Device Support Apple Inc. 2014/01/22 24.5 MB 7.0.0.117
Apple Software Update Apple Inc. 2011/10/12 2.38 MB 2.1.3.127
AR_CAD 2011/06/08 8.93 MB
ArcSoft Panorama Maker 4 ArcSoft 2011/03/30 14.6 MB
Atheros Driver Installation Program Atheros 2008/05/18 4.00 KB 7.1
Atheros Wi-Fi Protected Setup Library Atheros 2008/05/18 4.75 MB
Belkin F5D8053 N Wireless USB Adapter Belkin 2009/09/02 2.0.0.04
Boingo Wi-Fi Boingo Wireless, Inc. 2010/08/11 2.29 MB 1.7.0020
Bonjour Apple Inc. 2014/01/22 1.06 MB 3.0.0.10
BUFFALO TurboUSB for FLASH/HDD 2009/12/23
Canon IJ Network Scan Utility 2012/04/21 740 KB
Canon IJ Network Scanner Selector EX Canon Inc. 2015/01/14 1.58 MB 1.5.1.4
Canon IJ Network Tool Canon Inc. 2015/01/14 2.21 MB 3.4.0
Canon IJ Scan Utility Canon Inc. 2015/01/14 7.35 MB 1.1.5.14
Canon MG6100 series MP Drivers 2012/04/21
Canon MP Navigator EX 1.0 2008/07/27 65.9 MB
Canon MP470 series 2008/07/27 11.3 MB
Canon MP470 series User Registration 2008/07/27 528 KB
Canon MX470 series MP Drivers Canon Inc. 2015/01/14 1.00
Canon MX470 series User Registration Canon Inc. 2015/01/14 2.60 MB
Canon My Printer 2008/07/27 2.14 MB
Canon Utilities Easy-PhotoPrint EX 2008/07/27 208 MB
Canon Utilities Solution Menu 2008/07/27 1.59 MB
CCleaner Piriform 2015/02/25 8.12 MB 5.03
CD/DVD静音ユーティリティ TOSHIBA 2008/02/26 608 KB 2.02.01
Client Security Agent Bradford Networks 2008/08/14 4.39 MB 1.6.6.6
Conexant HD Audio Conexant 2008/05/18 1.28 MB 4.36.6.0
DVD MovieWriter for TOSHIBA Ulead Systems, Inc. 2008/01/01 256 MB 5.51
dynabookランチャー 東芝情報機器株式会社 2008/02/26 640 KB 1.0.2
dynabookランチャー用バナー 2008/01/01 796 KB
Edy Viewer bitWallet 2008/02/26 3.18 MB 2.1.1.1
eLIO D-URL Sony Finance International, Inc. 2008/02/26 805 KB 3.1.0.2
Explzh for Windows 2012/07/23 6.93 MB
FeliCa Port Software 2008/01/01 956 KB
FeliCaブラウザエクステンション Sony Corp. 2008/02/26 1.16 MB 1.30.0000
Google Earth Google 2011/11/16 92.7 MB 6.1.0.5001
Google アップデータ Google Inc. 2011/09/27 2.54 MB 2.4.2432.1652
HDMI Control Manager TOSHIBA 2008/02/26 2.04 MB 1.6
Intel(R) Graphics Media Accelerator Driver 2008/01/01
Intel® Matrix Storage Manager 2008/01/01 37.1 MB
IObit Uninstaller IObit 2015/02/27 34.8 MB 4.2.6.2
its-moNavi PC 2008/01/01 15.6 MB 5.6.0
iTunes Apple Inc. 2014/01/22 214 MB 11.1.3.8
Japanese Fonts Support For Adobe Reader 9 Adobe Systems Incorporated 2010/10/12 16.4 MB 9.0.0
KeyHoleTV 2012/11/02 992 KB
LaLaVoice V9.50 2008/01/01 996 KB
Marvell Miniport Driver Marvell 2008/02/26 2.02 MB 10.51.1.3
McAfee SiteAdvisor McAfee, Inc. 2009/03/28 6.15 MB 2.9.258
Microsoft .NET Framework 3.5 Language Pack SP1 - 日本語 Microsoft Corporation 2014/11/12 36.7 MB
Microsoft .NET Framework 3.5 SP1 Microsoft Corporation 2014/11/12 36.7 MB
Microsoft .NET Framework 4.5.1 Microsoft Corporation 2014/11/12 251 MB 4.5.50938
Microsoft Office File Validation Add-In Microsoft Corporation 2014/11/13 10.9 MB 14.0.5130.5003
Microsoft Office IME 2010 (Japanese) Microsoft Corporation 2014/11/12 14.0.6119.5000
Microsoft Office Personal 2007 Microsoft Corporation 2013/06/08 314 MB 12.0.6612.1000
Microsoft Office PowerPoint 2007 Microsoft Corporation 2013/06/08 314 MB 12.0.6612.1000
Microsoft Office ナビ 2007 Microsoft Corporation 2008/03/03 12.0.2213.0
Microsoft Silverlight Microsoft Corporation 2014/11/12 248 MB 5.1.30514.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 2009/07/29 251 KB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2013/02/12 2.61 MB 8.0.59193
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Corporation 2011/04/14 592 KB 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2013/02/12 234 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2011/03/29 590 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2011/06/15 594 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2012/04/23 12.2 MB 10.0.40219
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 2008/02/26 1.26 MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2008/11/11 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2009/11/30 1.33 MB 4.20.9876.0
NFRMプレーヤ NFRMPCViewer 2.0.3 Faith, Inc. 2008/02/26 4.46 MB
Nikon Message Center Nikon 2011/03/29 204 KB 0.92.000
Nikon Message Center 2 Nikon 2013/02/12 2.05 MB 2.0.1
Nikon Transfer Nikon 2011/03/29 46.6 MB 1.0.2
O2Micro Flash Memory Card Reader Driver (x86) O2Micro 2008/02/26 1.07 MB 3.19.1
OpenMG Secure Module 4.7.01 Sony Corporation 2008/02/27 4.7.01.06151
OpenOffice.org Installer 1.0 Sun Microsystems 2008/06/24 2.38 MB 1.0.9221
PC引越ナビ 東芝パソコンシステム株式会社 2008/02/26 14.4 MB 3.0.1
Picture Control Utility Nikon 2013/02/12 19.5 MB 1.2.2
PIXMA Extended Survey Program 2008/07/27 776 KB
QuickTime Apple Inc. 2014/01/22 74.6 MB 7.74.80.86
Rainmeter 2012/04/23 2.42 MB 2.2 r1116
RealPlayer RealNetworks 2008/07/05 44.6 MB
RescuePRO Deluxe 5.0 LC Technology International, Inc. 2013/01/04 44.9 MB 5.0
ScanSoft OmniPage SE 4 Nuance Communications, Inc. 2008/07/26 166 MB 15.2.0020
SFCard Viewer 2 2008/01/01 828 KB
SimCity 2000 Special Edition 2009/07/21 17.1 MB
SketchUp 8 Trimble Navigation Limited 2013/05/15 84.2 MB 3.0.16950
Skype(TM) 7.1 Skype Technologies S.A. 2015/02/27 47.8 MB 7.1.105
TOSHIBA ConfigFree TOSHIBA Corporation 2008/02/26 68.9 MB 7.1.29
TOSHIBA Disc Creator TOSHIBA Corporation 2008/02/26 8.30 MB 2.0.1.2
TOSHIBA DVD PLAYER TOSHIBA Corporation 2008/02/26 24.2 MB 1.20.11
TOSHIBA Extended Tiles for Windows Mobility Center TOSHIBA Corporation 2008/02/26 1.21 MB 1.01.00
TOSHIBA Hardware Setup TOSHIBA 2008/02/26 2.84 MB 3.00.01.00
TOSHIBA HDD Protection TOSHIBA Corporation 2008/02/26 9.74 MB 2.0.2.3
TOSHIBA Recovery Disc Creator TOSHIBA Corporation 2008/02/27 2.35 MB 2.0.0.1b
TOSHIBA SD Memory Utilities TOSHIBA Corporation 2008/02/26 995 KB 1.8.1.1
TOSHIBA Speech Engines Version V9.50 2008/01/01 1.26 MB
TOSHIBA Speech System MT Engine Version 9.0 2008/01/01 888 KB
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0 2008/01/01 884 KB
TOSHIBA Supervisor Password TOSHIBA 2008/02/26 2.84 MB 3.00.01.00
TOSHIBA Value Added Package TOSHIBA Corporation 2008/02/26 64.0 KB 1.1.14
Trend Micro OfficeScan Client Trend Micro 2014/05/25 194 MB 10.6.5162
TrueSuite Access Manager ABIG 2008/02/27 19.7 MB 1.1.13.13
ViewNX 2 Nikon 2013/02/12 64.4 MB 2.1.2
Windows Media エンコーダ 9 シリーズ 2008/02/27 13.6 MB
かざしてナビ 株式会社ジャストシステム 2008/02/26 4.08 MB 1.00.000
かんたん登録2 株式会社ジャストシステム 2008/02/26 5.75 MB 1.00.000
ぼくは航空管制官2 2008/06/14
ぼくは航空管制官2チャレンジ4! 2008/05/21
ぼくは航空管制官3 体験版 株式会社TechnoBrain 2009/08/26 148 MB 1.0.0
シンプルログオン 株式会社ジャストシステム 2008/02/26 3.42 MB 1.00.000
スクリーンセーバーロック2 株式会社ジャストシステム 2008/02/26 3.73 MB 1.00.000
パソコンで見るマニュアル TOSHIBA CORPORATION 2008/02/26 32.8 MB 0015.01.0201
パソコン設定ガイド 東芝情報機器株式会社 2008/02/26 6.66 MB 1.0.0
パーソナルシェルター 株式会社ジャストシステム 2008/02/26 4.53 MB 1.00.000
東芝お客様登録 2008/01/01 772 KB
東芝ソフトウェア更新チェックツール TOSHIBA 2008/02/27 496 KB 1.1.0
筆ぐるめ Ver.15 富士ソフト株式会社 2008/02/26 495 MB 15.00.0000
続きまして、Windowsのスタートアップ
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
有効 HKCU:Run ehTray.exe Microsoft Corporation C:\Windows\ehome\ehTray.exe
無効 HKCU:Run GameXN "C:\ProgramData\GameXN\GameXNGO.exe" /silent
無効 HKCU:Run GameXN (news) "C:\ProgramData\GameXN\GameXNGO.exe" /n
無効 HKCU:Run GameXN (update) "C:\ProgramData\GameXN\GameXNGO.exe" /u
有効 HKCU:Run Skype Skype Technologies S.A. "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
無効 HKCU:Run swg "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
有効 HKCU:Run TOSCDSPD TOSCDSPD.EXE
有効 HKLM:Run 00TCrdMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
有効 HKLM:Run Acronis Scheduler2 Service Acronis "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
有効 HKLM:Run AcronisTimounterMonitor Acronis C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
無効 HKLM:Run AppleSyncNotifier C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
無効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run bncsaui.exe Bradford Networks %ProgramFiles%\Bradford Networks\Client Security Agent\bncsaui.exe
無効 HKLM:Run Boingo Wi-Fi "C:\Program Files\Boingo\Boingo Wi-Fi\Boingo.lnk"
無効 HKLM:Run CanonMyPrinter CANON INC. C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
無効 HKLM:Run CanonSolutionMenu CANON INC. C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
有効 HKLM:Run FingerPrintNotifer AuthenTec, Inc "C:\Program Files\TrueSuite Access Manager\FpNotifier.exe"
無効 HKLM:Run FlipViewer Library "C:\Program Files\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
無効 HKLM:Run Google Desktop Search "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
無効 HKLM:Run HDMICtrlMan TOSHIBA Corporation. C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe
有効 HKLM:Run HotKeysCmds Intel Corporation C:\Windows\system32\hkcmd.exe
有効 HKLM:Run HSON TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TBS\HSON.exe
無効 HKLM:Run IFP4 "C:\Program Files\Digital Arts\IFP4\app\IFP4.exe" /s
有効 HKLM:Run IgfxTray Intel Corporation C:\Windows\system32\igfxtray.exe
有効 HKLM:Run IJNetworkScannerSelectorEX CANON INC. C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
無効 HKLM:Run IJNetworkScanUtility CANON INC. C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
有効 HKLM:Run IME JPN 2007 Migration Microsoft Corporation C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE /Preload
有効 HKLM:Run IME14 JPN Setup Microsoft Corporation C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
有効 HKLM:Run Installation Sources
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run KazaNavi 株式会社ジャストシステム C:\Program Files\JustSystems\KazaNavi\kazanavi.exe /tasktray
有効 HKLM:Run NDSTray.exe NDSTray.exe
無効 HKLM:Run Nikon Message Center 2 Nikon Corporation C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe -s
有効 HKLM:Run OfficeScanNT Monitor Trend Micro Inc. "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
無効 HKLM:Run OpwareSE4 Nuance Communications, Inc. "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
有効 HKLM:Run PAC207_Monitor PixArt Imaging Incorporation C:\Windows\PixArt\PAC207\Monitor.exe
有効 HKLM:Run Persistence Intel Corporation C:\Windows\system32\igfxpers.exe
有効 HKLM:Run PwdBank Arachnoid Biometrics Identification Group "C:\Program Files\TrueSuite Access Manager\PwdBank.exe"
無効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run SmoothView TOSHIBA Corporation %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
無効 HKLM:Run SSBkgdUpdate Nuance Communications, Inc. "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
有効 HKLM:Run ThpSrv C:\Windows\system32\thpsrv /logon
有効 HKLM:Run TPwrMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
有効 HKLM:Run TrueImageMonitor.exe Acronis C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
有効 HKLM:Run UsbMonitor "C:\Program Files\TrueSuite Access Manager\usbnotify.exe"
有効 HKLM:Run WheelMouse C:\ADVANC~1\wh_exec.exe
有効 HKLM:Run Windows Defender Microsoft Corporation %ProgramFiles%\Windows Defender\MSASCui.exe -hide
無効 Startup Common Nikon Monitor.lnk Nikon Corporation C:\PROGRA~1\COMMON~1\Nikon\Monitor\NKMONI~1.EXE
有効 Startup Common Rainmeter.lnk Rainmeter (Open Source Software) C:\Program Files\Rainmeter\Rainmeter.exe
無効 Startup User autobahn.lnk Swarmcast, Inc. C:\PROGRA~2\Autobahn\autobahn.exe
有効 Startup User 東芝ソフトウェア更新チェックツール.lnk TOSHIBA CORPORATION C:\Program Files\TOSHIBA\Toschkupd\TosChkupd.exe
次がIEのスタートアップです
無効 Extension Research Microsoft Corporation C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
有効 Helper ExplorerWnd Helper IObit C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
無効 Helper FeliCaブラウザエクステンション Sony Corp. C:\Program Files\Sony\FeliCaBrowserExtension\fbe.dll
有効 Helper McAfee SiteAdvisor BHO McAfee, Inc. c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
無効 Helper RealPlayer Download and Record Plugin for Internet Explorer RealPlayer C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\OfficeScan Client\TmIEPlg.dll
無効 Helper かんたん登録2 株式会社ジャストシステム C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
有効 Toolbar McAfee SiteAdvisor Toolbar McAfee, Inc. c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
無効 Toolbar かんたん登録2 ツールバー 株式会社ジャストシステム C:\PROGRA~1\JUSTSY~1\SIMPLE~1\AtInBnd.dll
最後にスケジュールされたタスクのスタートアップです
有効 Task Adobe Acrobat Update Task Adobe Systems Incorporated C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
有効 Task Adobe Flash Player Updater Adobe Systems Incorporated C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore C:\Program Files\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task Uninstaller_SkipUac_Kohei IObit C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
有効 Task {174282E8-64DB-484A-9D33-0D611EEC45B9} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.1.0.112/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;alreadyoffered
有効 Task {61C76F60-8B95-4DDA-A083-C7A11C19CED4} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.5.0.119/ja/go/help.faq.installer?LastError=1618
有効 Task {85DFD183-3E38-4D6C-9540-B131861C2694} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://www.skype.com/go/downloading?source=installer&ver=6.18.0.106&LastError=-9
有効 Task {F79570FE-568E-435C-88F3-2F90D50876BE} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.1.0.112/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:offered-installed;madedefault
有効 Task {F8AF6504-6C32-42FD-A3B4-D3404DE54974} Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" http://www.skype.com/go/downloading?source=lightinstaller&ver=7.1.0.105&LastError=-9
以上となります。
- pilot
- 2015/03/09 (Mon) 22:55:39
申し訳ございません
CCのログの改行が上手くいかず、すべて繋がって非常に読み辛いものとなってしまいました。
申し訳ございません。
申し訳ございません。
- pilot
- 2015/03/09 (Mon) 22:58:51
Skypeを入れ直してセキュリティソフトの設定を行い自衛しつつ解決で
ログを確認させていただきました。
むしろ出力されたログの状態そのままのほうが読みやすかったりします。
Skypeが旧バージョンですので、一度アンインストールして入れ直しましょう。
PCをセーフモードで起動させてください。
IUを起動させ、以下のソフトウェアをアンインストールしてください。
Skype(TM) 7.1 Skype Technologies S.A. 2015/02/27 47.8 MB 7.1.105
アンインストールが完了しましたらATFで掃除を行い、PCを通常モードで再起動してください。
以下URLからソフトウェアをダウンロードし、インストールしてください。
Skype
http://www.skype.com/ja/download-skype/skype-for-computer/
最後の処置を行いましょう。
今回の処置は、今後の再感染を防止するための自衛措置のひとつとなります。
セキュリティソフトを起動させ、設定を開いてください。
PUP(不審なソフトウェア)の検出機能があれば、そちらを有効な状態に設定してください。
PUPの検出機能につきましては、ご利用のセキュリティソフトにより名称や設定方法が異なるため、
有料版のセキュリティソフトをご利用の場合は、セキュリティベンダーにお問い合わせいただくのが手っ取り早いでしょう。
セキュリティソフトでは、スキャンに非常に時間がかかるようになると言う理由により、
初期状態では圧縮フォルダ内はスキャンしない設定になっていることが大半です。
しかしこの機能が標準では無効になっていることを利用して、PC内に潜入するマルウェアも多いです。
セキュリティを向上させるため、スキャン設定の項目で圧縮フォルダ内もスキャンを行う設定を有効にしてください。
ヒューリスティック検知あるいはスキャンを有効にする項目があれば、そちらも有効になされてください。
レピュテーション(評価)機能を有効にする項目があれば、こちらも有効になされてください。
スキャン対象が限定されている場合、全体をスキャンするように設定変更を行ってください。
以上で最後の処置を行いますが、この最後の処置は回答者により異なるため、
ほかの回答者の方の処置案内も確認され、今後の自衛策に役立てると良いでしょう。
問題もないようですので、以下に記載する自衛を遵守しつつ、本件を解決といたしましょう。
再度感染しないように、Windows Updateを怠らない、怪しいサイトには行かない、フリーウェアは極力使わない、
P2Pファイル共有ソフトには一切手を出さないなどの「自衛」はしっかりと行ってください。
また上記でも記述いたしましたが、ほかの方の質問や回答を見て、色々なものへの対応策を身につけるのも一つの自衛です。
近年情報流出が激化しておりますが、セキュリティソフトだけではこのようなマルウェアは防げません。
セキュリティソフトは、「常に後手」であるソフトウェアです。
これは、誰かが新種ウイルスに感染し、その感染が報告されない限り、
セキュリティソフトのベンダーとしてもウイルスに対応することができないのです。
ですので、セキュリティソフトは自衛のためのサポートツールであるということを常に念頭に置き、
今回のような他人に頼らざるを得ない状況となった伏魔殿での苦い経験を今後の糧に、
ご自身のPCと真剣に向き合いつつ、有益で安全なPCライフを実現してゆきましょう。
なお自衛は今だけの話ではなく、PCを扱う限り一生行うようにしましょう。
今回使用したツールはすべて導入時の案内に沿って片付けておいてください。
それではご安全に。
むしろ出力されたログの状態そのままのほうが読みやすかったりします。
Skypeが旧バージョンですので、一度アンインストールして入れ直しましょう。
PCをセーフモードで起動させてください。
IUを起動させ、以下のソフトウェアをアンインストールしてください。
Skype(TM) 7.1 Skype Technologies S.A. 2015/02/27 47.8 MB 7.1.105
アンインストールが完了しましたらATFで掃除を行い、PCを通常モードで再起動してください。
以下URLからソフトウェアをダウンロードし、インストールしてください。
Skype
http://www.skype.com/ja/download-skype/skype-for-computer/
最後の処置を行いましょう。
今回の処置は、今後の再感染を防止するための自衛措置のひとつとなります。
セキュリティソフトを起動させ、設定を開いてください。
PUP(不審なソフトウェア)の検出機能があれば、そちらを有効な状態に設定してください。
PUPの検出機能につきましては、ご利用のセキュリティソフトにより名称や設定方法が異なるため、
有料版のセキュリティソフトをご利用の場合は、セキュリティベンダーにお問い合わせいただくのが手っ取り早いでしょう。
セキュリティソフトでは、スキャンに非常に時間がかかるようになると言う理由により、
初期状態では圧縮フォルダ内はスキャンしない設定になっていることが大半です。
しかしこの機能が標準では無効になっていることを利用して、PC内に潜入するマルウェアも多いです。
セキュリティを向上させるため、スキャン設定の項目で圧縮フォルダ内もスキャンを行う設定を有効にしてください。
ヒューリスティック検知あるいはスキャンを有効にする項目があれば、そちらも有効になされてください。
レピュテーション(評価)機能を有効にする項目があれば、こちらも有効になされてください。
スキャン対象が限定されている場合、全体をスキャンするように設定変更を行ってください。
以上で最後の処置を行いますが、この最後の処置は回答者により異なるため、
ほかの回答者の方の処置案内も確認され、今後の自衛策に役立てると良いでしょう。
問題もないようですので、以下に記載する自衛を遵守しつつ、本件を解決といたしましょう。
再度感染しないように、Windows Updateを怠らない、怪しいサイトには行かない、フリーウェアは極力使わない、
P2Pファイル共有ソフトには一切手を出さないなどの「自衛」はしっかりと行ってください。
また上記でも記述いたしましたが、ほかの方の質問や回答を見て、色々なものへの対応策を身につけるのも一つの自衛です。
近年情報流出が激化しておりますが、セキュリティソフトだけではこのようなマルウェアは防げません。
セキュリティソフトは、「常に後手」であるソフトウェアです。
これは、誰かが新種ウイルスに感染し、その感染が報告されない限り、
セキュリティソフトのベンダーとしてもウイルスに対応することができないのです。
ですので、セキュリティソフトは自衛のためのサポートツールであるということを常に念頭に置き、
今回のような他人に頼らざるを得ない状況となった伏魔殿での苦い経験を今後の糧に、
ご自身のPCと真剣に向き合いつつ、有益で安全なPCライフを実現してゆきましょう。
なお自衛は今だけの話ではなく、PCを扱う限り一生行うようにしましょう。
今回使用したツールはすべて導入時の案内に沿って片付けておいてください。
それではご安全に。
- IVNO
- 2015/03/09 (Mon) 23:08:26
お礼
IVNO様、悪代官様
長期間にわたり貴重なお時間をいただきありがとうございました。
普段より「自衛」は心掛けていたつもりでしたが、今回の件でより一層気を引き締めて対策する必要があるということを痛感いたしました。
今後は自力で解決できるように、また感染することがないように勉強していきたいと思っている次第であります。
pilot
長期間にわたり貴重なお時間をいただきありがとうございました。
普段より「自衛」は心掛けていたつもりでしたが、今回の件でより一層気を引き締めて対策する必要があるということを痛感いたしました。
今後は自力で解決できるように、また感染することがないように勉強していきたいと思っている次第であります。
pilot
- pilot
- 2015/03/10 (Tue) 13:03:44
返信フォーム※初心者、通りすがり等、重複しやすい名前の利用はご遠慮ください。
Template by マシマロック