悪代官の伏魔殿掲示板別館

はじめまして、hamatakeと申します。
Videostripeと言うマルウェアの類に感染してしまい時々「まだ登録が完了していません・・・鑑賞のためにはアカウントを確認して下さい」と出てきてキャンセル、×をしてもすぐ出てきます。駆除の方法をお教え下さるようお願い申し上げます。以下にＨＪＴログとＣＣログを貼り付けさせて頂きますので宜しくお願い致します。

ＨＪＴログ　
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 6:28:41, on 2015/03/18
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)


Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\ModLEDKey.exe
C:\Program Files\Ascentive\PC SpeedScan Pro\PCSpeedScan.exe
C:\Program Files\Elex-tech\YAC\iSafeTray.exe
C:\Program Files\Baidu\IME\3.5.2.36\BaiduIME.exe
C:\Program Files\Baidu\IME\3.5.2.36\BaiduPlatform.exe
C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
C:\Program Files\Baidu\IME\3.5.2.36\ServAgent.exe
C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\mHotkey.exe
C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\OSDShow.exe
C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\ModHIDKey.exe
C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\CNYHKey.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Users\Hamaji\AppData\Roaming\ApplicationManager\bin\ApplicationManager.exe
C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files\Common Files\Creoapp\HotUpdate\HUpdate.exe
C:\Program Files\MixVideoPlayer\BrowserWeb.exe
C:\Program Files\SOURCENEXT\Narundesu CDDrive\NaruDrvUSB.exe
C:\Program Files\Nagatsuki\BunBackup\BunBackup.exe
C:\ProgramData\{a7b9c265-e4ef-efbb-a7b9-9c265e4e0997}\superoptimizersetup.exe
C:\Program Files\EPSON\MyEPSON Connect\mep.exe
C:\Program Files\Elex-tech\YAC\iDesk.exe
C:\Users\Hamaji\AppData\Local\SOURCENEXT\SSS3\4.00.14\Statistics.exe
C:\Users\Hamaji\AppData\Local\SOURCENEXT\SSS3\4.00.14\Message.exe
C:\Program Files\harituke\harimas.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\MixVideoPlayer\BrowserWeb.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Hamaji\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4QQLFXOH\HijackThis.exe

O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: Search App by Ask BHO - {4F524A2D-5350-4500-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll" (file missing)
O2 - BHO: Shopping App by Ask BHO - {4F524A2D-5354-2D53-5045-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ORJ-ST-SPE\Passport.dll" (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: PhishWall - {8CA7E745-EF75-4E7B-BB86-8065C0CE29CA} - C:\Program Files\SecureBrain\PhishWall\sbpw32.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1173\8.0.1173\TmBpIe32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll
O2 - BHO: GomPicker - {F0181C6E-9218-4792-9F3C-E8DF52B2F1AC} - C:\Program Files\GRETECH\GomPicker\GomPickerBHO.dll
O3 - Toolbar: Trend ツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O3 - Toolbar: PhishWall - {BB62FFF4-41CB-4AFC-BB8C-2A4D4B42BBDC} - C:\Program Files\SecureBrain\PhishWall\sbpw32.dll
O3 - Toolbar: Shopping App by Ask - {4F524A2D-5354-2D53-5045-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ORJ-ST-SPE\Passport.dll" (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Search App by Ask - {4F524A2D-5350-4500-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll" (file missing)
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [LchDrv] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\LchDrvKey.exe
O4 - HKLM\..\Run: [Mhotkey] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\mHotkey.exe
O4 - HKLM\..\Run: [ShowOSD] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\OSDShow.exe
O4 - HKLM\..\Run: [NTTW_OSA_AUS] "C:\Program Files\NTTW\OSA_Aus\acs.exe" -silent
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Unattend0000000001{4EB2708E-50B2-46F4-B494-06EDD3F095C2}] C:\Program Files\EPSON Direct\初期設定ツール\epsonstartup.exe -f
O4 - HKLM\..\Run: [ModHid] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\ModHidKey.exe
O4 - HKLM\..\Run: [LedPtr] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\CnyHKey.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [Trend Micro Client Framework] "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
O4 - HKLM\..\Run: [Sourcenext.SSS.Launcher] "C:\Program Files\SOURCENEXT\ソースネクスト アップデート4\Launcher.exe" UpdateTool.exe
O4 - HKLM\..\Run: [AppGraffiti] "C:\Program Files\AppGraffiti\AppGraffiti.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [EPSON PX-403A] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIG6J.EXE /FU "C:\Users\Hamaji\AppData\Local\Temp\E_S33CD.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [ApplicationManager] C:\Users\Hamaji\AppData\Roaming\ApplicationManager\bin\ApplicationManager.exe
O4 - HKCU\..\Run: [EPSON PX-403A (2 コピー)] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIG6J.EXE /FU "C:\Windows\TEMP\E_S6769.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: BunBackup.lnk = C:\Program Files\Nagatsuki\BunBackup\BunBackup.exe
O4 - Startup: superoptimizersetup.lnk = C:\ProgramData\{a7b9c265-e4ef-efbb-a7b9-9c265e4e0997}\superoptimizersetup.exe
O4 - Startup: 貼り付けマスター.lnk = C:\Program Files\harituke\harimas.exe
O4 - Global Startup: Hot!Update.lnk = ?
O4 - Global Startup: PHOTOfunSTUDIO 5.1 HD Edition.lnk = C:\Program Files\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe
O4 - Global Startup: ナルンデス CDドライブ.lnk = ?
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: JWord(日本語キーワード) - {5D73EE86-05F1-49ed-B850-E423120EC338} - http://www.jword.jp/intro/?partner=AP&type=lk&frm=iebutton (file missing)
O9 - Extra button: 故障かな？と思ったら・・・ - {6CB1FA39-5745-4733-859F-E9C82A68F848} - C:\Program Files\NTTW\OSA_SupportTool\start_w.exe
O9 - Extra button: 本格翻訳7で翻訳 - {E491009E-97C0-411a-81B5-75FF187FC53E} - C:\Program Files\SOURCENEXT\本格翻訳7\IE\webtrans.html (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: 本格翻訳7で翻訳 - {E491009E-97C0-411a-81B5-75FF187FC53E} - C:\Program Files\SOURCENEXT\本格翻訳7\IE\webtrans.html (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [!CNS] JWord(日本語キーワード)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1173\8.0.1173\TmBpIe32.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Baidu Japanese IME Service_3.5.2.36 (BaiduJP_IME_Service_3.5.2.36) - Baidu Inc. - C:\Program Files\Baidu\IME\3.5.2.36\BaiduJPServ.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\System32\bgsvcgen.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google アップデート サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Intel Corporation - C:\Windows\system32\IProsetMonitor.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participacoes Ltda - C:\Program Files\Elex-tech\YAC\iSafeSvc.exe
O23 - Service: IviRegMgr - InterVideo - c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MixVideoPlayer Updater Service (MixVideoPlayerUpdaterService) - Unknown owner - C:\Program Files\MixVideoPlayer\MixVideoPlayerUpdaterService.exe
O23 - Service: Morrin Thumbnail Synchronized Service 5 (MrnTS_Sync5) - 株式会社モーリン - C:\Program Files\Common Files\Creoapp\MrnTS_Sync5.exe
O23 - Service: MyEPSON Connect Service - SEIKO EPSON CORPORATION - C:\Program Files\EPSON\MyEPSON Connect\mepService.exe
O23 - Service: Narundesu CDDrive Service (narusvc) - SOURCENEXT CORPORATION - C:\Program Files\SOURCENEXT\Narundesu CDDrive\narusvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - c:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Rapport Management Service (RapportMgmtService) - IBM Corp. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: SecureBrain PhishWall Update - Unknown owner - C:\Program Files\SecureBrain\PhishWall\sbpwupdx.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

--
End of file - 14134 bytes

ＣＣログ
3 Tor Zubba 2013/06/02
Adobe Acrobat Reader 3.0J 2013/01/10
Adobe AIR Adobe Systems Incorporated 2014/09/16 15.0.0.249
Adobe Flash Player 17 ActiveX Adobe Systems Incorporated 2015/03/14 6.00 MB 17.0.0.134
Adobe Reader XI (11.0.10) - Japanese Adobe Systems Incorporated 2014/12/10 201 MB 11.0.10
Advanced File Optimizer Systweak Software 2013/06/30 25.2 MB 2.1.1000.10518
Apple Application Support（32 ビット） Apple Inc. 2015/03/04 94.2 MB 3.1.2
Apple Mobile Device Support Apple Inc. 2015/03/04 22.5 MB 8.1.1.3
Apple Software Update Apple Inc. 2012/01/21 2.38 MB 2.1.3.127
ApplicationManager 2011.4.27.209 Beijing AJ Technology Co., Ltd 2013/12/27 2011.4.27.209
Backup 2013/05/13
Baidu IME 3.5 Baidu Japan Inc. 2014/09/17 3.5
Bonjour Apple Inc. 2012/10/17 1.02 MB 3.0.0.10
bookend Desktop - 2.2.8 iDOC K.K. 2012/02/04 50.2 MB
CCleaner Piriform 2015/03/18 5.03
Citrix Online Launcher Citrix 2013/11/18 274 KB 1.0.141
CoreAAC 2013/12/28
Debut 動画キャプチャソフト NCH Software 2014/12/15 1.89
Epson Event Manager SEIKO EPSON CORPORATION 2012/01/12 40.5 MB 2.50.0001
Epson Internet Print Module SEIKO EPSON CORPORATION 2014/12/21 4.0.3.0
EPSON PX-403A プリンター アンインストール SEIKO EPSON Corporation 2012/01/12
EPSON Scan Seiko Epson Corporation 2012/01/12
Epson WUG-0755 Keyboard Driver EPSON 2011/12/06 1.80.000
Express Burn ディスク書き込みソフト NCH Software 2014/04/29 4.69
FlyChart Flytec AG, 6048 Horw, Switzerland 2012/05/21 4.52.54
Forex Tester 2.9.6 Forex Tester Software 2015/03/18 107 MB
FoxTab Video Converter 2012/04/19
FXDD Malta - MetaTrader 4 MetaQuotes Software Corp. 2012/08/24 4.00
Golden Videos NCH Software 2014/04/29 3.01
GOM Picker Gretech Corporation 2013/12/28 1.0.0.5
Google Chrome Google Inc. 2012/04/15 41.0.2272.89
Google Earth Google 2013/12/12 180 MB 7.1.2.2041
Google Toolbar for Internet Explorer Google Inc. 2015/03/04 7.5.6227.252
GoToMeeting 6.0.0.1259 CitrixOnline 2013/11/18 6.0.0.1259
Hot!Update 株式会社クレオ 2012/12/29 1.11 MB 1.3
iCloud Apple Inc. 2014/12/10 58.9 MB 4.0.6.28
Intel(R) Control Center Intel Corporation 2011/12/06 1.2.1.1007
Intel(R) Management Engine Components Intel Corporation 2011/12/06 7.0.0.1118
Intel(R) Network Connections 15.7.176.0 インテル 2011/12/06 10.9 MB 15.7.176.0
Intel(R) Processor Graphics Intel Corporation 2011/12/06 8.15.10.2246
Intel(R) Rapid Storage Technology Intel Corporation 2011/12/06 10.0.0.1046
Internet Camera ActiveX 1.0.0.36 I-O DATA DEVICE, INC. 2014/11/30 3.10 MB
InterVideo WinDVD 8 InterVideo Inc. 2011/12/06 123 MB 8.0.20.153
iTunes Apple Inc. 2015/03/04 221 MB 12.1.1.4
Java 8 Update 40 Oracle Corporation 2015/03/14 76.9 MB 8.0.400
Microsoft .NET Framework 4.5.1 Microsoft Corporation 2015/03/12 38.8 MB 4.5.50938
Microsoft .NET Framework 4.5.1 (日本語) Microsoft Corporation 2015/03/12 2.93 MB 4.5.50938
Microsoft Office Personal 2010 Microsoft Corporation 2013/11/10 14.0.7015.1000
Microsoft Silverlight Microsoft Corporation 2014/12/14 272 MB 5.1.31211.0
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2010/07/09 1.72 MB 3.1.0000
Microsoft SQL Server Compact 3.5 SP1 English Microsoft Corporation 2012/01/21 2.59 MB 3.5.5692.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2012/01/02 300 KB 8.0.59193
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2013/04/29 238 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2012/01/21 586 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2012/01/22 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/12 11.1 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2015/03/14 17.3 MB 11.0.61030.0
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Microsoft Corporation 2015/02/12 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - 日本語 Microsoft Corporation 2015/02/12 10.0.50903
MixVideoPlayer SoftForce LLC 2015/03/14 30.7 MB v1.0.0.5
MPEG2 Codec(libmpeg2/mad) 2013/12/28
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2012/01/02 37.0 KB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2012/01/02 1.33 MB 4.20.9876.0
MyEPSON Connect SEIKO EPSON Corporation 2012/01/19
Nero 9 Essentials Nero AG 2011/12/06
OANDA - MetaTrader MetaQuotes Software Corp. 2015/03/04 4.00
PC SpeedScan Pro Ascentive 2015/03/12 8.2.3
PhishWall SecureBrain Corporation 2014/09/20 3.5.14
PHOTOfunSTUDIO 5.1 HD Edition Panasonic Corporation 2012/05/03 5.01.130
PhotoPad 写真編集ソフト NCH Software 2014/12/16 2.44
PhotoStage スライドショー作成ソフト NCH Software 2014/04/29 2.31
Phrase Finder 1.10.0.9 Phrase Finder 2015/03/12 1.10.0.9
Pixillion 画像ファイル変換ソフト NCH Software 2015/01/07 2.68
PL-2303 USB-to-Serial Prolific Technology INC 2012/05/21 1.00.000
Prism 動画ファイル変換ソフト NCH Software 2014/04/29 2.08
QuickTime 7 Apple Inc. 2014/10/29 70.2 MB 7.76.80.95
RealPlayer RealNetworks 2015/03/12 91.7 MB 16.0.4
Search App by Ask APN, LLC 2015/03/14 3.07 MB 12.24.1.51
Shopping App by Ask 2015/02/16
Switch 音声ファイル変換ソフト NCH Software 2014/05/25 4.64
VideoPad 動画編集ソフト NCH Software 2014/04/29 3.38
WavePad 音声編集ソフト NCH Software 2014/04/29 5.71
Windows Live Essentials Microsoft Corporation 2012/04/24 15.4.3555.0308
YAC(Yet Another Cleaner!) ELEX DO BRASIL PARTICIPAÇÕES LTDA 2015/03/14
ウイルスバスター クラウド トレンドマイクロ株式会社 2013/12/13 450 MB 7.0
ズバリ日記帳 1.1.2 SOURCENEXT 2014/02/16
ソースネクスト アップデート 4.0 SOURCENEXT 2014/06/11 26.5 MB 9.09.0000
フォト ガジェット Microsoft Corporation 2011/12/06 2.10 MB 1.1.1.0
リモート接続用の Windows Live Mesh ActiveX コントロール (日本語) Microsoft Corporation 2011/12/06 5.57 MB 15.4.5722.2
最強 東大将棋４ 完全版 2013/05/05
本格翻訳7 SOURCENEXT 2012/01/21 7.00
直感マインドマップ SOURCENEXT 2012/04/25 36.8 MB 1.0.0905
筆まめ Ver.16 販売元：株式会社クレオ　開発元：株式会社モーリン 2012/12/29 402 MB 16.03.0000
診断復旧ツール 西日本電信電話株式会社 2012/12/22 14.7 MB
貼り付けver 4 attyu 2012/02/26

こんにちは、IVNOと申します。
PCの更新はしっかりなされておられますね。
おかげで駆除案内もマルウェア一本に絞れます。

それでは作業準備を行いましょう。

まずはじめに連絡事項がございます。
相談いただいてから回答できるまでに、毎回1日かそれ以上かかる可能性もございます。
ご不便をおかけいたしますが、ご理解とご協力を賜りますよう、お願い申し上げます。
また、回答者側から「解決」と通達があるまで、駆除作業は続いております。
そのため、途中でPCの状況が良くなったかのように感じたからと言って、解決のご案内を待たずして作業を中断なされると、
高確率で再発しているのが現状で、再発時にこちらにお戻りになられる方が続出しております。
回答者から「解決」と「自衛策」の案内があるまでは、作業を続けるようにしてください。

それでは以下の説明を熟読し、順番に作業をお願いします。
既に準備した物もあるはずですが、一応説明を再度見ておいてください。

隠しファイルと拡張子を表示設定にしてください(やり方↓）
http://pasofaq.jp/windows/mycomputer/hiddenfile.htm
http://support.microsoft.com/kb/978449/ja

下記のツールをダウンロードして、基本の使い方を把握しておいてください。
ただし、配布サイトで他のソフトウェアをダウンロードしろと勧めてくるような広告も出てくる可能性がありますが、
それらは絶対にクリックしないでください。
「ATF-Cleaner」（通称:ATF）
説明↓
http://freesoft.tvbok.com/freesoft/pc_system/atf-cleaner.html
ダウンロード↓
http://www.atribune.org/index.php?option=com_content&task=view&id=25&Itemid=1
中央の赤い文字がダウンロードリンクです。
片付けるときはファイルを直接削除してください。
説明ページではWindowsXpと2000対応と書かれてますが、Win7やVistaにも対応です。

Iobit Uninstaller（通称:IU）
公式ページ↓
http://jp.iobit.com/free/iou.html
解説↓
http://www.japan-secure.com/entry/blog-entry-282.html
IUを削除なされる際は以下のURLを参考になされてください。
http://www.japan-secure.com/entry/blog-entry-396.html

「CCleaner」（通称:CC）
説明↓
http://www.gigafree.net/system/clean/ccleaner.html
http://note.chiebukuro.yahoo.co.jp/detail/n178757
ダウンロード↓
http://www.piriform.com/ccleaner/download/standard
最新バージョンをダウンロードするようにしましょう。
なお、インストール時におまけのアプリも勧めてくることがありますが、それらはチェック外してインストールは避けてください。
削除の際はIUなどでアンインストールしてください。

ここで重要な注意です。
CCは本来は高い性能を持つメンテナンスソフトですが、間違った使い方すると
【操作次第ではWindowsが動作しなくなる可能性もある】
ので、ここでは解析ツールとしてのみ使います。
説明をしっかり読んで、こちらが指示した以外の操作はしないようにしてください。

「AdwCleaner」（通称:AC）
http://www.bleepingcomputer.com/download/adwcleaner/dl/125/
ファイル直リンクです。アクセスしてファイルを分かりやすい場所に保存しておいてください。
ソフトウェアを一度起動させることにより自動的にアップデートが始まります。
アップデートが完了しましたら今は何もせずに終了させてください。
本ソフトウェアの削除指示があった際は起動後に「アンインストール」ボタンを押せば自動で削除されます。

準備できたら作業を開始しましょう。

まずは、Javaをご利用の方は以下URLの「Javaアンインストール・ツール」と言う文字をクリックし、
最新バージョンの確認と旧バージョンの削除を行われてください。
https://java.com/ja/download/faq/remove_olderversions.xml

Javaの処置が完了した方、Javaを導入されていない方は以下から作業をお願いいたします。

以降の駆除作業でトラブルが発生しても直ちに復旧できるよう、システムの復元ポイントを手動で作成しましょう。
http://windows.microsoft.com/ja-jp/windows7/create-a-restore-point
しかし、システムの復元はPCにかなりのダメージを与えますので、できれば使わないほうが望ましいです。
システムの復元が必要のない、慎重な作業を心がけましょう。

PCをセーフモードで起動してください（やり方↓）
http://www.pc-master.jp/sousa/s-safemode.html
Windows 8または8.1の方は以下を参考になされてください。
http://121ware.com/qasearch/1007/app/servlet/relatedqa?QID=015917
HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、
こちらが指示した以外のものは絶対にチェックを入れないでください。

O2 - BHO: Search App by Ask BHO - {4F524A2D-5350-4500-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll" (file missing)
O2 - BHO: Shopping App by Ask BHO - {4F524A2D-5354-2D53-5045-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ORJ-ST-SPE\Passport.dll" (file missing)
O3 - Toolbar: Search App by Ask - {4F524A2D-5350-4500-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll" (file missing)
O4 - HKLM\..\Run: [AppGraffiti] "C:\Program Files\AppGraffiti\AppGraffiti.exe"
O4 - Startup: superoptimizersetup.lnk = C:\ProgramData\{a7b9c265-e4ef-efbb-a7b9-9c265e4e0997}\superoptimizersetup.exe
O9 - Extra button: JWord(日本語キーワード) - {5D73EE86-05F1-49ed-B850-E423120EC338} - http://www.jword.jp/intro/?partner=AP&type=lk&frm=iebutton (file missing)
O23 - Service: Baidu Japanese IME Service_3.5.2.36 (BaiduJP_IME_Service_3.5.2.36) - Baidu Inc. - C:\Program Files\Baidu\IME\3.5.2.36\BaiduJPServ.exe
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participacoes Ltda - C:\Program Files\Elex-tech\YAC\iSafeSvc.exe

必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
上記のFixが完了したら、IU起動させ、以下を削除してください。

Advanced File Optimizer Systweak Software 2013/06/30 25.2 MB 2.1.1000.10518
Baidu IME 3.5 Baidu Japan Inc. 2014/09/17 3.5
FoxTab Video Converter 2012/04/19
GoToMeeting 6.0.0.1259 CitrixOnline 2013/11/18 6.0.0.1259
MixVideoPlayer SoftForce LLC 2015/03/14 30.7 MB v1.0.0.5
PC SpeedScan Pro Ascentive 2015/03/12 8.2.3
Search App by Ask APN, LLC 2015/03/14 3.07 MB 12.24.1.51
Shopping App by Ask 2015/02/16
YAC(Yet Another Cleaner!) ELEX DO BRASIL PARTICIPAÇÕES LTDA 2015/03/14

削除ボタンを押し、削除が完了したらパワフルスキャンを行い、検出されたごみすべてにチェックを入れて削除してください。
IUでのアンインストールが完了しましたらIUを終了させ、ATFで掃除を行ってください。
Select Allにチェックを入れ、Empty Selectedをクリックします。
ATFでの掃除が完了しましたら、ACを使用してマルウェアの掃除を行いましょう。
ACを起動させ、Scanまたはスキャンをクリックします。
スキャンが終了しましたら、Cleaningまたは除去をクリックして掃除を行います。
掃除が完了すると再起動を求められますので、指示に従って通常モードで再起動を行ってください。
これでセーフモードから通常モードに移行します。
再起動前にACのログが表示された場合、分かりやすい場所に保存しておいてください。
再起動後にACのログが表示された場合も分かりやすい場所に保存してください。

その後、CCを起動させてください。
起動したら、「ツール」→「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できますので、
デスクトップ等、分かりやすい場所に最新のログのみ保存しておきましょう。
続いて「InternetExplorer」タブのログ、導入されておられるのであれば「Firefox」タブ、
同じく導入されておられるのであれば「Google Chrome」タブ、そして「スケジュールされたタスク」タブのログを取得してください。
ただし、「コンテキストメニュー」のログは取得していただく必要がございません。
CCの各ログを取得されましたら、CCは終了させて問題ありません。
ACとCCのログを返信欄に貼り付けていただき、ご報告をお願いいたします。
上記ログを確認後、次の作業内容をご案内いたします。

大変ご親切なご指示を頂き有難う御座いました。
早速、作業を行いマルウエアの問題は解決したと思いますが、日本語入力のMicrosoft IMEが動作しなくなりgoogle日本語入力IMEをインストールして使っていますがツールバー表示が出ません。Epsonのサポートセンターとオンラインでトライしたのですが原因は分かりませんでした。致命的な問題ではないと思いますが対策があればお教え下さい。以下にACログなどを貼り付けさせて戴きますのでよろしくご指導ください。
ACのログ
# AdwCleaner v4.112 - ログファイルの作成日 19/03/2015 作成時間 01:00:18
# 更新日 09/03/2015 作成元 Xplode
# データベース : 2015-03-05.1 [ローカル]
# オペレーティングシステム : Windows 7 Home Premium Service Pack 1 (x86)
# ユーザー名 : Hamaji - HAMAJI-PC
# 実行場所 : C:\Users\Hamaji\Downloads\悪代官用ソフト\AdwCleaner.exe
# オプション : 削除

***** [ サービス ] *****

[#] サービス 削除済み項目 : SrvUpdater
[#] サービス 削除済み項目 : iSafeKrnlMon
[#] サービス 削除済み項目 : {7c722efd-1a40-4e08-aa0c-caa7161f7d43}Gw

***** [ ファイル / フォルダ ] *****

フォルダ 削除済み項目 : C:\ProgramData\baidu
フォルダ 削除済み項目 : C:\Program Files\baidu
フォルダ 削除済み項目 : C:\Program Files\SoftwareUpdater
フォルダ 削除済み項目 : C:\Users\Hamaji\AppData\LocalLow\baidu
フォルダ 削除済み項目 : C:\Users\Hamaji\AppData\Roaming\baidu
ファイル 削除済み項目 : C:\Windows\system32\drivers\{7c722efd-1a40-4e08-aa0c-caa7161f7d43}Gw.sys

***** [ スケジュールタスク ] *****

タスク 削除済み項目 : LaunchSignup
タスク 削除済み項目 : ReimageUpdater
タスク 削除済み項目 : Reimage Reminder
タスク 削除済み項目 : Super Optimizer Schedule

***** [ ショートカット ] *****

ショートカット 駆除済み項目 : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SOURCENEXT\ソースネクスト アップデート\ソースネクスト アップデート.lnk

***** [ レジストリ ] *****

キー 削除済み項目 : HKCU\Software\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
キー 削除済み項目 : HKCU\Software\Baidu
キー 削除済み項目 : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
キー 削除済み項目 : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
キー 削除済み項目 : HKLM\SOFTWARE\SoftwareUpdater
キー 削除済み項目 : HKLM\SOFTWARE\Baidu
キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater
データ 削除済み項目 : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local

***** [ Webブラウザ ] *****

-\\ Internet Explorer v11.0.9600.17689

設定 復元済み項目 : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
設定 復元済み項目 : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
設定 復元済み項目 : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
設定 復元済み項目 : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Google Chrome v

[C:\Users\Hamaji\AppData\Local\Google\Chrome\User Data\Default\Web Data] - 削除済み項目 [Search Provider] : hxxp://www.istartsurf.com/web/?type=ds&ts=1426294264&from=tugs&uid=SAMSUNGXHD502HJ_S280J9CZB00147&q={searchTerms}

-\\ Opera v0.0.0.0

[C:\Users\Hamaji\AppData\Local\Google\Chrome\User Data\Default\Web Data] - 削除済み項目 [Search Provider] : hxxp://www.istartsurf.com/web/?type=ds&ts=1426294264&from=tugs&uid=SAMSUNGXHD502HJ_S280J9CZB00147&q={searchTerms}

*************************

AdwCleaner[R0].txt - [3090 bytes] - [19/03/2015 00:58:36]
AdwCleaner[S0].txt - [2967 bytes] - [19/03/2015 01:00:18]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3026 bytes] ##########

HJTログ
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 23:32:03, on 2015/03/18
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)


Boot mode: Safe mode

Running processes:
C:\Windows\Explorer.EXE
C:\Windows\system32\ctfmon.exe
C:\Windows\helppane.exe
C:\Windows\system32\DllHost.exe
C:\Users\Hamaji\Downloads\悪代官用ソフト\HijackThis.exe
C:\Program Files\Baidu\IME\3.5.2.36\BaiduIME.exe

O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: PhishWall - {8CA7E745-EF75-4E7B-BB86-8065C0CE29CA} - C:\Program Files\SecureBrain\PhishWall\sbpw32.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1173\8.0.1173\TmBpIe32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll
O2 - BHO: GomPicker - {F0181C6E-9218-4792-9F3C-E8DF52B2F1AC} - C:\Program Files\GRETECH\GomPicker\GomPickerBHO.dll
O3 - Toolbar: Trend ツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O3 - Toolbar: PhishWall - {BB62FFF4-41CB-4AFC-BB8C-2A4D4B42BBDC} - C:\Program Files\SecureBrain\PhishWall\sbpw32.dll
O3 - Toolbar: (no name) - {4F524A2D-5354-2D53-5045-7A786E7484D7} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [LchDrv] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\LchDrvKey.exe
O4 - HKLM\..\Run: [Mhotkey] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\mHotkey.exe
O4 - HKLM\..\Run: [ShowOSD] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\OSDShow.exe
O4 - HKLM\..\Run: [NTTW_OSA_AUS] "C:\Program Files\NTTW\OSA_Aus\acs.exe" -silent
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Unattend0000000001{4EB2708E-50B2-46F4-B494-06EDD3F095C2}] C:\Program Files\EPSON Direct\初期設定ツール\epsonstartup.exe -f
O4 - HKLM\..\Run: [ModHid] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\ModHidKey.exe
O4 - HKLM\..\Run: [LedPtr] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\CnyHKey.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [Trend Micro Client Framework] "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
O4 - HKLM\..\Run: [Sourcenext.SSS.Launcher] "C:\Program Files\SOURCENEXT\ソースネクスト アップデート4\Launcher.exe" UpdateTool.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [EPSON PX-403A] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIG6J.EXE /FU "C:\Users\Hamaji\AppData\Local\Temp\E_S33CD.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [ApplicationManager] C:\Users\Hamaji\AppData\Roaming\ApplicationManager\bin\ApplicationManager.exe
O4 - HKCU\..\Run: [EPSON PX-403A (2 コピー)] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIG6J.EXE /FU "C:\Windows\TEMP\E_S6769.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: BunBackup.lnk = C:\Program Files\Nagatsuki\BunBackup\BunBackup.exe
O4 - Startup: 貼り付けマスター.lnk = C:\Program Files\harituke\harimas.exe
O4 - Global Startup: Hot!Update.lnk = ?
O4 - Global Startup: PHOTOfunSTUDIO 5.1 HD Edition.lnk = C:\Program Files\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe
O4 - Global Startup: ナルンデス CDドライブ.lnk = ?
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: 故障かな？と思ったら・・・ - {6CB1FA39-5745-4733-859F-E9C82A68F848} - C:\Program Files\NTTW\OSA_SupportTool\start_w.exe
O9 - Extra button: 本格翻訳7で翻訳 - {E491009E-97C0-411a-81B5-75FF187FC53E} - C:\Program Files\SOURCENEXT\本格翻訳7\IE\webtrans.html (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: 本格翻訳7で翻訳 - {E491009E-97C0-411a-81B5-75FF187FC53E} - C:\Program Files\SOURCENEXT\本格翻訳7\IE\webtrans.html (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [!CNS] JWord(日本語キーワード)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
O18 - Protocol: cdl - {3DD53D40-7B8B-11D0-B013-00AA0059CE02} - C:\Windows\system32\urlmon.dll
O18 - Protocol: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll
O18 - Protocol hijack: file - {79EAC9E7-BAF9-11CE-8C82-00AA004BA90B}
O18 - Protocol hijack: ftp - {79EAC9E3-BAF9-11CE-8C82-00AA004BA90B}
O18 - Protocol hijack: http - {79EAC9E2-BAF9-11CE-8C82-00AA004BA90B}
O18 - Protocol: https - {79EAC9E5-BAF9-11CE-8C82-00AA004BA90B} - C:\Windows\system32\urlmon.dll
O18 - Protocol hijack: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6}
O18 - Protocol: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Protocol: local - {79EAC9E7-BAF9-11CE-8C82-00AA004BA90B} - C:\Windows\system32\urlmon.dll
O18 - Protocol: mailto - {3050F3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
O18 - Protocol: mhtml - {05300401-BCBC-11D0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll
O18 - Protocol hijack: mk - {79EAC9E6-BAF9-11CE-8C82-00AA004BA90B}
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Protocol hijack: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B}
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1173\8.0.1173\TmBpIe32.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol hijack: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E}
O18 - Protocol: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Baidu Japanese IME Service_3.5.2.36 (BaiduJP_IME_Service_3.5.2.36) - Baidu Inc. - C:\Program Files\Baidu\IME\3.5.2.36\BaiduJPServ.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\System32\bgsvcgen.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google アップデート サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Intel Corporation - C:\Windows\system32\IProsetMonitor.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participacoes Ltda - C:\Program Files\Elex-tech\YAC\iSafeSvc.exe
O23 - Service: IviRegMgr - InterVideo - c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MixVideoPlayer Updater Service (MixVideoPlayerUpdaterService) - Unknown owner - C:\Program Files\MixVideoPlayer\MixVideoPlayerUpdaterService.exe
O23 - Service: Morrin Thumbnail Synchronized Service 5 (MrnTS_Sync5) - 株式会社モーリン - C:\Program Files\Common Files\Creoapp\MrnTS_Sync5.exe
O23 - Service: MyEPSON Connect Service - SEIKO EPSON CORPORATION - C:\Program Files\EPSON\MyEPSON Connect\mepService.exe
O23 - Service: Narundesu CDDrive Service (narusvc) - SOURCENEXT CORPORATION - C:\Program Files\SOURCENEXT\Narundesu CDDrive\narusvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - c:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Rapport Management Service (RapportMgmtService) - IBM Corp. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: SecureBrain PhishWall Update - Unknown owner - C:\Program Files\SecureBrain\PhishWall\sbpwupdx.exe (file missing)
O23 - Service: SrvUpdater - Unknown owner - C:\Program Files\SoftwareUpdater\Upd4terSrv.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

--
End of file - 13644 bytes

install.txt
3 Tor Zubba 2013/06/02
Adobe Acrobat Reader 3.0J 2013/01/10
Adobe AIR Adobe Systems Incorporated 2014/09/16 15.0.0.249
Adobe Flash Player 17 ActiveX Adobe Systems Incorporated 2015/03/14 6.00 MB 17.0.0.134
Adobe Reader XI (11.0.10) - Japanese Adobe Systems Incorporated 2014/12/10 201 MB 11.0.10
Advanced File Optimizer Systweak Software 2013/06/30 25.2 MB 2.1.1000.10518
Apple Application Support（32 ビット） Apple Inc. 2015/03/04 94.2 MB 3.1.2
Apple Mobile Device Support Apple Inc. 2015/03/04 22.5 MB 8.1.1.3
Apple Software Update Apple Inc. 2012/01/21 2.38 MB 2.1.3.127
ApplicationManager 2011.4.27.209 Beijing AJ Technology Co., Ltd 2013/12/27 2011.4.27.209
Backup 2013/05/13
Bonjour Apple Inc. 2012/10/17 1.02 MB 3.0.0.10
bookend Desktop - 2.2.8 iDOC K.K. 2012/02/04 50.2 MB
CCleaner Piriform 2015/03/18 5.03
Citrix Online Launcher Citrix 2013/11/18 274 KB 1.0.141
CoreAAC 2013/12/28
Debut 動画キャプチャソフト NCH Software 2014/12/15 1.89
Epson Event Manager SEIKO EPSON CORPORATION 2012/01/12 40.5 MB 2.50.0001
Epson Internet Print Module SEIKO EPSON CORPORATION 2014/12/21 4.0.3.0
EPSON PX-403A プリンター アンインストール SEIKO EPSON Corporation 2012/01/12
EPSON Scan Seiko Epson Corporation 2012/01/12
Epson WUG-0755 Keyboard Driver EPSON 2011/12/06 1.80.000
Express Burn ディスク書き込みソフト NCH Software 2014/04/29 4.69
FlyChart Flytec AG, 6048 Horw, Switzerland 2012/05/21 4.52.54
Forex Tester 2.9.6 Forex Tester Software 2015/03/18 107 MB
FXDD Malta - MetaTrader 4 MetaQuotes Software Corp. 2012/08/24 4.00
Golden Videos NCH Software 2014/04/29 3.01
GOM Picker Gretech Corporation 2013/12/28 1.0.0.5
Google Earth Google 2013/12/12 180 MB 7.1.2.2041
Google Toolbar for Internet Explorer Google Inc. 2015/03/04 7.5.6227.252
Hot!Update 株式会社クレオ 2012/12/29 1.11 MB 1.3
iCloud Apple Inc. 2014/12/10 58.9 MB 4.0.6.28
Intel(R) Control Center Intel Corporation 2011/12/06 1.2.1.1007
Intel(R) Management Engine Components Intel Corporation 2011/12/06 7.0.0.1118
Intel(R) Network Connections 15.7.176.0 インテル 2011/12/06 10.9 MB 15.7.176.0
Intel(R) Processor Graphics Intel Corporation 2011/12/06 8.15.10.2246
Intel(R) Rapid Storage Technology Intel Corporation 2011/12/06 10.0.0.1046
Internet Camera ActiveX 1.0.0.36 I-O DATA DEVICE, INC. 2014/11/30 3.10 MB
InterVideo WinDVD 8 InterVideo Inc. 2011/12/06 123 MB 8.0.20.153
IObit Uninstaller IObit 2015/03/18 4.2.6.2
iTunes Apple Inc. 2015/03/04 221 MB 12.1.1.4
Java 8 Update 40 Oracle Corporation 2015/03/14 76.9 MB 8.0.400
Microsoft .NET Framework 4.5.1 Microsoft Corporation 2015/03/12 38.8 MB 4.5.50938
Microsoft .NET Framework 4.5.1 (日本語) Microsoft Corporation 2015/03/12 2.93 MB 4.5.50938
Microsoft Office Personal 2010 Microsoft Corporation 2013/11/10 14.0.7015.1000
Microsoft Silverlight Microsoft Corporation 2014/12/14 272 MB 5.1.31211.0
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2010/07/09 1.72 MB 3.1.0000
Microsoft SQL Server Compact 3.5 SP1 English Microsoft Corporation 2012/01/21 2.59 MB 3.5.5692.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2012/01/02 300 KB 8.0.59193
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2013/04/29 238 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2012/01/21 586 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2012/01/22 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/12 11.1 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2015/03/18 17.3 MB 11.0.61030.0
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Microsoft Corporation 2015/02/12 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - 日本語 Microsoft Corporation 2015/02/12 10.0.50903
MPEG2 Codec(libmpeg2/mad) 2013/12/28
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2012/01/02 37.0 KB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2012/01/02 1.33 MB 4.20.9876.0
MyEPSON Connect SEIKO EPSON Corporation 2012/01/19
Nero 9 Essentials Nero AG 2011/12/06
OANDA - MetaTrader MetaQuotes Software Corp. 2015/03/04 4.00
PhishWall SecureBrain Corporation 2014/09/20 3.5.14
PHOTOfunSTUDIO 5.1 HD Edition Panasonic Corporation 2012/05/03 5.01.130
PhotoPad 写真編集ソフト NCH Software 2014/12/16 2.44
PhotoStage スライドショー作成ソフト NCH Software 2014/04/29 2.31
Phrase Finder 1.10.0.9 Phrase Finder 2015/03/12 1.10.0.9
Pixillion 画像ファイル変換ソフト NCH Software 2015/01/07 2.68
PL-2303 USB-to-Serial Prolific Technology INC 2012/05/21 1.00.000
Prism 動画ファイル変換ソフト NCH Software 2014/04/29 2.08
QuickTime 7 Apple Inc. 2014/10/29 70.2 MB 7.76.80.95
RealPlayer RealNetworks 2015/03/12 91.7 MB 16.0.4
Search App by Ask APN, LLC 2015/03/14 3.07 MB 12.24.1.51
Shopping App by Ask 2015/02/16
Switch 音声ファイル変換ソフト NCH Software 2014/05/25 4.64
VideoPad 動画編集ソフト NCH Software 2014/04/29 3.38
WavePad 音声編集ソフト NCH Software 2014/04/29 5.71
Windows Live Essentials Microsoft Corporation 2012/04/24 15.4.3555.0308
ウイルスバスター クラウド トレンドマイクロ株式会社 2013/12/13 450 MB 7.0
ズバリ日記帳 1.1.2 SOURCENEXT 2014/02/16
ソースネクスト アップデート 4.0 SOURCENEXT 2014/06/11 26.5 MB 9.09.0000
フォト ガジェット Microsoft Corporation 2011/12/06 2.10 MB 1.1.1.0
リモート接続用の Windows Live Mesh ActiveX コントロール (日本語) Microsoft Corporation 2011/12/06 5.57 MB 15.4.5722.2
最強 東大将棋４ 完全版 2013/05/05
本格翻訳7 SOURCENEXT 2012/01/21 7.00
直感マインドマップ SOURCENEXT 2012/04/25 36.8 MB 1.0.0905
筆まめ Ver.16 販売元：株式会社クレオ　開発元：株式会社モーリン 2012/12/29 402 MB 16.03.0000
診断復旧ツール 西日本電信電話株式会社 2012/12/22 14.7 MB
貼り付けver 4 attyu 2012/02/26

ACでの駆除作業は通常モードで行いましたか？
それともセーフモードで行いましたか？
この点をお知らせください。

セーフモードでHJT，IU，ATF，ACの順に使い削除と掃除した後、通常モードで再起動後CCを使い削除したと思います。2回ほど行ったのでログがなくなったような気がしました。この作業がおかしかったのかもしれません。

これまでBaiduはセーフモード時だと干渉しなかったのですが、
最近のBaiduはセーフモード時でも削除されるのを感知するとIMEの設定を書き換え、
IMEを使用不能に陥れると言うものに切り替わったと判断できます。
面倒くさいことこの上ありません。
ではまずは応急処置をご案内いたします。
ちょっと海外からのアクセスもあるため適当に英語を交えます。

IME repair(x86)

コンピューターを開いてローカルディスク(C:)→Windows→System32の中にあるctfmon.exeをダブルクリックしてください。
これでIMEの表示が出るはずです。
次にメモ帳を開いてください。
please open the notepad.
メモ帳を開いたら、以下をコピペしてください。
cut or copy text and then paste it into your notepad.

------コピペこの下から------
Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon"="C:\\Windows\\System32\\ctfmon.exe"
------コピペこの上まで------

コピペが完了しましたら、ctfmon.regと言う名前をつけて分かりやすい場所に保存してください。
change the file name is [ctfmon.reg]
保存するとアイコンの形が変わって登録エントリと出ますので、ダブルクリックして実行します。
double-click to [ctfmon.reg]
追加するけど続行するかと聞かれますのではいを押して追加してください。
push the [yes] button.
PCを再起動させてIMEが自動起動するかお試しください。
Restart Windows.
その結果をご連絡ください。

ご指示の通り作業して、ＩＭＥは問題なく自動起動しました。
一部動画再生ソフトが削除してしまった様ですが他にも入っているので問題ありません。色々とご丁寧な指導を頂き感謝しております、有難う御座いました。

IMEの件は解決ですね。
それで、ACの結果と一緒にご提示いただくことになっていたCCのスタートアップの各ログなのですが、
こちらはまだご提示いただけていないようなのですが、どうなったでしょうか。

失礼致しました、ＣＣログは下記の物だと思います。宜しくお願い致します。
ＣＣログ
有効 HKCU:Run ApplicationManager Beijing AJ Technology Co., Ltd C:\Users\Hamaji\AppData\Roaming\ApplicationManager\bin\ApplicationManager.exe
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
有効 HKCU:Run ctfmon Microsoft Corporation C:\Windows\System32\ctfmon.exe
有効 HKCU:Run EPSON PX-403A SEIKO EPSON CORPORATION C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIG6J.EXE /FU "C:\Users\Hamaji\AppData\Local\Temp\E_S33CD.tmp" /EF "HKCU"
有効 HKCU:Run EPSON PX-403A (2 コピー) SEIKO EPSON CORPORATION C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIG6J.EXE /FU "C:\Windows\TEMP\E_S6769.tmp" /EF "HKCU"
有効 HKCU:Run iCloudServices Apple Inc. C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
有効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run Google Japanese Input Prelauncher Google Inc. "C:\Program Files\Google\Google Japanese Input\GoogleIMEJaBroker32.exe" --mode=prelaunch_processes
有効 HKLM:Run HotKeysCmds Intel Corporation C:\Windows\system32\hkcmd.exe
有効 HKLM:Run IAStorIcon Intel Corporation C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
有効 HKLM:Run IME14 JPN Setup Microsoft Corporation C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
有効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run JustOnlineUpdate 株式会社ジャストシステム "C:\Program Files\Common Files\Justsystem\JustOnlineUpdate\JustOnlineUpdate.exe" /startup
有効 HKLM:Run LchDrv C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\LchDrvKey.exe
有効 HKLM:Run LedPtr Chicony C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\CnyHKey.exe
有効 HKLM:Run Mhotkey C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\mHotkey.exe
有効 HKLM:Run ModHid Chicony C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\ModHidKey.exe
有効 HKLM:Run NTTW_OSA_AUS 西日本電信電話株式会社 "C:\Program Files\NTTW\OSA_Aus\acs.exe" -silent
有効 HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
有効 HKLM:Run ShowOSD CHICONY C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\OSDShow.exe
有効 HKLM:Run Sourcenext.SSS.Launcher SOURCENEXT CORPORATION "C:\Program Files\SOURCENEXT\ソースネクスト アップデート4\Launcher.exe" UpdateTool.exe
有効 HKLM:Run TkBellExe RealNetworks, Inc. "C:\Program Files\Real\RealPlayer\update\realsched.exe" -osboot
有効 HKLM:Run Trend Micro Client Framework Trend Micro Inc. "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
有効 HKLM:Run Unattend0000000001{4EB2708E-50B2-46F4-B494-06EDD3F095C2} Epson Direct Co.,Ltd. C:\Program Files\EPSON Direct\初期設定ツール\epsonstartup.exe -f
有効 Startup Common Hot!Update.lnk InstallShield Software Corp. C:\Windows\Installer\{8BCB9FC8-EB0B-4E1A-A5BD-6E3EF48228A1}\NewShortcut2.exe
有効 Startup Common PHOTOfunSTUDIO 5.1 HD Edition.lnk Panasonic Corporation C:\Program Files\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe
無効 Startup Common スタートアップツール.lnk C:\Windows\Installer\{EB496D12-70FA-44CA-8804-9BB67A221F5D}\_06C4641EF2720B99C1FB91.exe
有効 Startup Common ナルンデス CDドライブ.lnk ソースネクスト株式会社 C:\Program Files\SOURCENEXT\Narundesu CDDrive\NaruDrvUSB.exe
有効 Startup User BunBackup.lnk Nagatsuki C:\Program Files\Nagatsuki\BunBackup\BunBackup.exe
有効 Startup User 貼り付けマスター.lnk C:\Program Files\harituke\harimas.exe

CCのスタートアップのタブのログを確認いたしましたが、こちらはWindowsタブのみのようです。
お手数ですがInternet Explorerタブ、スケジュールされたタスクタブのログも取得し、
そちらのご提示もお願いいたします。

十分理解出来ていなくて失礼しました。ＣＣのスタートアップのタブのログをお送りしますのでよろしくお願い致します。
Internet Explorerタブ
有効 Extension Messenger Companion (Ctrl+Shift+C) Microsoft Corporation C:\Program Files\Windows Live\Companion\companioncore.dll
有効 Extension このコンテンツを引用 Microsoft Corporation C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
有効 Extension 故障かな？と思ったら・・・ 西日本電信電話株式会社 C:\Program Files\NTTW\OSA_SupportTool\start_w.exe
有効 Helper ExplorerWnd Helper IObit C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
無効 Helper Google Toolbar Helper Google Inc. C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
無効 Helper GretechBHO Class Gretech Corporation C:\Program Files\GRETECH\GomPicker\GomPickerBHO.dll
有効 Helper Java(tm) Plug-In 2 SSV Helper Oracle Corporation C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll
有効 Helper Java(tm) Plug-In SSV Helper Oracle Corporation C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll
無効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL
無効 Helper PhishWall SecureBrain Corporation C:\Program Files\SecureBrain\PhishWall\sbpw32.dll
無効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1173\8.0.1173\TmBpIe32.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg.dll
無効 Helper TSToolbarBHO Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
無効 Helper Windows Live ID Sign-in Helper Microsoft Corp. C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
無効 Helper Windows Live Messenger Companion Helper Microsoft Corporation C:\Program Files\Windows Live\Companion\companioncore.dll
無効 Toolbar Google Toolbar Google Inc. C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
無効 Toolbar PhishWall SecureBrain Corporation C:\Program Files\SecureBrain\PhishWall\sbpw32.dll
無効 Toolbar Trend ツールバー Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll

スケジュールされたタスクタブのログ
有効 Task Adobe Acrobat Update Task Adobe Systems Incorporated C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
有効 Task Adobe Flash Player Updater Adobe Systems Incorporated C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task Apple Diagnostics Apple Inc. C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task Google Update C:\Windows\upr.exe
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task KsafeDelay C:\Program Files\Kingsoft\Kingsoft System Defender\KSafeTray.exe -delayruncheck
有効 Task MODLED "%ProgramFiles%\EPSON\Epson WUG-0755 Keyboard Driver\ModLEDKey.exe"
有効 Task PC SpeedScan Pro@Logon C:\Program Files\Ascentive\PC SpeedScan Pro\PCSpeedScan.exe -m
有効 Task PC SpeedScan Pro_Hamaji-PC@Hamaji C:\Program Files\Ascentive\PC SpeedScan Pro\PCSpeedScan.exe
有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-3547471505-1811248031-3271276977-1001 RealNetworks, Inc. C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe /logoncheck
有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3547471505-1811248031-3271276977-1001 RealNetworks, Inc. C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe /scheduledcheck
有効 Task RealPlayerRealUpgradeLogonTaskS-1-5-21-3547471505-1811248031-3271276977-1001 RealNetworks, Inc. C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-3547471505-1811248031-3271276977-1001 RealNetworks, Inc. C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task RealUpgradeLogonTaskS-1-5-21-3547471505-1811248031-3271276977-1001 RealNetworks, Inc. C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealUpgradeScheduledTaskS-1-5-21-3547471505-1811248031-3271276977-1001 RealNetworks, Inc. C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task RegUse C:\Program Files\RegUse\RegUse.exe -shed
有効 Task Titanium BTC Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\plugin\TMDC\TMDC.exe -btc
有効 Task Uninstaller_SkipUac_Hamaji IObit C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
有効 Task {D083A08B-9E54-4073-92F3-4D4ED8B57EE9} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "C:\Program Files\FXDD Malta - MetaTrader 4\Uninstall.exe"

Firefoxタブ
有効 Task Adobe Acrobat Update Task Adobe Systems Incorporated C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
有効 Task Adobe Flash Player Updater Adobe Systems Incorporated C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task Apple Diagnostics Apple Inc. C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task Google Update C:\Windows\upr.exe
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task KsafeDelay C:\Program Files\Kingsoft\Kingsoft System Defender\KSafeTray.exe -delayruncheck
有効 Task MODLED "%ProgramFiles%\EPSON\Epson WUG-0755 Keyboard Driver\ModLEDKey.exe"
有効 Task PC SpeedScan Pro@Logon C:\Program Files\Ascentive\PC SpeedScan Pro\PCSpeedScan.exe -m
有効 Task PC SpeedScan Pro_Hamaji-PC@Hamaji C:\Program Files\Ascentive\PC SpeedScan Pro\PCSpeedScan.exe
有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-3547471505-1811248031-3271276977-1001 RealNetworks, Inc. C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe /logoncheck
有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3547471505-1811248031-3271276977-1001 RealNetworks, Inc. C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe /scheduledcheck
有効 Task RealPlayerRealUpgradeLogonTaskS-1-5-21-3547471505-1811248031-3271276977-1001 RealNetworks, Inc. C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-3547471505-1811248031-3271276977-1001 RealNetworks, Inc. C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task RealUpgradeLogonTaskS-1-5-21-3547471505-1811248031-3271276977-1001 RealNetworks, Inc. C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealUpgradeScheduledTaskS-1-5-21-3547471505-1811248031-3271276977-1001 RealNetworks, Inc. C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task RegUse C:\Program Files\RegUse\RegUse.exe -shed
有効 Task Titanium BTC Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\plugin\TMDC\TMDC.exe -btc
有効 Task Uninstaller_SkipUac_Hamaji IObit C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
有効 Task {D083A08B-9E54-4073-92F3-4D4ED8B57EE9} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "C:\Program Files\FXDD Malta - MetaTrader 4\Uninstall.exe"

すっかり遅くなりましたが、ACの結果は良好です。
ACは必要ありませんので、ACを起動させてアンインストールボタンを押して削除なされてください。
それから前回はあえて言いませんでしたが、FX系を利用していると商用PCとみなしますので、
本来であればリカバリするかここでのご相談を辞退いただくかの二択です。
ですので次回からは金銭に関わるPCが感染したら即リカバリでお願いします。
また各種ツールが動作しなくなっても一切保証できないのは規約のとおりですので、
その点はご理解いただければと思います。

以下のソフトウェアをご用意ください。

Malwarebytes Anti-Malware（通称:MBAM）
旧バージョンダウンロード↓（ファイル直リンクです。表示して数秒後にダウンロード開始の表示が出ます）
http://www.oldapps.com/malwarebytes.php?old_malwarebytes=12090?download
最新バージョンには動作しなくなるなどの不具合があるため、ここでは旧バージョンを利用します。
インストールの最後に出てくるMalwarebytes Anti-Malware Pro版の無料試用を開始する。のチェックを外します。
このソフトウェアは日本語対応ではありますが、初回起動時は文字化けしておりますので、以下の手順で日本語化を行ってください。
MBAMを起動させてください。
MBAMを起動時に自動アップデートが始まります。
最新バージョンをダウンロードしたと表示されたら、必ずキャンセルを押してください。
次にウイルス定義ファイルのアップデートが始まりますので、アップデート終了までお待ちください。
ウイルス定義ファイルのバージョンアップが完了すると、再度最新バージョンをダウンロードしたと出ますので、
再びキャンセルを押してアップデートを中止してください。
MBAMが起動したら設定タブを開き、Languageの項目の部分をJapaneseに再度変更することで日本語化が可能です。
この段階ではスキャンは行いませんので、設定が完了したらMBAMを終了させておいてください。
最新バージョンと旧バージョンは操作方法が大幅に異なりますので、
万一バージョン2.0以降を導入されてしまった場合はご連絡ください。
片付け時はセーフモードからGeekを利用してアンインストールしてください。

ここで使うのはFree（無償版）です。

準備が完了しましたら作業を開始いたします。
CCを起動させ、ツール→スタートアップの各項目を開き、
該当するものを無効→エントリの削除の順番でクリックしてください。

スケジュールされたタスク
有効 Task PC SpeedScan Pro@Logon C:\Program Files\Ascentive\PC SpeedScan Pro\PCSpeedScan.exe -m
有効 Task PC SpeedScan Pro_Hamaji-PC@Hamaji C:\Program Files\Ascentive\PC SpeedScan Pro\PCSpeedScan.exe
有効 Task RegUse C:\Program Files\RegUse\RegUse.exe -shed
有効 Task {D083A08B-9E54-4073-92F3-4D4ED8B57EE9} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "C:\Program Files\FXDD Malta - MetaTrader 4\Uninstall.exe"

無効にできないもの、既に無効になっているものはそのままエントリの削除を、
エントリが存在しない場合は放置で先に進みましょう。
またGoogle Chrome等で削除ができない場合も放置で先に進みましょう。
CCでの作業が完了しましたら、PCをセーフモードで起動してください。
MBAMを起動させます。
フルスキャンを選択し、スキャン開始をクリックします。
スキャン終了まで30分～1時間半程度お待ちください。
スキャンが完了したら、詳細を表示をクリックします。
検出されたものの一覧が出ますので、検出されたものすべてを駆除するため、
検出されたものの左側にあるチェックボックスすべてにチェックを入れます。
すべての箇所にチェックを入れたら選択されたアイテムを隔離ボタンを押します。
処置の設定が完了するとPCの再起動を促されますので、指示に従って通常モードで再起動してください。
再起動前後にログが出ますので、取得されたログを貼り付け、ご報告をお願いいたします。

お世話になります。ＭＢＡＭのログをお送りします、よろしくお願い致します。
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

定義バージョン： v2015.03.21.01

Windows 7 Service Pack 1 x86 NTFS (セーフモード)
Internet Explorer 11.0.9600.17691
Hamaji :: HAMAJI-PC [管理者]

2015/03/21 12:26:32
mbam-log-2015-03-21 (12-26-32).txt

スキャンタイプ： フルスキャン (B:\|C:\|)
有効なスキャン領域： メモリ | スタートアップ | レジストリ | ファイルシステム | ヒューリスティック/追加アイテムのスキャン　 | ヒューリスティック/Shuriken　エンジンを使用してスキャン　 | 不審なプログラム　（PUP） | 不審な変更　（PUM）
無効なスキャン領域: ピア・ツー・ピアプログラム（P2P）
スキャンしたアイテム数: 801438
経過時間： 1 時間, 4 分, 38 秒

メモリプロセスの検出: 0
(悪意のあるアイテムは検出されていません。)

メモリモジュールの検出: 0
(悪意のあるアイテムは検出されていません。)

レジストリキーの検出: 13
HKCR\Typelib\{AAB6BCE3-1DF6-4930-9B14-9CA79DC8C267} (Adware.CnsMin) -> 正常に隔離され削除されました。
HKCR\Interface\{DF692509-D9EF-48A0-9CD0-3AA5B81F6F68} (Adware.CnsMin) -> 正常に隔離され削除されました。
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{B83FC273-3522-4CC6-92EC-75CC86678DA4} (Adware.CnsMin) -> 正常に隔離され削除されました。
HKLM\SYSTEM\CurrentControlSet\Services\pfnfd_1_10_0_9 (PUP.Optional.PhraseFinder.A) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater (PUP.Optional.SoftwareUpdater.A) -> 正常に隔離され削除されました。
HKLM\SYSTEM\CurrentControlSet\Services\SrvUpdater (PUP.Optional.SoftwareUpdater.A) -> 正常に隔離され削除されました。
HKCR\CnsHelper.CH (Adware.CnsMin) -> 正常に隔離され削除されました。
HKCR\CnsHelper.CH.1 (Adware.CnsMin) -> 正常に隔離され削除されました。
HKCU\SOFTWARE\3721 (PUP.BitSpirit) -> 正常に隔離され削除されました。
HKCU\Software\RAT (Malware.Trace) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\3721 (PUP.BitSpirit) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\PhraseFinder_1.10.0.9 (PUP.Optional.PhraseFinder.A) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\!CNS (Adware.CnsMin) -> 正常に隔離され削除されました。

レジストリ値の検出: 3
HKCU\Software\Microsoft\Internet Explorer\Main|CNSReset (Adware.CnsMin) -> データ: 4030651850 -> 正常に隔離され削除されました。
HKCU\Software\Microsoft\Internet Explorer\Main|CNSHint (Adware.CnsMin) -> データ: 1 -> 正常に隔離され削除されました。
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater|UninstallString (PUP.Optional.SoftwareUpdater) -> データ: C:\Program Files\SoftwareUpdater\uninstall.exe -> 正常に隔離され削除されました。

レジストリデータ項目の検出: 0
(悪意のあるアイテムは検出されていません。)

フォルダの検出: 5
C:\Windows\System32\config\systemprofile\AppData\Local\mixvideoplayer (PUP.Optional.MixVideoPlayer.A) -> 正常に隔離され削除されました。
C:\Windows\System32\config\systemprofile\AppData\Local\mixvideoplayer\config (PUP.Optional.MixVideoPlayer.A) -> 正常に隔離され削除されました。
C:\Windows\System32\config\systemprofile\AppData\Local\mixvideoplayer\Playlists (PUP.Optional.MixVideoPlayer.A) -> 正常に隔離され削除されました。
C:\Windows\System32\config\systemprofile\AppData\Local\mixvideoplayer\Snap (PUP.Optional.MixVideoPlayer.A) -> 正常に隔離され削除されました。
C:\Program Files\SoftwareUpdater (PUP.Optional.SoftwareUpdater.A) -> 正常に隔離され削除されました。

ファイルの検出: 17
C:\Program Files\Creoapp\Mamew16\JWord\CnsMin.dll (Adware.CnsMin) -> 正常に隔離され削除されました。
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\distro-search-protect-fix-2[1] (PUP.Optional.Searchprotect) -> 正常に隔離され削除されました。
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\distro-search-protect-fix-3[1] (PUP.Optional.Searchprotect) -> 正常に隔離され削除されました。
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\distro-search-protect-fix-4[1] (PUP.Optional.Searchprotect) -> 正常に隔離され削除されました。
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\distro-search-protect-fix-5[1] (PUP.Optional.Searchprotect) -> 正常に隔離され削除されました。
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PTDOXORB\distro-search-protect-fix[1] (PUP.Optional.Searchprotect) -> 正常に隔離され削除されました。
C:\Windows\System32\config\systemprofile\AppData\Local\mixvideoplayer\log.txt (PUP.Optional.MixVideoPlayer.A) -> 正常に隔離され削除されました。
C:\Windows\System32\config\systemprofile\AppData\Local\mixvideoplayer\config\config.ini (PUP.Optional.MixVideoPlayer.A) -> 正常に隔離され削除されました。
C:\Windows\System32\drivers\pfnfd_1_10_0_9.sys (PUP.Optional.PhraseFinder.A) -> 正常に隔離され削除されました。
C:\Program Files\SoftwareUpdater\translations.xml (PUP.Optional.SoftwareUpdater.A) -> 正常に隔離され削除されました。
C:\Program Files\SoftwareUpdater\AppsUpd4ter.exe (PUP.Optional.SoftwareUpdater.A) -> 正常に隔離され削除されました。
C:\Program Files\SoftwareUpdater\AppsUpd4ter.exe.config (PUP.Optional.SoftwareUpdater.A) -> 正常に隔離され削除されました。
C:\Program Files\SoftwareUpdater\config.xml (PUP.Optional.SoftwareUpdater.A) -> 正常に隔離され削除されました。
C:\Program Files\SoftwareUpdater\Interop.Shell32.dll (PUP.Optional.SoftwareUpdater.A) -> 正常に隔離され削除されました。
C:\Program Files\SoftwareUpdater\uninstall.exe (PUP.Optional.SoftwareUpdater.A) -> 正常に隔離され削除されました。
C:\Program Files\SoftwareUpdater\Upd4terSrv.exe (PUP.Optional.SoftwareUpdater.A) -> 正常に隔離され削除されました。
C:\Program Files\SoftwareUpdater\Upd4terSrv.exe_old (PUP.Optional.SoftwareUpdater.A) -> 正常に隔離され削除されました。

(終)

MBAMの結果は大変良好です。
MBAMは必要ありませんので、導入時の指示に従って削除なされてください。

MBAMの結果は良好です。
MBAMは必要ありませんので、導入時の指示に従って削除なされてください。

以下のソフトウェアをご用意ください。

HerdProtect(通称:HP)
http://www.herdprotect.com/downloads.aspx
インストール版でもポータブル版でも構いません。
インストール版の場合、アンインストールの際は、セーフモードでGeekを利用してアンインストールされてください。
また、トレンドマイクロのウイルスバスターとの相性が悪いとの報告も受けております。
相性の問題でスキャンが正常にできないときは、その旨をご報告ください。
さらに、本ソフトウェアにより検出されたものすべてがマルウェアと言うわけではありません。
HPは駆除機能もありますが、まずは駆除は行わず、検出のみに使用いたします。

OldTimer Listit(通称:OTL)
http://oldtimer.geekstogo.com/OTL.exe
直リンクです。デスクトップ等、分かりやすい場所に保存してください。
削除する際は起動後に「Cleanup」ボタンを押すことにより、自動的に削除されます。

準備ができましたら、まずゲームのインストーラーなど、極端に重たいファイルがある場合は、
そちらの不要ファイルを事前にPC内から手動削除し、ごみ箱からも消しておいてください。
これらをHPが不審プログラムとして拾うと、1日や2日は平気でスキャンにかかってしまいます。
PCが通常モードで起動していることを確認し、HerdProtectを起動させます。
ソフトウェアの特性として、ファイルのスキャンにインターネット回線を利用します。
インターネット回線がご利用できないセーフモード時では正常に動作しませんので、
セーフモードで起動中の場合は通常モードに切り替えてください。
Scanボタンがありますので、こちらを押してスキャンを行ってください。
スキャンに必要な情報を収集したり、発見された不審なソフトウェアを
各種セキュリティソフトで調査している間は、スキャン作業が停止します。
スキャンが進行しないからと言ってフリーズしたわけではありませんので、
スキャンが完了するまで今しばらくお待ちください。
スキャンが完了しましたらスキャン結果が表示されますので、
画面右上にあるSave resultsという文字をクリックしてログを出力してください。
ログは任意のお名前をつけて、分かりやすいところに保存してください。

以下をメモ帳にコピペしてください。

------コピペこの下より------
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
CREATERESTOREPOINT
------コピペこの上まで------

コピペが完了しましたら、任意のお名前をつけて分かりやすい場所に保存されてください。
保存が完了しましたら、PCをセーフモードで起動させてください。
OTLを起動させ、表示画面上部中央にあるScan All Usersにチェックを入れてください。
設定が完了しましたら、Custom Scan/Fixesの項目内に先ほど保存したメモ帳の内容を貼り付けてください。
コピペが完了しましたらメモ帳を終了させ、[Run Scan]をクリックしてスキャンを行ってください。
スキャン完了まで数分程度かかりますので、今しばらくお待ちください。
スキャンが完了しましたら、OTLを保存した場所と同じところに、
OTL.txtとExtras.txtが出力されますので、こちら2つと先に保存したHPのログを貼り付けてご連絡ください。
なお、OTLもHPもその特性上、非常に長文となりがちです。
こちらの掲示板の文字数上限がひらがな換算で約3万文字、ローマ字換算で約6万文字です。
(より正確には件名を含めてJIS換算65,535バイトまで。全角文字・全角記号2バイト、
半角文字・半角記号1バイト、絵文字等特殊文字3バイト)
確実に文字数オーバーとなりますので、余裕を見て5万5千文字程度になるように、
以下のURLの文字数カウンター等で確認しつつ、ログを分割されてご連絡ください。
http://www2u.biglobe.ne.jp/~yuichi/rest/strcount.html

大変遅くなりました。ログを３回に分けてお送りします、よろしくお願いします。
ログー１　Extras.txt
OTL Extras logfile created on: 2015/03/29 17:15:57 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Hamaji\Downloads
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17691)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

2.92 Gb Total Physical Memory | 2.51 Gb Available Physical Memory | 85.94% Memory free
5.83 Gb Paging File | 5.45 Gb Available in Paging File | 93.51% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 235.66 Gb Total Space | 164.85 Gb Free Space | 69.95% Space Free | Partition Type: NTFS

Computer Name: HAMAJI-PC | User Name: Hamaji | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-3547471505-1811248031-3271276977-1001\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- Reg Error: Key error.
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [スライドショーを以下を使って作成　PhotoStage スライドショー作成ソフト] -- "C:\Program Files\NCH Software\PhotoStage\photostage.exe" "%L" (NCH Software)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
"AutoUpdateDisableNotify" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03BFD1D2-AEDF-4D10-A348-885990C0430A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{04E0DCC1-A0AB-4367-B379-A945577C8A1C}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{09AA2EC9-3318-4C1F-A099-509B8D1F803F}" = rport=139 | protocol=6 | dir=out | app=system |
"{1DD52702-8E33-4F94-863E-98CEAB489B81}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
"{267CFB0C-E902-4574-B5AF-BB5F56C2CC2A}" = rport=138 | protocol=17 | dir=out | app=system |
"{2B531BC5-361C-42AD-AA28-A15E3DC2F9BC}" = rport=137 | protocol=17 | dir=out | app=system |
"{34F5C181-DA13-4185-B7B6-DEEC552CAC07}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{56B9E638-94E9-469D-B5CC-21F2B6B6F88D}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6AF8EE96-A17A-48B7-8D25-EA1D49C659E5}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{7ADF70C0-0F57-4B3E-885F-AFD98A04A84E}" = lport=137 | protocol=17 | dir=in | app=system |
"{84DF0857-9286-47D0-A915-30C3A3CDEE17}" = lport=138 | protocol=17 | dir=in | app=system |
"{8E1C1B04-C356-49BD-9A98-766DD0FD4371}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8EA5B3F4-59D7-4CEA-AB23-775EEF34FBE8}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{91943D05-F616-4C05-A3B8-6B8814AE8727}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{94A43640-6157-4F14-92BD-A03F6530738A}" = rport=445 | protocol=6 | dir=out | app=system |
"{AF03598C-4A80-4D64-8B7E-E54BBCED1532}" = lport=445 | protocol=6 | dir=in | app=system |
"{D7EDEE53-1B11-4ABE-97B0-1B5D2F7C392D}" = lport=139 | protocol=6 | dir=in | app=system |
"{E66A93F9-465E-404B-8E36-D31744FCD73E}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E785D013-C066-494F-A276-72EA0AF8DBFC}" = lport=2869 | protocol=6 | dir=in | app=system |
"{EB6544EC-255E-4FE8-B589-B1B836960575}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1A813063-F779-468D-A883-6FF777E7A119}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{208B9BC6-CB35-4610-89D7-A1C28FF86E6A}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{38B3C8B1-A2E4-4846-9347-87DF7997958A}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{82DB9CA6-D1BA-44BF-9210-56E124F04642}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{8FA66AB4-1FCD-4363-91CD-F15B598D4D6E}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{9BECB74B-1E68-4EC8-BE5D-A837FAB820B1}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{9D7D37C5-D470-4BDB-9BBF-CEAD015129B2}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{9DCEF1B5-B23A-4E17-B7B8-9CF6D40285F9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{B3215EB9-8084-4753-B638-DF6353387878}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{BA20F2B0-E5C4-48E6-BC7C-4B922416325F}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{BF6F3D6F-6315-4C8B-AA5A-72D0F48DC874}" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{C44BFD76-361D-47C6-9782-F48AA2E9A9FB}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{D0B59C4C-2673-478A-A366-5FC4C164F22C}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{E68757F9-6941-4138-BEEE-1DB0593854CB}" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{FA734E34-7BDA-4232-B243-59CEC4516D1F}" = dir=in | app=c:\program files\windows live\mesh\moe.exe |
"TCP Query User{11259696-4925-43CB-8BED-C7643BEED6BF}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"TCP Query User{424E3C6E-F0C6-4CED-B98A-66A92B1281AA}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"UDP Query User{47F4CD43-E45C-4D90-9A0D-E5385A868216}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"UDP Query User{71396904-5C3C-4B5E-9A6F-41D86CB7B76D}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{019EF473-6D0A-415C-9A2E-1AF5F66AC60F}" = Windows Live Messenger
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0E0CA282-7F32-4B0D-B427-78B9A3CBC42F}" = Messenger Companion
"{0F6340E6-201A-45A7-AAB9-0D08EEE483A4}" = ナルンデス CDドライブ
"{10AB1F40-BDEC-4A8D-B427-30F9429378B0}" = Windows Live Movie Maker
"{15D95497-8F76-41E5-8894-EDDB59E39BD9}" = Windows Live メール
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{1D01BCB8-F062-481D-A4B6-DBDC3B402FFE}" = Epson WUG-0755 Keyboard Driver
"{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}" = Rapport
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}" = Nero InfoTool Help
"{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2348B586-C9AE-46CE-936C-A68E9426E214}" = Nero StartSmart Help
"{26A24AE4-039D-4CA4-87B4-2F83218040F0}" = Java 8 Update 40
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{307ECD26-43D7-4AD4-82CF-794B63EDF096}" = Citrix Online Launcher
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{3361D415-BA35-4143-B301-661991BA6219}" = MyEPSON Connect
"{33CF58F5-48D8-4575-83D6-96F574E4D83A}" = Nero DriveSpeed
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{3A9FE6B1-EE7F-40AC-B831-AC7C9ABB58A0}" = iTunes
"{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}" = QuickTime 7
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3EABDB76-D290-4640-8D38-1077EAD855C2}" = Windows Live Remote Client Resources
"{447CDCE5-F555-429B-BFA6-642C3C6D684F}" = Apple Application Support（32 ビット）
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}" = Google Earth
"{4D5EF092-01A6-490D-82CC-5D5D8C8EA4A0}" = Windows Live Remote Service Resources
"{4DC59BF3-0D72-3CE8-BFEF-1E8FAF689EB0}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
"{4F524A2D-5350-4500-76A7-A758B70C1801}" = Search App by Ask
"{55641498-D428-4EE8-9694-5534706C4A62}" = JUSTｵﾝﾗｲﾝｱｯﾌﾟﾃﾞｰﾄ
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{56CB4ACA-C79E-439D-B55E-68EA8D57C467}" = Google 日本語入力
"{595A3116-40BB-4E0F-A2E8-D7951DA56270}" = NeroExpress
"{60C731FB-C951-41CE-AD41-8E54C8594609}" = Nero Disc Copy Gadget Help
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{62AC81F6-BDD3-4110-9D36-3E9EAAB40999}" = Nero CoverDesigner
"{63B92EB0-446C-3778-9E6B-C1BE202FE44F}" = Microsoft .NET Framework 4.5.1 (JPN)
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{675D8E1E-2388-4718-902C-E5FC4888AC0E}" = Windows Live Essentials
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6C3F8916-D6A5-4A31-9DA8-80C973CE437F}" = Windows Live Writer
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7134EF35-DA07-41F8-A71F-66709E194BB5}" = Windows Live Mesh
"{7563BD4B-B79A-4B5A-8B50-C9A9FF401E11}" = 本格翻訳7
"{760BB327-3973-4608-85C8-88162E2FF3B6}" = iCloud
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{7829DB6F-A066-4E40-8912-CB07887C20BB}" = Nero BurnRights
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7BBAEC47-1CC0-4CB8-ADB4-531B78DBD1DD}" = Adobe AIR
"{7FBAD091-89F7-4C77-A224-15FF4423C7D2}" = RealDownloader
"{83202942-84B3-4C50-8622-B8C0AA2D2885}" = Nero Express Help
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{869200DB-287A-4DC0-B02B-2B6787FBCD4C}" = Nero DiscSpeed
"{88A686A9-D687-4295-B633-50D8A4B88371}" = Windows Live Writer Resources
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A3D9F87-17A3-41BF-A6F1-65AFA3975387}" = Epson Internet Print Module
"{8A66A2C8-0032-4949-8D99-C293A3EACF79}" = Windows Live Photo Common
"{8BCB9FC8-EB0B-4E1A-A5BD-6E3EF48228A1}" = Hot!Update
"{8C0B0C9E-60E6-48CD-8080-615A6D271C0F}" = PhishWall
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8C9B6B1F-0A8E-402A-A60C-110BBB38D67E}" = Intel(R) Network Connections 15.7.176.0
"{8D59BE38-3A4F-4525-AD0D-8980E9E31EFA}" = Windows Live フォト ギャラリー
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90140000-0016-0411-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Japanese) 2010
"{90140000-001A-0411-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Japanese) 2010
"{90140000-001B-0411-0000-0000000FF1CE}" = Microsoft Office Word MUI (Japanese) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0411-0000-0000000FF1CE}" = Microsoft Office Proof (Japanese) 2010
"{90140000-0028-0411-0000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2010
"{90140000-002C-0411-0000-0000000FF1CE}" = Microsoft Office Proofing (Japanese) 2010
"{90140000-006E-0411-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Japanese) 2010
"{91140000-0033-0000-0000-0000000FF1CE}" = Microsoft Office Personal 2010
"{92DB6D98-63FE-47EC-A331-5CFD283581BA}" = ソースネクスト アップデート 4.0
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1041" = Microsoft .NET Framework 4.5.1 (日本語)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95419CFE-B8A3-59D0-3503-4D2E65781DBB}" = FXTS TRADER
"{959282E3-55A9-49D8-B885-D27CF8A2FD82}" = PHOTOfunSTUDIO 5.1 HD Edition
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}" = RealNetworks - Microsoft Visual C++ 2010 Runtime
"{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}" = ウイルスバスター クラウド
"{ABBD4BA9-6703-40D2-AB1E-5BB1F7DB49A4}" = Trend Micro Titanium
"{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1041-7B44-AB0000000001}" = Adobe Reader XI (11.0.10) - Japanese
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B1ED2BD0-F18E-4A06-A6FA-5184CF13B9D5}" = 直感マインドマップ
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{BAF0CA91-4642-46C8-9BCD-C93B61508701}" = リモート接続用の Windows Live Mesh ActiveX コントロール (日本語)
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade
"{CC019E3F-59D2-4486-8D4B-878105B62A71}" = Nero DiscSpeed Help
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CE96F5A5-584D-4F8F-AA3E-9BAED413DB72}" = Nero CoverDesigner Help
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{da6f01a5-d5c2-49a4-86b8-2a585771a460}" = Nero 9 Essentials
"{DDDD9B6F-94D0-4052-810E-0C5CC4AB68C6}" = 筆まめ Ver.16
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1DB0812-2D60-43DB-AE09-6C7027D93B28}" = Apple Mobile Device Support
"{E3AE96D6-E196-45B4-AF62-2B41998B9E37}" = UpdateService
"{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}" = Microsoft SQL Server Compact 3.5 SP1 English
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E5C7D048-F9B4-4219-B323-8BDB01A2563D}" = Nero DriveSpeed Help
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{EE408577-9C0E-4E5F-BCB2-DB5B3A220958}" = Windows Live UX Platform Language Pack
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1861F30-3419-44DB-B2A1-C274825698B3}" = Nero Disc Copy Gadget
"{F3062A84-7782-4310-82CF-E71960D0EE5A}" = フォト ガジェット
"{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}" = Nero ControlCenter
"{F5EC7F6B-B68B-433C-AA20-54EDFE76191D}_is1" = Forex Tester 2.9.6
"{F6BDD7C5-89ED-4569-9318-469AA9732572}" = Nero BurnRights Help
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FA9D303D-0FB2-49C7-9397-8E6B11EA892D}" = Epson Event Manager
"{FBCDFD61-7DCF-4E71-9226-873BA0053139}" = Nero InfoTool
"{FE1364D8-5E88-33BA-807B-FC00D3FC4A79}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - JPN
"Adobe Acrobat Reader 3.0J" = Adobe Acrobat Reader 3.0J
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 17 ActiveX
"Advanced File Optimizer_is1" = Advanced File Optimizer
"ApplicationManager" = ApplicationManager 2011.4.27.209
"atonline/sndiary_is1" = ズバリ日記帳 1.1.2
"Backup" = Backup
"CCleaner" = CCleaner
"com.fxtsys.FXTSTrader" = FXTS TRADER
"CoreAAC" = CoreAAC
"Debut" = Debut 動画キャプチャソフト
"EPSON PX-403A" = EPSON PX-403A プリンター アンインストール
"EPSON Scanner" = EPSON Scan
"ExpressBurn" = Express Burn ディスク書き込みソフト
"FlyChart" = FlyChart
"FXDD Malta - MetaTrader 4" = FXDD Malta - MetaTrader 4
"GoldenVideos" = Golden Videos
"GOM Picker" = GOM Picker
"Google Chrome" = Google Chrome
"InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8
"InstallShield_{8BCB9FC8-EB0B-4E1A-A5BD-6E3EF48228A1}" = Hot!Update
"IObitUninstall" = IObit Uninstaller
"IOData IPCamPluginHMPT_is1" = Internet Camera ActiveX 1.0.0.36
"Microsoft Visual Studio 2010 Tools for Office Runtime (x86)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
"Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - JPN" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - 日本語
"Mozilla Firefox 36.0.1 (x86 ja)" = Mozilla Firefox 36.0.1 (x86 ja)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MPEG2 Codec(libmpeg2/mad)" = MPEG2 Codec(libmpeg2/mad)
"MyEPSON Connect" = MyEPSON Connect
"OANDA - MetaTrader" = OANDA - MetaTrader
"Office14.PERSONALR" = Microsoft Office Personal 2010
"PhotoPad" = PhotoPad 写真編集ソフト
"PhotoStage" = PhotoStage スライドショー作成ソフト
"PhraseFinder_1.10.0.9" = Phrase Finder 1.10.0.9
"Pixillion" = Pixillion 画像ファイル変換ソフト
"Prism" = Prism 動画ファイル変換ソフト
"PROSetDX" = Intel(R) Network Connections 15.7.176.0
"Rapport_msi" = Trusteerエンドポイント保護
"RealPlayer 16.0" = RealPlayer
"SoftwareUpdater" = SoftwareUpdater
"Switch" = Switch 音声ファイル変換ソフト
"VideoPad" = VideoPad 動画編集ソフト
"WavePad" = WavePad 音声編集ソフト
"WinLiveSuite" = Windows Live Essentials
"最強 東大将棋４ 完全版" = 最強 東大将棋４ 完全版
"診断復旧ツール_is1" = 診断復旧ツール
"貼り付け_is1" = 貼り付けver 4

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-3547471505-1811248031-3271276977-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{E2A1063B-B0CA-4103-80BF-2AB41F17F986}_is1" = bookend Desktop - 2.2.8
"3 Tor" = 3 Tor

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2015/03/28 1:51:12 | Computer Name = Hamaji-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 999

Error - 2015/03/28 1:51:13 | Computer Name = Hamaji-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2015/03/28 1:51:13 | Computer Name = Hamaji-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 1997

Error - 2015/03/28 1:51:13 | Computer Name = Hamaji-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 1997

Error - 2015/03/28 1:51:14 | Computer Name = Hamaji-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2015/03/28 1:51:14 | Computer Name = Hamaji-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 2996

Error - 2015/03/28 1:51:14 | Computer Name = Hamaji-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2996

Error - 2015/03/28 1:51:15 | Computer Name = Hamaji-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2015/03/28 1:51:15 | Computer Name = Hamaji-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 3994

Error - 2015/03/28 1:51:15 | Computer Name = Hamaji-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 3994

[ Media Center Events ]
Error - 2013/05/17 1:43:00 | Computer Name = Hamaji-PC | Source = MCUpdate | ID = 0
Description = 14:43:00 - Directory を取得できませんでした (エラー: HTTP ステータス 403: Forbidden で要求が失敗しました。)


Error - 2013/05/17 1:43:01 | Computer Name = Hamaji-PC | Source = MCUpdate | ID = 0
Description = 14:43:01 - MCESpotlight を取得できませんでした (エラー: HTTP ステータス 403: Forbidden
で要求が失敗しました。)

Error - 2013/05/17 1:43:03 | Computer Name = Hamaji-PC | Source = MCUpdate | ID = 0
Description = 14:43:02 - MCEClientUX を取得できませんでした (エラー: HTTP ステータス 403: Forbidden
で要求が失敗しました。)

Error - 2013/05/17 6:24:55 | Computer Name = Hamaji-PC | Source = MCUpdate | ID = 0
Description = 19:24:55 - Directory を取得できませんでした (エラー: HTTP ステータス 403: Forbidden で要求が失敗しました。)


Error - 2013/05/17 6:24:58 | Computer Name = Hamaji-PC | Source = MCUpdate | ID = 0
Description = 19:24:57 - MCESpotlight を取得できませんでした (エラー: HTTP ステータス 403: Forbidden
で要求が失敗しました。)

Error - 2013/05/17 6:24:59 | Computer Name = Hamaji-PC | Source = MCUpdate | ID = 0
Description = 19:24:58 - MCEClientUX を取得できませんでした (エラー: HTTP ステータス 403: Forbidden
で要求が失敗しました。)

Error - 2013/05/17 7:25:33 | Computer Name = Hamaji-PC | Source = MCUpdate | ID = 0
Description = 20:25:33 - MCEClientUX を取得できませんでした (エラー: HTTP ステータス 403: Forbidden
で要求が失敗しました。)

Error - 2013/05/17 8:25:51 | Computer Name = Hamaji-PC | Source = MCUpdate | ID = 0
Description = 21:25:51 - MCEClientUX を取得できませんでした (エラー: Invalid security token.)

[ System Events ]
Error - 2015/03/29 4:10:25 | Computer Name = Hamaji-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/03/29 4:10:26 | Computer Name = Hamaji-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/03/29 4:10:28 | Computer Name = Hamaji-PC | Source = DCOM | ID = 10005
Description =

Error - 2015/03/29 4:10:28 | Computer Name = Hamaji-PC | Source = DCOM | ID = 10005
Description =

Error - 2015/03/29 4:10:29 | Computer Name = Hamaji-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/03/29 4:10:29 | Computer Name = Hamaji-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/03/29 4:10:29 | Computer Name = Hamaji-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/03/29 4:10:29 | Computer Name = Hamaji-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/03/29 4:10:29 | Computer Name = Hamaji-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068

Error - 2015/03/29 4:10:29 | Computer Name = Hamaji-PC | Source = Service Control Manager | ID = 7001
Description = Network List Service サービスは、次のエラーが原因で開始できなかった Network Location Awareness
サービスに依存しています: %%1068


< End of report >

ログー２　OTL.txt
OTL logfile created on: 2015/03/29 17:15:57 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Hamaji\Downloads
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17691)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

2.92 Gb Total Physical Memory | 2.51 Gb Available Physical Memory | 85.94% Memory free
5.83 Gb Paging File | 5.45 Gb Available in Paging File | 93.51% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 235.66 Gb Total Space | 164.85 Gb Free Space | 69.95% Space Free | Partition Type: NTFS

Computer Name: HAMAJI-PC | User Name: Hamaji | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2015/03/29 17:01:15 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Hamaji\Downloads\OTL.exe
PRC - [2011/02/25 14:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/07/14 10:14:21 | 000,497,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\HelpPane.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - File not found [Auto | Stopped] -- C:\Program Files\SecureBrain\PhishWall\sbpwupdx.exe -- (SecureBrain PhishWall Update)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -- (Amsp)
SRV - [2015/03/29 03:24:58 | 000,106,496 | ---- | M] () [Auto | Stopped] -- C:\Program Files\SoftwareUpdater\Upd4terSrv.exe -- (SrvUpdater)
SRV - [2015/03/18 22:33:53 | 002,635,552 | ---- | M] (IObit) [Auto | Stopped] -- C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc)
SRV - [2015/03/14 05:39:01 | 000,268,464 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015/03/05 22:06:22 | 000,148,080 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2015/02/20 10:56:53 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2015/02/12 09:59:54 | 001,919,256 | ---- | M] (IBM Corp.) [Auto | Stopped] -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe -- (RapportMgmtService)
SRV - [2014/12/19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/07/30 05:04:26 | 000,023,552 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe -- (RealPlayerUpdateSvc)
SRV - [2014/07/30 02:17:08 | 000,039,568 | ---- | M] () [Auto | Stopped] -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013/12/18 01:56:16 | 000,754,712 | ---- | M] (Google Inc.) [Auto | Stopped] -- C:\Program Files\Google\Google Japanese Input\GoogleIMEJaCacheService.exe -- (GoogleIMEJaCacheService)
SRV - [2013/05/27 13:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012/10/01 14:53:32 | 000,696,320 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Stopped] -- C:\Program Files\EPSON\MyEPSON Connect\mepService.exe -- (MyEPSON Connect Service)
SRV - [2010/10/06 13:08:48 | 002,655,768 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/10/06 13:08:44 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/09/22 01:05:22 | 000,110,752 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Windows\System32\IPROSetMonitor.exe -- (Intel(R)
SRV - [2010/09/13 18:32:32 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/03/17 17:26:24 | 000,935,208 | ---- | M] (Nero AG) [Auto | Stopped] -- c:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009/07/14 10:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/03/09 20:14:50 | 000,145,256 | ---- | M] (SOURCENEXT CORPORATION) [Auto | Stopped] -- C:\Program Files\SOURCENEXT\Narundesu CDDrive\narusvc.exe -- (narusvc)
SRV - [2007/06/15 12:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto | Stopped] -- C:\Windows\System32\bgsvcgen.exe -- (bgsvcgen)
SRV - [2007/01/04 19:48:50 | 000,112,152 | ---- | M] (InterVideo) [Auto | Stopped] -- c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)
SRV - [2005/09/02 12:08:32 | 000,262,144 | ---- | M] (株式会社モーリン) [Auto | Stopped] -- C:\Program Files\Common Files\Creoapp\MrnTS_Sync5.exe -- (MrnTS_Sync5)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Hamaji\AppData\Local\Temp\cpuz134\cpuz134_x32.sys -- (cpuz134)
DRV - File not found [Kernel | Boot | Stopped] -- -- (cdrbsvsd)
DRV - [2015/02/24 11:11:37 | 000,472,152 | ---- | M] (IBM Corp.) [Kernel | System | Stopped] -- C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_80128.sys -- (RapportCerberus_80128)
DRV - [2015/02/12 10:00:04 | 000,332,696 | ---- | M] (IBM Corp.) [Kernel | System | Stopped] -- C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys -- (RapportPG)
DRV - [2015/02/12 10:00:04 | 000,251,640 | ---- | M] (IBM Corp.) [Kernel | System | Stopped] -- C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys -- (RapportEI)
DRV - [2015/02/12 10:00:04 | 000,208,856 | ---- | M] (IBM Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RapportKELL.sys -- (RapportKELL)
DRV - [2013/12/03 17:56:54 | 000,103,416 | ---- | M] (Trend Micro Inc.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\tmactmon.sys -- (tmactmon)
DRV - [2013/12/03 17:56:50 | 000,083,864 | ---- | M] (Trend Micro Inc.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\tmevtmgr.sys -- (tmevtmgr)
DRV - [2013/12/03 17:56:46 | 000,290,376 | ---- | M] (Trend Micro Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tmcomm.sys -- (tmcomm)
DRV - [2013/06/13 15:35:06 | 000,085,280 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tmeevw.sys -- (tmeevw)
DRV - [2013/05/23 00:37:29 | 000,282,272 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tmnciesc.sys -- (tmnciesc)
DRV - [2012/05/03 04:27:24 | 000,092,304 | ---- | M] (Trend Micro Inc.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\tmtdi.sys -- (tmtdi)
DRV - [2010/11/20 19:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 18:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/10/28 08:41:02 | 000,238,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1c6232.sys -- (e1cexpress)
DRV - [2010/09/22 01:59:02 | 000,041,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (MEI)
DRV - [2009/07/14 08:12:52 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2009/03/09 20:12:52 | 000,021,352 | ---- | M] (ソースネクスト株式会社) [Kernel | System | Running] -- C:\Windows\System32\drivers\ndvcde.sys -- (ndvcde)
DRV - [2009/03/09 20:12:24 | 000,132,584 | ---- | M] (ソースネクスト株式会社) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndvcd.sys -- (ndvcd)
DRV - [2007/12/07 12:23:00 | 000,032,256 | ---- | M] (ソースネクスト株式会社) [Kernel | System | Running] -- C:\Windows\System32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
DRV - [2007/04/17 20:09:28 | 000,011,032 | ---- | M] (InterVideo) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\regi.sys -- (regi)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.jword.jp/jwd_sb_srchcust.htm?ielang={SUB_RFC1766}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.jword.jp/jwd_sb_srchasst.htm?ielang={SUB_RFC1766}
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://search.yahoo.co.jp/search?fr=sb-kingbrw1&ei=UTF-8&p={searchTerms}
IE - HKLM\..\SearchScopes\{8A6ADC43-1384-43A8-AC57-B872AA7C78A5}: "URL" = http://www.bing.com/search?q={searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=samsungxhd502hj_s280j9czb00147
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=samsungxhd502hj_s280j9czb00147
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=samsungxhd502hj_s280j9czb00147
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=samsungxhd502hj_s280j9czb00147
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:Tabs
IE - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.epson.jp [binary data]
IE - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
IE - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\..\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADRA_jaJP469
IE - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\..\SearchScopes\{9B3308F5-D534-4F52-A783-C2C030A47F37}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADRA_jaJP469
IE - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\..\SearchScopes\{CE6FC966-CF94-4B50-8DF1-2DCE2FACFAF9}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADRA_jaJP469
IE - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\..\SearchScopes\3C0FAFDDA7BA4209B6C9CE45D8858170: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADRA_jaJP469
IE - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.countryCode: "JP"
FF - prefs.js..browser.search.region: "JP"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:36.0.1
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.40.2: C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2: C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.31211.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.4.19: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=17.0.13: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.4.19: c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@citrixonline.com/appdetectorplugin: C:\Users\Hamaji\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
FF - HKCU\Software\MozillaPlugins\@keyring.net/bookendclient: C:\Users\Hamaji\AppData\Roaming\bookend\library\Bookend\app\win-2.2.8\npbeplugin.dll (iDOC K.K.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{38783831-6098-4faa-A9C9-1EE1E343F4D2}: C:\Program Files\NTTW\Security\AMSP\Module\20002\7.1.1104\7.1.1104\firefoxextension [2013/02/26 08:25:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014/09/17 05:41:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\tmbepff@trendmicro.com: C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1173\8.0.1173\firefoxextension [2014/12/21 00:14:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{22181a4d-af90-4ca3-a569-faed9118d6bc}: C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2013/12/13 01:09:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{22C7F6C6-8D67-4534-92B5-529A0EC09405}: C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension\ [2014/04/28 16:12:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{9D2AA73B-6049-4799-B8AC-925723370070}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2014/09/17 05:41:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 36.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 36.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2015/03/19 09:35:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Hamaji\AppData\Roaming\mozilla\Extensions
[2015/03/27 12:30:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Hamaji\AppData\Roaming\mozilla\Firefox\Profiles\2ukdlcu6.default\extensions
[2015/03/19 09:35:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2015/03/19 09:35:00 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2015/03/27 12:39:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions
[2015/03/27 12:39:34 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Hamaji\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\Hamaji\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocofgjipfjnombjenfaghmlelanfgfpa\1.0.0.57_0\

O1 HOSTS File: ([2009/06/11 06:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - {4F524A2D-5354-2D53-5045-7A786E7484D7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\..\Toolbar\WebBrowser: (no name) - {4F524A2D-5354-2D53-5045-7A786E7484D7} - No CLSID value found.
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Google Japanese Input Prelauncher] C:\Program Files\Google\Google Japanese Input\GoogleIMEJaBroker32.exe (Google Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [JustOnlineUpdate] C:\Program Files\Common Files\Justsystem\JustOnlineUpdate\JustOnlineUpdate.exe (株式会社ジャストシステム)
O4 - HKLM..\Run: [LchDrv] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\LchDrvKey.exe ()
O4 - HKLM..\Run: [LedPtr] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\CNYHKey.exe (Chicony)
O4 - HKLM..\Run: [Mhotkey] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\mHotkey.exe ()
O4 - HKLM..\Run: [ModHid] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\ModHIDKey.exe (Chicony)
O4 - HKLM..\Run: [NTTW_OSA_AUS] C:\Program Files\NTTW\OSA_Aus\acs.exe (西日本電信電話株式会社)
O4 - HKLM..\Run: [ShowOSD] C:\Program Files\EPSON\Epson WUG-0755 Keyboard Driver\OSDShow.exe (CHICONY)
O4 - HKLM..\Run: [Sourcenext.SSS.Launcher] "C:\Program Files\SOURCENEXT\ソースネクスト アップデート4\Launcher.exe" UpdateTool.exe File not found
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Trend Micro Client Framework] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe (Trend Micro Inc.)
O4 - HKLM..\Run: [Unattend0000000001{4EB2708E-50B2-46F4-B494-06EDD3F095C2}] C:\Program Files\EPSON Direct\初期設定ツール\epsonstartup.exe (Epson Direct Co.,Ltd.)
O4 - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001..\Run: [ApplicationManager] C:\Users\Hamaji\AppData\Roaming\ApplicationManager\bin\ApplicationManager.exe (Beijing AJ Technology Co., Ltd)
O4 - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001..\Run: [EPSON PX-403A] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATIG6J.EXE (SEIKO EPSON CORPORATION)
O4 - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001..\Run: [EPSON PX-403A (2 コピー)] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATIG6J.EXE (SEIKO EPSON CORPORATION)
O4 - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Hamaji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BunBackup.lnk = C:\Program Files\Nagatsuki\BunBackup\BunBackup.exe (Nagatsuki)
O4 - Startup: C:\Users\Hamaji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\貼り付けマスター.lnk = C:\Program Files\harituke\harimas.exe ( )
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 221
O7 - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: 故障かな？と思ったら・・・ - {6CB1FA39-5745-4733-859F-E9C82A68F848} - C:\Program Files\NTTW\OSA_SupportTool\start_w.exe (西日本電信電話株式会社)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{457F08A3-3F07-411F-9593-89E9601158B6}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1173\8.0.1173\TmBpIe32.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmtb {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmtbim {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{5c81a2c4-9518-11e3-8283-e0699545a1f0}\Shell - "" = AutoRun
O33 - MountPoints2\{5c81a2c4-9518-11e3-8283-e0699545a1f0}\Shell\AutoRun\command - "" = G:\SUGOI-EasyCopy.exe
O33 - MountPoints2\{ed8da84d-ad66-11e3-8b4b-e0699545a1f0}\Shell - "" = AutoRun
O33 - MountPoints2\{ed8da84d-ad66-11e3-8b4b-e0699545a1f0}\Shell\AutoRun\command - "" = E:\SUGOI-EasyCopy.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Unable to start System Restore Service. Error code 1084

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015/03/29 08:15:40 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{B9E63567-D196-4D97-A540-7057D6E36C32}
[2015/03/28 14:16:23 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{4012016E-57E6-432C-8D9A-D4A902A10732}
[2015/03/28 00:05:40 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{32684146-36B0-477C-B14C-1159D0288EA4}
[2015/03/27 11:48:54 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{4D1ECA2F-0F03-4D83-BDC8-1B569714E6D0}
[2015/03/26 21:35:51 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{BEE88526-0303-4303-AAD3-ECC18F03696B}
[2015/03/26 09:34:42 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{4ACC5C58-A99B-4910-A347-EC626B395491}
[2015/03/25 21:08:23 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{E62462DF-BF10-41C1-8BB9-D55D9C5ADEFC}
[2015/03/25 11:32:00 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\Apple
[2015/03/25 09:07:59 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{E99DA558-4824-455B-856C-9060F863DDC5}
[2015/03/25 09:03:14 | 000,892,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2015/03/25 09:03:14 | 000,818,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appraiser.dll
[2015/03/25 09:03:14 | 000,623,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\invagent.dll
[2015/03/25 09:03:14 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2015/03/25 09:03:14 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devinv.dll
[2015/03/25 09:03:14 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2015/03/25 09:03:14 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2015/03/25 09:03:14 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\acmigration.dll
[2015/03/24 21:07:24 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{D94ABCD5-6749-43F2-9DCE-C991D12C08AA}
[2015/03/24 11:41:30 | 000,000,000 | ---D | C] -- C:\Program Files\Reason
[2015/03/24 09:06:19 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{B8872652-28B2-47DB-85C7-64B09A7E3858}
[2015/03/23 12:16:15 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{900288B3-BCF1-485A-BA95-BFC8672D01E5}
[2015/03/22 15:01:59 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{96C70AC6-67C3-4C4C-B93A-12D9F38E01AE}
[2015/03/22 10:21:26 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{1D7AF3C3-EBA2-4F06-A244-AFDE550570B9}
[2015/03/21 14:53:31 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{47B0288D-8010-4CFC-BC61-C402FC572F0E}
[2015/03/21 14:14:21 | 000,000,000 | ---D | C] -- C:\Program Files\SoftwareUpdater
[2015/03/21 11:47:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2015/03/21 11:47:05 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2015/03/21 11:22:16 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Roaming\Malwarebytes
[2015/03/21 11:21:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/03/20 20:23:04 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{7DE800F4-F874-41FA-B159-A6B54C30718A}
[2015/03/20 07:03:26 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{EEE4474F-B5F6-4AD8-BCA5-75EAF9D685D0}
[2015/03/19 22:07:59 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\Apple Computer
[2015/03/19 16:53:22 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{2DCCC76F-38B2-46D5-9382-66D1134D810A}
[2015/03/19 09:41:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2015/03/19 09:35:12 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Roaming\Mozilla
[2015/03/19 09:35:12 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\Mozilla
[2015/03/19 09:35:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2015/03/19 09:35:04 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2015/03/19 09:34:57 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2015/03/19 09:14:26 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\Adobe
[2015/03/19 07:30:39 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Roaming\Justsystem
[2015/03/19 07:29:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JUSTオンラインアップデート
[2015/03/19 07:28:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Justsystem
[2015/03/19 07:28:56 | 000,000,000 | ---D | C] -- C:\Program Files\JustSystems
[2015/03/19 00:16:50 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{B8F0086E-F68A-4FDA-AA68-C19D720817E3}
[2015/03/18 22:34:05 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Roaming\ProductData
[2015/03/18 22:33:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
[2015/03/18 22:33:58 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2015/03/18 22:33:57 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2015/03/18 22:33:53 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2015/03/18 22:33:42 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Roaming\IObit
[2015/03/18 09:44:40 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{478A4794-E847-4296-AB7B-CB25F3BAE5EE}
[2015/03/18 00:23:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Forex Tester 2
[2015/03/18 00:23:49 | 000,000,000 | ---D | C] -- C:\ForexTester2
[2015/03/17 21:21:24 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{8365C413-7609-4CD7-8A53-DDDA1C2F5C1E}
[2015/03/17 09:20:59 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{4B3B06BE-F296-44A5-BAE0-17F140331795}
[2015/03/16 21:20:22 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{CEDA5460-73BF-4A63-86AB-E9970E9FD55E}
[2015/03/16 09:19:17 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{A4F1CA0A-E948-4FD6-9BBB-E939741FC803}
[2015/03/16 07:28:45 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Roaming\idesktop
[2015/03/15 19:55:00 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{BA5AC788-DA68-4401-AA67-76A5DCF7B39A}
[2015/03/14 23:17:32 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{28BBD28E-A6B8-47A4-8C98-36CF6C98B3DE}
[2015/03/14 11:16:24 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{CBFDE680-2023-43D7-8132-88ABCC9FE313}
[2015/03/14 10:19:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
[2015/03/14 10:18:51 | 000,000,000 | ---D | C] -- C:\rei
[2015/03/14 09:55:05 | 000,000,000 | ---D | C] -- C:\ProgramData\{a7b9c265-e4ef-efbb-a7b9-9c265e4e0997}
[2015/03/13 23:15:42 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{96120257-AAF9-4E0A-A6AF-70951A10A9A8}
[2015/03/13 09:23:44 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{E7953090-1945-43A3-84F5-D53D7631014D}
[2015/03/12 19:35:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Auslogics
[2015/03/12 14:33:51 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{132E8E53-3589-490D-AAC8-B462AFCDB4A5}
[2015/03/12 11:18:27 | 000,000,000 | ---D | C] -- C:\Program Files\ReviverSoft
[2015/03/12 11:12:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2015/03/12 11:10:12 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\MiniService
[2015/03/12 11:10:12 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Baidu
[2015/03/12 02:32:45 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{B80B4103-6A9A-41EB-9A0C-CA87B6C23A76}
[2015/03/11 09:33:56 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{2093A778-8DB6-4DFB-AC61-54F02C773A6C}
[2015/03/11 09:16:50 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2015/03/11 09:16:50 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2015/03/11 09:16:50 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msaudite.dll
[2015/03/11 09:16:50 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll
[2015/03/11 09:16:50 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
[2015/03/11 09:16:50 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2015/03/11 09:16:44 | 002,381,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2015/03/11 09:16:44 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2015/03/11 09:16:44 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2015/03/11 09:16:44 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2015/03/11 09:16:43 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2015/03/11 09:16:43 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2015/03/11 09:16:43 | 000,689,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2015/03/11 09:16:43 | 000,684,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2015/03/11 09:16:43 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2015/03/11 09:16:43 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2015/03/11 09:16:43 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2015/03/11 09:16:43 | 000,342,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2015/03/11 09:16:43 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2015/03/11 09:16:43 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2015/03/11 09:16:43 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2015/03/11 09:16:42 | 002,052,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2015/03/11 09:16:42 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2015/03/11 09:16:42 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2015/03/11 09:16:42 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2015/03/11 09:16:41 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2015/03/11 09:16:41 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2015/03/11 09:16:40 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2015/03/11 09:16:40 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2015/03/11 09:16:38 | 004,300,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2015/03/11 09:14:09 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ubpm.dll
[2015/03/11 09:14:08 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2015/03/11 09:14:08 | 000,299,008 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2015/03/11 09:14:08 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2015/03/11 09:14:08 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2015/03/11 09:14:08 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2015/03/11 09:14:03 | 003,209,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2015/03/11 09:14:03 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmv2clt.dll
[2015/03/11 09:14:03 | 000,744,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\blackbox.dll
[2015/03/11 09:14:03 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmsdk.dll
[2015/03/11 09:14:02 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmmgrtn.dll
[2015/03/11 09:14:01 | 003,973,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2015/03/11 09:14:01 | 003,917,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2015/03/11 09:14:01 | 001,329,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2015/03/11 09:14:01 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
[2015/03/11 09:14:01 | 000,455,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2015/03/11 09:14:01 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2015/03/11 09:14:00 | 000,521,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2015/03/11 09:14:00 | 000,409,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2015/03/11 09:14:00 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2015/03/11 09:13:59 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2015/03/11 09:13:59 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2015/03/11 09:13:59 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll
[2015/03/11 09:13:59 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AUDIOKSE.dll
[2015/03/11 09:13:59 | 000,374,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioEng.dll
[2015/03/11 09:13:59 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDump.dll
[2015/03/11 09:13:59 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msnetobj.dll
[2015/03/11 09:13:59 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2015/03/11 09:13:59 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
[2015/03/11 09:13:59 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2015/03/11 09:13:59 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
[2015/03/11 09:13:59 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidpolicyconverter.exe
[2015/03/11 09:13:59 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidapi.dll
[2015/03/11 09:13:59 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setbcdlocale.dll
[2015/03/11 09:13:59 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2015/03/11 09:13:59 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2015/03/11 09:13:59 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcadm.dll
[2015/03/11 09:13:59 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2015/03/11 09:13:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidcertstorecheck.exe
[2015/03/11 09:13:59 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmmsp.dll
[2015/03/11 09:13:59 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcawrk.exe
[2015/03/11 09:13:59 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaevts.dll
[2015/03/11 09:13:59 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2015/03/11 09:13:59 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcalua.exe
[2015/03/11 09:13:59 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apisetschema.dll
[2015/03/11 09:13:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2015/03/11 09:13:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2015/03/11 09:13:58 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2015/03/10 12:54:24 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{E756001E-3EF3-4C46-A74A-C9DD2611F2A7}
[2015/03/10 00:53:47 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{A96500E4-0724-4AA0-B5C9-975B718446FC}
[2015/03/09 12:53:09 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{71690728-936B-423A-8AC9-30D5D603ACF0}
[2015/03/09 00:23:13 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{1D082210-944C-437E-BE2E-A86E6D459D1D}
[2015/03/08 09:45:16 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{A8E9C8B6-F61C-4390-9CED-E241DE06261C}
[2015/03/07 21:43:58 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{DC76BCDE-FDE9-435A-A882-FB1F55031C3B}
[2015/03/07 09:43:17 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{72CF5D42-1910-4C65-A5CA-6180AC0F7701}
[2015/03/06 21:07:13 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{77A617F7-61F7-4419-9B6C-06278F479D91}
[2015/03/06 14:48:52 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\Desktop\2nd_tool
[2015/03/06 09:05:53 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{C74539F7-562D-49FB-8228-A7CF5CDD1F6C}
[2015/03/05 18:58:32 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{0BEC66A1-E145-4821-8298-080D2CC24DC0}
[2015/03/04 22:33:44 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{84F023D0-B455-4FA3-970B-757E2C458609}
[2015/03/04 21:29:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OANDA - MetaTrader
[2015/03/04 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\OANDA - MetaTrader
[2015/03/04 20:12:09 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\.oanda
[2015/03/04 11:36:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2015/03/04 11:35:39 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2015/03/04 10:33:20 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{ED5B9D59-1A87-4738-8EEE-B7955C01CFD0}
[2015/03/03 22:32:55 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{0D7D32E3-9151-4587-8862-F7F25B0C40D3}
[2015/03/03 08:51:00 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{7AD5F16A-CF4C-4197-A61D-1F26803C1C9D}
[2015/03/02 19:51:34 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{4A678298-B8CB-40D8-9C2B-B27B597C5AD6}
[2015/03/02 07:50:17 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{650EC3B5-2D16-4820-B957-12257FE7CEE3}
[2015/03/01 19:49:00 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{7A26C09C-4EB4-4C5B-ADD4-C2650E6D4C78}
[2015/03/01 07:47:42 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{B330FCC8-C8C1-4E74-8BC2-7FF1F8C8900D}
[2015/02/28 12:49:29 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{AE7AC489-362A-44B9-9B1F-F67F65DB5105}
[2015/02/27 21:59:36 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Local\{97FEADA0-DCCB-46AB-936B-02070225392A}
[1 C:\*.tmp files -> C:\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2015/03/29 17:09:54 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/03/29 17:09:41 | 2348,867,584 | -HS- | M] () -- C:\hiberfil.sys
[2015/03/29 17:09:00 | 000,000,678 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/03/29 17:04:58 | 000,018,512 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015/03/29 17:04:58 | 000,018,512 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015/03/29 16:57:16 | 000,000,674 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/03/29 15:46:00 | 000,000,626 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/03/26 21:30:00 | 000,000,308 | ---- | M] () -- C:\Windows\tasks\RegUse.job
[2015/03/21 14:14:23 | 000,055,296 | ---- | M] () -- C:\Windows\upr.exe
[2015/03/21 14:10:34 | 000,002,115 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/03/21 11:47:06 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2015/03/19 10:35:06 | 000,002,215 | ---- | M] () -- C:\Users\Hamaji\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015/03/19 09:35:05 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2015/03/18 22:33:58 | 000,001,190 | ---- | M] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2015/03/18 00:17:41 | 001,695,232 | ---- | M] () -- C:\Fibonacci_Bollinger_Bands.dll
[2015/03/18 00:17:41 | 001,694,208 | ---- | M] () -- C:\R_LINE2.dll
[2015/03/16 07:31:19 | 000,001,846 | ---- | M] () -- C:\Users\Hamaji\Desktop\IE.lnk
[2015/03/16 07:31:19 | 000,000,144 | ---- | M] () -- C:\Users\Hamaji\Desktop\Computer.lnk
[2015/03/14 09:58:11 | 000,096,680 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2015/03/14 05:39:00 | 000,778,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2015/03/14 05:39:00 | 000,142,512 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2015/03/12 23:08:58 | 000,668,624 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015/03/12 23:08:58 | 000,424,516 | ---- | M] () -- C:\Windows\System32\perfh011.dat
[2015/03/12 23:08:58 | 000,126,858 | ---- | M] () -- C:\Windows\System32\perfc011.dat
[2015/03/12 23:08:58 | 000,126,776 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015/03/12 07:16:52 | 000,345,648 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2015/03/11 12:30:17 | 000,534,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2015/03/11 12:30:03 | 000,623,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\invagent.dll
[2015/03/11 12:29:58 | 000,327,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devinv.dll
[2015/03/11 12:29:55 | 000,818,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appraiser.dll
[2015/03/11 12:29:54 | 000,202,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2015/03/11 12:29:54 | 000,159,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2015/03/11 12:29:54 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\acmigration.dll
[2015/03/11 12:26:44 | 000,892,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2015/03/06 14:10:29 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2015/03/06 14:10:22 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2015/03/06 14:09:31 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
[2015/03/06 14:07:50 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll
[2015/03/06 14:07:43 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msaudite.dll
[2015/03/06 14:06:20 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2015/03/04 22:31:30 | 000,001,925 | ---- | M] () -- C:\Users\Public\Desktop\OANDA - MetaTrader.lnk
[2015/03/04 21:29:22 | 003,662,320 | ---- | M] (MetaQuotes Software Corp.) -- C:\Windows\System32\MetaViewer.dll
[2015/03/04 11:36:05 | 000,001,753 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[1 C:\*.tmp files -> C:\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2015/03/21 11:47:06 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2015/03/19 09:41:55 | 000,002,215 | ---- | C] () -- C:\Users\Hamaji\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015/03/19 09:41:55 | 000,002,115 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/03/19 09:35:05 | 000,001,121 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2015/03/19 09:35:05 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2015/03/18 22:33:58 | 000,001,190 | ---- | C] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2015/03/16 07:31:19 | 000,001,846 | ---- | C] () -- C:\Users\Hamaji\Desktop\IE.lnk
[2015/03/16 07:31:19 | 000,000,144 | ---- | C] () -- C:\Users\Hamaji\Desktop\Computer.lnk
[2015/03/12 11:11:40 | 000,055,296 | ---- | C] () -- C:\Windows\upr.exe
[2015/03/04 21:29:22 | 000,001,925 | ---- | C] () -- C:\Users\Public\Desktop\OANDA - MetaTrader.lnk
[2015/03/04 11:36:05 | 000,001,753 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2014/01/05 09:30:53 | 000,000,328 | ---- | C] () -- C:\Windows\System32\clover.ini
[2013/12/13 01:08:48 | 000,000,059 | ---- | C] () -- C:\Windows\System32\SupportTool.exe.bat
[2013/05/28 18:58:17 | 000,000,036 | ---- | C] () -- C:\Users\Hamaji\AppData\Local\housecall.guid.cache

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009/07/14 13:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015/02/13 14:26:18 | 012,875,264 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 21:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 10:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2015/03/29 15:46:00 | 000,000,626 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/03/29 16:57:16 | 000,000,674 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/03/29 17:09:00 | 000,000,678 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/03/26 21:30:00 | 000,000,308 | ---- | M] () -- C:\Windows\tasks\RegUse.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: SAMSUNG HD502HJ
Partitions: 3
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE1 -
Interface type: USB
Media Type:
Model: Generic USB HS -CF/MD USB Device
Partitions: 0
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE2 -
Interface type: USB
Media Type:
Model: Generic USB HS -SM USB Device
Partitions: 0
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE3 -
Interface type: USB
Media Type:
Model: Generic USB HS -SD USB Device
Partitions: 0
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE4 -
Interface type: USB
Media Type:
Model: Generic USB HS -MS USB Device
Partitions: 0
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: Unknown
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 490.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 236.00GB
Starting Offset: 514850816
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 230.00GB
Starting Offset: 253551968256
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
SRV - [2009/07/14 10:14:53 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc)
SRV - [2013/02/27 13:49:16 | 000,047,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2009/07/14 10:14:11 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2010/11/20 21:20:58 | 000,585,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2010/11/20 21:18:06 | 000,494,592 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\BFE.DLL -- (BFE)
SRV - [2015/03/06 14:09:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (KeyIso)
SRV - [2009/07/14 10:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2012/07/05 06:14:34 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2015/02/03 12:12:14 | 000,143,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2010/11/20 21:21:03 | 000,376,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2010/11/20 21:18:30 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2011/03/03 14:38:01 | 000,132,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2009/07/14 10:15:13 | 000,098,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\eapsvc.dll -- (EapHost)
SRV - [2009/07/14 10:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2009/07/14 10:15:33 | 000,300,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2010/11/20 21:19:23 | 000,350,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV - [2009/07/14 10:16:15 | 000,313,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2009/07/14 10:15:41 | 000,049,664 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\mmcss.dll -- (MMCSS)
SRV - [2009/07/14 10:16:03 | 000,280,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2009/07/14 10:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\netprofm.dll -- (netprofm)
SRV - [2014/12/06 12:50:19 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2009/07/14 10:16:11 | 000,019,456 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2011/05/24 19:44:59 | 000,293,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2012/02/11 14:37:49 | 000,317,440 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2015/03/06 14:09:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV - [2009/07/14 10:16:12 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2010/11/20 21:21:00 | 000,286,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2010/11/20 21:21:03 | 000,376,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2009/07/14 10:16:13 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2015/03/06 14:09:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2009/07/14 10:16:20 | 000,073,728 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wscsvc.dll -- (wscsvc)
SRV - [2010/11/20 21:21:26 | 000,168,960 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2010/11/20 21:21:19 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV - [2010/11/20 21:21:05 | 000,750,592 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2010/11/20 21:21:28 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2009/07/14 10:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2014/12/19 11:43:00 | 000,164,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2010/11/20 21:17:51 | 001,025,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2015/02/03 12:12:12 | 000,475,136 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2015/02/03 12:12:12 | 000,475,136 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\audiosrv.dll -- (AudioEndpointBuilder)
SRV - [2010/11/20 21:21:06 | 000,125,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2013/05/27 13:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/11/20 21:21:35 | 001,086,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (eventlog)
SRV - [2010/11/20 21:19:40 | 000,566,272 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc)
SRV - [2010/11/20 21:21:35 | 000,463,360 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wiaservc.dll -- (StiSvc)
SRV - [2010/11/20 21:17:22 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msiexec.exe -- (msiserver)
SRV - [2009/07/14 10:16:19 | 000,168,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt)
SRV - [2014/05/15 01:23:32 | 001,973,728 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2010/11/20 21:18:34 | 000,214,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2009/07/14 10:16:19 | 000,829,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2010/11/20 21:21:36 | 000,084,480 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

< End of report >

ログー３　Scan.txt
Saved date: 2015/03/29 16:33:00
Files detected: 120
Files scanned: 10,057
Processes scanned: 77
Modules scanned: 587
ASEPs scanned: 456
Downloads scanned: 0
Deep analysis: 276/64
---------------------------------------------------------------------------------

Files

---------------------------------------------------------------------------------

File path: c:\users\hamaji\appdata\roaming\applicationmanager\bin\applicationmanager.exe
Publisher: Beijing AJ Technology Co., Ltd
Signer: Beijing AJ Technology Co., Ltd
MD5: b2a30d10cf78b3b0557c369fb7bc2a36
SHA-1: b9ce282b4b9120b05aa74e861bccd330b324b2ee
Created: 2011/06/02 15:52:48
Detections: 1
Determination: Ignore detections (false positive)
- Comodo Security as Heur.Suspicious

---------------------------------------------------------------------------------

File path: c:\program files\iobit\iobit uninstaller\uninstallmonitor.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 399f5ac332cd0b07be87212e3c0bf76d
SHA-1: ea7f2e72a1659f7adbbbd7cb820995948a6ca135
Created: 2015/03/18 22:33:53
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\epson\myepson connect\mepservice.exe
Publisher: SEIKO EPSON CORPORATION
MD5: 4ef4d86417a658da1b70954ca2a74435
SHA-1: b075bd53bd27568ce13bbaf60ced6c7d4395d354
Created: 2012/10/01 14:53:32
Detections: 4
Determination: Ignore detections (false positive)
- Norman as Suspicious_Gen4.CVBYD
- Antiy Labs AVL as Trojan/Win32.VkHost (Undefined)
- Vba32 AntiVirus as Trojan.VkHost (Undefined)
- IKARUS anti.virus as Worm.Win32.AutoIt (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\intel\intel(r) rapid storage technology\isdiinterop.dll
Publisher:
MD5: bf67ce48dc3a41249766b2956f0a07e9
SHA-1: 92d82df32dc673a74fb63e3057bf50c5605b1b1a
Created: 2011/12/06 14:24:32
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\intel\intel(r) management engine components\uns\uns.exe
Publisher: Intel Corporation
Signer: Intel Corporation
MD5: fdf92ec84fecee834fb10a2a0a19bcda
SHA-1: d856e15e87c835661bfc62803f65a58dc7074876
Created: 2011/12/06 14:24:23
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan/Win32.Patched.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\softwareupdater\upd4tersrv.exe
Publisher:
MD5: c23988ef137c67b0788924ad6e644476
SHA-1: f7a00415c55611b46faeb290c1bdd03121912cb2
Created: 2015/03/21 14:14:23
Detections: 5
Determination: Adware
- Reason Heuristics as Threat.Win.Reputation.IMP (Undefined)
- ESET NOD32 as MSIL/Vittalia.M.gen potentially unwanted application (Adware)
- ByteHero BDV as Virus.Win32.Heur.l
- Baidu Antivirus as PUA.MSIL.Vittalia (Adware)
- IKARUS anti.virus as PUA.MSIL.Vittalia (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\iobit\liveupdate\liveupdate.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 87aac3cbd2c5d5ac6ca87ad08a228241
SHA-1: aacd36907710af4589aa9edb3d1c4263892f39fa
Created: 2015/03/18 22:33:58
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\drivers\usbcir.sys
Publisher: Microsoft Corporation
MD5: 2352ab5f9f8f097bf9d41d5a4718a041
SHA-1: 4e58c07158e142d801ba8639819380b1d737642f
Created: 2013/10/10 6:30:39
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Nonim (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\upr.exe
Publisher:
MD5: 7248c0af72f2a966e4c279a4d59a34db
SHA-1: 7f51cc83baeacf7fc6d7b21cefaee92a41e7ba40
Created: 2015/03/12 11:11:40
Detections: 18
Determination: Adware
- MicroWorld eScan as Gen:Variant.Zusy.129864 (Undefined)
- McAfee as Artemis!7248C0AF72F2 (Undefined)
- Agnitum Outpost as Trojan.Badur (Undefined)
- Trend Micro House Call as TROJ_GEN.R021H07CQ15 (Undefined)
- avast! as Win32:Malware-gen (Undefined)
- Kaspersky as Trojan.Win32.Badur (Undefined)
- Bitdefender as Gen:Variant.Zusy.129864 (Undefined)
- Lavasoft Ad-Aware as Gen:Variant.Zusy.129864 (Undefined)
- Sophos as Generic PUA HP (Undefined)
- F-Secure as Gen:Variant.Zusy.129864 (Undefined)
- VIPRE Antivirus as Trojan.Win32.Generic (Undefined)
- Emsisoft Anti-Malware as Gen:Variant.Zusy.129864 (Undefined)
- Antiy Labs AVL as Trojan/Win32.Badur (Undefined)
- G Data as Gen:Variant.Zusy.129864 (Undefined)
- AhnLab V3 Security as Trojan/Win32.Agent (Undefined)
- Baidu Antivirus as Trojan.Win32.Badur (Undefined)
- ESET NOD32 as MSIL/Vittalia.AA potentially unwanted (variant) (Adware)
- Panda Antivirus as Trj/CI.A (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\iobit\iobit uninstaller\iobituninstaler.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 001de5a072ab18262968f4f656452f18
SHA-1: d9d3a96140383887b1bc8e00e565f1baaca16e54
Created: 2015/03/18 22:33:58
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\iobit\iobit uninstaller\uninstallexplorer32.dll
Publisher: IObit
Signer: IObit Information Technology
MD5: 100c1eeb3eb296ddc9c55393330b5baf
SHA-1: b75d587b96d646a6bfb1d53b4c16f95c01c12943
Created: 2015/03/18 22:33:57
Detections: 1
Determination: Ignore detections (false positive)
- CMC Antivirus as Packed.Win32.Obfuscated.10!O

---------------------------------------------------------------------------------

File path: c:\program files\nttw\osa_supporttool\start_w.exe
Publisher: 西日本電信電話株式会社
Signer: NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION
MD5: f2c8e3413e0c81f29675e50d71d061b2
SHA-1: afcbea1d952778400aa6caa34863a1a344cc134e
Created: 2012/01/03 13:42:04
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Posible_Worm32 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\hamaji\downloads\iobituninstaller-4-2-6-2 (1)\iobituninstaller-4-2-6-2\iobituninstaller-jp42.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 001de5a072ab18262968f4f656452f18
SHA-1: d9d3a96140383887b1bc8e00e565f1baaca16e54
Created: 2015/01/15 18:14:34
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\users\hamaji\downloads\悪代官用ソフト\hijackthis.exe
Publisher: Trend Micro Inc.
MD5: 47811d50390a86a17102d7496e6eabb9
SHA-1: 2623749cdb27887f6746acdee7e8065475f8b541
Created: 2015/03/18 21:33:35
Detections: 2
Determination: Ignore detections (false positive)
- Kingsoft AntiVirus as Win32.HeurC.KVM099.a.(kcloud) (Undefined)
- Rising Antivirus as PE:Trojan.VBInject!1.6546 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\hamaji\downloads\悪代官用ソフト\iobituninstaller-4-2-6-2\iobituninstaller-jp42.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 001de5a072ab18262968f4f656452f18
SHA-1: d9d3a96140383887b1bc8e00e565f1baaca16e54
Created: 2015/01/15 18:14:34
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\gensvcinst.exe
Publisher: B.H.A Corporation
Signer: B.H.A Corporation
MD5: 4f76dd94bb4c3846a2b5ea3cf57bcd71
SHA-1: 60c12524232a5fa9e9c3e98c13d49c15a6f499ff
Created: 2012/01/21 9:52:27
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Malware.Win32.xPack.m (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\system32\iglhsip32.dll
Publisher: Intel Corporation
MD5: 9b53cd10412f905d3391f530415dd7c8
SHA-1: d52456fc82acc6f7ad4b88ae86c5f55354d4d4b9
Created: 2011/12/06 14:24:40
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as JS:Exploit.BlackHole.HB (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\system32\iscsicpl.dll
Publisher: Microsoft Corporation
MD5: f945adcef203e6104aec8ec9c337cfd0
SHA-1: 85fe50b2c2fcbec2c09c5039c8f8c1d38523780a
Created: 2009/07/14 8:46:13
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoA (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\13209\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\14837\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\20532\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\22228\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\2234\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\2563\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\26556\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\27218\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\31621\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\32412\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\3774\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\5787\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\611\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\adobe\reader\9.3\arm\7165\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\13209\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\14837\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\20532\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\22228\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\2234\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\2563\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\26556\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\27218\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\31621\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\32412\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\3774\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\5787\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\611\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\adobe\reader\9.3\arm\7165\adobearm.exe
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems, Incorporated
MD5: b8e421c0890356cd4a793d8a346d9096
SHA-1: 30e85d80d9cefa4c55b33a1bfb6e0507a34267fa
Created: 2012/01/03 16:37:53
Detections: 2
Determination: Ignore detections (false positive)
- Boost by Reason as UnneededApp.Startup.AdobeSystemsorporated.I
- Antiy Labs AVL as Backdoor/Win32.Swrort.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\metaquotes\webinstall\mt4clw\metaeditor.exe
Publisher: MetaQuotes Software Corp.
Signer: MetaQuotes Software Corp.
MD5: 75978505f8cc9a5fe774a4d4981e5b8e
SHA-1: c6176c194f69e7109db5b0645e5e6fe19fe8cea4
Created: 2014/03/28 12:01:49
Detections: 1
Determination: Ignore detections (false positive)
- Trend Micro House Call as TROJ_GEN.F47V0322 (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\{a7b9c265-e4ef-efbb-a7b9-9c265e4e0997}\superoptimizersetup.exe
Publisher: Super PC Tools Ltd
Signer: Super PC Tools Limited
MD5: fc348a041d3434ca1cc2b5ac1443e277
SHA-1: 7de1e51cd70150429535517d476caf4b119bcf90
Created: 2014/03/14 9:55:05
Detections: 38
Determination: Adware
- Reason Heuristics as PUP.Installer.PC Utilities (Adware)
- Clam AntiVirus as Win.Trojan.Optimizerpro-18 (Undefined)
- Avira AntiVirus as APPL/OptimizPro.RE (Adware)
- Rising Antivirus as PE:Trojan.Win32.Generic.17876B26!394750758 (Undefined)
- F-Secure as Gen:Variant.Strictor.66909 (Undefined)
- Emsisoft Anti-Malware as Gen:Variant.Strictor.66909 (Undefined)
- MicroWorld eScan as Gen:Variant.Strictor.66909 (Undefined)
- avast! as GenMaliciousA-III [PUP] (Adware)
- Panda Antivirus as Trj/CI.A (Undefined)
- Lavasoft Ad-Aware as Gen:Variant.Strictor.66909 (Undefined)
- Bitdefender as Gen:Variant.Strictor.66909 (Undefined)
- Trend Micro as TROJ_GEN.R02KC0OK314 (Undefined)
- VIPRE Antivirus as Trojan.Win32.Generic (Undefined)
- Comodo Security as ApplicUnwnt (Undefined)
- Trend Micro House Call as TROJ_GEN.R02KC0OK314 (Undefined)
- Qihoo 360 Security as HEUR/QVM41.1.Malware.Gen (Undefined)
- AVG as Generic (Undefined)
- Fortinet FortiGate as Riskware/OptimizerPro (Undefined)
- ESET NOD32 as Win32/Adware.SpeedingUpMyPC.Y application (Adware)
- G Data as Win32.Application.OptimizerPro (Undefined)
- AhnLab V3 Security as PUP/Win32.Optimizer (Adware)
- Antiy Labs AVL as Trojan/Win32.SGeneric (Undefined)
- McAfee Web Gateway as Artemis (Undefined)
- Dr.Web as riskware program Program.Unwanted.318, is riskware program Program.Unwanted.134 (Undefined)
- NANO AntiVirus as Riskware.Win32.OptimizerPro.dgmsiw (Adware)
- Kaspersky as not-a-virus:RiskTool.Win32.SProtector (Adware)
- Total Defense as Win32/Tnega.SZHEWKB (Undefined)
- F-Prot as W32/A-fcdc4a04 (Undefined)
- Agnitum Outpost as Riskware.OptimizerPro (Adware)
- K7 AntiVirus as Adware (Adware)
- K7 Gateway Antivirus as Adware (Adware)
- Zillya! Antivirus as Trojan.Black.Win32.18731 (Undefined)
- McAfee as Artemis!D9C65562DB38 (Undefined)
- IKARUS anti.virus as PUA.SpeedingUpMyPC (Adware)
- Baidu Antivirus as PUA.Win32.Rezimitpo (Adware)
- Jiangmin as Trojan/Delf.abfl (Undefined)
- Vba32 AntiVirus as Trojan.Delf (Undefined)
- Sophos as Generic PUA JH (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\metaquotes\webinstall\mt4clw\metaeditor.exe
Publisher: MetaQuotes Software Corp.
Signer: MetaQuotes Software Corp.
MD5: 75978505f8cc9a5fe774a4d4981e5b8e
SHA-1: c6176c194f69e7109db5b0645e5e6fe19fe8cea4
Created: 2014/03/28 12:01:49
Detections: 1
Determination: Ignore detections (false positive)
- Trend Micro House Call as TROJ_GEN.F47V0322 (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\{a7b9c265-e4ef-efbb-a7b9-9c265e4e0997}\superoptimizersetup.exe
Publisher: Super PC Tools Ltd
Signer: Super PC Tools Limited
MD5: fc348a041d3434ca1cc2b5ac1443e277
SHA-1: 7de1e51cd70150429535517d476caf4b119bcf90
Created: 2014/03/14 9:55:05
Detections: 38
Determination: Adware
- Reason Heuristics as PUP.Installer.PC Utilities (Adware)
- Clam AntiVirus as Win.Trojan.Optimizerpro-18 (Undefined)
- Avira AntiVirus as APPL/OptimizPro.RE (Adware)
- Rising Antivirus as PE:Trojan.Win32.Generic.17876B26!394750758 (Undefined)
- F-Secure as Gen:Variant.Strictor.66909 (Undefined)
- Emsisoft Anti-Malware as Gen:Variant.Strictor.66909 (Undefined)
- MicroWorld eScan as Gen:Variant.Strictor.66909 (Undefined)
- avast! as GenMaliciousA-III [PUP] (Adware)
- Panda Antivirus as Trj/CI.A (Undefined)
- Lavasoft Ad-Aware as Gen:Variant.Strictor.66909 (Undefined)
- Bitdefender as Gen:Variant.Strictor.66909 (Undefined)
- Trend Micro as TROJ_GEN.R02KC0OK314 (Undefined)
- VIPRE Antivirus as Trojan.Win32.Generic (Undefined)
- Comodo Security as ApplicUnwnt (Undefined)
- Trend Micro House Call as TROJ_GEN.R02KC0OK314 (Undefined)
- Qihoo 360 Security as HEUR/QVM41.1.Malware.Gen (Undefined)
- AVG as Generic (Undefined)
- Fortinet FortiGate as Riskware/OptimizerPro (Undefined)
- ESET NOD32 as Win32/Adware.SpeedingUpMyPC.Y application (Adware)
- G Data as Win32.Application.OptimizerPro (Undefined)
- AhnLab V3 Security as PUP/Win32.Optimizer (Adware)
- Antiy Labs AVL as Trojan/Win32.SGeneric (Undefined)
- McAfee Web Gateway as Artemis (Undefined)
- Dr.Web as riskware program Program.Unwanted.318, is riskware program Program.Unwanted.134 (Undefined)
- NANO AntiVirus as Riskware.Win32.OptimizerPro.dgmsiw (Adware)
- Kaspersky as not-a-virus:RiskTool.Win32.SProtector (Adware)
- Total Defense as Win32/Tnega.SZHEWKB (Undefined)
- F-Prot as W32/A-fcdc4a04 (Undefined)
- Agnitum Outpost as Riskware.OptimizerPro (Adware)
- K7 AntiVirus as Adware (Adware)
- K7 Gateway Antivirus as Adware (Adware)
- Zillya! Antivirus as Trojan.Black.Win32.18731 (Undefined)
- McAfee as Artemis!D9C65562DB38 (Undefined)
- IKARUS anti.virus as PUA.SpeedingUpMyPC (Adware)
- Baidu Antivirus as PUA.Win32.Rezimitpo (Adware)
- Jiangmin as Trojan/Delf.abfl (Undefined)
- Vba32 AntiVirus as Trojan.Delf (Undefined)
- Sophos as Generic PUA JH (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\hamaji\appdata\roaming\applicationmanager\uninst.exe
Publisher: Beijing AJ Technology Co., Ltd.
MD5: 8d2f558474f319cbf03da82d09b64e28
SHA-1: ae777b0fb02b6c65cd24ac40f40491e1a6d4f9a4
Created: 2013/12/27 11:47:04
Detections: 1
Determination: Inconclusive
- Dr.Web as Trojan.Siggen2.45718 (Undefined)

---------------------------------------------------------------------------------

File path: c:\Users\Hamaji\AppData\Roaming\Real\Update\temp\~Upg0\rnupgagent.exe
Publisher: RealNetworks, Inc.
Signer: RealNetworks, Inc.
MD5: 6f0ce619ea93085a44792fa20c93aaaa
SHA-1: 60d10f8267ef0bf9cbeee43e79b6a4264c095890
Created: 2012/08/16 0:03:41
Detections: 3
Determination: Ignore detections (false positive)
- Trend Micro House Call as TROJ_GEN.F47V1017 (Undefined)
- Dr.Web as Trojan.Click2.59112 (Undefined)
- Antiy Labs AVL as Trojan/Win32.Patched (Undefined)

---------------------------------------------------------------------------------

File path: c:\Users\Hamaji\AppData\Roaming\Real\Update\temp\~Upg3\rnupgagent.exe
Publisher: RealNetworks, Inc.
Signer: RealNetworks, Inc.
MD5: 6a05110733966830f85bc2fe957c79eb
SHA-1: ba8113ef98f537f7b0c2c56c87968625cba49f9b
Created: 2012/10/14 9:58:20
Detections: 5
Determination: Inconclusive
- Bkav FE as W32.Clod052.Trojan (Undefined)
- nProtect as Trojan/W32.Agent.449176 (Undefined)
- The Hacker as Trojan/Agent.bjvu (Undefined)
- Trend Micro House Call as HV_AGENT_BK083C37.TOMC (Undefined)
- Dr.Web as Trojan.Click2.59112 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\ascentive\performance center\apcmain.exe
Publisher: Ascentive
MD5: fe31cf854e39948c63360625a257fe12
SHA-1: b44fdcfe9a5b7303ae940024bfa9eda6bf929bf0
Created: 2012/03/02 16:13:44
Detections: 1
Determination: Inconclusive
- Reason Heuristics as PUP.Optional.Ascentive (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\common files\installshield\updateservice\issch.exe
Publisher: InstallShield Software Corporation
MD5: d2aeadfd998706b4216315b2bd3fa79e
SHA-1: 38cc63c7120b42a36c1b937c4687967c83319349
Created: 2012/01/21 13:19:26
Detections: 1
Determination: Ignore detections (false positive)
- Boost by Reason as Optional.Startup.InstallShieldSoftwareCorporation.F

---------------------------------------------------------------------------------

File path: c:\program files\common files\installshield\updateservice\isuspm.exe
Publisher: InstallShield Software Corporation
MD5: a379b75a6ffe4dfd3184f35f0141ce91
SHA-1: 44a8bee3e505148fbb398467eec67119918a34dc
Created: 2012/01/21 13:19:26
Detections: 1
Determination: Ignore detections (false positive)
- Boost by Reason as Optional.Startup.InstallShieldSoftwareCorporation.G

---------------------------------------------------------------------------------

File path: c:\program files\epson direct\support portal\pctest\uxd10.dll
Publisher:
MD5: 142105afae1e0749913f70ec4cfa7647
SHA-1: 07dc831e03f4d05cb16687083d852d80f80b93c8
Created: 2011/12/06 14:41:18
Detections: 3
Determination: Inconclusive
- Trend Micro House Call as PAK_Generic.005
- Trend Micro as PAK_Generic.005
- Kingsoft AntiVirus as Win32.Malware.Heur_Generic.B.(kcloud) (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\epson direct\support portal\pctest\uxd12.dll
Publisher:
MD5: ad582f4fc2f5a3d3488a7d27dfb11a78
SHA-1: d0b35d5b154a531dc9bd057901875898c43cf446
Created: 2011/12/06 14:41:18
Detections: 2
Determination: Ignore detections (false positive)
- K7 Gateway Antivirus as Trojan (Undefined)
- K7 AntiVirus as Trojan (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\epson direct\support portal\pctest\uxd15.dll
Publisher:
MD5: f3f23bb7fb830007067f44d7132b5a61
SHA-1: 0982432f7411b5e6c45119265f4bcbe78207368d
Created: 2011/12/06 14:41:18
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Win32.Heur.089

---------------------------------------------------------------------------------

File path: c:\program files\epson direct\support portal\pctest\uxd18.dll
Publisher:
MD5: 82a0a4095529a4c20057ddf0d1633105
SHA-1: d13fab165e53a642777a4abaf100ebb7e6735c29
Created: 2011/12/06 14:41:18
Detections: 3
Determination: Inconclusive
- Trend Micro House Call as TROJ_GEN.F47V0720 (Undefined)
- Comodo Security as ApplicUnsaf.Win32.Injecter.ek (Undefined)
- SUPERAntiSpyware as Trojan.Agent/Gen-Bancos (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\epson direct\support portal\pctest\uxd19.dll
Publisher:
MD5: c92e9f735ad0519131549c7149bef45f
SHA-1: beb0d5d99b34c4650a487fa51ff60725f8025a0a
Created: 2011/12/06 14:41:18
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Win32.Heur.089

---------------------------------------------------------------------------------

File path: c:\program files\epson direct\support portal\pctest\uxd20.dll
Publisher:
MD5: ed0449967b6b9b16a3a6ddebc8494c29
SHA-1: 418f76e3c26ba2ed8e99f5c8f72e266e15085d7a
Created: 2011/12/06 14:41:18
Detections: 1
Determination: Ignore detections (false positive)
- SUPERAntiSpyware as Trojan.Agent/Gen-Bancos (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\epson direct\support portal\pctest\uxd22.dll
Publisher:
MD5: 2be8512b82a8df6a477433d84f568d5d
SHA-1: 0ebd3bff9431c858186a6e273e73e276665c08ce
Created: 2011/12/06 14:41:18
Detections: 1
Determination: Ignore detections (false positive)
- SUPERAntiSpyware as Trojan.Agent/Gen-Qhost (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\epson direct\support portal\pctest\uxd23.dll
Publisher:
MD5: 9367d02cb3f6b0fb7645765577895f34
SHA-1: 62c308163236e2bed52ac1cf153e9a18c6a48e14
Created: 2011/12/06 14:41:18
Detections: 1
Determination: Ignore detections (false positive)
- Kingsoft AntiVirus as Win32.Malware.Heur_Generic.B.(kcloud) (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\epson direct\support portal\pctest\uxd24.dll
Publisher:
MD5: f4454ad77c9b1ffac7d14654f95c0ca4
SHA-1: 1615f6a281ff517f33efbcd1a0cae875047edaf4
Created: 2011/12/06 14:41:18
Detections: 1
Determination: Ignore detections (false positive)
- SUPERAntiSpyware as Trojan.Agent/Gen-Bancos (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\epson direct\support portal\pctest\uxd24_.dll
Publisher:
MD5: f4454ad77c9b1ffac7d14654f95c0ca4
SHA-1: 1615f6a281ff517f33efbcd1a0cae875047edaf4
Created: 2011/12/06 14:41:18
Detections: 1
Determination: Ignore detections (false positive)
- SUPERAntiSpyware as Trojan.Agent/Gen-Bancos (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\epson direct\support portal\pctest\uxdfunc.dll
Publisher:
MD5: 1c8e43169315bb2e2695a7d939d836e6
SHA-1: bc570cde41bfdf749740507672c6a8dbfd0290f1
Created: 2011/12/06 14:41:18
Detections: 1
Determination: Ignore detections (false positive)
- Kingsoft AntiVirus as Win32.Malware.Heur_Generic.B.(kcloud) (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\epson software\event manager\assistants\attach to email\attachtoemail.exe
Publisher: SEIKO EPSON Corp.
MD5: a33a9ecb41f4662b00dbb17db64a7839
SHA-1: b4b101fcef42721ad0d47e00c9cc37c28cf85957
Created: 2009/11/03 12:47:34
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Win32.Almanahe (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\epson software\event manager\assistants\scan assistant\fioall32.dll
Publisher: NewSoft Technology Corporation
MD5: dfd0d26d2056f1d01adcdbb1e851119f
SHA-1: 00936bbea338bab0502d17b3de13604aebeba97f
Created: 2007/07/09 9:36:46
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\epson software\event manager\assistants\scan assistant\fiojpg32.dll
Publisher: newsoftinc
MD5: 8924a376a8ff7d90192e54f6e3ed9903
SHA-1: 60c7c5997d04fd4de82bea026b335b99281e1a42
Created: 2006/11/24 10:35:40
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\flychart\sys\htmlopen.exe
Publisher: Uwe Schneller, CH-7012 Felsberg, Switzerland
MD5: 93f8571e5b8a8297fa2b6607ceb85374
SHA-1: da4a642c01e01e700ba235950fbac2901758fac9
Created: 2008/11/30 4:55:16
Detections: 2
Determination: Ignore detections (false positive)
- Emsisoft A-Squared as Trojan.Win32.Patched!IK (Undefined)
- IKARUS anti.virus as Trojan.Win32.Patched (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\fxdd malta - metatrader 4\metaeditor.exe
Publisher: MetaQuotes Software Corp.
Signer: MetaQuotes Software Corp.
MD5: 75978505f8cc9a5fe774a4d4981e5b8e
SHA-1: c6176c194f69e7109db5b0645e5e6fe19fe8cea4
Created: 2012/08/24 21:11:50
Detections: 1
Determination: Ignore detections (false positive)
- Trend Micro House Call as TROJ_GEN.F47V0322 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\gretech\gompicker\functionhandler.dll
Publisher:
Signer: GRETECH
MD5: f21c1b1a258926a0d461c25a62303b90
SHA-1: af1a53f7816e5369027667fd8c588d08f1193515
Created: 2013/10/24 13:49:14
Detections: 1
Determination: Inconclusive
- Reason Heuristics as PUP.Optional.GRETECH.P (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\gretech\gompicker\gompickerbho.dll
Publisher: Gretech Corporation
Signer: GRETECH
MD5: 6f42291a84484989a54a583c3f229388
SHA-1: 16968b7976a796970cea82f22bb29cd95fd01567
Created: 2013/10/24 13:51:00
Detections: 1
Determination: Inconclusive
- Reason Heuristics as PUP.Optional.BHO.GRETECH.M (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\gretech\gompicker\gompickerdownloadq.exe
Publisher: Gretech Corporation
Signer: GRETECH
MD5: d2cd2f9b903e07306840d299f8f22507
SHA-1: 4ae6251ef2f275c68c57c557b72c2d9911df9b05
Created: 2013/10/24 13:51:10
Detections: 1
Determination: Inconclusive
- Reason Heuristics as PUP.Optional.GRETECH.S (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\gretech\gompicker\pageanalyzer.dll
Publisher: Gretech Corporation
Signer: GRETECH
MD5: f39e00bd115efd741a9f1d20dc6c6215
SHA-1: 29f2935eb793ebd7bcf603ccbc6a1d21ab0c12d4
Created: 2013/10/24 13:49:28
Detections: 1
Determination: Inconclusive
- Reason Heuristics as PUP.Optional.GRETECH.M (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\installshield installation information\{20471b27-d702-4fe8-8dec-0702cc8c0a85}\issetup.dll
Publisher: Acresso Software Inc.
MD5: e29f2da00569fdf367950ad598ecad0f
SHA-1: 0086fa19cd63e9aeeef12480c5d0049a9bd14c33
Created: 2011/12/06 14:29:32
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.CDB (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\iobit\iobit uninstaller\iobitdownloader.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 1781e6512bc8114722f633cbddd54148
SHA-1: 6ea0ba0e57dbec3aa3492f516d199c080cf5c399
Created: 2015/03/18 22:33:54
Detections: 2
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)
- Rising Antivirus as PE:Virus.Shodi!1.9B9C (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\iobit\iobit uninstaller\liveupdate.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 87aac3cbd2c5d5ac6ca87ad08a228241
SHA-1: aacd36907710af4589aa9edb3d1c4263892f39fa
Created: 2015/03/18 22:33:53
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\iobit\iobit uninstaller\ppuninstaller.exe
Publisher:
Signer: IObit Information Technology
MD5: 28ca7d1bb9fbfca2b529d885e61491d8
SHA-1: 7bc41ba0c2fd59e62d8e5c677b4598b6540d8fb0
Created: 2015/03/18 22:33:54
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\iobit\iobit uninstaller\sendbugreportnew.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 1e2b2e40c35f825eef62ab7453b5a997
SHA-1: 2deb6b44db7f41b6da5658e4c7605abdc8a421b6
Created: 2015/03/18 22:33:54
Detections: 2
Determination: Ignore detections (false positive)
- CMC Antivirus as Packed.Win32.Obfuscated.10!O
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\iobit\iobit uninstaller\uninstalldisplay.exe
Publisher:
Signer: IObit Information Technology
MD5: 781a75acfb56fc8349bebbdcc027a970
SHA-1: a8c62dbe24fdfa3d7ea003513a2f508a46748fa0
Created: 2015/03/18 22:33:57
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\iobit\iobit uninstaller\uninstall_mitor.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: d7abab4673f01bae817114c383f0f949
SHA-1: 17c182daa496a6b017655df08d9a59e8a482f2c8
Created: 2015/03/18 22:33:53
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\itunes\gnsdk_dsp.dll
Publisher: Gracenote, Inc.
Signer: Gracenote Inc
MD5: 5376d7106c84748049136a265ae1e072
SHA-1: e6b4f246bf88ce3e383978d42b082d1b00f5b609
Created: 2015/02/13 7:55:24
Detections: 1
Determination: Inconclusive
- F-Secure as Gen:Variant.Adware.Linkury.1 (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\nch software\components\ffmpeg18\avcodec-55.nch.dll
Publisher:
MD5: da5ade2440b8fdedf55085924f5609ce
SHA-1: 77aff65d47caf2e0af26dac5b2a7fd9b39b01274
Created: 2013/12/27 11:29:11
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nch software\components\mp3el\mp3enc.exe
Publisher:
MD5: 1f083f5a820468e5438c32419525b798
SHA-1: 600e5c224eda4bd6d9f07d84a7be32e42a28c097
Created: 2014/05/25 14:22:20
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Posible_Worm32 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nch software\components\x264enc5\x264enc5.exe
Publisher:
MD5: 91c23901ccb21230c26d3b5973534c16
SHA-1: ec6ac7be085fa0aadd356510c10c4c5d5667cc1e
Created: 2013/12/27 11:28:35
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nch software\debut\debutsetup_v1.89.exe
Publisher: NCH Software
Signer: NCH Software
MD5: e116877158e54262863487f4625d4d86
SHA-1: 235b8ad357a3bffd1ae5ba8c7506e3ed5ce0dd80
Created: 2014/12/15 22:41:43
Detections: 1
Determination: Ignore detections (false positive)
- ESET NOD32 as Win32/Bundled.Toolbar.Google (variant) (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nch software\expressburn\expressburnsetup_v4.69.exe
Publisher: NCH Software
Signer: NCH Software
MD5: 79f50be90bb6bd26e88aa60549f52700
SHA-1: 67b2fe50a9d20c67d4e3622cf5e208a9366eb0c8
Created: 2014/04/29 9:15:00
Detections: 1
Determination: Ignore detections (false positive)
- NANO AntiVirus as Trojan.Html.Heuristic-script.cadouz (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nch software\pixillion\pixillionsetup_v2.68.exe
Publisher: NCH Software
Signer: NCH Software
MD5: 38e8f27edc6f84d9ad5e039a63bf31a8
SHA-1: 61456d615994498a3eb970639efd95e35af052f9
Created: 2015/01/07 21:03:04
Detections: 1
Determination: Ignore detections (false positive)
- ESET NOD32 as Win32/Bundled.Toolbar.Google (variant) (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nch software\prism\prismsetup_v2.08.exe
Publisher: NCH Software
Signer: NCH Software
MD5: 88b9cb916b2da4235e1f06be8f602f33
SHA-1: 5b59dc96ae9f89fb8ba0110caf072600ed84097a
Created: 2014/04/29 9:14:45
Detections: 1
Determination: Ignore detections (false positive)
- ESET NOD32 as Win32/Bundled.Toolbar.Google (variant) (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nch software\wavepad\wavepadsetup_v5.71.exe
Publisher: NCH Software
Signer: NCH Software
MD5: ccd38b0d0caf0f25d97d2a710a34a42b
SHA-1: 215d4adc3c67ca693a2b7a290c203fe5bfe30376
Created: 2014/04/29 9:14:41
Detections: 1
Determination: Ignore detections (false positive)
- ESET NOD32 as Win32/Bundled.Toolbar.Google (variant) (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nero\nero 9\nero express\mpgenc.dll
Publisher: Royal PHILIPS Electronics N.V.
Signer: Nero AG
MD5: 971d8f77f60369dbe9d8a4c11fb066e2
SHA-1: 52310e42cc961a6e576af015b5a433f9e2536c5b
Created: 2010/04/07 18:23:10
Detections: 1
Determination: Ignore detections (false positive)
- Prevx as Medium Risk Malware (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nero\nero 9\nero express\ptt\nmplaybackcomponent.dll
Publisher: Nero AG
Signer: Nero AG
MD5: 192afc78a4c22cc62afdbb2e0bb3bf64
SHA-1: 08e37b9e60695c90acea6fdbf12ffdc3e7ce6aad
Created: 2010/04/07 18:24:12
Detections: 1
Determination: Ignore detections (false positive)
- Microsoft Security Essentials as Backdoor:Win32/Zegost.AD (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nero\nero 9\nero express\smc\em2v.dll
Publisher: Nero AG
Signer: Nero AG
MD5: bd2ca863aff426d069c623e021d2cd60
SHA-1: 7cc4c5a757e6374d81ad7abfacebf30715e5a1a9
Created: 2010/04/07 18:24:08
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Malware.Win32.xPack.i (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nero\nero 9\nero online upgrade\neroonlineupgrade.exe
Publisher: Nero AG
Signer: Nero AG
MD5: fc92fcd0d71ab2493327e66ad51b9c24
SHA-1: da0129c0b450c590319d0bf4f30676c461a1d61a
Created: 2009/12/07 18:12:20
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Malware.Win32.xPack.m (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nero\nero 9\nero startsmart\ptt\nmplaybackcomponent.dll
Publisher: Nero AG
Signer: Nero AG
MD5: 192afc78a4c22cc62afdbb2e0bb3bf64
SHA-1: 08e37b9e60695c90acea6fdbf12ffdc3e7ce6aad
Created: 2010/03/17 17:27:06
Detections: 1
Determination: Ignore detections (false positive)
- Microsoft Security Essentials as Backdoor:Win32/Zegost.AD (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nero\nero 9\nero startsmart\smc\em2v.dll
Publisher: Nero AG
Signer: Nero AG
MD5: bd2ca863aff426d069c623e021d2cd60
SHA-1: 7cc4c5a757e6374d81ad7abfacebf30715e5a1a9
Created: 2010/03/17 17:27:04
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Malware.Win32.xPack.i (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nttw\security\amsp\module\10011\2.0.2083\2.0.2083\tmsa32.dll
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 0316f2574d91e9fb4494dfc0954b2c57
SHA-1: 4e6acfb8df000d9bf8e06ddfc3361643a7db8b8e
Created: 2011/11/19 1:47:16
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Malware.Win32.xPack.g (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\nttw\security\amsp\module\20004\2.0.1361\6.8.1072\tmcfscan.dll
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 5c7e2561582a0368a8c2153708669a55
SHA-1: 19a8045b1f88edaccea54074252e1eb508677559
Created: 2011/11/19 1:47:16
Detections: 1
Determination: Ignore detections (false positive)
- Clam AntiVirus as PUA.Win32.Packer.Msvcpp-1

---------------------------------------------------------------------------------

File path: c:\program files\nttw\security\amsp\module\20004\2.0.1361\6.8.1072\tmphmsn.dll
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 48a43cf735af740a4e60a2be84be7413
SHA-1: c4fea9d5c9dae7014a202f4d1ca40cd7aec1026e
Created: 2011/11/19 1:47:16
Detections: 1
Determination: Ignore detections (false positive)
- Clam AntiVirus as PUA.Win32.Packer.Msvcpp-1

---------------------------------------------------------------------------------

File path: c:\program files\panasonic\photofunstudio 5.1 hd\core\drivecontrol\bha\cdrbs2k.dll
Publisher: ソースネクスト株式会社
MD5: 4083ece1a0d31c22207379a93cb45eb1
SHA-1: a8a3540d912ba994df4838fffd073064171406c1
Created: 2012/01/21 9:52:28
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Trojan.StartPage.fu2@ayi99Wbi (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\panasonic\photofunstudio 5.1 hd\core\spec\avchd\bdcore\srscaler.dll
Publisher: MainConcept AG
MD5: 735f4298287adbecd58ddd6c6fc4f067
SHA-1: 180101f021a2133991c7430369bdb6b0dd3567f5
Created: 2012/01/21 9:52:25
Detections: 1
Determination: Ignore detections (false positive)
- eSafe as Suspicious File

---------------------------------------------------------------------------------

File path: c:\program files\panasonic\photofunstudio 5.1 hd\core\spec\dvdvideo\dvdcore\srscaler.dll
Publisher: MainConcept AG
MD5: 735f4298287adbecd58ddd6c6fc4f067
SHA-1: 180101f021a2133991c7430369bdb6b0dd3567f5
Created: 2012/01/21 9:52:25
Detections: 1
Determination: Ignore detections (false positive)
- eSafe as Suspicious File

---------------------------------------------------------------------------------

File path: c:\program files\real\realplayer\dbghelp.dll
Publisher: Microsoft Corporation
MD5: 9ccbfa69ac67aed98e1c8a11ffa2a630
SHA-1: a61d66bb8dd8db1effadd00df1b5fbc696e26767
Created: 2015/01/07 16:16:03
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Trojan.Heur.Oq0@uqjKLLd (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\real\realplayer\setup\vc9_runtime.msi
Publisher:
MD5: 40a13534ba71777483a8e6cefb0c60d8
SHA-1: 5eb25bd3a5a77167c4e50a00c90bfdbdd1870b94
Created: 2015/01/07 16:15:31
Detections: 1
Determination: Ignore detections (false positive)
- eSafe as Suspicious File

---------------------------------------------------------------------------------

File path: c:\program files\securebrain\phishwall\urlscan.dll
Publisher:
Signer: SecureBrain Corporation
MD5: 037440ac8bde5d9d79a6a8a70a82f7f5
SHA-1: c88e6a6b353b5c92785bd0024f416c90b8332a65
Created: 2014/09/20 12:10:37
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan/Win32.OnLineGames.gic[GameThief] (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\softwareupdater\appsupd4ter.exe
Publisher:
MD5: 1f8fa2bc19ad81dd8f332af57de33bd5
SHA-1: b0434e93fff20485be6bcc3fd4638f52a20d2a2e
Created: 2015/03/21 14:14:23
Detections: 2
Determination: Adware
- Reason Heuristics as Threat.Win.Reputation.IMP (Undefined)
- ESET NOD32 as MSIL/Vittalia.M.gen potentially unwanted application (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\sourcenext\narundesu cddrive\narudrvapp.exe
Publisher:
MD5: d41d8cd98f00b204e9800998ecf8427e
SHA-1: da39a3ee5e6b4b0d3255bfef95601890afd80709
Created: 2012/01/21 13:19:27
Detections: 8
Determination: Ignore detections (false positive)
- Lavasoft Ad-Aware as Gen:Variant.Zusy.122341 (Undefined)
- ESET NOD32 as Detection.Undefined (Undefined)
- Avira AntiVirus as TR/Trash.Gen (Undefined)
- Kaspersky as not-a-virus:AdWare.Win32.MultiPlug (Adware)
- Dr.Web as Adware.Downware.10493 (Adware)
- Microsoft Security Essentials as Backdoor:MSIL/Bladabindi.AT (Undefined)
- avast! as Win32:Adware-ASG [PUP] (Adware)
- Clam AntiVirus as Win.Adware.Agent-29540 (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\sourcenext\本格翻訳7\exe\cnvpdf.dll
Publisher:
MD5: 0bc0e14c03b395494521a2ad3a9aae83
SHA-1: 87d97d1db65533ec3dcdd82d6b57b6f52ebeda96
Created: 2012/01/21 11:23:20
Detections: 1
Determination: Ignore detections (false positive)
- Jiangmin as Trojan/Generic.imty (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\trend micro\titanium\tmconfig.dll
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 2cf3987c31583c0e06c01d27677fe061
SHA-1: 50d17f4ced2210dd4b8471833d1aa39ba9fadec7
Created: 2013/12/13 0:56:14
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\trend micro\tti_he_download_32bit\setup32\amsp\utilrollback.exe
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 6936b0f88764c7996582f57b42305c72
SHA-1: 2b58d0df80ffb3c23dbd54a7d4271eaac22c0943
Created: 2013/12/06 10:31:06
Detections: 1
Determination: Ignore detections (false positive)
- Jiangmin as Win32/Virut.bn

---------------------------------------------------------------------------------

File path: c:\program files\trend micro\tti_he_download_32bit\setup32\amsp\update\engine\c2t1207959569l1p1r1o1\6.8.1093\tmextins.exe
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 783cf19637b70f3b7bf4ba201a305cbc
SHA-1: 0e989be06abfc2b4afa84ee6e82e90b199b06375
Created: 2013/12/06 10:31:06
Detections: 1
Determination: Ignore detections (false positive)
- Jiangmin as Win32/Virut.bn

---------------------------------------------------------------------------------

File path: c:\program files\trend micro\tti_he_download_32bit\setup32\amsp\update\engine\c2t1207959829l1p1r1o1\1.0.1170\tmopextins.exe
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 413dbd496ef19dbd588c79887b7156c3
SHA-1: 50626dff99e25c7b3ded6689a763ba74cff93ac3
Created: 2013/12/06 10:31:06
Detections: 1
Determination: Ignore detections (false positive)
- Jiangmin as Win32/Virut.bn

---------------------------------------------------------------------------------

File path: c:\program files\trend micro\tti_he_download_32bit\setup32\amsp\update\engine\c2t679485440l1p1r1o1\6.8.1072\tdiins.exe
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 533dfd7d7320ef9fdb20fde5c8b6a408
SHA-1: 952a36627a0b45a063a14d9427a86d4da3f38cb8
Created: 2013/12/06 10:31:06
Detections: 1
Determination: Ignore detections (false positive)
- Jiangmin as Win32/Virut.bn

---------------------------------------------------------------------------------

File path: c:\program files\trend micro\tti_he_download_32bit\setup32\amsp\update\engine\c2t679608320l1p1r1o1\6.8.1094\tmextins.exe
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 783cf19637b70f3b7bf4ba201a305cbc
SHA-1: 0e989be06abfc2b4afa84ee6e82e90b199b06375
Created: 2013/12/06 10:31:06
Detections: 1
Determination: Ignore detections (false positive)
- Jiangmin as Win32/Virut.bn

---------------------------------------------------------------------------------

File path: c:\program files\trend micro\tti_he_download_32bit\ucplugin\c17t1705v0.0.0l1p1r1o1\timiniservice.exe
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: f746894e3c713b8c9f8e647292f1e111
SHA-1: 106920a471891f2269831a05434a9e22829d1013
Created: 2013/12/06 10:31:24
Detections: 1
Determination: Ignore detections (false positive)
- Jiangmin as Win32/Virut.bn

---------------------------------------------------------------------------------

File path: c:\program files\trend micro\tti_he_download_32bit\ucplugin\c17t1705v0.0.0l1p1r1o1\tiresumesrv.exe
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 6f335706463254cc016590c39abd4beb
SHA-1: 51e21575fd3d5f0880209cca0cd71cdb305d79de
Created: 2013/12/06 10:31:24
Detections: 1
Determination: Ignore detections (false positive)
- Jiangmin as Win32/Virut.bn

---------------------------------------------------------------------------------

File path: c:\program files\trend micro\tti_he_download_32bit\ucplugin\c17t1705v0.0.0l1p1r1o1\vizorshortcut.exe
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 9f9cfe38e85848dc0d839c7f1a4b383f
SHA-1: 273701759aaa1f5e2d3b2d55732ce7bebfb0c191
Created: 2013/12/06 10:31:24
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\trend micro\tti_he_download_32bit\vizor32\vizorshortcut.exe
Publisher: Trend Micro Inc.
Signer: Trend Micro, Inc.
MD5: 9f9cfe38e85848dc0d839c7f1a4b383f
SHA-1: 273701759aaa1f5e2d3b2d55732ce7bebfb0c191
Created: 2013/12/06 10:31:38
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)

ログを確認しましたが、OTLで随分と見つかりました。
ではOTLで処置していきましょう。
HPは不要ですので、導入時の指示に従って削除なされてください。

メモ帳を起動させ、以下をコピペしてください。
なお、:OTL、:Files、:Commands等はOTLでの処理方法を決める命令文です。
削除なされないようご注意ください。

------コピペこの下より------
:OTL
SRV - [2015/03/29 03:24:58 | 000,106,496 | ---- | M] () [Auto | Stopped] -- C:\Program Files\SoftwareUpdater\Upd4terSrv.exe -- (SrvUpdater)
SRV - [2007/06/15 12:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto | Stopped] -- C:\Windows\System32\bgsvcgen.exe -- (bgsvcgen)
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.jword.jp/jwd_sb_srchcust.htm?ielang={SUB_RFC1766}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.jword.jp/jwd_sb_srchasst.htm?ielang={SUB_RFC1766}
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=samsungxhd502hj_s280j9czb00147
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=samsungxhd502hj_s280j9czb00147
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=samsungxhd502hj_s280j9czb00147
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=samsungxhd502hj_s280j9czb00147
O3 - HKLM\..\Toolbar: (no name) - {4F524A2D-5354-2D53-5045-7A786E7484D7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-3547471505-1811248031-3271276977-1001\..\Toolbar\WebBrowser: (no name) - {4F524A2D-5354-2D53-5045-7A786E7484D7} - No CLSID value found.
[2015/03/21 14:14:21 | 000,000,000 | ---D | C] -- C:\Program Files\SoftwareUpdater
[2015/03/21 11:22:16 | 000,000,000 | ---D | C] -- C:\Users\Hamaji\AppData\Roaming\Malwarebytes
[2015/03/21 11:21:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/03/12 11:10:12 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Baidu
[2015/03/26 21:30:00 | 000,000,308 | ---- | M] () -- C:\Windows\tasks\RegUse.job
[2015/03/21 14:14:23 | 000,055,296 | ---- | M] () -- C:\Windows\upr.exe
[2015/03/18 00:17:41 | 001,695,232 | ---- | M] () -- C:\Fibonacci_Bollinger_Bands.dll
[2015/03/18 00:17:41 | 001,694,208 | ---- | M] () -- C:\R_LINE2.dll

:Files
c:\windows\system32\gensvcinst.exe
c:\programdata\application data\{a7b9c265-e4ef-efbb-a7b9-9c265e4e0997}
c:\program files\ascentive

:Commands
[purity]
[resethosts]
[emptyflash]
[emptyjava]
[emptytemp]
[createrestorepoint]
[reboot]
------コピペこの上まで------

コピペが完了しましたら、分かりやすいお名前をつけて保存してください。
その後、PCをセーフモードで起動させてください。
再度OTLを起動させ、Custom Scan/Fixesの項目内に上記で保存した内容をコピペしてください。
今回は駆除作業のため、その他のチェック項目はありません。
赤い文字の[Run Fix]をクリックして処置を開始してください。
OTLの処置に従って進めてゆき、通常モードで再起動を行う前後いずれかに処置ログが表示されますので、
そちらのログを貼り付けてご連絡ください。
またその際に状況報告もお願いいたします。

早速ご連絡有難う御座います。セーフモードでＯＴＬを起動させＯＴＬの処理終了で「ＯＫ」自動で通常モードで再起動がかかり、以下のＯＴＬログが表示されました。よろしくお願い致します。
All processes killed
========== OTL ==========
Service SrvUpdater stopped successfully!
Service SrvUpdater deleted successfully!
C:\Program Files\SoftwareUpdater\Upd4terSrv.exe moved successfully.
Service bgsvcgen stopped successfully!
Service bgsvcgen deleted successfully!
C:\Windows\System32\bgsvcgen.exe moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{4F524A2D-5354-2D53-5045-7A786E7484D7} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4F524A2D-5354-2D53-5045-7A786E7484D7}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3547471505-1811248031-3271276977-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4F524A2D-5354-2D53-5045-7A786E7484D7} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4F524A2D-5354-2D53-5045-7A786E7484D7}\ not found.
C:\Program Files\SoftwareUpdater folder moved successfully.
C:\Users\Hamaji\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\Users\Hamaji\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Users\Hamaji\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Users\Hamaji\AppData\Roaming\Malwarebytes folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Configuration folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\ProgramData\Malwarebytes folder moved successfully.
C:\Users\Public\Documents\Baidu\Common\I18N folder moved successfully.
C:\Users\Public\Documents\Baidu\Common folder moved successfully.
C:\Users\Public\Documents\Baidu folder moved successfully.
C:\Windows\Tasks\RegUse.job moved successfully.
C:\Windows\upr.exe moved successfully.
C:\Fibonacci_Bollinger_Bands.dll moved successfully.
C:\R_LINE2.dll moved successfully.
File rity] not found.
File sethosts] not found.
File ptyflash] not found.
File ptyjava] not found.
File ptytemp] not found.
File eaterestorepoint] not found.
File boot] not found.

OTL by OldTimer - Version 3.2.69.0 log created on 03302015_002954

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

OTLが動作不良を発生させて一部が正常に処置できていません。
お手数ですが以下のスクリプトを用いて処置のやり直しをお願いいたします。

------コピペこの下より------
:Files
c:\windows\system32\gensvcinst.exe
c:\programdata\application data\{a7b9c265-e4ef-efbb-a7b9-9c265e4e0997}
c:\program files\ascentive

:Commands
[purity]
[resethosts]
[emptyflash]
[emptyjava]
[emptytemp]
[createrestorepoint]
[reboot]
------コピペこの上まで------

大変お手数をおかけします。ＯＴＬで作業して再起動後のログは以下の通りです、よろしくお願い致します。
All processes killed
========== FILES ==========
c:\windows\system32\GenSvcInst.exe moved successfully.
File\Folder c:\programdata\application data\{a7b9c265-e4ef-efbb-a7b9-9c265e4e0997} not found.
c:\program files\Ascentive\Performance Center folder moved successfully.
c:\program files\Ascentive\ActiveSpeed folder moved successfully.
c:\program files\Ascentive folder moved successfully.
File\Folder :Commands not found.
File\Folder [purity] not found.
File\Folder [resethosts] not found.
File\Folder [emptyflash] not found.
File\Folder [emptyjava] not found.
File\Folder [emptytemp] not found.
File\Folder [createrestorepoint] not found.
File\Folder [reboot] not found.

OTL by OldTimer - Version 3.2.69.0 log created on 03302015_122637

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

OTLでの結果はまぁまぁ良好です。
OTLは後ほど利用する可能性がありますので、現段階では保管なされてください。
以下のソフトウェアをご用意ください。

ComboFix(通称:CF)
http://www.bleepingcomputer.com/download/combofix/dl/12/
削除なされる際は実行ファイルをそのまま処分してください。

1週間の様子見を行い、様子見が完了しましたらPCを一度通常モードで再起動させまてください。
再起動が完了しましたらCFをダブルクリックで実行してください。
処置完了まで30分～1時間程度かかりますのでおまちください。
処置が完了すると自動的にログが出力されますので、
そのログを貼り付けて様子見の結果を添えてご連絡ください。
1週間経たずして再発や異常が発生した場合、その旨のみで結構ですのでご連絡ください。