Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Hello

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Hello

Unread postby emenji » October 6th, 2011, 12:24 am

My wife was recently victim to the yesasia.com phishing email scam that went around about a month ago and accidentally opened the zip file that it linked to. Ever since then her virus scan (AVG) will start up but will no longer conduct scans. We`ve also heard of people who were taken in by this scam that have had other sites that they visit including shopping sites used to purchase things on their accounts so we would like to be safe. Here is the hijackthis log:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:02:28, on 2011/10/06
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17099)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\lxduserv.exe
C:\WINDOWS\system32\lxducoms.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
C:\WINDOWS\system32\TODDSrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\TOSHIBA\TOSHIBA Smooth View\SmoothView.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\vsnpstd.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logicool\Qcam\Qcam.exe
C:\WINDOWS\system32\TPSMain.exe
C:\Program Files\Lexmark 5600-6600 Series\lxdumon.exe
C:\Program Files\Synaptics\SynTP\Toshiba.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\WINDOWS\system32\RAMASST.exe
C:\Program Files\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32Info.exe
F:\HijackThis.exe

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Lexmark ツールバー - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Yahoo!ツールバーフィッシング警告 - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files\Yahoo!J\Toolbar\7_1_0_5\Modules\ypho.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O2 - BHO: Windows Live サインイン ヘルパー - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll
O2 - BHO: Yahoo!ツールバーヘルパー - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files\Yahoo!J\Toolbar\7_1_0_5\Modules\YahooToolBar.dll
O3 - Toolbar: The翻訳ツールバー - {FF278623-9AA4-489c-84CE-CF14D90CC70C} - c:\Program Files\TTI_V10LE\def_bar.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Yahoo!ツールバー - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar\7_1_0_5\Modules\YahooToolBar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Lexmark ツールバー - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\TOSHIBA Smooth View\SmoothView.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [IMJPMIG9.0] C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMJP9\IMJPMIG.EXE /Preload /Migration32
O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logicool\Qcam\Qcam.exe" /hide
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [lxdumon.exe] "C:\Program Files\Lexmark 5600-6600 Series\lxdumon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe
O4 - HKLM\..\Run: [0] 0
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Advanced SystemCare 4] "C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe"
O4 - HKCU\..\Run: [0] 0
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10w_Plugin.exe -update plugin
O4 - HKLM\..\Policies\Explorer\Run: [0] 0
O4 - HKUS\S-1-5-19\..\Run: [ctfmon.exe] ctfmon.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [ctfmon.exe] ctfmon.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] ctfmon.exe (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Adobe PDF に変換 - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Google サイドウィキ... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: The翻訳_ページ翻訳 - c:\Program Files\TTI_V10LE\addins\Ie\afi_pagetran.htm
O8 - Extra context menu item: The翻訳_範囲指定翻訳 - c:\Program Files\TTI_V10LE\addins\Ie\afi_seltran.htm
O8 - Extra context menu item: The翻訳_翻訳設定 - c:\Program Files\TTI_V10LE\addins\Ie\afi_setdlg.htm
O8 - Extra context menu item: The翻訳_辞書参照 - c:\Program Files\TTI_V10LE\addins\Ie\ttp_showdic.htm
O8 - Extra context menu item: Yahoo!ツールバーに追加 - res://C:\Program Files\Yahoo!J\Toolbar\7_0_0_12\Modules\YahooToolBar.dll/script_search.htm
O8 - Extra context menu item: リンクの参照先を Adobe PDF に変換 - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: リンクの参照先を既存の PDF に変換 - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: 既存の PDF に追加 - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: 選択したリンクを Adobe PDF に変換 - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: 選択したリンクを既存の PDF に変換 - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: 選択項目を Adobe PDF に変換 - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: 選択項目を既存の PDF に変換 - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun の Java コンソール - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: The翻訳_ページ翻訳 - {3009C231-637C-4d4c-905F-4D6585D033CA} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: The翻訳_ページ翻訳 - {3009C231-637C-4d4c-905F-4D6585D033CA} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {3009C237-637C-4d4c-905F-4D6585D033CA} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: The翻訳_辞書参照 - {3009C237-637C-4d4c-905F-4D6585D033CA} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {3009C238-637C-4d4c-905F-4D6585D033CA} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: The翻訳_範囲指定翻訳 - {3009C238-637C-4d4c-905F-4D6585D033CA} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {3009C23A-637C-4d4c-905F-4D6585D033CA} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: The翻訳_翻訳設定 - {3009C23A-637C-4d4c-905F-4D6585D033CA} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: 辞書バー - {3009C23C-637C-4D4C-905F-4D6585D033CA} - c:\Program Files\TTI_V10LE\IeTbandTate.dll
O9 - Extra button: 翻訳バー - {3009C23E-637C-4D4C-905F-4D6585D033CA} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: リサーチ - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://dynabook.com/assistpc/index_j.htm
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... oader5.cab
O16 - DPF: {10C8B89E-9B80-464D-8F81-B2ED2E971D28} (PccEasyUpdate Class) - http://a500.g.akamai.net/7/500/484/0000 ... Update.cab
O16 - DPF: {3ADF17D2-F1A8-45E1-92BA-B72717779075} (あなたのdynabook.com) - http://dynabook.fresheye.com/TWAgent/TWAgent.cab
O16 - DPF: {4788DE0A-3552-49EA-AC8C-233DA52523B9} (AxLoaderPassword Class) - http://www.blackberry.com/devicesoftware/AxLoader.cab
O16 - DPF: {4A88CB42-BBFE-496A-884F-98E8AC316292} (YJInstStarter Control) - http://dl.toolbar.yahoo.co.jp/dl/installs/yjinst.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 2953324625
O16 - DPF: {7BD15D9F-7684-48AE-888E-46AF1CAEDB2E} (MILU Download Class) - http://www.milu.jp/MILU.cab
O16 - DPF: {B114AD48-9639-4174-A362-07740A29D5BD} (EnvSignalar Class) - https://bbsoft.jp/EnvSignalar.cab
O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} (PCPitstop Exam) - http://utilities.pcpitstop.com/optimize2/pcpitstop2.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{68E3EFE4-8579-4460-B91B-49C983391691}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logicool\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll
O18 - Protocol: msjwwdat - {BAAB02DC-913E-40AA-B9ED-8068DEE42CFA} - C:\Program Files\Microsoft Office\Home Style\JWW\JWWData.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Atheros 設定サービス (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google アップデート サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Lavasoft Ad-Aware Service - Unknown owner - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (file missing)
O23 - Service: LVCOMSer - Logicool Co., Ltd - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logicool Co., Ltd - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logicool Co., Ltd - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: lxduCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxduserv.exe
O23 - Service: lxdu_device - - C:\WINDOWS\system32\lxducoms.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - Unknown owner - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe (file missing)
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\WINDOWS\system32\TODDSrv.exe

--
End of file - 17734 bytes



Thank you very much for your help.
emenji
Active Member
 
Posts: 4
Joined: October 6th, 2011, 12:14 am
Advertisement
Register to Remove

Re: Hello

Unread postby askey127 » October 7th, 2011, 2:52 pm

Hi emenji,
You have multiple Antivirus programs installed. They will battle each other for control, and may actually reduce your security or destabilize your system.
IOBit is not recommended, and AVG includes the ASK toolbar, so the removal choices are easy. We will keep MS Security Essentials.
Spybot is a trusted program, but it needs to be disabled or removed while we fix your machine, so its Teatimer does not prevent the corrections.
-----------------------------------------------------------
Remove Programs Using Control Panel
From Start, Settings, Control Panel or Start, Control Panel, click Add/Remove Programs.
Highlight each Entry, as follows, one by one, if it exists, and choose Remove :

AVG 10
Advanced System Care
Spybot Search & Destroy

Take extra care in answering questions posed by any Uninstaller.
If the Spybot Uninstaller asks whether you want to remove all files and settings, answer YES. If it reports that it cannot remove all files, that's OK.
---------------------------------------------
Download the OTL Scanner
Please download OTL.exe by OldTimer and save it to your desktop.
---------------------------------------------
Run a Scan with OTL
  • Double click on the icon to run it.
  • Check the boxes labeled :
    • Scan All Users
    • LOP check
    • Purity check
    • Extra Registry > Use SafeList
  • Make sure all other windows are closed to let it run uninterrupted.
  • Click on the Run Scan button at the top left hand corner. Do not change any settings unless otherwise told to do so. The scan wont take long.
When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL. (desktop)
The Extras.txt file will only appear the very first time you run OTL.
Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them as a reply. Use separate replies if more convenient.

askey127
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 13903
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA

Re: Hello

Unread postby emenji » October 9th, 2011, 12:00 pm

Thank you for getting back to me. Here are the OTL reports:

OTL logfile created on: 2011/10/10 0:45:47 - Run 1
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Documents and Settings\noriko\My Documents\ダウンロード
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

1.87 Gb Total Physical Memory | 1.27 Gb Available Physical Memory | 67.86% Memory free
2.38 Gb Paging File | 1.92 Gb Available in Paging File | 80.52% Paging File free
Paging file location(s): C:\pagefile.sys 672 1344 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 59.25 Gb Total Space | 8.11 Gb Free Space | 13.70% Space Free | Partition Type: NTFS
Drive D: | 9.99 Gb Total Space | 9.99 Gb Free Space | 99.99% Space Free | Partition Type: FAT32
Unable to calculate disk information.

Computer Name: MYU | User Name: noriko | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/10/10 00:44:10 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\noriko\My Documents\ダウンロード\OTL.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2008/09/10 20:11:12 | 000,676,520 | ---- | M] () -- C:\Program Files\Lexmark 5600-6600 Series\lxdumon.exe
PRC - [2008/05/23 21:58:34 | 000,594,600 | ---- | M] ( ) -- C:\WINDOWS\system32\lxducoms.exe
PRC - [2008/05/23 21:58:22 | 000,098,984 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\lxduserv.exe
PRC - [2008/04/14 11:26:11 | 001,027,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/04/14 11:26:08 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\conime.exe
PRC - [2007/07/25 16:06:08 | 002,026,768 | ---- | M] (Logicool Co., Ltd) -- C:\Program Files\Logicool\Qcam\Qcam.exe
PRC - [2007/07/25 16:02:54 | 000,562,960 | ---- | M] (Logicool Co., Ltd) -- C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
PRC - [2007/07/25 16:02:20 | 000,403,216 | ---- | M] (Logicool Co., Ltd) -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
PRC - [2007/07/20 00:40:48 | 000,137,752 | ---- | M] (Logicool Co., Ltd) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
PRC - [2007/07/20 00:38:54 | 000,186,904 | ---- | M] (Logicool Co., Ltd) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
PRC - [2006/06/13 14:19:52 | 000,356,352 | ---- | M] (TOSHIBA) -- C:\Program Files\TOSHIBA\TOSHIBA Applet\THotkey.exe
PRC - [2006/05/25 18:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) -- C:\WINDOWS\system32\TODDSrv.exe
PRC - [2006/04/05 11:07:02 | 000,573,440 | ---- | M] (Logitech Inc.) -- C:\Program Files\SetPoint\SetPoint.exe
PRC - [2006/03/29 11:05:17 | 000,286,720 | ---- | M] () -- C:\WINDOWS\vsnpstd.exe
PRC - [2006/03/28 17:38:32 | 000,094,208 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.exe
PRC - [2006/03/02 15:50:52 | 000,151,552 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\Toshiba.exe
PRC - [2006/02/07 16:30:40 | 000,035,840 | ---- | M] (TOSHIBA Corp.) -- C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
PRC - [2005/11/02 16:41:04 | 000,978,944 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
PRC - [2005/09/26 11:22:28 | 000,036,864 | ---- | M] () -- C:\WINDOWS\system32\acs.exe
PRC - [2005/05/31 21:00:12 | 000,282,624 | ---- | M] (株式会社 東芝) -- C:\WINDOWS\system32\TPSMain.exe
PRC - [2005/05/31 20:59:58 | 000,045,056 | ---- | M] (株式会社 東芝) -- C:\WINDOWS\system32\TPSBattM.exe
PRC - [2005/04/26 16:13:20 | 000,122,880 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA Smooth View\SmoothView.exe
PRC - [2005/01/17 16:38:38 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
PRC - [2004/08/28 00:37:00 | 000,155,648 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\RAMASST.exe
PRC - [2004/08/28 00:33:00 | 000,110,592 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\DVDRAMSV.exe


========== Modules (No Company Name) ==========

MOD - [2009/09/04 23:15:06 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2008/09/10 20:11:12 | 000,676,520 | ---- | M] () -- C:\Program Files\Lexmark 5600-6600 Series\lxdumon.exe
MOD - [2008/09/10 18:56:27 | 000,081,920 | ---- | M] () -- C:\Program Files\Lexmark 5600-6600 Series\lxducaps.dll
MOD - [2008/09/10 18:56:14 | 000,380,928 | ---- | M] () -- C:\Program Files\Lexmark 5600-6600 Series\lxduscw.dll
MOD - [2008/09/10 18:56:12 | 001,036,288 | ---- | M] () -- C:\Program Files\Lexmark 5600-6600 Series\lxdudrs.dll
MOD - [2008/09/10 18:40:31 | 000,069,632 | ---- | M] () -- C:\Program Files\Lexmark 5600-6600 Series\lxducnv4.dll
MOD - [2008/05/23 21:17:14 | 000,121,856 | ---- | M] () -- C:\WINDOWS\system32\spool\prtprocs\w32x86\lxdudrpp.dll
MOD - [2008/05/23 21:02:14 | 000,188,416 | ---- | M] () -- C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdudatr.dll
MOD - [2007/05/11 01:32:02 | 000,892,928 | ---- | M] () -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdistRes.JPN
MOD - [2006/03/29 11:05:17 | 000,286,720 | ---- | M] () -- C:\WINDOWS\vsnpstd.exe
MOD - [2006/01/04 18:14:36 | 000,049,152 | ---- | M] () -- C:\Program Files\TOSHIBA\TOSHIBA Applet\TouchPad_ONOFF.dll
MOD - [2005/09/26 11:22:28 | 000,036,864 | ---- | M] () -- C:\WINDOWS\system32\acs.exe


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (McComponentHostService)
SRV - File not found [Auto | Stopped] -- -- (Lavasoft Ad-Aware Service)
SRV - File not found [On_Demand | Stopped] -- -- (gusvc)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2008/05/23 21:58:34 | 000,594,600 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\lxducoms.exe -- (lxdu_device)
SRV - [2008/05/23 21:58:22 | 000,098,984 | ---- | M] () [Auto | Running] -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxduserv.exe -- (lxduCATSCustConnectService)
SRV - [2008/03/17 23:00:22 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2007/08/09 16:27:52 | 000,073,728 | ---- | M] (HP) [Auto | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2007/07/20 00:42:30 | 000,141,848 | ---- | M] (Logicool Co., Ltd) [Auto | Stopped] -- C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher)
SRV - [2007/07/20 00:40:48 | 000,137,752 | ---- | M] (Logicool Co., Ltd) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2007/07/20 00:38:54 | 000,186,904 | ---- | M] (Logicool Co., Ltd) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer)
SRV - [2006/05/25 18:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\WINDOWS\system32\TODDSrv.exe -- (TODDSrv)
SRV - [2006/04/27 17:35:16 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV)
SRV - [2006/04/27 17:27:06 | 000,049,241 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR)
SRV - [2006/04/27 17:16:28 | 000,069,718 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV)
SRV - [2006/02/07 16:30:40 | 000,035,840 | ---- | M] (TOSHIBA Corp.) [Auto | Running] -- C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe -- (TAPPSRV)
SRV - [2005/09/26 11:22:28 | 000,036,864 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\acs.exe -- (ACS)
SRV - [2005/01/17 16:38:38 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (CFSvcs)
SRV - [2004/08/28 00:33:00 | 000,110,592 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) [Auto | Running] -- C:\WINDOWS\system32\DVDRAMSV.exe -- (DVD-RAM_Service)


========== Driver Services (SafeList) ==========

DRV - [2011/10/10 00:37:03 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{4F85B03D-37C4-4243-998A-E5D310F45E25}\MpKsl3ee18aa4.sys -- (MpKsl3ee18aa4)
DRV - [2009/06/25 03:05:43 | 000,064,160 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2007/07/20 00:40:02 | 002,141,848 | ---- | M] (Logicool Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (LVMVDrv)
DRV - [2007/07/20 00:37:56 | 002,108,952 | ---- | M] (Logicool Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (LVcKap)
DRV - [2007/07/19 09:44:36 | 000,021,528 | R--- | M] (Logicool Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService)
DRV - [2007/07/19 09:44:24 | 003,598,360 | R--- | M] (Logicool Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) Logicool Qcam Communicate Deluxe(UVC)
DRV - [2007/07/19 09:44:12 | 000,041,112 | R--- | M] (Logicool Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2007/07/19 09:42:30 | 001,920,152 | R--- | M] (Logicool Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvpopflt.sys -- (lvpopflt)
DRV - [2007/07/18 17:42:42 | 000,025,624 | ---- | M] (Logicool Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2006/05/05 07:13:52 | 004,271,616 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/04/18 15:12:00 | 000,098,816 | ---- | M] (TOSHIBA Corporation) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tdudf.sys -- (tdudf)
DRV - [2006/03/29 11:05:17 | 000,367,488 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\snpstd.sys -- (snpstd)
DRV - [2006/03/28 17:56:06 | 000,027,008 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
DRV - [2006/03/28 17:55:58 | 000,069,760 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2006/03/28 17:55:20 | 000,036,736 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidUsbK.sys -- (LHidUsbK)
DRV - [2006/03/28 17:55:04 | 000,055,808 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
DRV - [2006/03/21 23:56:24 | 001,522,688 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006/03/02 18:49:00 | 000,015,360 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV - [2006/01/18 18:41:58 | 000,080,512 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2005/12/21 10:16:34 | 000,470,048 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2005/12/13 09:08:44 | 001,124,097 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2005/11/30 10:12:00 | 000,162,560 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)
DRV - [2005/10/20 14:03:42 | 000,006,144 | ---- | M] (Toshiba Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NBSMI.sys -- (TVALD)
DRV - [2005/06/02 03:33:00 | 000,102,384 | ---- | M] (Matsushita Electric Industrial Co.,Ltd.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\meiudf.sys -- (meiudf)
DRV - [2005/05/09 09:06:56 | 000,004,480 | ---- | M] (RSupport Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\vrvd202.sys -- (VRVD202)
DRV - [2004/08/05 21:00:00 | 000,012,160 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\fsvga.sys -- (FsVga)
DRV - [2004/08/03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2003/09/19 01:47:00 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (Pfc)
DRV - [2003/01/29 14:35:00 | 000,012,032 | ---- | M] (TOSHIBA Corporation.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Netdevio.sys -- (Netdevio)
DRV - [2001/08/24 04:00:00 | 000,022,400 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SbcpHid.sys -- (SbcpHid)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://dynabook.com/assistpc/index_j.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://dynabook.com/assistpc/index_j.htm
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://dynabook.com/assistpc/index_j.htm

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://dynabook.com/assistpc/index_j.htm

IE - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.co.jp/
IE - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.yahoo.co.jp/"
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:7.3.0.2010120918

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/10/03 06:43:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/10/03 04:52:22 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 2.0.0.22\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2011/03/21 08:30:01 | 000,000,000 | ---D | M]

[2009/08/21 14:49:00 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\noriko\Application Data\Mozilla\Extensions
[2011/09/29 06:45:16 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\noriko\Application Data\Mozilla\Firefox\Profiles\ahpw4yav.default\extensions
[2011/02/20 13:13:18 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\noriko\Application Data\Mozilla\Firefox\Profiles\ahpw4yav.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/09/29 06:45:16 | 000,000,000 | ---D | M] (Yahoo!繝・・繝ォ繝舌・) -- C:\Documents and Settings\noriko\Application Data\Mozilla\Firefox\Profiles\ahpw4yav.default\extensions\toolbar@addon.yahoo.co.jp
[2009/08/21 14:25:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\noriko\Application Data\Mozilla\Firefox\Profiles\kdy90494.default\extensions
[2009/08/20 10:56:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\noriko\Application Data\Mozilla\Firefox\Profiles\qny0kq29.Nori\extensions
[2011/09/07 12:05:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/09/07 12:05:55 | 000,000,000 | ---D | M] (Click to call with Skype) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011/10/03 06:43:54 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2009/11/20 07:16:28 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npCouponPrinter.dll
[2009/11/20 07:16:29 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npMozCouponPrinter.dll
[2011/09/17 05:43:39 | 000,001,842 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-jp.xml
[2011/09/17 05:43:39 | 000,002,623 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google-jp.xml
[2011/09/17 05:43:39 | 000,001,269 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\oshiete-goo.xml
[2011/09/17 05:43:39 | 000,000,814 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\rakuten.xml
[2011/09/17 05:43:39 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-ja.xml
[2011/09/17 05:43:39 | 000,000,889 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-jp-auctions.xml
[2011/09/17 05:43:39 | 000,000,696 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-jp.xml

O1 HOSTS File: ([2004/08/05 21:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Lexmark ツールバー) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
O2 - BHO: (Yahoo!ツールバーフィッシング警告) - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files\Yahoo!J\Toolbar\7_1_0_5\Modules\ypho.dll (Yahoo Japan Corporation. )
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - No CLSID value found.
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Windows Live Toolbar Helper) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O2 - BHO: (Lexmark ) - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll ()
O2 - BHO: (Yahoo!ツールバーヘルパー) - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files\Yahoo!J\Toolbar\7_1_0_5\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3 - HKLM\..\Toolbar: (Lexmark ツールバー) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar\7_1_0_5\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3 - HKLM\..\Toolbar: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (The翻訳ツールバー) - {FF278623-9AA4-489c-84CE-CF14D90CC70C} - c:\Program Files\TTI_V10LE\def_bar.dll ()
O3 - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\..\Toolbar\ShellBrowser: (Lexmark ツールバー) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
O3 - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\..\Toolbar\WebBrowser: (Lexmark ツールバー) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
O3 - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\..\Toolbar\WebBrowser: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar\7_1_0_5\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3 - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\..\Toolbar\WebBrowser: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O4 - HKLM..\Run: [0] 0 ()
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\IMKR6_1\imekrmig.exe (Microsoft Corporation)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech Inc.)
O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe (Logicool Co., Ltd)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logicool\Qcam\Qcam.exe (Logicool Co., Ltd)
O4 - HKLM..\Run: [lxdumon.exe] C:\Program Files\Lexmark 5600-6600 Series\lxdumon.exe ()
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NDSTray.exe] NDSTray.exe File not found
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\TOSHIBA Smooth View\SmoothView.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe ()
O4 - HKLM..\Run: [THotkey] C:\Program Files\TOSHIBA\TOSHIBA Applet\THotkey.exe (TOSHIBA)
O4 - HKLM..\Run: [TPSMain] C:\WINDOWS\System32\TPSMain.exe (株式会社 東芝)
O4 - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007..\Run: [0] 0 ()
O4 - Startup: C:\Documents and Settings\All Users\スタート メニュー\プログラム\スタートアップ\RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe (Matsushita Electric Industrial Co., Ltd.)
O4 - Startup: C:\Documents and Settings\All Users\スタート メニュー\プログラム\スタートアップ\SetPoint.lnk = C:\Program Files\SetPoint\SetPoint.exe (Logitech Inc.)
O4 - Startup: C:\Documents and Settings\noriko\スタート メニュー\プログラム\スタートアップ\永久不滅パレット.lnk = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run: 0 = 0 ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 ()
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1748851543-3807799242-2192525868-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Windows Live Search - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx File not found
O8 - Extra context menu item: Adobe PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Google サイドウィキ... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
O8 - Extra context menu item: The翻訳_ページ翻訳 - c:\Program Files\TTI_V10LE\addins\Ie\afi_pagetran.htm File not found
O8 - Extra context menu item: The翻訳_辞書参照 - c:\Program Files\TTI_V10LE\addins\Ie\ttp_showdic.htm File not found
O8 - Extra context menu item: The翻訳_範囲指定翻訳 - c:\Program Files\TTI_V10LE\addins\Ie\afi_seltran.htm File not found
O8 - Extra context menu item: The翻訳_翻訳設定 - c:\Program Files\TTI_V10LE\addins\Ie\afi_setdlg.htm File not found
O8 - Extra context menu item: Yahoo!ツールバーに追加 - C:\Program Files\Yahoo!J\Toolbar\7_0_0_12\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O8 - Extra context menu item: リンクの参照先を Adobe PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: リンクの参照先を既存の PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 既存の PDF に追加 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 選択したリンクを Adobe PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 選択したリンクを既存の PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 選択項目を Adobe PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 選択項目を既存の PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra 'Tools' menuitem : Sun の Java コンソール - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\NPJPI150_06.dll (Sun Microsystems, Inc.)
O9 - Extra Button: The翻訳_ページ翻訳 - {3009C231-637C-4d4c-905F-4D6585D033CA} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : The翻訳_ページ翻訳 - {3009C231-637C-4d4c-905F-4D6585D033CA} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : The翻訳_辞書参照 - {3009C237-637C-4d4c-905F-4D6585D033CA} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : The翻訳_範囲指定翻訳 - {3009C238-637C-4d4c-905F-4D6585D033CA} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : The翻訳_翻訳設定 - {3009C23A-637C-4d4c-905F-4D6585D033CA} - Reg Error: Value error. File not found
O9 - Extra Button: 辞書バー - {3009C23C-637C-4D4C-905F-4D6585D033CA} - c:\Program Files\TTI_V10LE\IeTbandTate.dll ()
O9 - Extra Button: 翻訳バー - {3009C23E-637C-4D4C-905F-4D6585D033CA} - Reg Error: Key error. File not found
O9 - Extra Button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - Reg Error: Key error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://www.apple.com/qtactivex/qtplugin.cab (QuickTime Object)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/200 ... oader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {10C8B89E-9B80-464D-8F81-B2ED2E971D28} http://a500.g.akamai.net/7/500/484/0000 ... Update.cab (PccEasyUpdate Class)
O16 - DPF: {3ADF17D2-F1A8-45E1-92BA-B72717779075} http://dynabook.fresheye.com/TWAgent/TWAgent.cab (あなたのdynabook.com)
O16 - DPF: {4788DE0A-3552-49EA-AC8C-233DA52523B9} http://www.blackberry.com/devicesoftware/AxLoader.cab (AxLoaderPassword Class)
O16 - DPF: {4A88CB42-BBFE-496A-884F-98E8AC316292} http://dl.toolbar.yahoo.co.jp/dl/installs/yjinst.cab (YJInstStarter Control)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 2953324625 (MUWebControl Class)
O16 - DPF: {7BD15D9F-7684-48AE-888E-46AF1CAEDB2E} http://www.milu.jp/MILU.cab (MILU Download Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {B114AD48-9639-4174-A362-07740A29D5BD} https://bbsoft.jp/EnvSignalar.cab (EnvSignalar Class)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} http://utilities.pcpitstop.com/optimize2/pcpitstop2.dll (PCPitstop Exam)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{68E3EFE4-8579-4460-B91B-49C983391691}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logicool\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logicool Inc.)
O18 - Protocol\Handler\msjwwdat {BAAB02DC-913E-40aa-B9ED-8068DEE42CFA} - C:\Program Files\Microsoft Office\Home Style\JWW\JWWData.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (現在のホーム ページ) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\noriko\Local Settings\Application Data\Microsoft\Wallpaper2.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\noriko\Local Settings\Application Data\Microsoft\Wallpaper2.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/06/21 19:56:35 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{8641588a-fbf7-11dd-ad45-0016e368bec9}\Shell\AutoRun\command - "" = F:\GETMYPIX.EXE
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (lsdelete)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2009/10/27 16:27:42 | 000,438,272 | ---- | C] ( ) -- C:\WINDOWS\System32\LXDUhcp.dll
[2009/10/27 16:27:41 | 000,364,544 | ---- | C] ( ) -- C:\WINDOWS\System32\lxduinpa.dll
[2009/10/27 16:27:40 | 000,339,968 | ---- | C] ( ) -- C:\WINDOWS\System32\lxduiesc.dll
[2009/10/27 16:27:39 | 000,851,968 | ---- | C] ( ) -- C:\WINDOWS\System32\lxduusb1.dll
[2009/10/27 16:27:38 | 001,069,056 | ---- | C] ( ) -- C:\WINDOWS\System32\lxduserv.dll
[2009/10/27 16:27:37 | 000,651,264 | ---- | C] ( ) -- C:\WINDOWS\System32\lxdupmui.dll
[2009/10/27 16:27:36 | 000,577,536 | ---- | C] ( ) -- C:\WINDOWS\System32\lxdulmpm.dll
[2009/10/27 16:27:34 | 000,328,360 | ---- | C] ( ) -- C:\WINDOWS\System32\lxduih.exe
[2009/10/27 16:27:33 | 000,679,936 | ---- | C] ( ) -- C:\WINDOWS\System32\lxduhbn3.dll
[2009/10/27 16:27:30 | 000,594,600 | ---- | C] ( ) -- C:\WINDOWS\System32\lxducoms.exe
[2009/10/27 16:27:29 | 000,376,832 | ---- | C] ( ) -- C:\WINDOWS\System32\lxducomm.dll
[2009/10/27 16:27:28 | 000,765,952 | ---- | C] ( ) -- C:\WINDOWS\System32\lxducomc.dll
[2009/10/27 16:27:28 | 000,369,320 | ---- | C] ( ) -- C:\WINDOWS\System32\lxducfg.exe
[2006/06/22 10:19:15 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\DLLVGA.dll
[2006/03/29 11:05:17 | 000,036,864 | ---- | C] ( ) -- C:\WINDOWS\vsnpstd.dll
[2006/03/29 11:05:17 | 000,036,864 | ---- | C] ( ) -- C:\WINDOWS\System32\vsnpstd.dll
[2006/03/29 11:05:16 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\csnpstd.dll
[2006/03/29 11:05:16 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\csnpstd.dll
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2030/11/08 06:05:58 | 000,900,465 | ---- | M] () -- C:\Documents and Settings\noriko\My Documents\118_0299.JPG
[2030/11/08 06:05:46 | 000,905,372 | ---- | M] () -- C:\Documents and Settings\noriko\My Documents\118_0298.JPG
[2030/11/08 06:05:36 | 000,868,491 | ---- | M] () -- C:\Documents and Settings\noriko\My Documents\118_0297.JPG
[2011/10/10 00:43:48 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/10/10 00:40:21 | 000,000,674 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/10/10 00:40:18 | 000,000,306 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2011/10/10 00:40:06 | 000,000,256 | ---- | M] () -- C:\WINDOWS\tasks\Windows Live Toolbar の更新プログラムを確認します.job
[2011/10/10 00:36:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/10/10 00:36:39 | 2011,418,624 | -HS- | M] () -- C:\hiberfil.sys
[2011/10/09 18:14:00 | 000,000,678 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/10/09 03:00:00 | 000,000,398 | ---- | M] () -- C:\WINDOWS\tasks\ErrorEND.job
[2011/10/08 19:53:02 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/10/06 03:06:00 | 000,000,442 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2011/10/05 18:23:23 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\lvuvc.hs
[2011/09/18 05:33:18 | 000,444,822 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/09/18 05:33:18 | 000,230,534 | ---- | M] () -- C:\WINDOWS\System32\perfh011.dat
[2011/09/18 05:33:18 | 000,072,698 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/09/18 05:33:18 | 000,072,692 | ---- | M] () -- C:\WINDOWS\System32\perfc011.dat
[2011/09/18 04:48:03 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/05/26 10:14:43 | 000,000,054 | ---- | C] () -- C:\WINDOWS\System32\rp_stats.dat
[2011/05/26 10:14:43 | 000,000,039 | ---- | C] () -- C:\WINDOWS\System32\rp_rules.dat
[2011/05/26 08:07:36 | 000,018,207 | ---- | C] () -- C:\WINDOWS\System32\NateOnMainA.dll
[2011/05/15 08:22:29 | 000,000,001 | ---- | C] () -- C:\WINDOWS\wallball.dat
[2009/12/31 02:23:43 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/12/28 13:13:50 | 000,055,960 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009/10/27 17:03:44 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxduvs.dll
[2009/10/27 17:03:35 | 000,360,448 | ---- | C] () -- C:\WINDOWS\System32\lxducoin.dll
[2009/10/27 17:00:24 | 001,036,288 | ---- | C] () -- C:\WINDOWS\System32\lxdudrs.dll
[2009/10/27 17:00:24 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\lxducaps.dll
[2009/10/27 17:00:23 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\lxducnv4.dll
[2009/10/27 16:29:47 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\lxdurwrd.ini
[2009/10/27 16:27:43 | 000,389,120 | ---- | C] () -- C:\WINDOWS\System32\LXDUinst.dll
[2009/10/27 16:27:31 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lxdugrd.dll
[2009/06/27 13:58:39 | 000,015,688 | ---- | C] () -- C:\WINDOWS\System32\lsdelete.exe
[2009/04/03 18:15:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/02/28 02:15:10 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2009/01/08 17:40:31 | 000,058,163 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2008/02/21 13:10:01 | 000,006,048 | ---- | C] () -- C:\WINDOWS\System32\MCC16.dll
[2008/02/21 13:07:42 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2008/02/21 12:21:04 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2007/03/26 17:42:26 | 000,000,006 | R--- | C] () -- C:\Documents and Settings\noriko\Application Data\dm.ini
[2007/01/02 12:58:42 | 000,000,227 | ---- | C] () -- C:\WINDOWS\HP_CounterReport_Update_HPSU.ini
[2007/01/02 12:56:41 | 000,000,214 | ---- | C] () -- C:\WINDOWS\HP_48BitScanUpdatePatch.ini
[2007/01/02 12:56:18 | 000,000,214 | ---- | C] () -- C:\WINDOWS\HP_InstantSHareJPG.ini
[2006/12/30 16:00:11 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ToDisc.INI
[2006/11/12 22:14:15 | 000,000,000 | ---- | C] () -- C:\WINDOWS\pcnavi.INI
[2006/11/12 22:12:14 | 000,038,400 | R--- | C] () -- C:\Documents and Settings\noriko\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/11/01 15:25:28 | 000,000,217 | ---- | C] () -- C:\WINDOWS\HP_IZClosingDiscErrorPatch.ini
[2006/11/01 15:12:39 | 000,000,221 | ---- | C] () -- C:\WINDOWS\HP_RedboxHprblog_HPSU.ini
[2006/10/29 22:39:32 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\hpzids01.dll
[2006/10/29 22:32:11 | 000,089,229 | ---- | C] () -- C:\WINDOWS\hpoins06.dat
[2006/10/29 22:32:11 | 000,005,389 | ---- | C] () -- C:\WINDOWS\hpomdl06.dat
[2006/10/28 23:46:38 | 000,002,068 | ---- | C] () -- C:\WINDOWS\ekitan.ini
[2006/10/28 23:46:38 | 000,000,919 | ---- | C] () -- C:\WINDOWS\System32\mswee32.dat
[2006/10/17 19:16:29 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Sony.dll
[2006/09/26 22:48:29 | 000,000,129 | R--- | C] () -- C:\Documents and Settings\noriko\Local Settings\Application Data\fusioncache.dat
[2006/09/26 22:46:11 | 000,245,760 | ---- | C] () -- C:\WINDOWS\System32\ControlWZCS.exe
[2006/09/26 22:46:08 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\acs.exe
[2006/09/26 22:46:03 | 000,311,296 | ---- | C] () -- C:\WINDOWS\System32\AegisI5.exe
[2006/09/26 22:45:49 | 000,270,336 | ---- | C] () -- C:\WINDOWS\System32\PlugPlayPCIDevice.exe
[2006/06/22 13:31:25 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/06/22 11:40:07 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006/06/22 11:14:05 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2006/06/22 11:14:05 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2006/06/22 11:14:05 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2006/06/22 11:14:05 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2006/06/22 11:14:05 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2006/06/22 11:14:05 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2006/06/22 10:27:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NDSTray.INI
[2006/06/22 10:19:15 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\TCtrlIO.dll
[2006/06/22 09:45:20 | 000,128,113 | ---- | C] () -- C:\WINDOWS\System32\csellang.ini
[2006/06/22 09:45:20 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\csellang.dll
[2006/06/22 09:45:20 | 000,010,171 | ---- | C] () -- C:\WINDOWS\System32\tosmreg.ini
[2006/06/22 09:45:20 | 000,007,671 | ---- | C] () -- C:\WINDOWS\System32\cseltbl.ini
[2006/06/22 09:42:31 | 000,000,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTHDAEQ1.dat
[2006/06/22 09:42:31 | 000,000,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTHDAEQ0.dat
[2006/06/22 09:42:28 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2006/06/22 09:42:28 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2006/06/21 21:12:27 | 000,001,232 | ---- | C] () -- C:\WINDOWS\ATICIM.INI
[2006/06/21 19:58:39 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2006/06/21 19:54:28 | 000,022,120 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2006/06/21 19:49:44 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2006/06/21 19:47:54 | 000,229,384 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2006/06/21 19:40:18 | 000,001,288 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2006/06/21 19:40:06 | 000,101,588 | ---- | C] () -- C:\WINDOWS\System32\msimelst.exe
[2006/06/21 19:40:06 | 000,073,898 | ---- | C] () -- C:\WINDOWS\System32\msimekey.exe
[2006/06/21 19:40:06 | 000,065,392 | ---- | C] () -- C:\WINDOWS\System32\msimek.sys
[2006/06/21 19:40:06 | 000,046,756 | ---- | C] () -- C:\WINDOWS\System32\msimeset.exe
[2006/06/21 19:40:06 | 000,044,496 | ---- | C] () -- C:\WINDOWS\System32\msimei.sys
[2006/06/21 19:40:06 | 000,042,841 | ---- | C] () -- C:\WINDOWS\System32\key02.sys
[2006/06/21 19:40:06 | 000,042,633 | ---- | C] () -- C:\WINDOWS\System32\keyax.sys
[2006/06/21 19:40:06 | 000,039,808 | ---- | C] () -- C:\WINDOWS\System32\msime.sys
[2006/06/21 19:40:06 | 000,039,348 | ---- | C] () -- C:\WINDOWS\System32\msimergn.exe
[2006/06/21 19:40:06 | 000,013,597 | ---- | C] () -- C:\WINDOWS\System32\msimed.sys
[2006/06/21 19:40:06 | 000,011,923 | ---- | C] () -- C:\WINDOWS\System32\deldrv.exe
[2006/06/21 19:40:06 | 000,004,701 | ---- | C] () -- C:\WINDOWS\System32\kkcfunc.sys
[2006/06/21 19:40:06 | 000,002,990 | ---- | C] () -- C:\WINDOWS\System32\disp_win.sys
[2006/06/21 19:40:06 | 000,000,901 | ---- | C] () -- C:\WINDOWS\System32\ntfont.sys
[2006/06/21 19:40:06 | 000,000,852 | ---- | C] () -- C:\WINDOWS\System32\font_win.sys
[2006/06/21 19:40:05 | 000,054,700 | ---- | C] () -- C:\WINDOWS\System32\$ias.sys
[2006/06/21 19:40:05 | 000,027,956 | ---- | C] () -- C:\WINDOWS\System32\appsicon.dll
[2006/06/21 19:40:05 | 000,021,295 | ---- | C] () -- C:\WINDOWS\System32\adddrv.exe
[2006/06/21 19:40:05 | 000,020,688 | ---- | C] () -- C:\WINDOWS\System32\$disp.sys
[2006/06/21 19:40:05 | 000,004,125 | ---- | C] () -- C:\WINDOWS\System32\$prnescp.sys
[2006/06/21 19:40:00 | 000,230,534 | ---- | C] () -- C:\WINDOWS\System32\perfh011.dat
[2006/06/21 19:40:00 | 000,130,902 | ---- | C] () -- C:\WINDOWS\System32\perfi011.dat
[2006/06/21 19:40:00 | 000,072,692 | ---- | C] () -- C:\WINDOWS\System32\perfc011.dat
[2006/06/21 19:40:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd011.dat
[2006/06/21 19:39:46 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006/06/21 19:39:44 | 000,444,822 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006/06/21 19:39:44 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006/06/21 19:39:44 | 000,072,698 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006/06/21 19:39:44 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006/06/21 19:39:43 | 000,004,688 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006/06/21 19:39:42 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006/06/21 19:39:41 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2006/06/21 19:39:38 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006/06/21 19:39:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006/06/21 19:39:37 | 000,229,088 | ---- | C] () -- C:\WINDOWS\System32\lanman.drv
[2006/06/21 19:39:33 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006/06/21 19:39:27 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006/06/21 19:12:07 | 000,121,995 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2006/03/29 11:05:17 | 000,367,488 | ---- | C] () -- C:\WINDOWS\System32\drivers\snpstd.sys
[2006/03/29 11:05:17 | 000,367,488 | ---- | C] () -- C:\WINDOWS\snpstd.sys
[2006/03/29 11:05:17 | 000,286,720 | ---- | C] () -- C:\WINDOWS\vsnpstd.exe
[2006/03/29 11:05:17 | 000,057,344 | ---- | C] () -- C:\WINDOWS\TwainUI.dll
[2006/03/29 11:05:17 | 000,020,480 | ---- | C] () -- C:\WINDOWS\usnpstd.exe
[2006/03/29 11:05:17 | 000,001,270 | ---- | C] () -- C:\WINDOWS\SnxDSC.ini
[2006/03/29 11:05:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\dsnpstd.dll
[2006/03/29 11:05:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\dsnpstd.dll
[2006/03/29 11:05:16 | 000,049,152 | ---- | C] () -- C:\WINDOWS\amcap.exe
[2006/03/29 11:05:16 | 000,015,541 | ---- | C] () -- C:\WINDOWS\snpstd.ini
[2006/03/29 11:05:16 | 000,003,975 | ---- | C] () -- C:\WINDOWS\UN860127.ini
[2003/04/03 12:00:02 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\VSPpg8.dll
[2003/02/19 15:36:06 | 000,005,099 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001/12/24 14:37:00 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\gif89.dll
[2001/08/24 04:00:00 | 000,022,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\SbcpHid.sys
[2001/07/06 15:30:02 | 000,003,162 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI

========== LOP Check ==========

[2011/05/26 09:35:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DriverCure
[2011/05/26 09:18:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\GlarySoft
[2011/05/26 09:35:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ParetoLogic
[2011/05/26 10:53:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\toshiba
[2011/05/26 10:52:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator.MYU\Application Data\toshiba
[2011/05/26 10:51:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator.MYU.000\Application Data\toshiba
[2011/05/26 11:06:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator.MYU.001\Application Data\GlarySoft
[2006/06/22 11:03:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator.MYU.001\Application Data\toshiba
[2009/04/03 18:04:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Auslogics
[2011/05/26 15:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2011/10/10 00:36:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG10
[2011/05/26 14:48:58 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2011/05/26 09:47:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ErrorEND
[2006/06/22 11:05:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FujisoftABC
[2009/08/20 07:22:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Justsystem
[2009/12/14 13:34:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lexmark 5600-6600 Series
[2009/01/08 17:34:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Logicool
[2011/10/10 00:26:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2011/05/26 08:46:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PCPitstop
[2010/06/23 03:32:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2009/11/25 16:30:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2006/06/22 11:03:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\toshiba
[2009/06/27 14:14:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\Auslogics
[2011/10/10 00:28:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\AVG10
[2009/07/27 14:46:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\com.aqf.palette.B9BF3699346C52057E6934DCCBB0514F76359282.1
[2009/03/07 09:48:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\FUJIFILM
[2011/05/26 08:55:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\GlarySoft
[2007/07/23 20:54:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\InterVideo
[2011/05/26 11:45:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\IObit
[2006/09/26 23:20:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\Justsystem
[2007/08/15 06:46:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\Leadertech
[2009/11/16 15:18:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\Lexmark Productivity Studio
[2006/11/10 02:38:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\MSNInstaller
[2009/08/20 08:02:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\Thunderbird
[2007/08/15 00:17:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\toshiba
[2011/07/30 13:49:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\VirtualStore
[2011/10/06 03:06:00 | 000,000,442 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
[2011/10/09 03:00:00 | 000,000,398 | ---- | M] () -- C:\WINDOWS\Tasks\ErrorEND.job
[2011/10/10 00:40:18 | 000,000,306 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
[2011/10/10 00:43:48 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job

========== Purity Check ==========



< End of report >
emenji
Active Member
 
Posts: 4
Joined: October 6th, 2011, 12:14 am

Re: Hello

Unread postby emenji » October 9th, 2011, 12:01 pm

and here is the extras:

OTL Extras logfile created on: 2011/10/10 0:45:47 - Run 1
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Documents and Settings\noriko\My Documents\ダウンロード
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

1.87 Gb Total Physical Memory | 1.27 Gb Available Physical Memory | 67.86% Memory free
2.38 Gb Paging File | 1.92 Gb Available in Paging File | 80.52% Paging File free
Paging file location(s): C:\pagefile.sys 672 1344 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 59.25 Gb Total Space | 8.11 Gb Free Space | 13.70% Space Free | Partition Type: NTFS
Drive D: | 9.99 Gb Total Space | 9.99 Gb Free Space | 99.99% Space Free | Partition Type: FAT32
Unable to calculate disk information.

Computer Name: MYU | User Name: noriko | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1748851543-3807799242-2192525868-1007\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [FPVLite] -- "C:\Program Files\FinePixViewer Lite for TOSHIBA\FPVLite.exe" "%1" (FUJI PHOTO FILM CO.,LTD.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0 -- ()
"FirewallDisableNotify" = 0 -- ()
"UpdatesDisableNotify" = 0 -- ()
"AntiVirusOverride" = 0 -- ()
"FirewallOverride" = 0 -- ()

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DoNotAllowExceptions" = 0 -- ()

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Logicool\Desktop Messenger\8876480\Program\LogicoolDesktopMessenger.exe" = C:\Program Files\Logicool\Desktop Messenger\8876480\Program\LogicoolDesktopMessenger.exe:*:Enabled:Logicool Desktop Messenger -- (Logicool Inc.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe -- ()
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe -- ( )
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\Logicool\Desktop Messenger\8876480\Program\LogicoolDesktopMessenger.exe" = C:\Program Files\Logicool\Desktop Messenger\8876480\Program\LogicoolDesktopMessenger.exe:*:Enabled:Logicool Desktop Messenger -- (Logicool Inc.)
"C:\Program Files\KeyHoleTV\KeyHoleTV.exe" = C:\Program Files\KeyHoleTV\KeyHoleTV.exe:*:Enabled:KeyHole TV Main Application -- (OISEYER Inc.)
"C:\WINDOWS\system32\lxducoms.exe" = C:\WINDOWS\system32\lxducoms.exe:*:Enabled:5600-6600 Series Server -- ( )
"C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager
"0" = 0:*:Enabled:Windows Messanger
"C:\Documents and Settings\noriko\Local Settings\Temp\vbc.exe" = C:\Documents and Settings\noriko\Local Settings\Temp\vbc.exe:*:Enabled:Windows Messanger


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00130411-78E1-11D2-B60F-006097C998E7}" = Microsoft PowerPoint 2000 SR-1
"{03B1B42B-F6DE-41d9-8CFF-DC44E895C7A7}" = PhotoGallery
"{05832D65-6EDB-4D32-BA78-BCD0E2B91C02}" = Atheros Wireless LAN MiniPCI/PCIe card Driver
"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware
"{08E55380-1517-4A89-B1FA-CCE7E9EDE4E5}" = 筆ぐるめ Ver.13
"{09984AEC-6B9F-4ca7-B78D-CB44D4771DA3}" = Destinations
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATIコントロール パネル
"{1017A80C-6F09-4548-A84D-EDD6AC9525F0}" = Lexmark ツールバー
"{10812DE7-2E57-4740-B226-6B3BE34AF9D7}" = Lexmark Tools for Office
"{15EE79F4-4ED1-4267-9B0F-351009325D7D}" = HP Software Update
"{15FD406C-C3D5-47BE-A278-A2502E6399E1}" = Windows Live メール
"{172975EB-9465-4861-95B5-C7BB6D3DE62A}" = DocumentViewer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2052B9DF-9097-49A2-89A8-F1A6340FB936}" = FUJIFILM FinePixViewer Lite for TOSHIBA
"{21DB3D90-D816-4092-A260-CA3F6B55A6DD}" = Sonic_PrimoSDK
"{23A7B376-BBEC-4e76-BBD7-0F155E70D74B}" = CP_Panorama1Config
"{23BE930B-6AC4-4D0D-B5C3-03062A2BF2A3}" = OpenMG AAC Add-on Module 1.0.00
"{286B5435-9A16-4A06-8E56-87E7EC4E1315}" = dynabookランチャー用バナー
"{2A697B53-0DE3-42DA-B41D-C3F804B1C538}" = iTunes
"{2A981294-F14C-4F0F-9627-D793270922F8}" = Bonjour
"{2CADCEAB-D5DA-44D6-B5FC-7DEE87AB3C0C}" = Unload
"{2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}" = Apple Application Support
"{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}" = SetPoint
"{2EF73726-9C12-42A0-952D-9753FBF86E58}" = IFL
"{2FCE4FC5-6930-40E7-A4F1-F862207424EF}" = InterVideo WinDVD Creator 2
"{30C19FF2-7FBA-4d09-B9DE-1659977F64F6}" = TrayApp
"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
"{32BDCCB8-9DC8-496d-9DB1-F77510775BDB}" = InstantShareDevices
"{350C97B1-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35725FBC-A136-4A46-9F29-091759D9BB93}" = MVision
"{3633BA28-67CE-4AC8-A677-3406CA84C3D8}" = OpenMG Secure Module 4.5.01
"{36E47DA1-10E1-45d9-8B19-14D19607CDCF}" = CP_CalendarTemplates1
"{36FDBE6E-6684-462B-AE98-9A39A1B200CC}" = HP Product Assistant
"{3B1E1F4C-031D-410F-A93A-1220236608C8}" = Microsoft Antimalware Service JA-JP Language Pack
"{3DAB4D51-EC16-4F11-BFBC-D67C29E18FB9}" = パソコンマニュアル
"{3E386744-10FA-44b2-98C9-DF7A270DECB3}" = HP PSC & OfficeJet 5.3.A
"{3FBF6F99-8EC6-41B4-8527-0A32241B5496}" = Toshiba Speech System NLS TTS Engine(U.S.) Version1.0
"{400830CA-F056-4BBE-80A3-9DF9CA4FB889}" = TOSHIBA Direct Disc Writer
"{4087BD66-5D8E-4AA3-BA92-F6B014E04C97}" = 東芝お客様登録
"{4497AFF6-98C4-4F49-B073-F48F42BCBF9E}" = TIPCI
"{48CF9A66-5F03-4025-ABD0-B3A3FA095A59}" = TOSHIBA SD Memory Card Format
"{4ADA67DE-4DEB-4913-A5F4-D636EA014F6F}" = ODN Signup Software
"{4CD67A02-DF59-43f7-8E8F-86DCF40543EF}" = 2570_Help
"{4EE24193-A31E-473D-9F2E-3C5071C8AC2C}" = ぱらちゃんV2.2
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client JA-JP Language Pack
"{50E7BB78-02B4-469a-9D8B-B2F42835F90E}" = ProductContextNPI
"{529DDE6B-4F31-438B-B218-F36266ABD8C0}" = TOSHIBA Disc Creator
"{53EE9E42-CECB-4C92-BF76-9CA65DAF8F1C}" = FullDPAppQFolder
"{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client
"{567C23E1-7580-4185-B8C2-30805677297C}" = NewCopy_CDA
"{56EE8B17-8274-418d-89AC-C057C5DB251E}" = RandMap
"{56F8AFC3-FA98-4ff1-9673-8A026CBF85BE}" = WebReg
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{597C68AF-3EF7-4310-8725-2E034914613B}" = Microsoft Office Home Style+
"{5A01C58E-B0EC-49b9-AD71-7C0468688087}" = CP_Package_Basic1
"{5B622B7A-60FB-4630-B11D-F121D20BCCD6}" = MarketResearch
"{5C841BBF-2FFB-4EDD-B362-49D62F40E92C}" = Windows Live installer
"{5D96E2B1-D9AC-46E0-9073-425C5F63E338}" = PadTouch
"{5E8A1B08-0FBD-4543-9646-F2C2D0D05750}" = Macromedia Flash Player 8
"{5F0C7588-DC73-4465-8BAB-21813C1EC047}" = PDF Manual NW-E000 Series
"{5F26311C-B135-4F7F-B11E-8E650F83651E}" = DeviceFunctionQFolder
"{63AE7E8A-81CB-433E-B13E-7E08D4AF50C6}" = Logicool Qcam
"{64212898-097F-4F3F-AECA-6D34A7EF82DF}" = TOSHIBA Smooth View
"{64DD71BC-3109-4C88-9AD3-D5422644B722}" = TOSHIBA Hotkey Utility
"{66BA8C26-AFE4-4408-807B-43E76B57EF53}" = SkinsHP1
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69BE47C2-36FE-4397-8199-85D8EAE69982}" = TOSHIBA TouchPad ON/Off Utility
"{6BB6627C-694F-4FDC-A3E5-C7F4BED4C724}" = DocProc
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{708B1421-6D4F-46CD-BC5C-41F588444E28}" = PC引越ナビ
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71413F4B-5265-45F2-B0BF-2B36B69566E4}" = おたすけナビ
"{71D658CF-4E0D-4DA8-AA67-8C0B6F1C01FE}" = Atheros Client Utility
"{72C24C23-C53D-11D4-88AB-00809880EBD8}" = TOSHIBA Speech Engines Version V9.50
"{74b48ee5-6612-45e2-a27b-240909404a29}" = AiOSoftwareNPI
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{779DECD7-E072-4B56-9B6B-BEB5973EEEB5}" = MobileMe Control Panel
"{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}" = Windows Live Favorites for Windows Live Toolbar
"{78C68CB9-3DF5-44F3-AB9D-FA305C5EB85C}" = TOSHIBA Utilities
"{7C03270C-4FAB-4F5C-B10D-52FEDA190790}" = DocumentViewerQFolder
"{7E27304E-BAA2-4d90-A34E-76641FAFABB4}" = CP_AtenaShokunin1Config
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8775F39C-CBAF-4759-A65F-A3AE60B38452}" = キーワード ナビ ビューア (Windows Live Toolbar)
"{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logicool Desktop Messenger
"{90330411-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Personal Edition 2003
"{90A10411-6000-11D3-8CFE-0150048383C9}" = Microsoft Office OneNote 2003
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD for TOSHIBA
"{923A7F5A-1E8C-4FBE-8DF6-85940A60A79F}" = Readme
"{940475B4-367E-4D27-8841-163E3C980F52}" = Windows Live へのリンク (Windows Live Toolbar)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D765FA6-F2BC-40AF-8145-50808F9BDF4E}" = DVD-RAMドライバー
"{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}" = CD/DVD静音ユーティリティ
"{A0EB195B-5876-48E6-879D-33D4B2102610}" = SonicStage 4.0
"{A195B13E-A5E3-4BAF-A995-7F70F445CD06}" = ScannerCopy
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A5BB5365-EFB4-44c3-A7E2-EB59B7EFD23D}" = CueTour
"{A654A805-41D9-40C7-AA46-4AF04F044D61}" = Adobe(R) Photoshop(R) Album Mini 3.2
"{A6690C0E-B96E-4F0F-A8EB-D5B332454AC6}" = TOSHIBA Controls
"{A6EA6D7E-C5A5-4686-BA51-E116DF3FFC28}" = よくあるご質問(html)
"{A8D91906-4032-4443-8C49-69F90E38F39D}" = 2570
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-1041-0000-7760-000000000003}" = Adobe Acrobat 8 Professional - Japanese
"{AC76BA86-7AD7-1041-7B44-A70700000002}" = Adobe Reader 7.0.8 - Japanese
"{AC76BA86-7AD7-1041-7B44-A93000000001}" = Adobe Reader 9.3 - Japanese
"{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}" = REALTEK GbE & FE Ethernet NIC Driver
"{AD0DDEC6-4798-4DE5-87DC-4367D694ED06}" = Microsoft .NET Framework 1.1 Japanese Language Pack
"{ADB1637E-23C3-4A56-8092-2B9F11F7EB41}" = The翻訳インターネット V10LE
"{B1BFEB8B-7441-42D7-ACE9-D0CE34E0E58B}" = dynabookランチャー
"{B276997E-4367-4b1b-A39C-4CAE7464337A}" = AiO_Scan_CDA
"{B4D279F1-4309-49cc-A4B5-3A0D2E59C7B5}" = PanoStandAlone
"{B60E7826-F117-4d26-8165-D2DC5A494AB0}" = Fax_CDA
"{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}" = TOSHIBA Recovery Disc Creator
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Click to Call with Skype
"{B996AE66-10DB-4ac5-B151-E8B4BFBC42FC}" = BufferChm
"{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}" = TOSHIBA ConfigFree
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C45F4811-31D5-4786-801D-F79CD06EDD85}" = SD Secure Module
"{C4EA8443-092F-4818-8B5D-B8E25CC91135}" = TOSHIBA Speech System MT Engine Version 9.0
"{C506A18C-1469-4678-B094-F4EC9DAE6DB7}" = Scan
"{C73F2967-062E-48F2-A462-D335B8950183}" = Safari
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE5C74A5-F566-4E49-8A3D-7E5A05714806}" = Windows Live サインイン アシスタント
"{D2C5E510-BE6D-42CC-9F61-E4F939078474}" = Lexmark
"{D423E4E8-87A3-4BDC-830B-E609176DBD82}" = 宛名職人PB2006
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = AusLogics Disk Defrag
"{E2AA57CD-A819-406F-B422-A9211DA758B5}" = Windows Live Toolbar
"{E3F90083-80D4-4b5a-87C7-E97E12F5516D}" = HPProductAssistant
"{EA103B64-C0E4-4C0E-A506-751590E1653D}" = SolutionCenter
"{EE55FD52-0D47-4c5a-96EC-48F70FF30520}" = 2570Trb
"{EE7B9A8D-19F0-450D-8E94-3E391E6044CD}" = KhalSetup
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F302B04E-C7B3-11D4-88AB-00809880EBD8}" = LaLaVoice V9.50
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F4C2E5F5-2970-45f4-ABD3-C180C4D961C4}" = Status
"Adobe Acrobat 8 Professional - Japanese" = Adobe Acrobat 8.1.3 Professional
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe(R) Photoshop(R) Album Mini 3.2" = Adobe(R) Photoshop(R) Album Mini 3.2
"AdobeESD" = Adobe Download Manager 2.2 (削除のみ)
"All ATI Software" = ATI - ソフトウェアのアンインストール ユーティリティ
"ATI Display Driver" = ATI Display Driver
"Coupon Printer for Windows5.0.0.0" = Coupon Printer for Windows
"English Grammar in Use" = English Grammar in Use
"Free Window Registry Repair" = Free Window Registry Repair
"Glary Utilities_is1" = Glary Utilities 2.33.0.1158
"HP Document Viewer" = HP Document Viewer 5.3
"HP Imaging Device Functions" = HP Imaging Device Functions 5.3
"HP Photo & Imaging" = HP Image Zone 5.3
"HP Solution Center & Imaging Support Tools" = HP Solution Center & Imaging Support Tools 5.3
"HPExtendedCapabilities" = HP Extended Capabilities 5.3
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{23BE930B-6AC4-4D0D-B5C3-03062A2BF2A3}" = OpenMG AAC Add-on Module 1.0.00
"InstallShield_{3633BA28-67CE-4AC8-A677-3406CA84C3D8}" = OpenMG Secure Module 4.5.01
"InstallShield_{4497AFF6-98C4-4F49-B073-F48F42BCBF9E}" = Texas Instruments PCIxx21/x515/xx12 drivers.
"KeyHoleTV" = KeyHoleTV
"Lexmark 5600-6600 Series" = Lexmark 5600-6600 Series
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 7.0.1 (x86 ja)" = Mozilla Firefox 7.0.1 (x86 ja)
"Mozilla Thunderbird (2.0.0.22)" = Mozilla Thunderbird (2.0.0.22)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MSNINST" = MSN
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"OpenMG HotFix4.5-06-05-10-01" = OpenMG Limited Patch 4.5-06-05-12-01
"PC診断ツール" = 東芝PC診断ツール
"Power Data Recovery_is1" = Power Data Recovery 4.6.5
"Power Saver" = 東芝省電力
"QcDrv" = Logicool(r) Camera ドライバ
"Revo Uninstaller" = Revo Uninstaller 1.92
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TOSHIBA Software Modem" = TOSHIBA Software Modem
"Unit Conversion Tool Evaluation Version_is1" = Unit Conversion Tool Evaluation Version 5.1
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Yahoo!Jツールバー" = Yahoo!ツールバー
"できるdynabook_is1" = できるdynabook

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2011/10/07 14:49:03 | Computer Name = MYU | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2406

Error - 2011/10/08 1:10:50 | Computer Name = MYU | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2011/10/08 1:10:50 | Computer Name = MYU | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 2375

Error - 2011/10/08 1:10:50 | Computer Name = MYU | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2375

Error - 2011/10/08 22:36:47 | Computer Name = MYU | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2011/10/08 22:36:47 | Computer Name = MYU | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 2266

Error - 2011/10/08 22:36:47 | Computer Name = MYU | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2266

Error - 2011/10/09 5:40:22 | Computer Name = MYU | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2011/10/09 5:40:22 | Computer Name = MYU | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 2297

Error - 2011/10/09 5:40:22 | Computer Name = MYU | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2297

[ System Events ]
Error - 2011/09/21 5:35:07 | Computer Name = MYU | Source = Microsoft Antimalware | ID = 2001
Description = シグネチャの更新中に、%%860 でエラーが発生しました。 新しいシグネチャのバージョン: 以前のシグネチャのバージョン: 1.111.2595.0

更新ソース:
%%859 更新ステージ: %%853 ソースパス: http://www.microsoft.com シグネチャの種類: %%800 更新の種類: %%803

ユーザー:
NT AUTHORITY\SYSTEM 現在のエンジンのバージョン: 以前のエンジンのバージョン: 1.1.7604.0 エラー コード: 0x80240022

エラーの説明:
定義の更新を確認できません。

Error - 2011/09/21 5:35:07 | Computer Name = MYU | Source = Microsoft Antimalware | ID = 2001
Description = シグネチャの更新中に、%%860 でエラーが発生しました。 新しいシグネチャのバージョン: 以前のシグネチャのバージョン: 1.111.2595.0

更新ソース:
%%859 更新ステージ: %%853 ソースパス: http://www.microsoft.com シグネチャの種類: %%800 更新の種類: %%803

ユーザー:
NT AUTHORITY\SYSTEM 現在のエンジンのバージョン: 以前のエンジンのバージョン: 1.1.7604.0 エラー コード: 0x80240022

エラーの説明:
定義の更新を確認できません。

Error - 2011/09/21 14:04:44 | Computer Name = MYU | Source = Microsoft Antimalware | ID = 2001
Description = シグネチャの更新中に、%%860 でエラーが発生しました。 新しいシグネチャのバージョン: 以前のシグネチャのバージョン: 1.111.2595.0

更新ソース:
%%859 更新ステージ: %%853 ソースパス: http://www.microsoft.com シグネチャの種類: %%800 更新の種類: %%803

ユーザー:
NT AUTHORITY\SYSTEM 現在のエンジンのバージョン: 以前のエンジンのバージョン: 1.1.7604.0 エラー コード: 0x80240022

エラーの説明:
定義の更新を確認できません。

Error - 2011/09/21 14:04:44 | Computer Name = MYU | Source = Microsoft Antimalware | ID = 2001
Description = シグネチャの更新中に、%%860 でエラーが発生しました。 新しいシグネチャのバージョン: 以前のシグネチャのバージョン: 1.111.2595.0

更新ソース:
%%859 更新ステージ: %%853 ソースパス: http://www.microsoft.com シグネチャの種類: %%800 更新の種類: %%803

ユーザー:
NT AUTHORITY\SYSTEM 現在のエンジンのバージョン: 以前のエンジンのバージョン: 1.1.7604.0 エラー コード: 0x80240022

エラーの説明:
定義の更新を確認できません。

Error - 2011/09/26 2:36:05 | Computer Name = MYU | Source = Service Control Manager | ID = 7000
Description = Lavasoft Ad-Aware Service サービスは次のエラーのため開始できませんでした: %%3

Error - 2011/09/28 17:55:01 | Computer Name = MYU | Source = Service Control Manager | ID = 7000
Description = Lavasoft Ad-Aware Service サービスは次のエラーのため開始できませんでした: %%3

Error - 2011/10/02 17:46:40 | Computer Name = MYU | Source = Service Control Manager | ID = 7000
Description = Lavasoft Ad-Aware Service サービスは次のエラーのため開始できませんでした: %%3

Error - 2011/10/02 17:58:49 | Computer Name = MYU | Source = Microsoft Antimalware | ID = 2001
Description = シグネチャの更新中に、%%860 でエラーが発生しました。 新しいシグネチャのバージョン: 以前のシグネチャのバージョン: 1.113.731.0

更新ソース:
%%859 更新ステージ: %%853 ソースパス: http://www.microsoft.com シグネチャの種類: %%800 更新の種類: %%803

ユーザー:
NT AUTHORITY\SYSTEM 現在のエンジンのバージョン: 以前のエンジンのバージョン: 1.1.7702.0 エラー コード: 0x80240022

エラーの説明:
定義の更新を確認できません。

Error - 2011/10/02 17:58:49 | Computer Name = MYU | Source = Microsoft Antimalware | ID = 2001
Description = シグネチャの更新中に、%%860 でエラーが発生しました。 新しいシグネチャのバージョン: 以前のシグネチャのバージョン: 1.113.731.0

更新ソース:
%%859 更新ステージ: %%853 ソースパス: http://www.microsoft.com シグネチャの種類: %%800 更新の種類: %%803

ユーザー:
NT AUTHORITY\SYSTEM 現在のエンジンのバージョン: 以前のエンジンのバージョン: 1.1.7702.0 エラー コード: 0x80240022

エラーの説明:
定義の更新を確認できません。

Error - 2011/10/09 11:36:49 | Computer Name = MYU | Source = Service Control Manager | ID = 7000
Description = Lavasoft Ad-Aware Service サービスは次のエラーのため開始できませんでした: %%3


< End of report >
emenji
Active Member
 
Posts: 4
Joined: October 6th, 2011, 12:14 am

Re: Hello

Unread postby askey127 » October 9th, 2011, 4:10 pm

emenji,
-----------------------------------------------------------
Remove Programs Using Control Panel
From Start, Settings, Control Panel or Start, Control Panel, click Add/Remove Programs.
Highlight each Entry, as follows, one by one, if it exists, and choose Remove :

J2SE Runtime Environment 5.0 Update 6
MarketResearch
CustomerResearchQFolder
Google Update Helper
Coupon Printer for Windows
Free Window Registry Repair

Take extra care in answering questions posed by any Uninstaller.
----------------------------------------------
Perform a Custom Fix with OTL
Run OTL
  • In the Custom Scans/Fixes box at the bottom, paste in the following lines from the Code box (Do not include the word "Code"):
    Code: Select all
    :OTL
    O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
    O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - No CLSID value found.
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_06)
    O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_06)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_06)
    [2011/02/20 13:13:18 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\noriko\Application Data\Mozilla\Firefox\Profiles\ahpw4yav.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
    
    :Reg
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "C:\Documents and Settings\noriko\Local Settings\Temp\vbc.exe" =-
    :Files
    C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
    C:\Documents and Settings\All Users\Application Data\AVG10
    C:\Documents and Settings\All Users\Application Data\AVAST Software
    C:\Documents and Settings\noriko\Application Data\AVG10
    C:\Documents and Settings\noriko\Application Data\IObit
    ipconfig /flushdns /c
    
    :Commands
    [EMPTYTEMP]
    [CREATERESTOREPOINT]
    
  • Then click the Run Fix button at the top.
  • Let the program run unhindered and reboot the PC when it is done.
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

askey127
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 13903
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA

Re: Hello

Unread postby emenji » October 9th, 2011, 9:53 pm

Hi here is the file report

(note: MarketResearch, CustomerQResearchFolder, and GoogleUpdate Helper did not appear on the add/remove program lists and so I could not delete them)

OTL logfile created on: 2011/10/10 10:02:09 - Run 2
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Documents and Settings\noriko\デスクトップ
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

1.87 Gb Total Physical Memory | 1.29 Gb Available Physical Memory | 68.71% Memory free
2.38 Gb Paging File | 1.90 Gb Available in Paging File | 79.72% Paging File free
Paging file location(s): C:\pagefile.sys 672 1344 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 59.25 Gb Total Space | 8.90 Gb Free Space | 15.03% Space Free | Partition Type: NTFS
Drive D: | 9.99 Gb Total Space | 9.99 Gb Free Space | 99.99% Space Free | Partition Type: FAT32
Unable to calculate disk information.
Drive F: | 3.80 Gb Total Space | 1.30 Gb Free Space | 34.26% Space Free | Partition Type: FAT32

Computer Name: MYU | User Name: noriko | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/10/10 00:44:10 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\noriko\デスクトップ\OTL.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2008/09/10 20:11:12 | 000,676,520 | ---- | M] () -- C:\Program Files\Lexmark 5600-6600 Series\lxdumon.exe
PRC - [2008/05/23 21:58:34 | 000,594,600 | ---- | M] ( ) -- C:\WINDOWS\system32\lxducoms.exe
PRC - [2008/05/23 21:58:22 | 000,098,984 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\lxduserv.exe
PRC - [2008/04/14 11:26:11 | 001,027,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/08/09 16:27:52 | 000,073,728 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
PRC - [2007/07/25 16:06:08 | 002,026,768 | ---- | M] (Logicool Co., Ltd) -- C:\Program Files\Logicool\Qcam\Qcam.exe
PRC - [2007/07/25 16:02:54 | 000,562,960 | ---- | M] (Logicool Co., Ltd) -- C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
PRC - [2007/07/25 16:02:20 | 000,403,216 | ---- | M] (Logicool Co., Ltd) -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
PRC - [2007/07/20 00:40:48 | 000,137,752 | ---- | M] (Logicool Co., Ltd) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
PRC - [2007/07/20 00:38:54 | 000,186,904 | ---- | M] (Logicool Co., Ltd) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
PRC - [2006/06/13 14:19:52 | 000,356,352 | ---- | M] (TOSHIBA) -- C:\Program Files\TOSHIBA\TOSHIBA Applet\THotkey.exe
PRC - [2006/05/25 18:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) -- C:\WINDOWS\system32\TODDSrv.exe
PRC - [2006/04/05 11:07:02 | 000,573,440 | ---- | M] (Logitech Inc.) -- C:\Program Files\SetPoint\SetPoint.exe
PRC - [2006/03/29 11:05:17 | 000,286,720 | ---- | M] () -- C:\WINDOWS\vsnpstd.exe
PRC - [2006/03/02 15:50:52 | 000,151,552 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\Toshiba.exe
PRC - [2006/02/07 16:30:40 | 000,035,840 | ---- | M] (TOSHIBA Corp.) -- C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
PRC - [2005/11/02 16:41:04 | 000,978,944 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
PRC - [2005/09/26 11:22:28 | 000,036,864 | ---- | M] () -- C:\WINDOWS\system32\acs.exe
PRC - [2005/05/31 21:00:12 | 000,282,624 | ---- | M] (株式会社 東芝) -- C:\WINDOWS\system32\TPSMain.exe
PRC - [2005/05/31 20:59:58 | 000,045,056 | ---- | M] (株式会社 東芝) -- C:\WINDOWS\system32\TPSBattM.exe
PRC - [2005/04/26 16:13:20 | 000,122,880 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA Smooth View\SmoothView.exe
PRC - [2005/01/17 16:38:38 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
PRC - [2004/08/28 00:37:00 | 000,155,648 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\RAMASST.exe
PRC - [2004/08/28 00:33:00 | 000,110,592 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\DVDRAMSV.exe


========== Modules (No Company Name) ==========

MOD - [2009/09/04 23:15:06 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2009/02/27 16:44:10 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.JPN
MOD - [2008/09/10 20:11:12 | 000,676,520 | ---- | M] () -- C:\Program Files\Lexmark 5600-6600 Series\lxdumon.exe
MOD - [2008/09/10 18:56:27 | 000,081,920 | ---- | M] () -- C:\Program Files\Lexmark 5600-6600 Series\lxducaps.dll
MOD - [2008/09/10 18:56:14 | 000,380,928 | ---- | M] () -- C:\Program Files\Lexmark 5600-6600 Series\lxduscw.dll
MOD - [2008/09/10 18:56:12 | 001,036,288 | ---- | M] () -- C:\Program Files\Lexmark 5600-6600 Series\lxdudrs.dll
MOD - [2008/09/10 18:40:31 | 000,069,632 | ---- | M] () -- C:\Program Files\Lexmark 5600-6600 Series\lxducnv4.dll
MOD - [2008/05/23 21:17:14 | 000,121,856 | ---- | M] () -- C:\WINDOWS\system32\spool\prtprocs\w32x86\lxdudrpp.dll
MOD - [2008/05/23 21:02:14 | 000,188,416 | ---- | M] () -- C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdudatr.dll
MOD - [2007/05/11 01:32:02 | 000,892,928 | ---- | M] () -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdistRes.JPN
MOD - [2006/03/29 11:05:17 | 000,286,720 | ---- | M] () -- C:\WINDOWS\vsnpstd.exe
MOD - [2006/01/04 18:14:36 | 000,049,152 | ---- | M] () -- C:\Program Files\TOSHIBA\TOSHIBA Applet\TouchPad_ONOFF.dll
MOD - [2005/09/26 11:22:28 | 000,036,864 | ---- | M] () -- C:\WINDOWS\system32\acs.exe


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (McComponentHostService)
SRV - File not found [Auto | Stopped] -- -- (Lavasoft Ad-Aware Service)
SRV - File not found [On_Demand | Stopped] -- -- (gusvc)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2008/05/23 21:58:34 | 000,594,600 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\lxducoms.exe -- (lxdu_device)
SRV - [2008/05/23 21:58:22 | 000,098,984 | ---- | M] () [Auto | Running] -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxduserv.exe -- (lxduCATSCustConnectService)
SRV - [2008/03/17 23:00:22 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2007/08/09 16:27:52 | 000,073,728 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2007/07/20 00:42:30 | 000,141,848 | ---- | M] (Logicool Co., Ltd) [Auto | Stopped] -- C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher)
SRV - [2007/07/20 00:40:48 | 000,137,752 | ---- | M] (Logicool Co., Ltd) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2007/07/20 00:38:54 | 000,186,904 | ---- | M] (Logicool Co., Ltd) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer)
SRV - [2006/05/25 18:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\WINDOWS\system32\TODDSrv.exe -- (TODDSrv)
SRV - [2006/04/27 17:35:16 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV)
SRV - [2006/04/27 17:27:06 | 000,049,241 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR)
SRV - [2006/04/27 17:16:28 | 000,069,718 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV)
SRV - [2006/02/07 16:30:40 | 000,035,840 | ---- | M] (TOSHIBA Corp.) [Auto | Running] -- C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe -- (TAPPSRV)
SRV - [2005/09/26 11:22:28 | 000,036,864 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\acs.exe -- (ACS)
SRV - [2005/01/17 16:38:38 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (CFSvcs)
SRV - [2004/08/28 00:33:00 | 000,110,592 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) [Auto | Running] -- C:\WINDOWS\system32\DVDRAMSV.exe -- (DVD-RAM_Service)


========== Driver Services (SafeList) ==========

DRV - [2011/10/10 09:58:37 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6512B943-94F8-4AF9-A6C3-928F29678CED}\MpKsle399c639.sys -- (MpKsle399c639)
DRV - [2011/10/10 08:46:24 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6512B943-94F8-4AF9-A6C3-928F29678CED}\MpKslec77dbd4.sys -- (MpKslec77dbd4)
DRV - [2009/06/25 03:05:43 | 000,064,160 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2007/07/20 00:40:02 | 002,141,848 | ---- | M] (Logicool Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (LVMVDrv)
DRV - [2007/07/20 00:37:56 | 002,108,952 | ---- | M] (Logicool Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (LVcKap)
DRV - [2007/07/19 09:44:36 | 000,021,528 | R--- | M] (Logicool Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService)
DRV - [2007/07/19 09:44:24 | 003,598,360 | R--- | M] (Logicool Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) Logicool Qcam Communicate Deluxe(UVC)
DRV - [2007/07/19 09:44:12 | 000,041,112 | R--- | M] (Logicool Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2007/07/19 09:42:30 | 001,920,152 | R--- | M] (Logicool Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvpopflt.sys -- (lvpopflt)
DRV - [2007/07/18 17:42:42 | 000,025,624 | ---- | M] (Logicool Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2006/05/05 07:13:52 | 004,271,616 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/04/18 15:12:00 | 000,098,816 | ---- | M] (TOSHIBA Corporation) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tdudf.sys -- (tdudf)
DRV - [2006/03/29 11:05:17 | 000,367,488 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\snpstd.sys -- (snpstd)
DRV - [2006/03/28 17:56:06 | 000,027,008 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
DRV - [2006/03/28 17:55:58 | 000,069,760 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2006/03/28 17:55:20 | 000,036,736 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidUsbK.sys -- (LHidUsbK)
DRV - [2006/03/28 17:55:04 | 000,055,808 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
DRV - [2006/03/21 23:56:24 | 001,522,688 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006/03/02 18:49:00 | 000,015,360 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV - [2006/01/18 18:41:58 | 000,080,512 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2005/12/21 10:16:34 | 000,470,048 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2005/12/13 09:08:44 | 001,124,097 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2005/11/30 10:12:00 | 000,162,560 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)
DRV - [2005/10/20 14:03:42 | 000,006,144 | ---- | M] (Toshiba Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NBSMI.sys -- (TVALD)
DRV - [2005/06/02 03:33:00 | 000,102,384 | ---- | M] (Matsushita Electric Industrial Co.,Ltd.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\meiudf.sys -- (meiudf)
DRV - [2005/05/09 09:06:56 | 000,004,480 | ---- | M] (RSupport Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\vrvd202.sys -- (VRVD202)
DRV - [2004/08/05 21:00:00 | 000,012,160 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\fsvga.sys -- (FsVga)
DRV - [2004/08/03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2003/09/19 01:47:00 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (Pfc)
DRV - [2003/01/29 14:35:00 | 000,012,032 | ---- | M] (TOSHIBA Corporation.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Netdevio.sys -- (Netdevio)
DRV - [2001/08/24 04:00:00 | 000,022,400 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SbcpHid.sys -- (SbcpHid)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.co.jp/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.yahoo.co.jp/"
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:7.3.0.2010120918

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/10/10 09:40:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/10/10 09:40:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 2.0.0.22\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2011/03/21 08:30:01 | 000,000,000 | ---D | M]

[2009/08/21 14:49:00 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\noriko\Application Data\Mozilla\Extensions
[2011/09/29 06:45:16 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\noriko\Application Data\Mozilla\Firefox\Profiles\ahpw4yav.default\extensions
[2011/09/29 06:45:16 | 000,000,000 | ---D | M] (Yahoo!繝・・繝ォ繝舌・) -- C:\Documents and Settings\noriko\Application Data\Mozilla\Firefox\Profiles\ahpw4yav.default\extensions\toolbar@addon.yahoo.co.jp
[2009/08/21 14:25:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\noriko\Application Data\Mozilla\Firefox\Profiles\kdy90494.default\extensions
[2009/08/20 10:56:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\noriko\Application Data\Mozilla\Firefox\Profiles\qny0kq29.Nori\extensions
[2011/09/07 12:05:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/09/07 12:05:55 | 000,000,000 | ---D | M] (Click to call with Skype) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011/10/03 06:43:54 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/09/17 05:43:39 | 000,001,842 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-jp.xml
[2011/09/17 05:43:39 | 000,002,623 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google-jp.xml
[2011/09/17 05:43:39 | 000,001,269 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\oshiete-goo.xml
[2011/09/17 05:43:39 | 000,000,814 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\rakuten.xml
[2011/09/17 05:43:39 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-ja.xml
[2011/09/17 05:43:39 | 000,000,889 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-jp-auctions.xml
[2011/09/17 05:43:39 | 000,000,696 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-jp.xml

O1 HOSTS File: ([2004/08/05 21:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Lexmark ツールバー) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
O2 - BHO: (Yahoo!ツールバーフィッシング警告) - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files\Yahoo!J\Toolbar\7_1_0_5\Modules\ypho.dll (Yahoo Japan Corporation. )
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Windows Live Toolbar Helper) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O2 - BHO: (Lexmark ) - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll ()
O2 - BHO: (Yahoo!ツールバーヘルパー) - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files\Yahoo!J\Toolbar\7_1_0_5\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3 - HKLM\..\Toolbar: (Lexmark ツールバー) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar\7_1_0_5\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3 - HKLM\..\Toolbar: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (The翻訳ツールバー) - {FF278623-9AA4-489c-84CE-CF14D90CC70C} - c:\Program Files\TTI_V10LE\def_bar.dll ()
O3 - HKCU\..\Toolbar\ShellBrowser: (Lexmark ツールバー) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Lexmark ツールバー) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar\7_1_0_5\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3 - HKCU\..\Toolbar\WebBrowser: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O4 - HKLM..\Run: [0] 0 File not found
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\IMKR6_1\imekrmig.exe (Microsoft Corporation)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech Inc.)
O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe (Logicool Co., Ltd)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logicool\Qcam\Qcam.exe (Logicool Co., Ltd)
O4 - HKLM..\Run: [lxdumon.exe] C:\Program Files\Lexmark 5600-6600 Series\lxdumon.exe ()
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NDSTray.exe] NDSTray.exe File not found
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\TOSHIBA Smooth View\SmoothView.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe ()
O4 - HKLM..\Run: [THotkey] C:\Program Files\TOSHIBA\TOSHIBA Applet\THotkey.exe (TOSHIBA)
O4 - HKLM..\Run: [TPSMain] C:\WINDOWS\System32\TPSMain.exe (株式会社 東芝)
O4 - HKCU..\Run: [0] 0 File not found
O4 - Startup: C:\Documents and Settings\All Users\スタート メニュー\プログラム\スタートアップ\RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe (Matsushita Electric Industrial Co., Ltd.)
O4 - Startup: C:\Documents and Settings\All Users\スタート メニュー\プログラム\スタートアップ\SetPoint.lnk = C:\Program Files\SetPoint\SetPoint.exe (Logitech Inc.)
O4 - Startup: C:\Documents and Settings\noriko\スタート メニュー\プログラム\スタートアップ\永久不滅パレット.lnk = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run: 0 = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Windows Live Search - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx File not found
O8 - Extra context menu item: Adobe PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Google サイドウィキ... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
O8 - Extra context menu item: The翻訳_ページ翻訳 - c:\Program Files\TTI_V10LE\addins\Ie\afi_pagetran.htm File not found
O8 - Extra context menu item: The翻訳_辞書参照 - c:\Program Files\TTI_V10LE\addins\Ie\ttp_showdic.htm File not found
O8 - Extra context menu item: The翻訳_範囲指定翻訳 - c:\Program Files\TTI_V10LE\addins\Ie\afi_seltran.htm File not found
O8 - Extra context menu item: The翻訳_翻訳設定 - c:\Program Files\TTI_V10LE\addins\Ie\afi_setdlg.htm File not found
O8 - Extra context menu item: Yahoo!ツールバーに追加 - C:\Program Files\Yahoo!J\Toolbar\7_0_0_12\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O8 - Extra context menu item: リンクの参照先を Adobe PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: リンクの参照先を既存の PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 既存の PDF に追加 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 選択したリンクを Adobe PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 選択したリンクを既存の PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 選択項目を Adobe PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 選択項目を既存の PDF に変換 - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra Button: The翻訳_ページ翻訳 - {3009C231-637C-4d4c-905F-4D6585D033CA} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : The翻訳_ページ翻訳 - {3009C231-637C-4d4c-905F-4D6585D033CA} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : The翻訳_辞書参照 - {3009C237-637C-4d4c-905F-4D6585D033CA} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : The翻訳_範囲指定翻訳 - {3009C238-637C-4d4c-905F-4D6585D033CA} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : The翻訳_翻訳設定 - {3009C23A-637C-4d4c-905F-4D6585D033CA} - Reg Error: Value error. File not found
O9 - Extra Button: 辞書バー - {3009C23C-637C-4D4C-905F-4D6585D033CA} - c:\Program Files\TTI_V10LE\IeTbandTate.dll ()
O9 - Extra Button: 翻訳バー - {3009C23E-637C-4D4C-905F-4D6585D033CA} - Reg Error: Key error. File not found
O9 - Extra Button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - Reg Error: Key error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://www.apple.com/qtactivex/qtplugin.cab (QuickTime Object)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/200 ... oader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {10C8B89E-9B80-464D-8F81-B2ED2E971D28} http://a500.g.akamai.net/7/500/484/0000 ... Update.cab (PccEasyUpdate Class)
O16 - DPF: {3ADF17D2-F1A8-45E1-92BA-B72717779075} http://dynabook.fresheye.com/TWAgent/TWAgent.cab (あなたのdynabook.com)
O16 - DPF: {4788DE0A-3552-49EA-AC8C-233DA52523B9} http://www.blackberry.com/devicesoftware/AxLoader.cab (AxLoaderPassword Class)
O16 - DPF: {4A88CB42-BBFE-496A-884F-98E8AC316292} http://dl.toolbar.yahoo.co.jp/dl/installs/yjinst.cab (YJInstStarter Control)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 2953324625 (MUWebControl Class)
O16 - DPF: {7BD15D9F-7684-48AE-888E-46AF1CAEDB2E} http://www.milu.jp/MILU.cab (MILU Download Class)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {B114AD48-9639-4174-A362-07740A29D5BD} https://bbsoft.jp/EnvSignalar.cab (EnvSignalar Class)
O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} http://utilities.pcpitstop.com/optimize2/pcpitstop2.dll (PCPitstop Exam)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{68E3EFE4-8579-4460-B91B-49C983391691}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logicool\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logicool Inc.)
O18 - Protocol\Handler\msjwwdat {BAAB02DC-913E-40aa-B9ED-8068DEE42CFA} - C:\Program Files\Microsoft Office\Home Style\JWW\JWWData.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (現在のホーム ページ) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\noriko\Local Settings\Application Data\Microsoft\Wallpaper2.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\noriko\Local Settings\Application Data\Microsoft\Wallpaper2.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/06/21 19:56:35 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{8641588a-fbf7-11dd-ad45-0016e368bec9}\Shell\AutoRun\command - "" = F:\GETMYPIX.EXE
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (lsdelete)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/10/10 09:52:01 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/10/10 00:44:03 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\noriko\デスクトップ\OTL.exe
[2009/10/27 16:27:42 | 000,438,272 | ---- | C] ( ) -- C:\WINDOWS\System32\LXDUhcp.dll
[2009/10/27 16:27:41 | 000,364,544 | ---- | C] ( ) -- C:\WINDOWS\System32\lxduinpa.dll
[2009/10/27 16:27:40 | 000,339,968 | ---- | C] ( ) -- C:\WINDOWS\System32\lxduiesc.dll
[2009/10/27 16:27:39 | 000,851,968 | ---- | C] ( ) -- C:\WINDOWS\System32\lxduusb1.dll
[2009/10/27 16:27:38 | 001,069,056 | ---- | C] ( ) -- C:\WINDOWS\System32\lxduserv.dll
[2009/10/27 16:27:37 | 000,651,264 | ---- | C] ( ) -- C:\WINDOWS\System32\lxdupmui.dll
[2009/10/27 16:27:36 | 000,577,536 | ---- | C] ( ) -- C:\WINDOWS\System32\lxdulmpm.dll
[2009/10/27 16:27:34 | 000,328,360 | ---- | C] ( ) -- C:\WINDOWS\System32\lxduih.exe
[2009/10/27 16:27:33 | 000,679,936 | ---- | C] ( ) -- C:\WINDOWS\System32\lxduhbn3.dll
[2009/10/27 16:27:30 | 000,594,600 | ---- | C] ( ) -- C:\WINDOWS\System32\lxducoms.exe
[2009/10/27 16:27:29 | 000,376,832 | ---- | C] ( ) -- C:\WINDOWS\System32\lxducomm.dll
[2009/10/27 16:27:28 | 000,765,952 | ---- | C] ( ) -- C:\WINDOWS\System32\lxducomc.dll
[2009/10/27 16:27:28 | 000,369,320 | ---- | C] ( ) -- C:\WINDOWS\System32\lxducfg.exe
[2006/06/22 10:19:15 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\DLLVGA.dll
[2006/03/29 11:05:17 | 000,036,864 | ---- | C] ( ) -- C:\WINDOWS\vsnpstd.dll
[2006/03/29 11:05:17 | 000,036,864 | ---- | C] ( ) -- C:\WINDOWS\System32\vsnpstd.dll
[2006/03/29 11:05:16 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\csnpstd.dll
[2006/03/29 11:05:16 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\csnpstd.dll

========== Files - Modified Within 30 Days ==========

[2030/11/08 06:05:58 | 000,900,465 | ---- | M] () -- C:\Documents and Settings\noriko\My Documents\118_0299.JPG
[2030/11/08 06:05:46 | 000,905,372 | ---- | M] () -- C:\Documents and Settings\noriko\My Documents\118_0298.JPG
[2030/11/08 06:05:36 | 000,868,491 | ---- | M] () -- C:\Documents and Settings\noriko\My Documents\118_0297.JPG
[2011/10/10 10:03:38 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/10/10 10:00:46 | 000,000,674 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/10/10 10:00:41 | 000,000,306 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2011/10/10 09:58:17 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/10/10 09:58:13 | 2011,418,624 | -HS- | M] () -- C:\hiberfil.sys
[2011/10/10 09:40:00 | 000,000,256 | ---- | M] () -- C:\WINDOWS\tasks\Windows Live Toolbar の更新プログラムを確認します.job
[2011/10/10 09:14:01 | 000,000,678 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/10/10 00:44:10 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\noriko\デスクトップ\OTL.exe
[2011/10/09 03:00:00 | 000,000,398 | ---- | M] () -- C:\WINDOWS\tasks\ErrorEND.job
[2011/10/08 19:53:02 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/10/05 18:23:23 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\lvuvc.hs
[2011/09/18 05:33:18 | 000,444,822 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/09/18 05:33:18 | 000,230,534 | ---- | M] () -- C:\WINDOWS\System32\perfh011.dat
[2011/09/18 05:33:18 | 000,072,698 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/09/18 05:33:18 | 000,072,692 | ---- | M] () -- C:\WINDOWS\System32\perfc011.dat
[2011/09/18 04:48:03 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK

========== Files Created - No Company Name ==========

[2011/05/26 10:14:43 | 000,000,054 | ---- | C] () -- C:\WINDOWS\System32\rp_stats.dat
[2011/05/26 10:14:43 | 000,000,039 | ---- | C] () -- C:\WINDOWS\System32\rp_rules.dat
[2011/05/26 08:07:36 | 000,018,207 | ---- | C] () -- C:\WINDOWS\System32\NateOnMainA.dll
[2011/05/15 08:22:29 | 000,000,001 | ---- | C] () -- C:\WINDOWS\wallball.dat
[2009/12/31 02:23:43 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/12/28 13:13:50 | 000,055,960 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009/10/27 17:03:44 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxduvs.dll
[2009/10/27 17:03:35 | 000,360,448 | ---- | C] () -- C:\WINDOWS\System32\lxducoin.dll
[2009/10/27 17:00:24 | 001,036,288 | ---- | C] () -- C:\WINDOWS\System32\lxdudrs.dll
[2009/10/27 17:00:24 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\lxducaps.dll
[2009/10/27 17:00:23 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\lxducnv4.dll
[2009/10/27 16:29:47 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\lxdurwrd.ini
[2009/10/27 16:27:43 | 000,389,120 | ---- | C] () -- C:\WINDOWS\System32\LXDUinst.dll
[2009/10/27 16:27:31 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lxdugrd.dll
[2009/06/27 13:58:39 | 000,015,688 | ---- | C] () -- C:\WINDOWS\System32\lsdelete.exe
[2009/04/03 18:15:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/02/28 02:15:10 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2009/01/08 17:40:31 | 000,058,163 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2008/02/21 13:10:01 | 000,006,048 | ---- | C] () -- C:\WINDOWS\System32\MCC16.dll
[2008/02/21 13:07:42 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2008/02/21 12:21:04 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2007/03/26 17:42:26 | 000,000,006 | R--- | C] () -- C:\Documents and Settings\noriko\Application Data\dm.ini
[2007/01/02 12:58:42 | 000,000,227 | ---- | C] () -- C:\WINDOWS\HP_CounterReport_Update_HPSU.ini
[2007/01/02 12:56:41 | 000,000,214 | ---- | C] () -- C:\WINDOWS\HP_48BitScanUpdatePatch.ini
[2007/01/02 12:56:18 | 000,000,214 | ---- | C] () -- C:\WINDOWS\HP_InstantSHareJPG.ini
[2006/12/30 16:00:11 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ToDisc.INI
[2006/11/12 22:14:15 | 000,000,000 | ---- | C] () -- C:\WINDOWS\pcnavi.INI
[2006/11/12 22:12:14 | 000,038,400 | R--- | C] () -- C:\Documents and Settings\noriko\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/11/01 15:25:28 | 000,000,217 | ---- | C] () -- C:\WINDOWS\HP_IZClosingDiscErrorPatch.ini
[2006/11/01 15:12:39 | 000,000,221 | ---- | C] () -- C:\WINDOWS\HP_RedboxHprblog_HPSU.ini
[2006/10/29 22:39:32 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\hpzids01.dll
[2006/10/29 22:32:11 | 000,089,229 | ---- | C] () -- C:\WINDOWS\hpoins06.dat
[2006/10/29 22:32:11 | 000,005,389 | ---- | C] () -- C:\WINDOWS\hpomdl06.dat
[2006/10/28 23:46:38 | 000,002,068 | ---- | C] () -- C:\WINDOWS\ekitan.ini
[2006/10/28 23:46:38 | 000,000,919 | ---- | C] () -- C:\WINDOWS\System32\mswee32.dat
[2006/10/17 19:16:29 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Sony.dll
[2006/09/26 22:48:29 | 000,000,129 | R--- | C] () -- C:\Documents and Settings\noriko\Local Settings\Application Data\fusioncache.dat
[2006/09/26 22:46:11 | 000,245,760 | ---- | C] () -- C:\WINDOWS\System32\ControlWZCS.exe
[2006/09/26 22:46:08 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\acs.exe
[2006/09/26 22:46:03 | 000,311,296 | ---- | C] () -- C:\WINDOWS\System32\AegisI5.exe
[2006/09/26 22:45:49 | 000,270,336 | ---- | C] () -- C:\WINDOWS\System32\PlugPlayPCIDevice.exe
[2006/06/22 13:31:25 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/06/22 11:40:07 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006/06/22 11:14:05 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2006/06/22 11:14:05 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2006/06/22 11:14:05 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2006/06/22 11:14:05 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2006/06/22 11:14:05 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2006/06/22 11:14:05 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2006/06/22 10:27:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NDSTray.INI
[2006/06/22 10:19:15 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\TCtrlIO.dll
[2006/06/22 09:45:20 | 000,128,113 | ---- | C] () -- C:\WINDOWS\System32\csellang.ini
[2006/06/22 09:45:20 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\csellang.dll
[2006/06/22 09:45:20 | 000,010,171 | ---- | C] () -- C:\WINDOWS\System32\tosmreg.ini
[2006/06/22 09:45:20 | 000,007,671 | ---- | C] () -- C:\WINDOWS\System32\cseltbl.ini
[2006/06/22 09:42:31 | 000,000,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTHDAEQ1.dat
[2006/06/22 09:42:31 | 000,000,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTHDAEQ0.dat
[2006/06/22 09:42:28 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2006/06/22 09:42:28 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2006/06/21 21:12:27 | 000,001,232 | ---- | C] () -- C:\WINDOWS\ATICIM.INI
[2006/06/21 19:58:39 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2006/06/21 19:54:28 | 000,022,120 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2006/06/21 19:49:44 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2006/06/21 19:47:54 | 000,229,384 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2006/06/21 19:40:18 | 000,001,288 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2006/06/21 19:40:06 | 000,101,588 | ---- | C] () -- C:\WINDOWS\System32\msimelst.exe
[2006/06/21 19:40:06 | 000,073,898 | ---- | C] () -- C:\WINDOWS\System32\msimekey.exe
[2006/06/21 19:40:06 | 000,065,392 | ---- | C] () -- C:\WINDOWS\System32\msimek.sys
[2006/06/21 19:40:06 | 000,046,756 | ---- | C] () -- C:\WINDOWS\System32\msimeset.exe
[2006/06/21 19:40:06 | 000,044,496 | ---- | C] () -- C:\WINDOWS\System32\msimei.sys
[2006/06/21 19:40:06 | 000,042,841 | ---- | C] () -- C:\WINDOWS\System32\key02.sys
[2006/06/21 19:40:06 | 000,042,633 | ---- | C] () -- C:\WINDOWS\System32\keyax.sys
[2006/06/21 19:40:06 | 000,039,808 | ---- | C] () -- C:\WINDOWS\System32\msime.sys
[2006/06/21 19:40:06 | 000,039,348 | ---- | C] () -- C:\WINDOWS\System32\msimergn.exe
[2006/06/21 19:40:06 | 000,013,597 | ---- | C] () -- C:\WINDOWS\System32\msimed.sys
[2006/06/21 19:40:06 | 000,011,923 | ---- | C] () -- C:\WINDOWS\System32\deldrv.exe
[2006/06/21 19:40:06 | 000,004,701 | ---- | C] () -- C:\WINDOWS\System32\kkcfunc.sys
[2006/06/21 19:40:06 | 000,002,990 | ---- | C] () -- C:\WINDOWS\System32\disp_win.sys
[2006/06/21 19:40:06 | 000,000,901 | ---- | C] () -- C:\WINDOWS\System32\ntfont.sys
[2006/06/21 19:40:06 | 000,000,852 | ---- | C] () -- C:\WINDOWS\System32\font_win.sys
[2006/06/21 19:40:05 | 000,054,700 | ---- | C] () -- C:\WINDOWS\System32\$ias.sys
[2006/06/21 19:40:05 | 000,027,956 | ---- | C] () -- C:\WINDOWS\System32\appsicon.dll
[2006/06/21 19:40:05 | 000,021,295 | ---- | C] () -- C:\WINDOWS\System32\adddrv.exe
[2006/06/21 19:40:05 | 000,020,688 | ---- | C] () -- C:\WINDOWS\System32\$disp.sys
[2006/06/21 19:40:05 | 000,004,125 | ---- | C] () -- C:\WINDOWS\System32\$prnescp.sys
[2006/06/21 19:40:00 | 000,230,534 | ---- | C] () -- C:\WINDOWS\System32\perfh011.dat
[2006/06/21 19:40:00 | 000,130,902 | ---- | C] () -- C:\WINDOWS\System32\perfi011.dat
[2006/06/21 19:40:00 | 000,072,692 | ---- | C] () -- C:\WINDOWS\System32\perfc011.dat
[2006/06/21 19:40:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd011.dat
[2006/06/21 19:39:46 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006/06/21 19:39:44 | 000,444,822 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006/06/21 19:39:44 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006/06/21 19:39:44 | 000,072,698 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006/06/21 19:39:44 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006/06/21 19:39:43 | 000,004,688 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006/06/21 19:39:42 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006/06/21 19:39:41 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2006/06/21 19:39:38 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006/06/21 19:39:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006/06/21 19:39:37 | 000,229,088 | ---- | C] () -- C:\WINDOWS\System32\lanman.drv
[2006/06/21 19:39:33 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006/06/21 19:39:27 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006/06/21 19:12:07 | 000,121,995 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2006/03/29 11:05:17 | 000,367,488 | ---- | C] () -- C:\WINDOWS\System32\drivers\snpstd.sys
[2006/03/29 11:05:17 | 000,367,488 | ---- | C] () -- C:\WINDOWS\snpstd.sys
[2006/03/29 11:05:17 | 000,286,720 | ---- | C] () -- C:\WINDOWS\vsnpstd.exe
[2006/03/29 11:05:17 | 000,057,344 | ---- | C] () -- C:\WINDOWS\TwainUI.dll
[2006/03/29 11:05:17 | 000,020,480 | ---- | C] () -- C:\WINDOWS\usnpstd.exe
[2006/03/29 11:05:17 | 000,001,270 | ---- | C] () -- C:\WINDOWS\SnxDSC.ini
[2006/03/29 11:05:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\dsnpstd.dll
[2006/03/29 11:05:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\dsnpstd.dll
[2006/03/29 11:05:16 | 000,049,152 | ---- | C] () -- C:\WINDOWS\amcap.exe
[2006/03/29 11:05:16 | 000,015,541 | ---- | C] () -- C:\WINDOWS\snpstd.ini
[2006/03/29 11:05:16 | 000,003,975 | ---- | C] () -- C:\WINDOWS\UN860127.ini
[2003/04/03 12:00:02 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\VSPpg8.dll
[2003/02/19 15:36:06 | 000,005,099 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001/12/24 14:37:00 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\gif89.dll
[2001/08/24 04:00:00 | 000,022,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\SbcpHid.sys
[2001/07/06 15:30:02 | 000,003,162 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI

========== LOP Check ==========

[2009/04/03 18:04:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Auslogics
[2011/05/26 14:48:58 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2011/05/26 09:47:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ErrorEND
[2006/06/22 11:05:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FujisoftABC
[2009/08/20 07:22:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Justsystem
[2009/12/14 13:34:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lexmark 5600-6600 Series
[2009/01/08 17:34:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Logicool
[2011/10/10 00:26:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2011/05/26 08:46:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PCPitstop
[2010/06/23 03:32:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2009/11/25 16:30:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/06/27 14:14:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\Auslogics
[2009/07/27 14:46:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\com.aqf.palette.B9BF3699346C52057E6934DCCBB0514F76359282.1
[2009/03/07 09:48:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\FUJIFILM
[2011/05/26 08:55:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\GlarySoft
[2007/07/23 20:54:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\InterVideo
[2006/09/26 23:20:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\Justsystem
[2007/08/15 06:46:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\Leadertech
[2009/11/16 15:18:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\Lexmark Productivity Studio
[2006/11/10 02:38:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\MSNInstaller
[2009/08/20 08:02:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\Thunderbird
[2007/08/15 00:17:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\toshiba
[2011/07/30 13:49:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noriko\Application Data\VirtualStore
[2011/10/09 03:00:00 | 000,000,398 | ---- | M] () -- C:\WINDOWS\Tasks\ErrorEND.job
[2011/10/10 10:00:41 | 000,000,306 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
[2011/10/10 10:03:38 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job

========== Purity Check ==========



< End of report >
emenji
Active Member
 
Posts: 4
Joined: October 6th, 2011, 12:14 am

Re: Hello

Unread postby askey127 » October 10th, 2011, 8:29 am

emenji,
You have this thing installed on your system :
http://ww01.rsupport.com/media/7619/VRVD50_en.pdf
It may be that you use it for video communication, or it could be used for unintended purposes.
Do you need to keep it?
-----------------------------------------------------------
Remove Programs Using Control Panel
From Start, Settings, Control Panel or Start, Control Panel, click Add/Remove Programs.
Highlight this Entry, and choose Remove :

Glary Utilities 2.33.0.1158

Take extra care in answering questions posed by any Uninstaller.
Don't ever use any Registry Optimizer/Booster/Cleaner, etc. They don't work and they can break your system.
-----------------------------------------------------------
The version of Adobe Acrobat you have is not safe for viewing PDF files on the Internet.
You need to install Adobe Reader 10 to do that safely. You can keep your more advanced Adobe Acrobat 8, but should not open an outside PDF file with it unless the file is screened first with your antivirus. (save and right click the .pdf file and choose Scan with MS Security Essentials)
-----------------------------------------------------------
The procedure below will stop your present version of Acrobat 8 from loading automatically when you click on an Internet PDF.
----------------------------------------------
Perform a Custom Fix with OTL
Run OTL
  • In the Custom Scans/Fixes box at the bottom, paste in the following lines from the Code box (Do not include the word "Code"):
    Code: Select all
    :OTL
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
    DRV - [2009/06/25 03:05:43 | 000,064,160 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
    O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
    O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
    O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
    O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
    O8 - Extra context menu item: Adobe PDF ??? - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
    O8 - Extra context menu item: ???????? Adobe PDF ??? - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
    O8 - Extra context menu item: ??????????? PDF ??? - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
    O8 - Extra context menu item: ??? PDF ??? - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
    O8 - Extra context menu item: ???????? Adobe PDF ??? - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
    O8 - Extra context menu item: ??????????? PDF ??? - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
    O8 - Extra context menu item: ????? Adobe PDF ??? - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
    O8 - Extra context menu item: ???????? PDF ??? - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
    O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - Reg Error: Key error. File not found
    [2011/10/10 10:00:41 | 000,000,306 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
    
    :Files
    C:\Documents and Settings\noriko\Application Data\GlarySoft
    ipconfig /flushdns /c
    
    :Commands
    [EMPTYTEMP]
    [CREATERESTOREPOINT]
    
  • Then click the Run Fix button at the top.
  • Let the program run unhindered and reboot the PC when it is done.
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

You can find and install the latest version of Adobe Reader (10.1) in various languages from here: http://www.adobe.com/support/downloads/ ... product=10
I would suggest you install it.
askey127
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 13903
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA

Re: Hello

Unread postby askey127 » October 14th, 2011, 9:14 am

Due to Lack of Response, this topic is now closed.

If you still require help, please open a new thread in the Infected? Virus, malware, adware, ransomware, oh my! forum, include a fresh FRST log, and wait for a new helper.
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 13903
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA
Advertisement
Register to Remove


Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 57 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware