Anzeige
Du verwendest einen veralteten Browser. Es ist möglich, dass diese oder andere Websites nicht korrekt angezeigt werden.
Du solltest ein Upgrade durchführen oder einen alternativen Browser verwenden.
Du solltest ein Upgrade durchführen oder einen alternativen Browser verwenden.
[gelöst] Mit welchem Programm kann man gif-Dateien bearbeiten?
- Ersteller PCLover
- Erstellt am
Anzeige
HeikeFy
da bin ich
AW: gif. Dateien bearbeiten
und ich dachte, ich hätte dir den Tipp für so ein Programm bereits geliefert
Ulead GIF Animator
nicht mehr neu läuft auch auf Vista
Edit: Link zur kostenlosen Version geändert
und ich dachte, ich hätte dir den Tipp für so ein Programm bereits geliefert
Ulead GIF Animator
nicht mehr neu läuft auch auf Vista
Edit: Link zur kostenlosen Version geändert
hansjorg71
gehört zum Inventar
AW: gif. Dateien bearbeiten
Hallo, dann diesen Link ! ist letzte kostenlose Version !
Last Freeware version: Ragtime Solo, TimeCore Solo, Cupertino, GIF2SWF, Ulead GIF Animator
Gruß
Hallo, dann diesen Link ! ist letzte kostenlose Version !
Last Freeware version: Ragtime Solo, TimeCore Solo, Cupertino, GIF2SWF, Ulead GIF Animator
Gruß
AW: gif. Dateien bearbeiten
Vorsicht: Der in dem Zitat enthaltene Link verweißt in HeikeFys Original am heutigen Abend auf mutmaßliche Malware.
Von winsoftware.de heruntergeladen wird die setup-ulead-gif-animator-le.exe, welche wiederum mit dem Internet verbunden werden möchte, um sich dort einiges Virenverdächtiges zu ziehen. Bis mein Computer wieder sauber ist, werde ich heute Abend sicherlich noch einige Stunden benötigen.
Dabei werde ich auf jeden Fall folgende Anleitungen berücksichtigen:
ProtectWindowsManager.exe Virus Entfernen von techfrage.de und ProtectWindowsManager.exe Virus entfernen von Da Guru, Administrator aus dem technischen Service vom trojaner-board.de.
Im Moment stehe ich noch ganz am Anfang der Säuberung und habe erst den Malwarebytes Anti-Malware Scan durchlaufen lassen. 159 Auffälligkeiten nach einem 20 minütigen scan.
Na ja. Schönen Abend zusammen.
Nachfolgend das logfile:
Malwarebytes Anti-Malware
Malwarebytes | Free Anti-Malware & Internet Security Software
stimmt soweit hatte ich es nicht getestet, aber Google ist dein Freund
versuch es mal hier, da startet der Download
Vorsicht: Der in dem Zitat enthaltene Link verweißt in HeikeFys Original am heutigen Abend auf mutmaßliche Malware.
Von winsoftware.de heruntergeladen wird die setup-ulead-gif-animator-le.exe, welche wiederum mit dem Internet verbunden werden möchte, um sich dort einiges Virenverdächtiges zu ziehen. Bis mein Computer wieder sauber ist, werde ich heute Abend sicherlich noch einige Stunden benötigen.
Dabei werde ich auf jeden Fall folgende Anleitungen berücksichtigen:
ProtectWindowsManager.exe Virus Entfernen von techfrage.de und ProtectWindowsManager.exe Virus entfernen von Da Guru, Administrator aus dem technischen Service vom trojaner-board.de.
Im Moment stehe ich noch ganz am Anfang der Säuberung und habe erst den Malwarebytes Anti-Malware Scan durchlaufen lassen. 159 Auffälligkeiten nach einem 20 minütigen scan.
Na ja. Schönen Abend zusammen.
Nachfolgend das logfile:
Malwarebytes Anti-Malware
Malwarebytes | Free Anti-Malware & Internet Security Software
Scan Date: 30.12.2014
Scan Time: 18:40:48
Logfile: Malwarebytes Anti-Malware.txt
Administrator: Yes
Version: 2.00.4.1028
Malware Database: v2014.11.20.06
Rootkit Database: v2014.11.18.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows Vista
CPU: x86
File System: NTFS
User: momoyo
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 345521
Time Elapsed: 38 min, 46 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 13
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.SupTab.A, HKU\S-1-5-21-3803528977-3843967588-2869457811-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}\INPROCSERVER32, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.WPM.A, HKLM\SOFTWARE\supWindowsMangerProtect, , [6a9cf747c8b4cc6a42ed7f2de321fd03],
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\webssearchesSoftware, , [37cf320c87f5f541f8b33732da29da26],
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [1bebb88696e69c9ae8e3e6b15ea6728e],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPTAB, , [95712915afcd73c36427c38391728080],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, , [cc3a122c78047eb8474bee4daa59d927],
PUP.Optional.Qone8, HKU\S-1-5-21-3803528977-3843967588-2869457811-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [41c5231b1864a78f36949dfa11f315eb],
PUP.Optional.FastStart.A, HKU\S-1-5-21-3803528977-3843967588-2869457811-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\EXTENDS, , [3bcb76c8502c5ed8b8e25ae910f3e61a],
Registry Values: 3
PUP.Optional.FastStart.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|faststartff@gmail.com, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com, , [61a564dae597a4924cfce4c7e3219e62]
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPTAB|ptid, cvs, , [95712915afcd73c36427c38391728080]
PUP.Optional.FastStart.A, HKU\S-1-5-21-3803528977-3843967588-2869457811-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\EXTENDS|appid, faststartff@gmail.com, , [3bcb76c8502c5ed8b8e25ae910f3e61a]
Registry Data: 9
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\FIREFOX.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Mozilla Firefox\firefox.exe webssearches, Good: (firefox.exe), Bad: (C:\Program Files\Mozilla Firefox\firefox.exe webssearches),,[4abc49f52d4fa69015e43b09ae57da26]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe webssearches, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe webssearches),,[8a7c63db28548bab17e35be9b550837d]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, webssearches, Good: (Google), Bad: (webssearches),,[6f97d668611bcd69b93aba8a65a0b749]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, webssearches, Good: (Google), Bad: (webssearches),,[d72f41fde597a19528c7d074897cb64a]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://istart.webssearches.com/web/?type=ds&ts=1419961706&from=cvs&uid=HitachiXHTS541680J9SA00_SB2241SGFWWRXEFWWRXEX&q={searchTerms}, Good: (Google), Bad: (http://istart.webssearches.com/web/?type=ds&ts=1419961706&from=cvs&uid=HitachiXHTS541680J9SA00_SB2241SGFWWRXEFWWRXEX&q={searchTerms}),,[59ade658d1abc37308e977cdb74ef907]
PUP.Optional.WebSearches, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://istart.webssearches.com/web/?type=ds&ts=1419961706&from=cvs&uid=HitachiXHTS541680J9SA00_SB2241SGFWWRXEFWWRXEX&q={searchTerms}, Good: (Google), Bad: (http://istart.webssearches.com/web/?type=ds&ts=1419961706&from=cvs&uid=HitachiXHTS541680J9SA00_SB2241SGFWWRXEFWWRXEX&q={searchTerms}),,[f80e1826bcc05ed8961a7f3b758c669a]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[a363eb539ce02b0b2ae9bd92cb3a37c9]
PUP.Optional.WebsSearches.A, HKU\S-1-5-21-3803528977-3843967588-2869457811-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, webssearches, Good: (Google), Bad: (webssearches),,[34d245f9acd064d2cd270b391bea0ff1]
PUP.Optional.WebsSearches.A, HKU\S-1-5-21-3803528977-3843967588-2869457811-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, webssearches, Good: (Google), Bad: (webssearches),,[2dd99ea07804e056cc248db77f8604fc]
Folders: 39
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\log, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include\tools, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\lib, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\module, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\pack, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\en, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\en-US, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\es, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\es-419, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-BE, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-CA, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-CH, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-LU, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\it, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\it-CH, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\pl, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\pt-BR, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\ru, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\ru-MO, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\tr, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\vi, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\zh-CN, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\zh-TW, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\defaults, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\defaults\preferences, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect, , [9e683d0166166acc12771709956e847c],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update, , [9e683d0166166acc12771709956e847c],
Files: 95
PUP.Optional.SupTab.A, C:\Program Files\XTab\SupTab.dll, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.WindowsProtectManger.A, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe.malwareverdacht.deaktiviert, , [27dfb985b9c3a98d532e9329d13023dd],
PUP.Optional.SupTab.A, C:\Users\momoyo\AppData\Local\Temp\~dl3B\~dljyb\tmp\STab_v4.0.exe, , [6f97cb735e1e2d094f3641f4b74931cf],
PUP.Optional.WindowsProtectManger.A, C:\Users\momoyo\AppData\Local\Temp\~dl3B\~dljyb\tmp\wpm_v20.0.0.1337.exe, , [fe08e856b3c91323ccb5a51779885fa1],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\363.json, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\MessageBox.xml, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\uninstallDlg2.xml, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\UninstallManager.exe.wbr, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\bg.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\bg1.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\bk_shadow.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\button.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\button1.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\checkbox.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\checkbox_select.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\checked.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\close.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\loading_bg.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\loading_light.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\min.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\scrollbar.bmp, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\Thumbs.db, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\unchecked.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\code1.jpg, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\code2.jpg, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\code3.jpg, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\code4.jpg, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\code5.jpg, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\code6.jpg, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\Thumbs.db, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\log\UninstallManager_2014-12-30[19-01-21-779].log, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\log\UninstallManager_2014-12-30[19-09-54-019].log, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome.manifest, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\install.rdf, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\index.html, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\quick_start.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\quick_start.xul, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include\speed_dial.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include\tools\about_blank_hook.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include\tools\misc.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include\tools\popup_image_helper.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include\tools\urlrequestor.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\js.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\lib\doT.min.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\lib\jquery-2.1.0.min.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\lib\jquery.autocomplete.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\module\hotSearch.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\module\mostgrid.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\module\search.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\module\stat.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\pack\common.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\pack\ga.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\pack\xagainit.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\en\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\en-US\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\es\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\es-419\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-BE\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-CA\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-CH\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-LU\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\it\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\it-CH\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\pl\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\pt-BR\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\ru\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\ru-MO\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\tr\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\vi\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\zh-CN\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\zh-TW\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\default_logo.png, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\googlelogo.png, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\google_trends.png, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\icon.png, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\loading.gif, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\logo.png, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\newtab.ico, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\simple.css, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\style.css, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\defaults\preferences\fvd.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\defaults\preferences\preferences.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\addonmanager.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\aes.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\config.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\dialogs.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\last_tab.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\misc.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\properties.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\remoterequest.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\restoreprefs.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\settings.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\prefs.js, Good: (), Bad: (user_pref("browser.startup.homepage", "http://istart.webssearches.com/?type=hp&ts=1419961706&from=cvs&uid=HitachiXHTS541680J9SA00_SB2241SGFWWRXEFWWRXEX"), ,[040216287c000e28c0f287fead58d828]
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\prefs.js, Good: (), Bad: (user_pref("browser.newtab.url", "http://istart.webssearches.com/newtab/?type=nt&ts=1419961706&from=cvs&uid=HitachiXHTS541680J9SA00_SB2241SGFWWRXEFWWRXEX"), ,[9d69d46a0b715dd9981bb1d4aa5bcc34]
Physical Sectors: 0
(No malicious items detected)
(end)
Scan Time: 18:40:48
Logfile: Malwarebytes Anti-Malware.txt
Administrator: Yes
Version: 2.00.4.1028
Malware Database: v2014.11.20.06
Rootkit Database: v2014.11.18.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows Vista
CPU: x86
File System: NTFS
User: momoyo
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 345521
Time Elapsed: 38 min, 46 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 13
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.SupTab.A, HKU\S-1-5-21-3803528977-3843967588-2869457811-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}\INPROCSERVER32, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.WPM.A, HKLM\SOFTWARE\supWindowsMangerProtect, , [6a9cf747c8b4cc6a42ed7f2de321fd03],
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\webssearchesSoftware, , [37cf320c87f5f541f8b33732da29da26],
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [1bebb88696e69c9ae8e3e6b15ea6728e],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPTAB, , [95712915afcd73c36427c38391728080],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, , [cc3a122c78047eb8474bee4daa59d927],
PUP.Optional.Qone8, HKU\S-1-5-21-3803528977-3843967588-2869457811-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [41c5231b1864a78f36949dfa11f315eb],
PUP.Optional.FastStart.A, HKU\S-1-5-21-3803528977-3843967588-2869457811-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\EXTENDS, , [3bcb76c8502c5ed8b8e25ae910f3e61a],
Registry Values: 3
PUP.Optional.FastStart.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|faststartff@gmail.com, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com, , [61a564dae597a4924cfce4c7e3219e62]
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPTAB|ptid, cvs, , [95712915afcd73c36427c38391728080]
PUP.Optional.FastStart.A, HKU\S-1-5-21-3803528977-3843967588-2869457811-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\EXTENDS|appid, faststartff@gmail.com, , [3bcb76c8502c5ed8b8e25ae910f3e61a]
Registry Data: 9
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\FIREFOX.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Mozilla Firefox\firefox.exe webssearches, Good: (firefox.exe), Bad: (C:\Program Files\Mozilla Firefox\firefox.exe webssearches),,[4abc49f52d4fa69015e43b09ae57da26]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe webssearches, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe webssearches),,[8a7c63db28548bab17e35be9b550837d]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, webssearches, Good: (Google), Bad: (webssearches),,[6f97d668611bcd69b93aba8a65a0b749]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, webssearches, Good: (Google), Bad: (webssearches),,[d72f41fde597a19528c7d074897cb64a]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://istart.webssearches.com/web/?type=ds&ts=1419961706&from=cvs&uid=HitachiXHTS541680J9SA00_SB2241SGFWWRXEFWWRXEX&q={searchTerms}, Good: (Google), Bad: (http://istart.webssearches.com/web/?type=ds&ts=1419961706&from=cvs&uid=HitachiXHTS541680J9SA00_SB2241SGFWWRXEFWWRXEX&q={searchTerms}),,[59ade658d1abc37308e977cdb74ef907]
PUP.Optional.WebSearches, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://istart.webssearches.com/web/?type=ds&ts=1419961706&from=cvs&uid=HitachiXHTS541680J9SA00_SB2241SGFWWRXEFWWRXEX&q={searchTerms}, Good: (Google), Bad: (http://istart.webssearches.com/web/?type=ds&ts=1419961706&from=cvs&uid=HitachiXHTS541680J9SA00_SB2241SGFWWRXEFWWRXEX&q={searchTerms}),,[f80e1826bcc05ed8961a7f3b758c669a]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[a363eb539ce02b0b2ae9bd92cb3a37c9]
PUP.Optional.WebsSearches.A, HKU\S-1-5-21-3803528977-3843967588-2869457811-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, webssearches, Good: (Google), Bad: (webssearches),,[34d245f9acd064d2cd270b391bea0ff1]
PUP.Optional.WebsSearches.A, HKU\S-1-5-21-3803528977-3843967588-2869457811-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, webssearches, Good: (Google), Bad: (webssearches),,[2dd99ea07804e056cc248db77f8604fc]
Folders: 39
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\log, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include\tools, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\lib, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\module, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\pack, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\en, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\en-US, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\es, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\es-419, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-BE, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-CA, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-CH, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-LU, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\it, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\it-CH, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\pl, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\pt-BR, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\ru, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\ru-MO, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\tr, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\vi, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\zh-CN, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\zh-TW, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\defaults, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\defaults\preferences, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect, , [9e683d0166166acc12771709956e847c],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update, , [9e683d0166166acc12771709956e847c],
Files: 95
PUP.Optional.SupTab.A, C:\Program Files\XTab\SupTab.dll, , [f016bf7fe993b87e5035c372b54b29d7],
PUP.Optional.WindowsProtectManger.A, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe.malwareverdacht.deaktiviert, , [27dfb985b9c3a98d532e9329d13023dd],
PUP.Optional.SupTab.A, C:\Users\momoyo\AppData\Local\Temp\~dl3B\~dljyb\tmp\STab_v4.0.exe, , [6f97cb735e1e2d094f3641f4b74931cf],
PUP.Optional.WindowsProtectManger.A, C:\Users\momoyo\AppData\Local\Temp\~dl3B\~dljyb\tmp\wpm_v20.0.0.1337.exe, , [fe08e856b3c91323ccb5a51779885fa1],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\363.json, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\MessageBox.xml, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\uninstallDlg2.xml, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\UninstallManager.exe.wbr, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\bg.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\bg1.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\bk_shadow.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\button.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\button1.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\checkbox.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\checkbox_select.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\checked.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\close.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\loading_bg.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\loading_light.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\min.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\scrollbar.bmp, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\Thumbs.db, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\unchecked.png, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\code1.jpg, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\code2.jpg, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\code3.jpg, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\code4.jpg, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\code5.jpg, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\code6.jpg, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\images\code\Thumbs.db, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\log\UninstallManager_2014-12-30[19-01-21-779].log, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\webssearches\log\UninstallManager_2014-12-30[19-09-54-019].log, , [62a415293646f541ba7240cfe61dff01],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome.manifest, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\install.rdf, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\index.html, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\quick_start.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\quick_start.xul, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include\speed_dial.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include\tools\about_blank_hook.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include\tools\misc.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include\tools\popup_image_helper.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\include\tools\urlrequestor.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\js.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\lib\doT.min.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\lib\jquery-2.1.0.min.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\lib\jquery.autocomplete.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\module\hotSearch.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\module\mostgrid.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\module\search.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\module\stat.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\pack\common.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\pack\ga.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\content\js\pack\xagainit.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\en\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\en-US\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\es\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\es-419\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-BE\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-CA\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-CH\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\fr-LU\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\it\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\it-CH\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\pl\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\pt-BR\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\ru\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\ru-MO\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\tr\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\vi\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\zh-CN\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\locale\zh-TW\locale.properties, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\default_logo.png, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\googlelogo.png, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\google_trends.png, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\icon.png, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\loading.gif, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\logo.png, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\newtab.ico, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\simple.css, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\chrome\skin\style.css, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\defaults\preferences\fvd.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\defaults\preferences\preferences.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\addonmanager.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\aes.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\config.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\dialogs.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\last_tab.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\misc.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\properties.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\remoterequest.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\restoreprefs.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.FastStart.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\extensions\faststartff@gmail.com\modules\settings.js, , [6b9b3a047903ac8a4e009a8517ec9c64],
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\prefs.js, Good: (), Bad: (user_pref("browser.startup.homepage", "http://istart.webssearches.com/?type=hp&ts=1419961706&from=cvs&uid=HitachiXHTS541680J9SA00_SB2241SGFWWRXEFWWRXEX"), ,[040216287c000e28c0f287fead58d828]
PUP.Optional.WebsSearches.A, C:\Users\momoyo\AppData\Roaming\Mozilla\Firefox\Profiles\e0yncywg.temptemp II\prefs.js, Good: (), Bad: (user_pref("browser.newtab.url", "http://istart.webssearches.com/newtab/?type=nt&ts=1419961706&from=cvs&uid=HitachiXHTS541680J9SA00_SB2241SGFWWRXEFWWRXEX"), ,[9d69d46a0b715dd9981bb1d4aa5bcc34]
Physical Sectors: 0
(No malicious items detected)
(end)
Zuletzt bearbeitet:
@gif-User
dieser Link wurde hier 02.04.2011 gepostet und da kann man sicher gesehen, dass es sich schon ein paar Mal geändert wurde. Wenn du "159 Auffälligkeiten" hast, sind die aber nicht erst seit diesem Tool drauf .
Da hast du bei der online Installation, sicher mehr installiert, wie notwendig ist.
dieser Link wurde hier 02.04.2011 gepostet und da kann man sicher gesehen, dass es sich schon ein paar Mal geändert wurde. Wenn du "159 Auffälligkeiten" hast, sind die aber nicht erst seit diesem Tool drauf .
Da hast du bei der online Installation, sicher mehr installiert, wie notwendig ist.
Ich bin sicher, Du wirst nicht begeistert sein.
Mache ich dich sofort, doch man muss ja nicht alles gleich installieren .
WS.Reputation.1
Man sollte immer wachsam sein, zu Sicherheit werde ich den Link oben entfernen .
HeikeFy
da bin ich
AW: gif. Dateien bearbeiten
Oh, das tut mir leid. 2011 war das noch noch das richtige Programm.
Vorsicht: Der in dem Zitat enthaltene Link verweißt in HeikeFys Original am heutigen Abend auf mutmaßliche Malware.
Oh, das tut mir leid. 2011 war das noch noch das richtige Programm.
Anzeige