Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
Gameharbor webpage opens at startup
Message
<blockquote data-quote="KK_corn" data-source="post: 266425" data-attributes="member: 28264"><p>OK so here it is:</p><p></p><p><u><strong>the AdwCleaner log:</strong></u></p><p></p><p># AdwCleaner v3.310 - Report created 23/09/2014 at 21:33:00</p><p># Updated 12/09/2014 by Xplode</p><p># Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)</p><p># Username : user - USER-PC</p><p># Running from : C:\Users\user\Desktop\AdwCleaner.exe</p><p># Option : Clean</p><p></p><p>***** [ Services ] *****</p><p></p><p></p><p>***** [ Files / Folders ] *****</p><p></p><p>Folder Deleted : C:\Program Files (x86)\GreenTree Applications</p><p>Folder Deleted : C:\users\user\AppData\Local\TSearch</p><p>Folder Deleted : C:\users\user\AppData\LocalLow\HPAppData</p><p>Folder Deleted : C:\users\user\AppData\Roaming\HPAppData</p><p>Folder Deleted : C:\users\user\AppData\Roaming\pdfforge</p><p>File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\fcmdSrch.xml</p><p></p><p>***** [ Scheduled Tasks ] *****</p><p></p><p></p><p>***** [ Shortcuts ] *****</p><p></p><p></p><p>***** [ Registry ] *****</p><p></p><p>Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASAPI32</p><p>Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASMANCS</p><p>Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_xvid4psp_RASAPI32</p><p>Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_xvid4psp_RASMANCS</p><p>Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}</p><p>Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{25A3A431-30BB-47C8-AD6A-E1063801134F}</p><p>Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}</p><p>Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}</p><p>Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}</p><p>Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}</p><p>Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{25A3A431-30BB-47C8-AD6A-E1063801134F}]</p><p>Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}</p><p>Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}</p><p>Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}</p><p>Key Deleted : HKCU\Software\APN PIP</p><p>Key Deleted : HKLM\SOFTWARE\PIP</p><p></p><p>***** [ Browsers ] *****</p><p></p><p>-\\ Internet Explorer v11.0.9600.17280</p><p></p><p>Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]</p><p></p><p>-\\ Google Chrome v</p><p></p><p>[ File : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\preferences ]</p><p></p><p>Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}</p><p></p><p>*************************</p><p></p><p>AdwCleaner[R0].txt - [2615 octets] - [23/09/2014 21:31:59]</p><p>AdwCleaner[S0].txt - [2540 octets] - [23/09/2014 21:33:00]</p><p></p><p>########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2600 octets] ##########</p><p></p><p><u><strong>the Malwarebytes log:</strong></u></p><p></p><p>Malwarebytes Anti-Malware</p><p><a href="http://www.malwarebytes.org" target="_blank">www.malwarebytes.org</a></p><p></p><p>Scan Date: 23/09/2014</p><p>Scan Time: 21:43:02</p><p>Logfile: Malwarebytes_log.txt</p><p>Administrator: Yes</p><p></p><p>Version: 2.00.2.1012</p><p>Malware Database: v2014.09.23.08</p><p>Rootkit Database: v2014.09.19.01</p><p>License: Free</p><p>Malware Protection: Disabled</p><p>Malicious Website Protection: Disabled</p><p>Self-protection: Disabled</p><p></p><p>OS: Windows 7 Service Pack 1</p><p>CPU: x64</p><p>File System: NTFS</p><p>User: user</p><p></p><p>Scan Type: Threat Scan</p><p>Result: Completed</p><p>Objects Scanned: 329516</p><p>Time Elapsed: 10 min, 57 sec</p><p></p><p>Memory: Enabled</p><p>Startup: Enabled</p><p>Filesystem: Enabled</p><p>Archives: Enabled</p><p>Rootkits: Enabled</p><p>Heuristics: Enabled</p><p>PUP: Enabled</p><p>PUM: Enabled</p><p></p><p>Processes: 0</p><p>(No malicious items detected)</p><p></p><p>Modules: 0</p><p>(No malicious items detected)</p><p></p><p>Registry Keys: 1</p><p>PUP.Optional.VeeHD.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\VEEHD Plugin V9.0, Quarantined, [2b5a826db7c46ec8d7c260d50300926e], </p><p></p><p>Registry Values: 0</p><p>(No malicious items detected)</p><p></p><p>Registry Data: 0</p><p>(No malicious items detected)</p><p></p><p>Folders: 2</p><p>PUP.Optional.MediaInfo.A, C:\Users\user\AppData\Local\MediaInfo, Quarantined, [f095519e34472a0c820f33c837cb9a66], </p><p>PUP.Optional.MediaInfo.A, C:\Users\user\AppData\Local\MediaInfo\Formats, Quarantined, [f095519e34472a0c820f33c837cb9a66], </p><p></p><p>Files: 1</p><p>PUP.Optional.FaceMoods.A, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ihflimipbcaljfnojhhknppphnnciiif_0.localstorage, Quarantined, [4d380ae57704a4925d92270740c313ed], </p><p></p><p>Physical Sectors: 0</p><p>(No malicious items detected)</p><p></p><p></p><p>(end)</p></blockquote><p></p>
[QUOTE="KK_corn, post: 266425, member: 28264"] OK so here it is: [U][B]the AdwCleaner log:[/B][/U] # AdwCleaner v3.310 - Report created 23/09/2014 at 21:33:00 # Updated 12/09/2014 by Xplode # Operating System : Windows 7 Ultimate Service Pack 1 (64 bits) # Username : user - USER-PC # Running from : C:\Users\user\Desktop\AdwCleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\Program Files (x86)\GreenTree Applications Folder Deleted : C:\users\user\AppData\Local\TSearch Folder Deleted : C:\users\user\AppData\LocalLow\HPAppData Folder Deleted : C:\users\user\AppData\Roaming\HPAppData Folder Deleted : C:\users\user\AppData\Roaming\pdfforge File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\fcmdSrch.xml ***** [ Scheduled Tasks ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_xvid4psp_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_xvid4psp_RASMANCS Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{25A3A431-30BB-47C8-AD6A-E1063801134F} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F} Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{25A3A431-30BB-47C8-AD6A-E1063801134F}] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2} Key Deleted : HKCU\Software\APN PIP Key Deleted : HKLM\SOFTWARE\PIP ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17280 Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant] -\\ Google Chrome v [ File : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\preferences ] Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms} ************************* AdwCleaner[R0].txt - [2615 octets] - [23/09/2014 21:31:59] AdwCleaner[S0].txt - [2540 octets] - [23/09/2014 21:33:00] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2600 octets] ########## [U][B]the Malwarebytes log:[/B][/U] Malwarebytes Anti-Malware [url="http://www.malwarebytes.org"]www.malwarebytes.org[/url] Scan Date: 23/09/2014 Scan Time: 21:43:02 Logfile: Malwarebytes_log.txt Administrator: Yes Version: 2.00.2.1012 Malware Database: v2014.09.23.08 Rootkit Database: v2014.09.19.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: user Scan Type: Threat Scan Result: Completed Objects Scanned: 329516 Time Elapsed: 10 min, 57 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 1 PUP.Optional.VeeHD.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\VEEHD Plugin V9.0, Quarantined, [2b5a826db7c46ec8d7c260d50300926e], Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 2 PUP.Optional.MediaInfo.A, C:\Users\user\AppData\Local\MediaInfo, Quarantined, [f095519e34472a0c820f33c837cb9a66], PUP.Optional.MediaInfo.A, C:\Users\user\AppData\Local\MediaInfo\Formats, Quarantined, [f095519e34472a0c820f33c837cb9a66], Files: 1 PUP.Optional.FaceMoods.A, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ihflimipbcaljfnojhhknppphnnciiif_0.localstorage, Quarantined, [4d380ae57704a4925d92270740c313ed], Physical Sectors: 0 (No malicious items detected) (end) [/QUOTE]
Insert quotes…
Verification
Post reply
Top