TechSpot

Stupid bad image pop ups

By acvaneg
Nov 15, 2009
Topic Status:
Not open for further replies.
  1. I have done all the eight steps because of the stupid bad image pop ups. here are the logs that you requested. thank you.

    al
     
  2. Tmagic650

    Tmagic650 TS Ambassador Posts: 20,872   +166

    Remove/fix these entries in the hijackthis log:
    "R3 - URLSearchHook: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"

    "O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)"

    "O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll"

    "O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)"

    "O2 - BHO: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"

    "O3 - Toolbar: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"

    "O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll"

    "O17 - HKLM\System\CCS\Services\Tcpip\..\{1ABB165E-8EBE-4CB1-B9ED-5C5852E07413}: NameServer = 4.2.2.3"

    "O17 - HKLM\System\CS1\Services\Tcpip\..\{1ABB165E-8EBE-4CB1-B9ED-5C5852E07413}: NameServer = 4.2.2.3"

    "O17 - HKLM\System\CS2\Services\Tcpip\..\{1ABB165E-8EBE-4CB1-B9ED-5C5852E07413}: NameServer = 4.2.2.3"

    "O20 - AppInit_DLLs: C:\Windows\system32\pmai.dll,avgrsstx.dll"


    You may have to reset your Internet service providers modem
     
  3. Bobbye

    Bobbye Helper on the Fringe Posts: 16,392   +36

    acvaneg, if you still need help for this problem, please let me know and I'll work with you.

    You are using a program named GameVance. This is online gaming software which collects anonymous usage information and also displays pop-up ads. Much of the malware has come from this.

    Their privacy policy states:
    You would have had to accept this term to complete the download.

    I also notice this: Platform: Windows Vista with no indication of any of the SP releases. This indicate you are behind in the updates. and therefore more vulnerable. Vista is up to SP2 at this time.

    Stay current on updates:
    • Visit the Microsoft Download Sitefrequently.
      You should get All updates marked Critical and the current SP updates:Windows 2000> SP4, Windows XP> SP2, SP3, Vista> SP2
    ------------------------------------------------------

    Tmagic, please see this System Lookup page for information on:is for information on:

    O2 - BHO: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"
    "O3 - Toolbar: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"


    This would be considered an Optional Removal.

    This is for the Windows Live Messenger and a legitimate entry:
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

    Please see DNS Noah.org for information related to NameServer = 4.2.2.3

    And additional related information for Resolve.conf HERE
     
  4. alotwigg

    alotwigg TS Rookie

    Hi, if you still have the problem with gamevance pop ups, and doesn't want to playgames just uninstall it: Control Panel\Programs\Programs and Features. After that just reboot you're computer and you'll be fine. Of course you can always download official removal tool: http://www.gamevance.com/deactivate.php
     
Topic Status:
Not open for further replies.


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.