Stupid bad image pop ups
- Thread starter acvaneg
- Start date
- Status
Tmagic650
Posts: 17,233 +234
Remove/fix these entries in the hijackthis log:
"R3 - URLSearchHook: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"
"O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)"
"O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll"
"O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)"
"O2 - BHO: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"
"O3 - Toolbar: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"
"O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll"
"O17 - HKLM\System\CCS\Services\Tcpip\..\{1ABB165E-8EBE-4CB1-B9ED-5C5852E07413}: NameServer = 4.2.2.3"
"O17 - HKLM\System\CS1\Services\Tcpip\..\{1ABB165E-8EBE-4CB1-B9ED-5C5852E07413}: NameServer = 4.2.2.3"
"O17 - HKLM\System\CS2\Services\Tcpip\..\{1ABB165E-8EBE-4CB1-B9ED-5C5852E07413}: NameServer = 4.2.2.3"
"O20 - AppInit_DLLs: C:\Windows\system32\pmai.dll,avgrsstx.dll"
You may have to reset your Internet service providers modem
"R3 - URLSearchHook: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"
"O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)"
"O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll"
"O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)"
"O2 - BHO: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"
"O3 - Toolbar: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"
"O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll"
"O17 - HKLM\System\CCS\Services\Tcpip\..\{1ABB165E-8EBE-4CB1-B9ED-5C5852E07413}: NameServer = 4.2.2.3"
"O17 - HKLM\System\CS1\Services\Tcpip\..\{1ABB165E-8EBE-4CB1-B9ED-5C5852E07413}: NameServer = 4.2.2.3"
"O17 - HKLM\System\CS2\Services\Tcpip\..\{1ABB165E-8EBE-4CB1-B9ED-5C5852E07413}: NameServer = 4.2.2.3"
"O20 - AppInit_DLLs: C:\Windows\system32\pmai.dll,avgrsstx.dll"
You may have to reset your Internet service providers modem
Bobbye
Posts: 16,313 +36
acvaneg, if you still need help for this problem, please let me know and I'll work with you.
You are using a program named GameVance. This is online gaming software which collects anonymous usage information and also displays pop-up ads. Much of the malware has come from this.
Their privacy policy states:
You would have had to accept this term to complete the download.
I also notice this: Platform: Windows Vista with no indication of any of the SP releases. This indicate you are behind in the updates. and therefore more vulnerable. Vista is up to SP2 at this time.
Stay current on updates:
Tmagic, please see this System Lookup page for information on:is for information on:
O2 - BHO: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"
"O3 - Toolbar: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"
This would be considered an Optional Removal.
This is for the Windows Live Messenger and a legitimate entry:
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
Please see DNS Noah.org for information related to NameServer = 4.2.2.3
And additional related information for Resolve.conf HERE
You are using a program named GameVance. This is online gaming software which collects anonymous usage information and also displays pop-up ads. Much of the malware has come from this.
Their privacy policy states:
You would have had to accept this term to complete the download.
I also notice this: Platform: Windows Vista with no indication of any of the SP releases. This indicate you are behind in the updates. and therefore more vulnerable. Vista is up to SP2 at this time.
Stay current on updates:
- Visit the Microsoft Download Sitefrequently.
You should get All updates marked Critical and the current SP updates:Windows 2000> SP4, Windows XP> SP2, SP3, Vista> SP2
Tmagic, please see this System Lookup page for information on:is for information on:
O2 - BHO: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"
"O3 - Toolbar: tjutilbarra Toolbar - {c6bf3bc4-0101-4782-ab1e-63a072bced3c} - C:\Program Files\tjutilbarra\tbtju1.dll"
This would be considered an Optional Removal.
This is for the Windows Live Messenger and a legitimate entry:
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
Please see DNS Noah.org for information related to NameServer = 4.2.2.3
And additional related information for Resolve.conf HERE
Hi, if you still have the problem with gamevance pop ups, and doesn't want to playgames just uninstall it: Control Panel\Programs\Programs and Features. After that just reboot you're computer and you'll be fine. Of course you can always download official removal tool: http://www.gamevance.com/deactivate.php
- Status
Similar threads
Latest posts
-
Logitech thinks the computer mouse needs an AI upgrade- Dimitrios replied
-
Gamers are renting out GPU power for AI porn generation in return for Fortnite skins- Squid Surprise replied
-
PlayStation 5 Pro will be bigger, faster, and better using the same CPU
- Squid Surprise replied
-
Intel is finally investigating reports of high-end 13th/14th-gen CPUs causing game crashes
- Squid Surprise replied
-
Fallout TV show secures second season after stellar debut- VitalyT replied
-
Amazon denies reports it started a business just to spy on rivals- Lew Zealand replied