Dan

Members
 View Profile  See their activity

  • Content Count

    742

  • Joined

  • Last visited

 Content Type 

Posts posted by Dan

  11. Besttechie Turns 2!

    in Open Chat

    Posted

    HAPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPYYYYYYYYYYYYYYYYYYYYYYYYY

    BIRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRTTTTTTTTTTTTTTTTTTTTTTTHHHHHHHHHHHHHHHHHHHHHD

    AYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYY!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

    Happy-Birthday-Balloons.gif

    Danny :D

  17. My Hijack This Log For Review[INACTIVE]

    in Malware Removal

    Posted

    Hi,

    Open HijackThis, click the "Scan" button, and check the following items:

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm

    R3 - URLSearchHook: (no name) - {DEFB6980-6FA0-1697-0E62-ECD4531D9874} - (no file)

    O2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7D2660C9EC98} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBarBHO.dll

    O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)

    O3 - Toolbar: (no name) - {F5735C15-1FB2-41FE-BA12-242757E69DDE} - (no file)

    O3 - Toolbar: Viewpoint Toolbar - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll

    O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)

    O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe

    O4 - HKLM\..\Run: [dmlae.exe] C:\WINDOWS\system32\dmlae.exe

    O4 - HKLM\..\Run: [jbapr.exe] C:\WINDOWS\system32\jbapr.exe

    O4 - HKCU\..\Run: [sbin] TRPT.exe

    O4 - HKCU\..\Run: [AppMasterCenter] TForm1.exe

    O4 - HKCU\..\Run: [backorif] slamm.exe

    O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZU

    O8 - Extra context menu item: &Viewpoint Search - res://C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll/CXTSEARCH.HTML

    O17 - HKLM\System\CCS\Services\Tcpip\..\{2DA7EB46-2A02-4614-8CE8-8D7F7FEA8E57}: NameServer = 85.255.116.172,85.255.112.62

    O17 - HKLM\System\CCS\Services\Tcpip\..\{34DCBF29-0167-4A5C-AA34-BCE90B02FA92}: NameServer = 85.255.116.172,85.255.112.62

    O17 - HKLM\System\CCS\Services\Tcpip\..\{5DD44EA8-D306-4D94-8CAE-6E9D87A09E0A}: NameServer = 85.255.116.172,85.255.112.62

    O17 - HKLM\System\CCS\Services\Tcpip\..\{6058A7D9-38F8-4956-8CC2-9C739FA5FAE2}: NameServer = 85.255.116.172,85.255.112.62

    O17 - HKLM\System\CCS\Services\Tcpip\..\{E37BBA0F-2360-4571-B894-80F0546B191F}: NameServer = 85.255.116.172,85.255.112.62

    O17 - HKLM\System\CCS\Services\Tcpip\..\{F7BC669F-6699-4DFC-BDE7-E88F690959B3}: NameServer = 85.255.116.172,85.255.112.62

    O17 - HKLM\System\CCS\Services\Tcpip\..\{F8AE58CE-396B-4592-B118-15401132C73A}: NameServer = 85.255.116.172,85.255.112.62

    O17 - HKLM\System\CS1\Services\Tcpip\..\{2DA7EB46-2A02-4614-8CE8-8D7F7FEA8E57}: NameServer = 85.255.116.172,85.255.112.62

    Close all windows except HijackThis, and click the "Fix Checked" button.

    Click "Start --> Control Panel --> Add Remove Programs". Uninstall:

    Viewpoint

    Locate and delete the following files:

    C:\WINDOWS\system32\dmlae.exe

    C:\WINDOWS\system32\jbapr.exe

    Click "Start --> Search". Make sure all advanced options are checked. Search and delete the following files:

    TRPT.exe

    TForm1.exe

    slamm.exe

    Reboot, then please go HERE to run Panda's ActiveScan

    • Once you are on the Panda site click the Scan your PC button
    • A new window will open...click the Check Now button
    • Enter your Country
    • Enter your State/Province
    • Enter your e-mail address and click send
    • Select either Home User or Company
    • Click the big Scan Now button
    • If it wants to install an ActiveX component allow it
    • It will start downloading the files it requires for the scan (Note: It may take a couple of minutes)
    • When download is complete, click on My Computer to start the scan
    • When the scan completes, if anything malicious is detected, click the See Report button, then Save Report and save it to a convenient location. Post the contents of the ActiveScan report as well as a new HijackThis log.

    Danny :thumbsup:

  18. My Hijack This Log For Review[INACTIVE]

    in Malware Removal

    Posted

    Hi,

    Please download FixWareout from one of these sites:

    http://downloads.subratam.org/Fixwareout.exe

    http://swandog46.geekstogo.com/Fixwareout.exe

    Save it to your desktop and run it. Click Next, then Install, make sure "Run fixit" is checked and click Finish.

    The fix will begin; follow the prompts.

    You will be asked to reboot your computer; please do so.

    Your system may take longer than usual to load; this is normal.

    Once the desktop loads post the text that will open (report.txt) and a new Hijackthis log in the forum please.

    Danny :thumbsup: