[QUOTE=caperjack;1019947]yeah, same stuff in mine ,no balloons and streamers .just the same junk you have .i also only signed up for the win7 dvd's . i found out about it through the Microsoft MPV program ,the story on that one starts awhile back i was contacted on this forum by some saying they were part of the mvp program and wanted to nominate me, i guess so many Canadians get nominated ,first i said no[also didn't think i qualified and still don't ] thinking it was maybe a scam ,but was assured it wasn't ,so i agreed .so i got nominated ,for my helping here on this forum ,i told the guy i was just a good Googler!lol, my prize ! i received a 150.00$ certificate for the online Microsoft store , and a one year subscription to Microsoft netlife, the magazine and the website ,vale over 300.00$ the site gives me access to all microsoft software and Os's from 3.1 on ,with working keys even download . i have a fully working 90 day trial of win7priemium anyway a long story short ,its all a bit over my head ,and im the first one to admit it ,most nominee are IT people.not me

[url]https://mvp.support.microsoft.com/gp/aboutmvp[/url][/QUOTE]

That's awesome! I was so happy about getting Windows 7, it is really good.

Congratulations on winning as well.

[QUOTE=caperjack;1019335]and baloons and streamers and a puzzle.lol[/QUOTE]

I wrote a small article about it ;)

[url]http://cohenl.info/blog/microsoft/windows-7-article/[/url]

You can just do a php include arrangement. That is what i have done.

Its pretty easy to do. Google will help you with that sort of stuff.

Are you trying to do this locally on the computer? as in trying to view the image or
Are you trying to view this page on a web server?

What i do is in the folder where all the HTML files are, i have another folder called "images" with all the site images in there.

Then i would go into dreamweaver (which is what i use to edit my site) and then map to the image. If you have it working properly, you shouldn't need any of the C:\Users etc

If you need help with this, i can help you. I can do it for you if you would like.

I got win 7 the same way.

Probably because the computer is so old, you will need [U]at least[/U] windows vista drivers. I found that out.

As Crunchie said, Avast.

I highly recommend it, it has stopped many things on my desktop, and my previous laptop.

So, all in all, Avast is the best!

Cohen

Alright,

Can you pls go into Add / Remove Programs - Start > Control Panel > Add / Remove Programs, and remove all Java Components

Then go to [url]www.java.com[/url] and download and install the latest Java.

Reboot your Computer.

Then run HJT again and post the log.

I'm worried about a few HJT entries....

O2 - BHO: (no name) - {28A86322-95FF-444A-A36F-136FA8036E09} - C:\WINDOWS\system32\opnkkjHX.dll (file missing) - I found no information on this
O2 - BHO: (no name) - {DC566DF9-3EFF-4A27-94C5-779179F740D2} - C:\WINDOWS\system32\xxyyVMdE.dll (file missing) - I also, found no information on this....

I'll see what jholland and / or crunchie have to say.

Thanks,

Cohen

Log Looks Clean to me :)

Just make sure the Viewpoint Manager doesn't appear in the Add / remove Programs (Control Panel > Add / Remove Programs), If it is, uninstall it.

Otherwise, it's good to me :)

Cohen :)

[QUOTE=crunchie;763609]The only pc I would put Norton on to is one belonging to my worst enemy.
Uninstall AVG and give AVAST a try.[/QUOTE]

lol, i totally agree!

Cohen

Beautiful.

Alright, well if you have any problems, pls come back and we can proceed with further instructions and removal tools.

Cohen

Alright:

Pls do the following, and the instructions carefully.

================

[b]Your Java Runtime Environment is out of date[/b]. Older versions have vulnerabilities that malware can use to infect your system. Please follow these steps to remove older version Java components and update:
[b][color=red]Updating Java:[/color][/b]
[list]
[]Go to [b]Start[/b] > [b]Control Panel[/b] double-click Add or Remove Programs.
[
]Search in the list for all previous installed versions of Java. (J2SE Runtime Environment…. )
Select it and click Remove.
[*]Then Download and install the newest version from here:
[list]
[url=http://www.java.com/en/download/manual.jsp][color=blue]http://www.java.com/en/download/manual.jsp[/color][/url]
[/list]
[/list]

Reboot your computer

=================

Run HJT and mark a check next the following:

[COLOR="Green"][B]O20 - AppInit_DLLs: c:\windows\system32\namurelu.dll c:\windows\system32\fuduyefi.dll,C:\WINDOWS\system32\masedaro.dll
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\pg\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\pg\PartyPoker\RunApp.exe (file missing)
O4 - HKUS\S-1-5-19..\Run: [salapowore] Rundll32.exe "C:\WINDOWS\system32\lunanosi.dll",s (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20..\Run: [salapowore] Rundll32.exe "C:\WINDOWS\system32\lunanosi.dll",s (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\S-1-5-18..\RunOnce: [!CleanupNetMeetingDispDriver] "C:\WINDOWS\system32\rundll32.exe" msconf.dll,CleanupNetMeetingDispDriver 0 (User 'SYSTEM')
O4 - HKUS.DEFAULT..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - HKUS.DEFAULT..\RunOnce: [!CleanupNetMeetingDispDriver] "C:\WINDOWS\system32\rundll32.exe" msconf.dll,CleanupNetMeetingDispDriver 0 (User 'Default user')
O4 - HKLM..\Run: [ccPrxy.exe] ccPrxy.exe
O2 - BHO: (no name) - {0716104c-d420-435c-ac5c-4f27f8715d00} - C:\WINDOWS\system32\ropefove.dll
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 79.99.43.128:3128
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O21 - SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\fuduyefi.dll
O22 - SharedTaskScheduler: ...

Alright, there are a few things that need to be fixed.

Bare with me, i'll type up some instructions.

Cohen

Can you pls download and the use the latest HJT.

Download it from [URL="

Hello,

Can you pls do the following:

  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure to checkmark the Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then [B][COLOR="Red"]Show Results[/COLOR][/B] to view the results.
  • Be sure that everything is checked, and click [B][COLOR="Red"]Remove Selected[/COLOR][/B].
  • When completed, a log will open in Notepad.
  • Post the log back here.

[B][COLOR="Red"][U]Make sure that you restart the computer.[/U][/COLOR][/B]

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

  1. – Pls Run HJT again and post the log.

In your reply, post the logs (in this order):

    • Malware Bytes Log
    • Hijackthis Log

Thanks,

Cohen

No, but the virus could cause it to lag, crash, or anything, so i would recommend that we get the virus fixed before you do that.

Sorry,

Cohen

Pls follow my instructions because your MBA-M is out of date and you took no action, so it means it did nothing! So you need to follow my instructions

Also, to update MBA-M go under the update tab and update it.

Thanks,

Cohen

Easiest way is booting into safe mode....

But, otherwise use Malwarebytes Anti-Malware, that is the best way. So we can make sure that the virus has gone. Pls do the following:

Can you pls do the following:

  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure to checkmark the Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log back here.

Make sure that you restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

  1. Now, we need a HJT log.
    Click [url= http://www.trendsecure.com/portal/en-US/_download/HJTInstall.exe][color=red][b][u]Here[/u][/b][/color][/url] to download HJT V2.0.2
    • Save HJTsetup.exe to your desktop.
    • Double click on the HJTsetup.exe icon on your desktop.
    • By default it will install to C:\Program Files\Hijack This.
    • Continue to click Next in the setup dialogue boxes until you get to the Select Additional Tasks dialogue.
    • Put a check by Create a desktop icon then click Next again.
    • Continue to follow the rest of the prompts from ...

thakkar2000,

Pls do the following:

    • Your MBA-M is out of date, pls do the following:
  • Open MBA-M
  • Go into the update tab
  • Hit Update, the Latest version is 1.31 and Database version 1533.
  • Once the update has been completed, go into the Main Menu and Select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log back here.

Make sure that you restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

    • Pls run HJT again and post the log.

In your reply, post the logs (in this order):

    • Malware Bytes Log
    • Hijackthis Log

Thanks,

Cohen

There are a few things i want you to fix, but i'll wait for crunchie to post back with his instructions.

Cohen

Alright, here we go.

============

Go into Control Panel. Then into Add / Remove Programs and Remove All the Java Components.

Then go to [url]www.java.com[/url] and download and install the latest Java.

Reboot your PC.

Alright,

there are a few things that need to be fixed, i'll get back to you with instructions.

Cohen

Alright, can you do the following:

Please [u]download[/u] [b]ComboFix[/b] by sUBs from [url=http://download.bleepingcomputer.com/sUBs/ComboFix.exe][color=red][b]HERE[/b][/color][/url] or [url="

kekerules - How is your PC going now??? Are you still having problems????

There are still a few things that still need to happen, but i just want a report first.

Thanks,

Cohen

kekerules - Pls download the latest HJT from here.

Also, can you pls follow the below instructions for Malwarebytes. Can you pls follow my instructions [COLOR="Red"][B]very carefully!![/B][/COLOR]

      • Go into MBA-M
    • Go under the update tab, and update it. - The Latest Database version is 1529 or higher. And Version 1.31 for Malwarebytes.
    • If an update is found, it will download and install the latest version.
    • Once the program has loaded, select Perform full scan, then click Scan.
    • When the scan is complete, click OK, then Show Results to view the results.
    • Be sure that everything is checked, and click [COLOR="Red"][B]Remove Selected[/B][/COLOR].
    • When completed, a log will open in Notepad.
    • Post the log back here.
      [B][COLOR="Red"]
      Make sure that you restart the computer.[/COLOR][/B]

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

In your reply, post the logs (in this order):

    • Malware Bytes Log
    • Hijackthis Log

Thanks,

Cohen

Just looking at your combo fix log, it looks like your java is out of date.

Can you pls go into control panel > add / remove programs, and remove all Java Components.

Then go [url]www.java.com[/url] and download and install the latest Java.

Thanks,

Cohen

lcmom01 commented: Very hepful +1

aaahhh... yes, it is a setting under Internet Explorer, Reset all of the settings and then you should be right.

Cohen

Beautiful, Log Looks Clean to me :)

Are you still having problems?

Cohen

  • Pls run Hijackthis, mark a check next to the following:

[LIST]
[B][][COLOR="Green"]O4 - Global Startup: Event Reminder.lnk = ?[/COLOR]
[
][COLOR="Green"]R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0[/B][/COLOR]
[/LIST]

  • Then, [COLOR="Red"][B]fix[/B][/COLOR] them.
  • [COLOR="Red"]Reboot your computer[/COLOR]
  • Run HJT again and post a new log.

Thanks,

Cohen

Beautiful, just next time pls post your combo fix in a reply.

Also, bare with me, i'll type up some more instructions, some things need to be fixed.

Thanks,

Cohen

lol, Crunchie and i posted at the same time :P

Cohen