Hello,
Jelly_man.
Viewpoint is considered
foistware instead of malware because it is installed
without users approval, but doesn't spy or do anything "bad". You may like to read this article about the potential of this Viewpoint software here:
http://www.clickz.com/news/article.php/3561546
I suggest you remove the program now. Click on
Start >
Run... > and then paste the following into the "
Open" field: "
appwiz.cpl" and press
OK. From within
Add or Remove Programs uninstall the following if they exist:
Viewpoint, Viewpoint Manager, and/or Viewpoint Media Player.
We have to remove some entries in HiJack This- Please re-open HiJackThis and choose do a system scan only. Check the boxes next to ONLY the entries listed below:
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/startpage
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,AutoConfigURL = http://localhost:9100/proxy.pac
O2 - BHO: (no name) - {5C9DD472-6E0E-D741-C444-09655A1519B9} - (no file)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} -
O16 - DPF: {3334504D-9980-0010-8000-00AA00389B71} -
O16 - DPF: {33564D57-9980-0010-8000-00AA00389B71} -
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} -
O16 - DPF: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA} (Java Plug-in 1.5.0_01) -
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} (Java Plug-in 1.6.0_02) -
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} (Java Plug-in 1.6.0_03) -
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
O18 - Protocol: talkto - {828030A1-22C1-4009-854F-8E305202313F} - (no file) - Close all windows other than HiJackThis, including browsers, so that nothing other than HijackThis is open, then click Fix Checked. A box will pop up asking you if you wish to fix the selected items. Please choose YES. Once it has fixed them, please exit/close HijackThis.
Your Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system. Please follow these steps to remove older version Java components and update:
- Download the latest version of Java Runtime Environment (JRE) Version 6 and save it to your desktop.
- Scroll down to where it says "Java Runtime Environment (JRE)6 Update 7...allows end-users to run Java applications".
- Click the "Download" button to the right.
- Select your Platform: "Windows".
- Select your Language: "Multi-Language".
- Read the License Agreement, and then check the box that says: "Accept License Agreement".
- Click Continue and the page will refresh.
- Click on the link to download Windows Offline Installation and save the file to your desktop.
- Close any programs you may have running - especially your web browser.
- Go to Start > Settings > Control Panel, double-click on Add/Remove Programs and remove all older versions of Java.
- Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
- Click the Remove or Change/Remove button.
- Follow the onscreen instructions for the Java uninstaller.
- Repeat as many times as necessary to remove each Java version.
- Reboot your computer once all Java components are removed.
- Then from your desktop double-click on jre-6u7-windows-i586-p.exe
- Follow the on screen instructions to install the latest Java version.
I would like us to use ESET (NOD32)'s Online Scanner- Please go to ESET OnlineScan (NOD32)
- You will then see the Terms of Use, tick the check-box infront of YES, I accept the Terms of Use
- Now click Start
- Should you face a Security Warning that asks if you want to install and run a file called "OnlineScanner.cab", click Yes
- Click Start
- Note: (the Onlinescanner will now prepare itself for running on your pc)
- To do a full-scan, tick: "Remove found threats" and "Scan potentially unwanted applications"
- Press Scan
- The Onlinescan will now start and scan your pc (this could take a while)
- When the scan has finished, it will show a screen with two tabs "overview" and "details" and the option to get information or buy software, just close the window
- Click Start >> Run... >> type: C:\Program Files\EsetOnlineScanner\log.txt
- The Scanresults will now open in Notepad
- Click into the text area, right-click and chose "select all" (or use <Control>+A)
- Right-click again and chose "Copy" (or <Control>+C)
- Close/Exit Notepad
- Navigate to this thread and post your log along with anything else requested from us, by right-clicking and "paste" (or ctrl+v) in the text area of the reply post you just created.
Note: For
Vista Users: Eset is compatible but Internet Explorer must be run as Administrator. To do this, right-click on the IE icon in the Start Menu or Quick Launch Bar on the Taskbar and select "
Run as Administrator" from the context menu.)
In your next reply, please include the following:- ESET OnlineScan's Log
- A new HJT Log
Billy3
