View Single Post

**ceewi1** · 02-23-2008, 05:26 AM

Firstly, your logfile shows signs of Viewpoint Manager.
Viewpoint Manager is considered as foistware instead of malware since it is installed without users approval but doesn't spy or do anything bad. It is known to be intrusive, but there is some possibility that it is now being used by those companies to give them info about your habits. It is not considered spyware since this is not clear, but I would not tolerate it on my machine if I didn't install it.

I suggest you remove it. To do so, click on Start -> Control Panel -> Add or Remove Programs. Click on Viewpoint Manager and click Remove.

Please run HijackThis and choose Do a system scan only.

Place a check next to the following entries:

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - G:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll (file missing)

O4 - HKCU\..\Run: [MSServer] rundll32.exe C:\Users\Chris\AppData\Local\Temp\hggdd.dll,#1

O4 - HKCU\..\Run: [cmds] rundll32.exe C:\Users\Chris\AppData\Local\Temp\iiigh.dll,c

O4 - HKCU\..\Run: [da3cb213] rundll32.exe "C:\Users\Chris\AppData\Local\Temp\mwmabigk.dl l",b

O4 - HKCU\..\Run: [MS Juan] rundll32 "C:\Users\Chris\AppData\Local\Temp\jrwpcgbx.dl l",r un

If you chose to remove Viewpoint Manager, also check the following entry (if still present):

O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe

Please close all open windows except for HijackThis and choose Fix checked

Please reboot and post a new HijackThis log. How is your system running now?

02-23-2008, 05:26 AM	#4 (permalink)
ceewi1 Moderator Join Date: Dec 2005 Location: Melbourne, Australia Age: 21 Posts: 5,348	Firstly, your logfile shows signs of Viewpoint Manager. Viewpoint Manager is considered as foistware instead of malware since it is installed without users approval but doesn't spy or do anything bad. It is known to be intrusive, but there is some possibility that it is now being used by those companies to give them info about your habits. It is not considered spyware since this is not clear, but I would not tolerate it on my machine if I didn't install it. I suggest you remove it. To do so, click on Start -> Control Panel -> Add or Remove Programs. Click on Viewpoint Manager and click Remove. Please run HijackThis and choose Do a system scan only. Place a check next to the following entries: R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - G:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll (file missing) O4 - HKCU\..\Run: [MSServer] rundll32.exe C:\Users\Chris\AppData\Local\Temp\hggdd.dll,#1 O4 - HKCU\..\Run: [cmds] rundll32.exe C:\Users\Chris\AppData\Local\Temp\iiigh.dll,c O4 - HKCU\..\Run: [da3cb213] rundll32.exe "C:\Users\Chris\AppData\Local\Temp\mwmabigk.dl l",b O4 - HKCU\..\Run: [MS Juan] rundll32 "C:\Users\Chris\AppData\Local\Temp\jrwpcgbx.dl l",r un If you chose to remove Viewpoint Manager, also check the following entry (if still present): O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe Please close all open windows except for HijackThis and choose Fix checked Please reboot and post a new HijackThis log. How is your system running now? __________________ CPU: Core 2 Duo E6600 / MOBO: Gigabyte 965P-DS3 / GPU: Gigabyte HD4870 RAM: 2GB G.Skill F2-6400CL4D-2GBPK / HDD: 2TB Total HDD / PSU: Antec NeoPower 480W Cheap PSUs - 2% of system costs, responsible for 28% of system deaths As Sealed Stick was removed, lost or damaged, it shall be out of warranty validity. - The "Warranty void if removed" sticker on numerous CoolerMaster PSUs. Useful PSU Guides