ViewPoint est un programme qui s’installe généralement à votre insu via le téléchargement de logiciels gratuits.

Caractéristiques :

– Il appartient à une famille de PUP Optionnels (Potentially Unwanted Program).
– Vendeur : PUP.Optional.

Actions principales :

– Il installe un plugin du navigateur Mozilla Firefox (P2),
– Il modifie les paramètres URLSearchHook du navigateur Microsoft Internet Explorer (R3),
– Il s’installe dans le Registre en tant que composant active setup(O40),
– Il s’installe en tant que programme (O42),
– Il crée des clés de Registre « Software »,
– Il crée de multiples clés et valeurs de registre (O88 ),
– Il crée des clés registre Installer (O90),
– Il crée des clés de registre CLSID (O101)

 

Aperçu ZHPDiag, NCDiag :

—-\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 – FPN: [HKLM] [@viewpoint.com/VMP] – (.. – MetaStream 3 Plugin r4.) — C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll

—\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R3 – URLSearchHook: UrlSearchHook Class – {00000000-6E41-4FD3-8538-502F5495E5FC} . (.Pas de propriétaire – MetaStream 3 Plugin r4.) (No version)
R3 – URLSearchHook: Microsoft Url Search Hook – {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Pas de propriétaire – MetaStream 3 Plugin r4.) (No version)

—\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 – ASIC: Viewpoint Media Player – {03F998B2-0E00-11D3-A498-00104B6EB52E} . (.Viewpoint Corporation – Viewpoint Media Player for Internet Explorer.) — C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream.dll
O40 – ASIC: Viewpoint Media Player – {1B00725B-C455-4DE6-BFB6-AD540AD427CD} . (.Viewpoint Corporation – Viewpoint Media Player for Internet Explorer.) — C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream.dll

—\\ Logiciels installés (O42)
O42 – Logiciel: Viewpoint Media Player – (…) [HKLM] — ViewpointMediaPlayer

—\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 – CFD: 07/03/2006 – 04:08:26 – [7,209] —-D- C:\Program Files\Viewpoint
O43 – CFD: 01/01/2006 – 21:45:12 – [0,004] —-D- C:\ProgramData\Viewpoint
O43 – CFD: 11/05/2014 – 14:03:33 – [] —-D C:\Documents and Settings\All Users\Application Data\Viewpoint

—\\ HKCU & HKLM Software Keys
[HKLM\Software\MetaStream]
[HKLM\Software\Viewpoint]
[HKLM\Software\Viewpoint Photography]

—\\ Scan Additionnel (O88 )
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer]
[HKLM\Software\MozillaPlugins\@viewpoint.com/VMP]
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer]
[HKLM\Software\Classes\axmetastream.metastreamctl]
[HKLM\Software\Classes\axmetastream.metastreamctl.1]
[HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary]
[HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary.1]
[HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}]
[HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer]
[HKLM\Software\Classes\TypeLib\{9dbb28c1-1925-11d3-a498-00104b6eb52e}]
[HKLM\Software\MetaStream])
[HKLM\Software\Viewpoint]
[HKLM\Software\Viewpoint Photography]
[HKLM\Software\MozillaPlugins\@viewpoint.com/VMP]
C:\Program Files\Viewpoint
C:\ProgramData\Viewpoint
C:\Documents and Settings\All Users\Application Data\Viewpoint

—\\ Product Upgrade Codes (O90)
O90 – PUC: « A2737A0AE82CEB848BC8C3C3E3FE2CAE » . (.DxO ViewPoint.) — C:\Windows\Installer\{A0A7372A-C28E-48BE-B88C-3C3C3EEFC2EA}\ARPPRODUCTICON.exe

—\\ Recherche de clés de registre CLSID (O101)
[HKCR\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}] (MetaStreamCtl Class)
[HKCR\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}] (MetaStreamCtl Class)

 

Liens :

www.emsisoft.net

Alias :

Adware.ViewPointMedia

 

Supprimer (Remove) :

– Supprimer l’extension « Viewpoint » de tous les navigateurs installés,
– Supprimer le plugin « Viewpoint » de tous les navigateurs installés,
– Supprimer le logiciel « Viewpoint Media Player » via le panneau de configuration Windows,
Nettoyer avec ZHPCleaner