You're not through yet@ As kimsland mentioned, only a part of the HijackThis log was mentioned. I found your redirect- it's to an IP in Latvia! Best we handle that!
Please re-open HiJackThis and scan. Check the boxes next to all the entries listed below.
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O1 - Hosts: 94.247.2.216
www.google.com
O1 - Hosts: 94.247.2.216 search.yahoo.com
O21 - SSODL: Cabikbro - {10B9FF71-0B1C-4FA1-8224-B83726759551} - C:\WINDOWS\system32\xmlinvid.dll
23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
Now close all windows other than HiJackThis, then click Fix Checked. Close HiJackThis. Reboot into safe mode.
1. Start> Run> services.msc> right click on Viewpoint Manager> Properties> Change the Startup type to Disabled> Stop the Service.
2. Start> Run> msconfig> enter> Selective Startup> Startup tab> UNCHECK Viewpoint> Apply> OK
3. Control Panel> Add/Remove Programs> UNINSTALL all Viewpoint entries.
Reboot into Normal Mode.NOTE: you will get a nag message that you can ignore and close after checking 'don't show this message again. Stay in Selective Startup.
Please Download and Install SDFix
* Download SDFix
HERE and save it to your Desktop.
* Double click SDFix.exe and it will extract the files to %systemdrive%
(Drive that contains the Windows Directory, typically C:\SDFix)
Boot into Safe Mode
* Restart your computer and start pressing the F8 key on your keyboard.
* Select the Safe Mode option when the Windows Advanced Options menu appears, and then press ENTER.
Run SDFix
* Open the extracted SDFix folder and double click RunThis.bat to start the script.
* Type Y to begin the cleanup process.
* It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot.
* Press any Key and it will restart the PC.
* When the PC restarts the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons.
* Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt
* Attach Report.txt back here
Rescan with HijackThis when through and attach new log with SDFix report.
And to stop the tracking Cookies:
Reset Cookies:
For Internet Explorer:Internet Options (through Tools or Control Panel) Privacy tab> Advanced button> CHECK 'override automatic Cookie handling'> CHECK 'accept first party Cookies'> CHECK 'Block third party Cookies'> CHECK 'allow per session Cookies'> Apply> OK.