When I start up my computer, I get a funny box appearing, what should I do?

The box title is rthdcpln.exe

I have a feeling that it could be a virus. To see the whole content of the box paste this in your browser: http://img357.imageshack.us/img357/7444/...

This box only appeared yesterday. I am using a shared computer and I am not sure whether any of my family members have installed any programs or visited non-secure websites. Can someone recommend the standard procedure so that I can resolve the problem. Any help is greatly appreciated.

When I start up my computer, I get a funny box appearing, what should I do?hollywood theater

Be calm. This is not a virus, but a known problem. The fix is here:

http://www.pchell.com/support/realtek_rt...

When I start up my computer, I get a funny box appearing, what should I do?opera.com opera theater

Try these. They work and they are free:

Run the tool and then download the free spyware and virus protection programs:

Malicious virus removal tool:

http://www.microsoft.com/security/malwar...

Ad-Aware Free download:

http://www.lavasoft.de/software/adaware/...

AVG Download free

http://free.grisoft.com/doc/1

Yahoo Toolbar has good pop-up blocker:

http://toolbar.yahoo.com/

Good Luck
run window washer if u have it or norton anti virus or clean my pc try 2 defrag
If its a virus I wouldn't type that in my browser. I could be harmful.
It is NOT a virus! And don't let anyone tell you otherwise.

You must have updated your Windows with the emergency .ani patch in the past 2 days. Well that patch now needs a patch! Go to Windows Update and get the patch for the patch and that information box will be gone.

Full information about this latest Microsoft screw-up is here:

http://blogs.pcworld.com/staffblog/archi...

Good luck.
download it back from

http://www.dll-files.com/

its free and safe.
It's good that you posted the error box. But next time, please also say what operating system you are using too! That REALLY helps the person answering your question!

RTHCDPIN is probably some kind of "malware". You'll want to remove it. But we'll do that later.

The problem is with HHCTRL. Secunia.com gives a good description of it: "A vulnerability has been discovered in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system.

The vulnerability is caused due to a boundary error in the HTML Help ActiveX control (hhctrl.ocx) when handling the "Image" property. This can be exploited to cause a buffer overflow by setting an overly long string multiple times for the property.

Successful exploitation allows execution of arbitrary code."

Now, here's how to fix everything:

If you have a system restore point, or a system partition backup dated BEFORE you started seeing this problem - restore that.

If not, or if the restore doesn't work, no biggie, but you've got more work to do and we'll cover that.

Next, (in either case) you need to apply a patch to fix this vulnerability with HHCTRL.

Here's the microsoft patch for Windows 2000 SP4:

http://www.microsoft.com/downloads/de......

Here's the patch for Windows XP SP1/SP2:

http://www.microsoft.com/downloads/de......

Follow the instruction on whichever link you use to download the patch. Then run the patch and follow its instructions:

Next, create a system restore point.

Next, IF you didn't have a restore, you'll need to get rid of RTHDCPIN. I couldn't find any reference to it online. So use windows search to find it. Make sure you are able to look in system folders and to see hidden files. (You can enable this by going into any folder, then click on "Tools" up in the header bar; click on "Folder options" and then click on the "View" tab. And enable those options.) When you do your search, set up the search to also look in system files.

When you find RTHCDPIN, see if it is in a program folder. WRITE DOWN the name of any .exe files, or any .dll files that are there. Then, delete that entire folder, and its contents, plus any links that show in the search.

Next, execute the Windows Task Manager. Click on the "processes" tab and click on the "image name" column. This will alphabetize the processes. See if you find RTHCDPIN or any of the .EXE or .DLL files you found. IF you do, then click on there names and use the "End Process" control to kill that process. (Ignore the warning message that appears.)

Next, download and install AVG's free rootkit remover. You can find it here:

http://free.grisoft.com/doc/5390/lng/us/...

(look down at the bottom of the page for it!)

Next, download and install SPYWARE TERMINATOR. This is free and you will leave it running all the time. When install it, select the ClamAV and real-time options. Play around with this program and learn it. Try turning everything on and see if your system can handle it. It has a real time shield that may prevent your problem from reoccuring. You can find it here:

http://www.spywareterminator.com/dnl/lan...

OK. We're almost done. Next you need to run a GOOD registry cleaner. REGVAC is about the best. And you can download and run a free full-version of it. Find it at:

http://www.regvac.com

(Use the novice mode)

That should have you good to go, and more protected so this won't happen again.

I would recommend upgrading to IE7. But more importantly, make sure you have all of the security updates from Microsoft installed for your OS and IE.

To really make things "tight" you can also download and install, for free, AMUST 1-Defender. It's a Internet Explorer "shield" that executes IE in a restricted mode so that NOTHING can be installed or executed. Once you have it installed, delete all of the regular IE icons (except for yourself) so that people are forced to use this. Find it at:

http://www.amustsoft.com/1-defender

OK. That should do it. I'm assuming your running a GOOD anti-virus. (No, AVG Free is NOT a good AV.) Use AVIRA Personal or COMODO Free.

Cheers!
I think you should set up an antivirus program so it can fix the problem for you.