you need this

Theres a new vulnerability not patched by microsoft. It affects all versions of windows.
It doesnt matter if you use firefox internet explorer, safari or opera browsers.
You can be infected viewing a web page, reading an email or looking at an infected file on your computer. Antivirus helps some (updating it is always good).
Researchers say attackers use the entry point to install hidden programs that can launch pop-up ads or steal passwords and other sensitive information.

Yes .... it is that serious. You can read about it here


Unregister the DLL:

• Click Start, click Run,
  type "regsvr32 -u%windir%\system32\shimgvw.dll"
  (without the quotation marks), and then click OK.


• A dialog box appears to confirm that the un-registration process has succeeded. Click OK to close the dialog box.

Then download this patch:

Microsoft has not yet released a patch. An unofficial patch was made available by Ilfak Guilfanov. Our own Tom Liston reviewed the patch and we tested it. The reviewed and tested version is available here (now at v1.3, MD5: 14d8c937d97572deb9cb07297a87e62a), PGP signature (signed with ISC key) here. THANKS to Ilfak Guilfanov for providing the patch!!

Our current "best practice" recommendation is to both unregister the DLL and to use the unofficial patch.

After you reboot , download and run the vulnerability checker.