Highjack This Log

Discussion in 'privacy problems' started by Joe - London, Jul 15, 2003.

Thread Status:
Not open for further replies.
  1. Joe - London

    Joe - London Registered Member

    Joined:
    Apr 28, 2003
    Posts:
    10
    I just ran Highjack This and wondered if there is anything for me to be concerned about? This is a copy of the log:

    Logfile of HijackThis v1.94.0
    Scan saved at 19:45:54, on 15/07/2003
    Platform: Windows XP (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2600.0000)

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\System32\blank.htm
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=%SystemRoot%\system32\blank.htm
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
    O4 - HKLM\..\Run: [AVG_CC] D:\PROGRA~1\AVG\avgcc32.exe /STARTUP
    O4 - HKCU\..\Run: [xReminder Pro] D:\Program Files\Xreminder\xRemind.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O8 - Extra context menu item: &Check Spelling - res://C:\Program Files\ieSpell\ieSpell.dll/SPELLCHECK.HTM
    O8 - Extra context menu item: &ieSpell Options - res://C:\Program Files\ieSpell\ieSpell.dll/SPELLOPTION.HTM
    O9 - Extra button: ieSpell (HKLM)
    O9 - Extra 'Tools' menuitem: ieSpell (HKLM)
    O9 - Extra 'Tools' menuitem: ieSpell Options (HKLM)
    O12 - Plugin for .bcf: C:\Program Files\Internet Explorer\Plugins\NPBelv32.dll
    O16 - DPF: {AE9DCB17-F804-11D2-A44A-0020182C1446} (IntraLaunch.MainControl) - file://G:\SuperCD\IntraLaunch.CAB
    O16 - DPF: {C606BA60-AB76-48B6-96A7-2C4D5C386F70} (PreQualifier Class) - http://info.blueyonder.co.uk/TelewestPreQual/files/MotivePreQual.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

    Many thanks,

    Joe.
     
  2. Pieter_Arntz

    Pieter_Arntz Spyware Veteran

    Joined:
    Apr 27, 2002
    Posts:
    13,491
    Location:
    Netherlands
    Hi Joe,

    Assuming that
    O4 - HKCU\..\Run: [xReminder Pro] D:\Program Files\Xreminder\xRemind.exe
    is an entry made my this program: http://www.xreminder.com/ ,
    all that you might consider fixing is:
    O16 - DPF: {C606BA60-AB76-48B6-96A7-2C4D5C386F70} (PreQualifier Class) - http://info.blueyonder.co.uk/TelewestPreQual/files/MotivePreQual.cab

    Regards,

    Pieter

    PS there is a newer version of HijackThis (1.95) available here amongst others.
     
  3. Joe - London

    Joe - London Registered Member

    Joined:
    Apr 28, 2003
    Posts:
    10
    Thanks for that Pieter,

    XReminder is indeed from the source you mention and due to a hopeless memory very useful.

    BlueYonder/Telewest is my ISP, when you say fix do you mean delete that particular file?

    I was also concerned about O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32 as I'm not sure what it is.

    This is the first time I used this programme so I'm not to familiar with it yet.

    Thanks alsfor the information regarding the latest edition.

    Joe.
     
  4. Pieter_Arntz

    Pieter_Arntz Spyware Veteran

    Joined:
    Apr 27, 2002
    Posts:
    13,491
    Location:
    Netherlands
    Hi Joe,

    MSDXM.OCX. Most likely you will have this control on your system, you are "supposed" to get it with Microsoft "Windows Media Player" v5.2 or better.

    I disabled it since I don't listen to online music.

    If BlueYonder is your ISP, you can leave that entry alone.

    Thanx for the info on XReminder.

    Regards,

    Pieter
     
  5. Joe - London

    Joe - London Registered Member

    Joined:
    Apr 28, 2003
    Posts:
    10
    Hi Pieter,

    Thanks for the advice, I feel much more assured now. This is a great site for anyone with these questions.

    Thanks again.
     
  6. Pieter_Arntz

    Pieter_Arntz Spyware Veteran

    Joined:
    Apr 27, 2002
    Posts:
    13,491
    Location:
    Netherlands
    Anytime Joe. :)
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.