Highjack This Log

Discussion in 'privacy problems' started by Joe - London, Jul 15, 2003.

Thread Status:
Not open for further replies.
  1. Joe - London

    Joe - London Registered Member

    Joined:
    Apr 28, 2003
    Posts:
    10
    I just ran Highjack This and wondered if there is anything for me to be concerned about? This is a copy of the log:

    Logfile of HijackThis v1.94.0
    Scan saved at 19:45:54, on 15/07/2003
    Platform: Windows XP (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2600.0000)

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\System32\blank.htm
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=%SystemRoot%\system32\blank.htm
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
    O4 - HKLM\..\Run: [AVG_CC] D:\PROGRA~1\AVG\avgcc32.exe /STARTUP
    O4 - HKCU\..\Run: [xReminder Pro] D:\Program Files\Xreminder\xRemind.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O8 - Extra context menu item: &Check Spelling - res://C:\Program Files\ieSpell\ieSpell.dll/SPELLCHECK.HTM
    O8 - Extra context menu item: &ieSpell Options - res://C:\Program Files\ieSpell\ieSpell.dll/SPELLOPTION.HTM
    O9 - Extra button: ieSpell (HKLM)
    O9 - Extra 'Tools' menuitem: ieSpell (HKLM)
    O9 - Extra 'Tools' menuitem: ieSpell Options (HKLM)
    O12 - Plugin for .bcf: C:\Program Files\Internet Explorer\Plugins\NPBelv32.dll
    O16 - DPF: {AE9DCB17-F804-11D2-A44A-0020182C1446} (IntraLaunch.MainControl) - file://G:\SuperCD\IntraLaunch.CAB
    O16 - DPF: {C606BA60-AB76-48B6-96A7-2C4D5C386F70} (PreQualifier Class) - http://info.blueyonder.co.uk/TelewestPreQual/files/MotivePreQual.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

    Many thanks,

    Joe.
     
  2. Pieter_Arntz

    Pieter_Arntz Spyware Veteran

    Joined:
    Apr 27, 2002
    Posts:
    13,331
    Location:
    Netherlands
    Hi Joe,

    Assuming that
    O4 - HKCU\..\Run: [xReminder Pro] D:\Program Files\Xreminder\xRemind.exe
    is an entry made my this program: http://www.xreminder.com/ ,
    all that you might consider fixing is:
    O16 - DPF: {C606BA60-AB76-48B6-96A7-2C4D5C386F70} (PreQualifier Class) - http://info.blueyonder.co.uk/TelewestPreQual/files/MotivePreQual.cab

    Regards,

    Pieter

    PS there is a newer version of HijackThis (1.95) available here amongst others.
     
  3. Joe - London

    Joe - London Registered Member

    Joined:
    Apr 28, 2003
    Posts:
    10
    Thanks for that Pieter,

    XReminder is indeed from the source you mention and due to a hopeless memory very useful.

    BlueYonder/Telewest is my ISP, when you say fix do you mean delete that particular file?

    I was also concerned about O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32 as I'm not sure what it is.

    This is the first time I used this programme so I'm not to familiar with it yet.

    Thanks alsfor the information regarding the latest edition.

    Joe.
     
  4. Pieter_Arntz

    Pieter_Arntz Spyware Veteran

    Joined:
    Apr 27, 2002
    Posts:
    13,331
    Location:
    Netherlands
    Hi Joe,

    MSDXM.OCX. Most likely you will have this control on your system, you are "supposed" to get it with Microsoft "Windows Media Player" v5.2 or better.

    I disabled it since I don't listen to online music.

    If BlueYonder is your ISP, you can leave that entry alone.

    Thanx for the info on XReminder.

    Regards,

    Pieter
     
  5. Joe - London

    Joe - London Registered Member

    Joined:
    Apr 28, 2003
    Posts:
    10
    Hi Pieter,

    Thanks for the advice, I feel much more assured now. This is a great site for anyone with these questions.

    Thanks again.
     
  6. Pieter_Arntz

    Pieter_Arntz Spyware Veteran

    Joined:
    Apr 27, 2002
    Posts:
    13,331
    Location:
    Netherlands
    Anytime Joe. :)
     
Loading...
Thread Status:
Not open for further replies.