We’d like to remind Forumites to please avoid political debate on the Forum.

This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.

📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!

For CLOSED - my Hijack This log

13

Comments

  • TornAtTheShoulder
    TornAtTheShoulder Posts: 53 Forumite
    No - msconfig startup tab there OK and have made changes and rebooted. Getting a message re startup changes and being asked to used normal startup.
  • closed
    closed Posts: 10,886 Forumite
    tick don't show this again
    !!
    > . !!!! ----> .
  • TornAtTheShoulder
    TornAtTheShoulder Posts: 53 Forumite
    Right - I'll have to reboot again.
  • TornAtTheShoulder
    TornAtTheShoulder Posts: 53 Forumite
    Rebooted and ran Hijack. Here is the log:

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 23:15:01, on 31/01/2012
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\wltrysvc.exe
    C:\WINDOWS\System32\bcmwltry.exe
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\AVAST Software\Avast\avastUI.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\WINDOWS\system32\WLTRAY.exe
    C:\Program Files\Google\Update\GoogleUpdate.exe
    C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\plugin-container.exe
    C:\Documents and Settings\NANCY\Desktop\My System Tools\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
    O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll
    O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [Dell Wireless Manager UI] C:\WINDOWS\system32\WLTRAY
    O4 - HKLM\..\Run: [LXCGCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.dll,_RunDLLEntry@16
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O17 - HKLM\System\CCS\Services\Tcpip\..\{BC6D902D-5857-4CF7-AA65-FB3506338642}: NameServer = 192.168.1.1
    O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: lxcg_device - Unknown owner - C:\WINDOWS\system32\lxcgcoms.exe
    O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
    O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - Unknown owner - C:\Program Files\Dell Support Center\bin\sprtsvc.exe (file missing)
    O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe

    --
    End of file - 5765 bytes

    Commit charge: 399112
    Physical mem: 515452

    Do you think that's me sorted? (Fingers crossed!)
  • TornAtTheShoulder
    TornAtTheShoulder Posts: 53 Forumite
    Although I see the Commit charge has gone up. Sigh. But all seems to be running well.

    In case I don't hear from you again tonight I want to thank you for the time and effort you've put into helping me out. I REALLY appreciate it.
  • closed
    closed Posts: 10,886 Forumite
    edited 1 February 2012 at 12:42AM
    google update, LXCGCATS, lxcgcoms.exe, and various toolbars and supportsoft/dell support still there.

    run ccleaner, tools, save to txt file, and post contents of install.txt
    !!
    > . !!!! ----> .
  • TornAtTheShoulder
    TornAtTheShoulder Posts: 53 Forumite
    Done - here is text.

    Adobe Acrobat 9 Standard Adobe Systems 25/12/2011 9.4.7
    Adobe Flash Player 10 ActiveX Adobe Systems Incorporated 30/01/2012 10.0.12.36
    Adobe Flash Player 11 Plugin Adobe Systems Incorporated 30/01/2012 11.1.102.55
    Adobe Reader X (10.1.2) Adobe Systems Incorporated 21/01/2012 127.5 MB 10.1.2
    avast! Free Antivirus AVAST Software 31/01/2012 6.0.1367.0
    Bing Bar Microsoft Corporation 30/01/2012 6.3.2291.0
    CCleaner Piriform 31/01/2012 3.15
    CleanMem PcWinTech.com 30/01/2012 v2.3.1
    Conexant HDA D110 MDC V.92 Modem 30/01/2012
    Coupon Printer for Windows Coupons.com Incorporated 30/01/2012 5.0.0.0
    Dell Driver Download Manager Dell Inc. 2.1.0.0
    Dell Driver Reset Tool Dell Inc. 22/11/2005 1.02.0000
    Dell Support Center Dell Inc. 06/09/2011 3.1.5830.17
    Dell System Restore Dell Inc. 22/11/2005 2.00.0000
    Dell Wireless WLAN Card 30/01/2012
    DellSupport Dell 25/05/2007 14.8 MB 6.0.3062
    Digital Line Detect BVRP Software, Inc 30/01/2012 1.15
    FUJIFILM FinePixViewer S Ver.2.1 FUJIFILM Corporation 02/10/2010 2.1.0.3
    Google Earth Google 12/02/2006 3.0.0762
    Google Earth Plug-in Google 17/11/2011 40.9 MB 6.1.0.5001
    HP Deskjet 3050A J611 series Basic Device Software Hewlett-Packard Co. 22/09/2011 115.2 MB 23.0.504.0
    HP Deskjet 3050A J611 series Help Hewlett Packard 22/09/2011 8.77 MB 140.0.2.2
    HP Deskjet 3050A J611 series Product Improvement Study Hewlett-Packard Co. 22/09/2011 5.88 MB 23.0.504.0
    HP Photo Creations HP Photo Creations 30/01/2012 1.0.0.${CAB_VERSION}
    HP Update Hewlett-Packard 22/09/2011 3.97 MB 5.002.007.004
    Image Resizer Powertoy for Windows XP Microsoft Corporation 07/09/2011 17.00 KB 1.00.0001
    Intel(R) Graphics Media Accelerator Driver for Mobile 30/01/2012 6.14.10.4363
    Internal Network Card Power Management 31/01/2012 1.7.1
    Java 2 Runtime Environment, SE v1.4.2_03 Sun Microsystems, Inc. 22/11/2005 136.7 MB 1.4.2_03
    Java(TM) 6 Update 29 Oracle 15/06/2011 97.1 MB 6.0.290
    Lexmark 2300 Series 30/01/2012
    Lexmark Fax Solutions Lexmark International, Inc. 30/01/2012
    Malwarebytes Anti-Malware version 1.60.0.1800 Malwarebytes Corporation 30/01/2012 1.60.0.1800
    Microsoft .NET Framework 1.1 20/01/2012
    Microsoft .NET Framework 2.0 Service Pack 2 Microsoft Corporation 20/01/2012 184.4 MB 2.2.30729
    Microsoft .NET Framework 3.0 Service Pack 2 Microsoft Corporation 10/07/2010 209 MB 3.2.30729
    Microsoft .NET Framework 3.5 SP1 Microsoft Corporation 20/01/2012
    Microsoft .NET Framework 4 Client Profile Microsoft Corporation 20/01/2012 4.0.30319
    Microsoft .NET Framework 4 Extended Microsoft Corporation 20/01/2012 4.0.30319
    Microsoft Office Home and Business 2010 Microsoft Corporation 30/01/2012 14.0.6029.1000
    Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Corporation 06/02/2011 0.15 MB 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Corporation 18/04/2011 10.2 MB 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 15/06/2011 6.04 MB 9.0.21022
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 05/02/2011 10.3 MB 9.0.30729
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 13/06/2011 9.55 MB 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 16/06/2011 10.2 MB 9.0.30729.6161
    Microsoft Works 7.0 Microsoft Corporation 22/11/2005 07.02.0620
    Mozilla Firefox 9.0.1 (x86 en-US) Mozilla 31/01/2012 9.0.1
    MSN 30/01/2012
    MSXML 4.0 SP2 (KB927978) Microsoft Corporation 22/11/2006 2.56 MB 4.20.9841.0
    MSXML 4.0 SP2 (KB936181) Microsoft Corporation 15/08/2007 2.62 MB 4.20.9848.0
    MSXML 4.0 SP2 (KB954430) Microsoft Corporation 22/11/2008 2.67 MB 4.20.9870.0
    MSXML 4.0 SP2 (KB973688) Microsoft Corporation 05/12/2009 2.77 MB 4.20.9876.0
    MSXML 6 Service Pack 2 (KB954459) Microsoft Corporation 23/08/2009 1.34 MB 6.20.1099.0
    NetWaiting BVRP Software, Inc 31/01/2012 2.5.23
    OpenOffice.org 3.3 OpenOffice.org 15/06/2011 372 MB 3.3.9567
    Opera 11.52 Opera Software ASA 30/01/2012 11.52.1100
    PostMate Lees Software 1.19.0.1
    PowerDVD 5.5 30/01/2012
    QuickTime Apple Inc. 12/04/2010 73.8 MB 7.66.71.0
    RealPlayer Basic 30/01/2012
    SpeedTouch USB Software 31/01/2012
    Synaptics Pointing Device Driver Synaptics 30/01/2012 8.0.14.0
    Tiscali Internet Tiscali 22/11/2005 1.0.0.25
    Viewpoint Media Player 30/01/2012
    Windows XP Service Pack 3 Microsoft Corporation 30/10/2009 20080414.031525
    WinZip WinZip Computing LP 30/01/2012 10.0 (6685)
  • closed
    closed Posts: 10,886 Forumite
    edited 1 February 2012 at 1:00AM
    google update probably came with google earth, do you use it.

    bing toolbar is there, do you use it?

    lexmark fax

    still using a speedtouch usb modem?

    uninstall dell support or disable the services.

    still use fuji finepix and coupon printer?

    what is the lexmark software you want to keep?

    http://www.brighthub.com/computing/windows-platform/articles/25609.aspx
    !!
    > . !!!! ----> .
  • TornAtTheShoulder
    TornAtTheShoulder Posts: 53 Forumite
    No, never use it.
  • closed
    closed Posts: 10,886 Forumite
    edited 1 February 2012 at 1:14AM
    which, google earth, if so uninstall it might remove google update which was using ram up when you last checked your commit charge

    same with bing etc

    disable this using msconfig,startup tab
    O4 - HKLM\..\Run: [LXCGCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtim e.dll,_RunDLLEntry@16
    disable these by using services.msc or msconfig, services tab

    O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
    O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: lxcg_device - Unknown owner - C:\WINDOWS\system32\lxcgcoms.exe
    O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - Unknown owner - C:\Program Files\Dell Support Center\bin\sprtsvc.exe (file missing)

    http://www.brighthub.com/computing/windows-platform/articles/25609.aspx

    if upgrades are cheap http://www.crucial.com/uk/ it might be worthwhile, but if you are happy with it now, leave it
    !!
    > . !!!! ----> .
This discussion has been closed.
Meet your Ambassadors

🚀 Getting Started

Hi new member!

Our Getting Started Guide will help you get the most out of the Forum

Categories

  • All Categories
  • 351.7K Banking & Borrowing
  • 253.4K Reduce Debt & Boost Income
  • 454K Spending & Discounts
  • 244.7K Work, Benefits & Business
  • 600.1K Mortgages, Homes & Bills
  • 177.3K Life & Family
  • 258.4K Travel & Transport
  • 1.5M Hobbies & Leisure
  • 16.2K Discuss & Feedback
  • 37.6K Read-Only Boards

Is this how you want to be seen?

We see you are using a default avatar. It takes only a few seconds to pick a picture.
Update Your Picture