Tema: hajđekaj ovo
View Single Post
Staro 19.09.2005., 19:30   #1
demetrius
Premium
Moj komp
 
demetrius's Avatar
 
Datum registracije: Jan 2005
Lokacija: rijeka
Postovi: 3,857
hajđekaj ovo
Process list saved on 19:38:34, on 19.9.2005
Platform: Windows 2000 SP4 (WinNT 5.00.2195)

[pid] [full path to filename] [file version] [company name]
192 C:\WINNT\System32\smss.exe 5.0.2195.6601 Microsoft Corporation
220 C:\WINNT\system32\csrss.exe 5.0.2195.6601 Microsoft Corporation
240 C:\WINNT\system32\winlogon.exe 5.0.2195.6714 Microsoft Corporation
268 C:\WINNT\system32\services.exe 5.0.2195.6700 Microsoft Corporation
280 C:\WINNT\system32\lsass.exe 5.0.2195.6695 Microsoft Corporation
464 C:\WINNT\system32\svchost.exe 5.0.2134.1 Microsoft Corporation
512 C:\WINNT\system32\spoolsv.exe 5.0.2195.6659 Microsoft Corporation
556 C:\WINNT\System32\svchost.exe 5.0.2134.1 Microsoft Corporation
596 C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe 7.10.3077.0 Microsoft Corporation
620 C:\WINNT\system32\nvsvc32.exe 6.14.10.7801 NVIDIA Corporation
660 C:\WINNT\system32\regsvc.exe 5.0.2195.6701 Microsoft Corporation
664 C:\WINNT\system32\MSTask.exe 4.71.2195.6704 Microsoft Corporation
768 C:\WINNT\system32\stisvc.exe 5.0.2195.6656 Microsoft Corporation
812 C:\WINNT\System32\WBEM\WinMgmt.exe 1.50.1085.100 Microsoft Corporation
828 C:\WINNT\system32\svchost.exe 5.0.2134.1 Microsoft Corporation
1008 C:\WINNT\Explorer.EXE 5.0.3700.6690 Microsoft Corporation
1188 C:\Program Files\Analog Devices\SoundMAX\Smtray.exe 3.0.205.0 Analog Devices, Inc.
1248 C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe 5.0.20.9 Sun Microsystems, Inc.
1240 C:\Program Files\T-Com MAXadsl CD-ROM\T-Com Siemens ADSL A-100 Modem\Adsl\dslstat.exe 4.2.0.0 GlobespanVirata, Inc.
1176 C:\Program Files\T-Com MAXadsl CD-ROM\T-Com Siemens ADSL A-100 Modem\Adsl\dslagent.exe
1288 C:\WINNT\system32\RUNDLL32.EXE 5.0.2134.1 Microsoft Corporation
888 C:\Documents and Settings\win2000\Desktop\HijackThis.exe 1.99.0.1 Soeperman Enterprises Ltd.
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\csrss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINNT\system32\nvsvc32.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\system32\stisvc.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\Program Files\T-Com MAXadsl CD-ROM\T-Com Siemens ADSL A-100 Modem\Adsl\dslstat.exe
C:\Program Files\T-Com MAXadsl CD-ROM\T-Com Siemens ADSL A-100 Modem\Adsl\dslagent.exe
C:\WINNT\system32\RUNDLL32.EXE
C:\Documents and Settings\win2000\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.tportal.hr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
O4 - HKLM\..\Run: [Tweak UI] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [DSLSTATEXE] C:\Program Files\T-Com MAXadsl CD-ROM\T-Com Siemens ADSL A-100 Modem\Adsl\dslstat.exe icon
O4 - HKLM\..\Run: [DSLAGENTEXE] C:\Program Files\T-Com MAXadsl CD-ROM\T-Com Siemens ADSL A-100 Modem\Adsl\dslagent.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINNT\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINNT\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Spyware Nuker] C:\Program Files\Spyware Nuker 2004\swn2.exe /h
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Send Image to Photo Library - file://C:\Documents and Settings\win2000\Application Data\MGI\PhotoSuite4\Temp\MGI00000.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1126899361531
O17 - HKLM\System\CCS\Services\Tcpip\..\{1E1779A1-DA03-4DC7-833B-A314072EEC29}: NameServer = 69.50.168.138,85.255.112.19
O17 - HKLM\System\CCS\Services\Tcpip\..\{803509B1-3162-43E8-8833-D0AF026F9947}: NameServer = 69.50.168.138,85.255.112.19
O17 - HKLM\System\CCS\Services\Tcpip\..\{C2909843-F261-42C1-BD1B-8B5A9FBFFEC8}: NameServer = 69.50.168.138 85.255.112.19
O17 - HKLM\System\CCS\Services\Tcpip\..\{FD68B8A0-447F-4E2F-9F23-F82859789ED4}: NameServer = 69.50.168.138,85.255.112.19
O17 - HKLM\System\CS1\Services\Tcpip\..\{1E1779A1-DA03-4DC7-833B-A314072EEC29}: NameServer = 69.50.168.138,85.255.112.19
O17 - HKLM\System\CS2\Services\Tcpip\..\{1E1779A1-DA03-4DC7-833B-A314072EEC29}: NameServer = 69.50.168.138,85.255.112.19
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINNT\system32\nvsvc32.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINNT\system32\ZoneLabs\vsmon.exe
demetrius je offline   Reply With Quote