Code : C0t5xnKPeRzqw9T55id6GpH7n6R4bzA1OFRItlPb1j4=

프로그램분석

Code : C0t5xnKPeRzqw9T55id6GpH7n6R4bzA1OFRItlPb1j4=

프로세스 천국 2013. 5. 15. 23:58

[00-PROCESS]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe
[00-PROCESS]**CKAgent -/- C:\WINDOWS\system32\CKAgent.exe
[00-PROCESS]**CS6ServiceManager -/- C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
[00-PROCESS]**firefox -/- C:\Documents and Settings\Administrator\바탕 화면\FirefoxPortable\App\firefox\firefox.exe
[00-PROCESS]**FirefoxPortable -/- C:\Documents and Settings\Administrator\바탕 화면\FirefoxPortable\FirefoxPortable.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**GingerClient -/- C:\Program Files\Ginger\GingerClient.exe
[00-PROCESS]**GingerServices -/- C:\Program Files\Ginger\GingerServices\GingerServices.exe
[00-PROCESS]**GingerUpdateService -/- C:\Program Files\Ginger\GingerUpdateService\GingerUpdateService.exe
[00-PROCESS]**GROOVE -/- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
[00-PROCESS]**GSService -/- C:\WINDOWS\system32\GSService.exe
[00-PROCESS]**Hoolapp -/- C:\Documents and Settings\Administrator\Application Data\HoolappForAndroid\Hoolapp.exe
[00-PROCESS]**hsssrv -/- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
[00-PROCESS]**HssTrayService -/- C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
[00-PROCESS]**hsswd -/- C:\Program Files\Hotspot Shield\bin\hsswd.exe
[00-PROCESS]**IEXPLORE -/- C:\Program Files\Internet Explorer\IEXPLORE.EXE
[00-PROCESS]**IMEDICTUPDATE -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[00-PROCESS]**IMEKLMG -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEKLMG.EXE
[00-PROCESS]**ktjen -/- C:\Documents and Settings\Administrator\Application Data\ktjen\ktjen.exe
[00-PROCESS]**Maxthon -/- C:\Program Files\Maxthon\Bin\Maxthon.exe
[00-PROCESS]**MsMpEng -/- c:\Program Files\Microsoft Security Client\MsMpEng.exe
[00-PROCESS]**notepad -/- C:\WINDOWS\system32\notepad.exe
[00-PROCESS]**openvpnas -/- C:\Program Files\Hotspot Shield\bin\openvpnas.exe
[00-PROCESS]**openvpntray -/- C:\Program Files\Hotspot Shield\bin\openvpntray.exe
[00-PROCESS]**OptimizerPro -/- C:\Documents and Settings\Administrator\Application Data\BetterSoft\OptimizerPro\OptimizerPro.exe
[00-PROCESS]**orbitdm -/- C:\Program Files\Orbitdownloader\orbitdm.exe
[00-PROCESS]**orbitnet -/- C:\Program Files\Orbitdownloader\orbitnet.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**OSPPSVC -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[00-PROCESS]**plugin-container -/- C:\Documents and Settings\Administrator\바탕 화면\FirefoxPortable\App\firefox\plugin-container.exe
[00-PROCESS]**RsvAgent -/- C:\Program Files\Click To Tweak [Basic]\RsvAgent.exe
[00-PROCESS]**SandollFontManager -/- C:\Program Files\SDFontManager\SandollFontManager.exe
[00-PROCESS]**sfenceagt -/- C:\Program Files\safe fence\sfenceagt.exe
[00-PROCESS]**SMSvcHost -/- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**snmvtsvc -/- C:\WINDOWS\system32\snmvtsvc.exe
[00-PROCESS]**SwitchBoard -/- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
[00-PROCESS]**UpdaterStartupUtility -/- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
[00-PROCESS]**WMPNetwk -/- C:\Program Files\Windows Media Player\WMPNetwk.exe
[01-HKCUREG]**AdobeAAMUpdater-1.0 -/- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
[01-HKCUREG]**AdobeBridge -/-
[01-HKCUREG]**AdobeCS6ServiceManager -/- C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin
[01-HKCUREG]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices
[01-HKCUREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**Hoolapp Android -/- C:\Documents and Settings\Administrator\APPLIC~1\HOOLAP~1\Hoolapp.exe /Minimized
[01-HKCUREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[01-HKCUREG]**itor6 -/- C:\Documents and Settings\Administrator\Application Data\ktjen\ktjen.exe
[01-HKCUREG]**RsvAgent -/- C:\Program Files\Click To Tweak [Basic]\RsvAgent.exe
[01-HKCUREG]**safefence_realtime_agent -/- C:\Program Files\safe fence\sfenceagt.exe
[01-HKCUREG]**SandollFontManager -/- C:\Program Files\SDFontManager\SandollFontManager.exe
[01-HKCUREG]**SwitchBoard -/- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
[02-HKLMREG]**AdobeAAMUpdater-1.0 -/- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
[02-HKLMREG]**AdobeBridge -/-
[02-HKLMREG]**AdobeCS6ServiceManager -/- C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin
[02-HKLMREG]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices
[02-HKLMREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**Hoolapp Android -/- C:\Documents and Settings\Administrator\APPLIC~1\HOOLAP~1\Hoolapp.exe /Minimized
[02-HKLMREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[02-HKLMREG]**itor6 -/- C:\Documents and Settings\Administrator\Application Data\ktjen\ktjen.exe
[02-HKLMREG]**RsvAgent -/- C:\Program Files\Click To Tweak [Basic]\RsvAgent.exe
[02-HKLMREG]**safefence_realtime_agent -/- C:\Program Files\safe fence\sfenceagt.exe
[02-HKLMREG]**SandollFontManager -/- C:\Program Files\SDFontManager\SandollFontManager.exe
[02-HKLMREG]**SwitchBoard -/- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
[03-BHOCLSD]**Adobe PDF Link Helper -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -/- {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
[03-BHOCLSD]**Browyse22savve -/- C:\Documents and Settings\Administrator\Application Data\Browyse22savve\5131f48d44451.dll -/- {24979C86-3656-7623-831C-B717028D2073}
[03-BHOCLSD]**Ginger Grammar & Spell Checker -/- C:\Program Files\Ginger\GingerIEAddin\adxloader.dll -/- {0877c1fc-19c6-4fe2-8e3d-699d8edb2964}
[03-BHOCLSD]**Groove GFS Browser Helper -/- C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL -/- {72853161-30C5-4D22-B7F9-0BBC1D38A37E}
[03-BHOCLSD]**Hotspot Shield Class -/- C:\Program Files\Hotspot Shield\HssIE\HssIE.dll -/- {F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
[03-BHOCLSD]**N.A -/- N.A -/- {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}
[03-BHOCLSD]**NXIECatcher Class -/- C:\Program Files\Xi\NetXfer\NXIEHelper.dll -/- {83B80A9C-D91A-4F22-8DCF-EA7204039F79}
[03-BHOCLSD]**Octh Class -/- C:\Program Files\Orbitdownloader\orbitcth.dll -/- {000123B4-9B42-4900-B3F7-F4B073EFC214}
[03-BHOCLSD]**Office Document Cache Handler -/- C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL -/- {B4F3A835-0E21-4959-BA22-42B3008E02FF}
[03-BHOCLSD]**SSP Media Control Library -/- C:\Documents and Settings\Administrator\APPLIC~1\MACROM~1\smcl.dll -/- {FEC9FE9D-7417-4371-98FA-6DAA9E3A1C62}
[04-TOOLBAR]**Grab Pro -/- C:\Program Files\Orbitdownloader\GrabPro.dll -/- {C55BBCD6-41AD-48AD-9953-3609C48EACC7}
[04-TOOLBAR]**NetXfer -/- C:\Program Files\Xi\NetXfer\NXToolBar.dll -/- {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**GingerUpdateService -/- GingerUpdateService -/- C:\Program Files\Ginger\GingerUpdateService\GingerUpdateService.exe
[05-SERVICE]**GSService -/- GSService -/- C:\WINDOWS\system32\GSService.exe
[05-SERVICE]**hpqcxs08 -/- hpqcxs08 -/- C:\WINDOWS\system32\svchost.exe -/- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
[05-SERVICE]**hpqddsvc -/- HP CUE DeviceDiscovery 서비스 -/- C:\WINDOWS\system32\svchost.exe -/- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
[05-SERVICE]**hshld -/- Hotspot Shield Service -/- C:\Program Files\Hotspot Shield\bin\openvpnas.exe
[05-SERVICE]**HssSrv -/- Hotspot Shield Routing Service -/- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
[05-SERVICE]**HssTrayService -/- Hotspot Shield Tray Service -/- C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
[05-SERVICE]**HssWd -/- Hotspot Shield Monitoring Service -/- C:\Program Files\Hotspot Shield\bin\hsswd.exe
[05-SERVICE]**ImeDictUpdateService -/- Microsoft IME Dictionary Update -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[05-SERVICE]**Microsoft SharePoint Workspace Audit Service -/- Microsoft SharePoint Workspace Audit Service -/- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
[05-SERVICE]**MsMpSvc -/- Microsoft Antimalware Service -/- c:\Program Files\Microsoft Security Client\MsMpEng.exe
[05-SERVICE]**napagent -/- Network Access Protection Agent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**Net Driver HPZ12 -/- Net Driver HPZ12 -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\system32\HPZinw12.dll
[05-SERVICE]**nlsX86cc -/- Nalpeiron Licensing Service -/- C:\WINDOWS\system32\nlssrv32.exe
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**osppsvc -/- Office Software Protection Platform -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[05-SERVICE]**Pml Driver HPZ12 -/- Pml Driver HPZ12 -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\system32\HPZipm12.dll
[05-SERVICE]**SMServer -/- SMServer -/- C:\WINDOWS\system32\snmvtsvc.exe
[05-SERVICE]**SwitchBoard -/- SwitchBoard -/- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
[05-SERVICE]**WPFFontCache_v0400 -/- Windows Presentation Foundation Font Cache 4.0.0.0 -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe