프로그램분석

Code : sFkYkTWSE7z/o2mhVEucMr9sAsdyf8GZK4dfMXf4Jnc=

프로세스 천국 2013. 4. 2. 15:38

[00-PROCESS]**7zFM -/- C:\Program Files\7-Zip\7zFM.exe
[00-PROCESS]**AdobeARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[00-PROCESS]**armsvc -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[00-PROCESS]**BBSvc -/- C:\Program Files\Microsoft\BingBar\7.1.391.0\BBSvc.exe
[00-PROCESS]**DTUpdate -/- C:\Users\Administrator\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
[00-PROCESS]**E_FATIHLE -/- C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\E_FATIHLE.EXE
[00-PROCESS]**eEBSVC -/- C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
[00-PROCESS]**firefox -/- C:\Program Files\Mozilla Firefox\firefox.exe
[00-PROCESS]**FlashPlayerPlugin_11_6_602_180 -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**fshoster32 -/- C:\Program Files\O2\Strazce internetu\fshoster32.exe
[00-PROCESS]**FSM32 -/- C:\Program Files\O2\Strazce internetu\apps\ComputerSecurity\Common\FSM32.EXE
[00-PROCESS]**FSMA32 -/- C:\Program Files\O2\Strazce internetu\apps\ComputerSecurity\Common\FSMA32.EXE
[00-PROCESS]**fsorsp -/- C:\Program Files\O2\Strazce internetu\apps\CCF_Reputation\fsorsp.exe
[00-PROCESS]**GMouseService -/- C:\Genius\ioCentre\GMouseService.exe
[00-PROCESS]**gTaskBar -/- C:\Genius\ioCentre\gTaskBar.exe
[00-PROCESS]**IDriverT -/- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**Kies -/- C:\Program Files\Samsung\Kies\Kies.exe
[00-PROCESS]**KiesAirMessage -/- C:\Program Files\Samsung\Kies\KiesAirMessage.exe
[00-PROCESS]**KiesTrayAgent -/- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
[00-PROCESS]**LiveComm -/- C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1114.318_x86__8wekyb3d8bbwe\LiveComm.exe
[00-PROCESS]**Magickey -/- C:\Program Files\Labtec NumPad\Magickey.exe
[00-PROCESS]**maintenanceservice_tmp -/- C:\Program Files\Mozilla Maintenance Service\maintenanceservice_tmp.exe
[00-PROCESS]**mqsvc -/- C:\WINDOWS\system32\mqsvc.exe
[00-PROCESS]**MsMpEng -/- C:\Program Files\Windows Defender\MsMpEng.exe
[00-PROCESS]**o2flash -/- C:\WINDOWS\system32\o2flash.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**plugin-container -/- C:\Program Files\Mozilla Firefox\plugin-container.exe
[00-PROCESS]**RaRegistry -/- C:\Program Files\Ralink\Common\RaRegistry.exe
[00-PROCESS]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
[00-PROCESS]**RuntimeBroker -/- C:\Windows\System32\RuntimeBroker.exe
[00-PROCESS]**SeaPort -/- C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe
[00-PROCESS]**sm56hlpr -/- C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
[00-PROCESS]**SMSvcHost -/- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**taskhostex -/- C:\WINDOWS\system32\taskhostex.exe
[00-PROCESS]**tcpsvcs -/- C:\WINDOWS\System32\tcpsvcs.exe
[00-PROCESS]**Updater -/- C:\Program Files\Ask.com\Updater\Updater.exe
[00-PROCESS]**Updater -/- C:\Program Files\Skype\Updater\Updater.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[00-PROCESS]**XOSD -/- C:\Program Files\XOSD\XOSD.exe
[00-PROCESS]**XOSD_ON -/- C:\Program Files\XOSD\XOSD_ON.exe
[01-HKCUREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[01-HKCUREG]**ApnUpdater -/- C:\Program Files\Ask.com\Updater\Updater.exe
[01-HKCUREG]**F-Secure Hoster -/- C:\Program Files\O2\Strazce internetu\fshoster32.exe -app -hosterid:1
[01-HKCUREG]**F-Secure Manager -/- C:\Program Files\O2\Strazce internetu\apps\ComputerSecurity\Common\FSM32.EXE /splash
[01-HKCUREG]**HotKeysCmds -/- C:\WINDOWS\system32\hkcmd.exe
[01-HKCUREG]**IgfxTray -/- C:\WINDOWS\system32\igfxtray.exe
[01-HKCUREG]**ioCentre -/- C:\Genius\ioCentre\gTaskBar.exe
[01-HKCUREG]**KiesAirMessage -/- C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup
[01-HKCUREG]**KiesPreload -/- C:\Program Files\Samsung\Kies\Kies.exe /preload
[01-HKCUREG]**KiesTrayAgent -/- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
[01-HKCUREG]**Persistence -/- C:\WINDOWS\system32\igfxpers.exe
[01-HKCUREG]**RTHDVCPL -/- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
[01-HKCUREG]**SMSERIAL -/- C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
[01-HKCUREG]**XOSD -/- C:\Program Files\XOSD\XOSD_ON.exe
[02-HKLMREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[02-HKLMREG]**ApnUpdater -/- C:\Program Files\Ask.com\Updater\Updater.exe
[02-HKLMREG]**F-Secure Hoster -/- C:\Program Files\O2\Strazce internetu\fshoster32.exe -app -hosterid:1
[02-HKLMREG]**F-Secure Manager -/- C:\Program Files\O2\Strazce internetu\apps\ComputerSecurity\Common\FSM32.EXE /splash
[02-HKLMREG]**HotKeysCmds -/- C:\WINDOWS\system32\hkcmd.exe
[02-HKLMREG]**IgfxTray -/- C:\WINDOWS\system32\igfxtray.exe
[02-HKLMREG]**ioCentre -/- C:\Genius\ioCentre\gTaskBar.exe
[02-HKLMREG]**KiesAirMessage -/- C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup
[02-HKLMREG]**KiesPreload -/- C:\Program Files\Samsung\Kies\Kies.exe /preload
[02-HKLMREG]**KiesTrayAgent -/- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
[02-HKLMREG]**Persistence -/- C:\WINDOWS\system32\igfxpers.exe
[02-HKLMREG]**RTHDVCPL -/- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
[02-HKLMREG]**SMSERIAL -/- C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
[02-HKLMREG]**XOSD -/- C:\Program Files\XOSD\XOSD_ON.exe
[03-BHOCLSD]**{18DF081C-E8AD-4283-A596-FA578C2EBDC3} -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[03-BHOCLSD]**{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -/- C:\Program Files\Java\jre7\bin\ssv.dll
[03-BHOCLSD]**{7F6AFBF1-E065-4627-A2FD-810366367D01} -/- C:\Users\Administrator\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll
[03-BHOCLSD]**{9421DD08-935F-4701-A9CA-22DF90AC4EA6} -/- C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
[03-BHOCLSD]**{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -/- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
[03-BHOCLSD]**{d2ce3e00-f94a-4740-988e-03dc2f38c34f} -/- C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll
[03-BHOCLSD]**{D4027C7F-154A-4066-A1AD-4243D8127440} -/- C:\Program Files\Ask.com\GenericAskToolbar.dll
[03-BHOCLSD]**{DBC80044-A445-435b-BC74-9C25C1C588A9} -/- C:\Program Files\Java\jre7\bin\jp2ssv.dll
[03-BHOCLSD]**{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} -/- C:\Program Files\Yontoo\YontooIEClient.dll
[04-TOOLBAR]**{8dcb7100-df86-4384-8842-8fa844297b3f} -/- C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll
[04-TOOLBAR]**{9421DD08-935F-4701-A9CA-22DF90AC4EA6} -/- C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
[04-TOOLBAR]**{D4027C7F-154A-4066-A1AD-4243D8127440} -/- C:\Program Files\Ask.com\GenericAskToolbar.dll
[05-SERVICE]**AdobeARMservice -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**AllUserInstallAgent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\system32\AUInstallAgent.dll
[05-SERVICE]**AppHostSvc -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\inetsrv\apphostsvc.dll
[05-SERVICE]**AppIDSvc -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\appidsvc.dll
[05-SERVICE]**AudioEndpointBuilder -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\AudioEndpointBuilder.dll
[05-SERVICE]**BBSvc -/- C:\Program Files\Microsoft\BingBar\7.1.391.0\BBSvc.exe
[05-SERVICE]**BBUpdate -/- C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe
[05-SERVICE]**BrokerInfrastructure -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\bisrv.dll
[05-SERVICE]**bthserv -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\bthserv.dll
[05-SERVICE]**DefaultTabUpdate -/- C:\Users\Administrator\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
[05-SERVICE]**DeviceAssociationService -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\das.dll
[05-SERVICE]**DeviceInstall -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\umpnpmgr.dll
[05-SERVICE]**DsmSvc -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\DeviceSetupManager.dll
[05-SERVICE]**EFS -/- C:\WINDOWS\System32\lsass.exe -/- C:\WINDOWS\system32\efssvc.dll
[05-SERVICE]**EpsonBidirectionalService -/- C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
[05-SERVICE]**fhsvc -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\fhsvc.dll
[05-SERVICE]**FontCache -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\FntCache.dll
[05-SERVICE]**fshoster -/- C:\Program Files\O2\Strazce internetu\fshoster32.exe -hosterid:0
[05-SERVICE]**FSMA -/- C:\Program Files\O2\Strazce internetu\apps\ComputerSecurity\Common\FSMA32.EXE
[05-SERVICE]**FSORSPClient -/- C:\Program Files\O2\Strazce internetu\apps\CCF_Reputation\fsorsp.exe
[05-SERVICE]**GeniusMouseService -/- C:\Genius\ioCentre\GMouseService.exe
[05-SERVICE]**gpsvc -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\gpsvc.dll
[05-SERVICE]**IDriverT -/- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
[05-SERVICE]**KeyIso -/- C:\WINDOWS\system32\lsass.exe -/- C:\WINDOWS\system32\keyiso.dll
[05-SERVICE]**LSM -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\lsm.dll
[05-SERVICE]**MozillaMaintenance -/- C:\Program Files\Mozilla Maintenance Service\maintenanceservice_tmp.exe
[05-SERVICE]**MSMQ -/- C:\WINDOWS\system32\mqsvc.exe
[05-SERVICE]**NcaSvc -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\ncasvc.dll
[05-SERVICE]**NcdAutoSetup -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\NcdAutoSetup.dll
[05-SERVICE]**Netlogon -/- C:\WINDOWS\system32\lsass.exe -/- C:\WINDOWS\system32\netlogon.dll
[05-SERVICE]**netprofm -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\netprofmsvc.dll
[05-SERVICE]**o2flash -/- C:\WINDOWS\system32\o2flash.exe
[05-SERVICE]**PCSUService -/- C:\Program Files\Zrychleni Pocitace\PCSUService.exe
[05-SERVICE]**PrintNotify -/- C:\WINDOWS\system32\svchost.exe -/- C:\Windows\system32\spool\DRIVERS\W32X86\3\PrintConfig.dll
[05-SERVICE]**RalinkRegistryWriter -/- C:\Program Files\Ralink\Common\RaRegistry.exe
[05-SERVICE]**simptcp -/- C:\WINDOWS\System32\tcpsvcs.exe -/- C:\WINDOWS\System32\shsvcs.dll
[05-SERVICE]**SkypeUpdate -/- C:\Program Files\Skype\Updater\Updater.exe
[05-SERVICE]**StorSvc -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\system32\storsvc.dll
[05-SERVICE]**svsvc -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\svsvc.dll
[05-SERVICE]**SystemEventsBroker -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\SystemEventsBrokerServer.dll
[05-SERVICE]**TimeBroker -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\TimeBrokerServer.dll
[05-SERVICE]**VaultSvc -/- C:\WINDOWS\system32\lsass.exe -/- C:\Windows\System32\vaultsvc.dll
[05-SERVICE]**vmicheartbeat -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\ICSvc.dll
[05-SERVICE]**vmickvpexchange -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\ICSvc.dll
[05-SERVICE]**vmicrdv -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\ICSvc.dll
[05-SERVICE]**vmicshutdown -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\ICSvc.dll
[05-SERVICE]**vmictimesync -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\ICSvc.dll
[05-SERVICE]**vmicvss -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\ICSvc.dll
[05-SERVICE]**W3SVC -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\inetsrv\iisw3adm.dll
[05-SERVICE]**WAS -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\inetsrv\iisw3adm.dll
[05-SERVICE]**Wcmsvc -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\wcmsvc.dll
[05-SERVICE]**WiaRpc -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\wiarpc.dll
[05-SERVICE]**WinDefend -/- C:\Program Files\Windows Defender\MsMpEng.exe
[05-SERVICE]**WinHttpAutoProxySvc -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\winhttp.dll
[05-SERVICE]**wlidsvc -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\wlidsvc.dll
[05-SERVICE]**WSService -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\WSService.dll