Code : sFkYkTWSE7wAKZIeuKxsN4qOCVsnV91ciWrHM1aG0Yk=

프로그램분석

Code : sFkYkTWSE7wAKZIeuKxsN4qOCVsnV91ciWrHM1aG0Yk=

프로세스 천국 2013. 4. 4. 20:58

[00-PROCESS]**accoca -/- C:\Program Files\ActivIdentity\ActivClient\accoca.exe
[00-PROCESS]**accrdsub -/- C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
[00-PROCESS]**acevents -/- C:\Program Files\ActivIdentity\ActivClient\acevents.exe
[00-PROCESS]**AcqMan9i -/- C:\INFINITT\AcqMan\AcqMan9i.exe
[00-PROCESS]**AsGHost -/- C:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe
[00-PROCESS]**AtService -/- C:\Program Files\Fingerprint Sensor\AtService.exe
[00-PROCESS]**ClientSM -/- C:\Program Files\SoftForum\XecureWeb\ActiveX\ClientSM.exe
[00-PROCESS]**CoreShredder -/- C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
[00-PROCESS]**E_TATII0E -/- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_TATII0E.EXE
[00-PROCESS]**EEventManager -/- C:\Program Files\Epson Software\Event Manager\EEventManager.exe
[00-PROCESS]**EscSvc -/- C:\WINDOWS\system32\EscSvc.exe
[00-PROCESS]**flcdlock -/- C:\WINDOWS\system32\flcdlock.exe
[00-PROCESS]**hkcmd -/- C:\WINDOWS\system32\hkcmd.exe
[00-PROCESS]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncUpdate.exe
[00-PROCESS]**HpFkCrypt -/- C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
[00-PROCESS]**HPFSService -/- C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
[00-PROCESS]**hpqtra08 -/- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
[00-PROCESS]**hpqwmiex -/- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
[00-PROCESS]**HPWuSchd2 -/- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
[00-PROCESS]**Hwp -/- C:\HNC\Hwp70\Hwp.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**igfxpers -/- C:\WINDOWS\system32\igfxpers.exe
[00-PROCESS]**igfxsrvc -/- C:\WINDOWS\system32\igfxsrvc.exe
[00-PROCESS]**igfxtray -/- C:\WINDOWS\system32\igfxtray.exe
[00-PROCESS]**IHIRADUR -/- C:\HIRA\IHIRADUR\IHIRADUR.exe
[00-PROCESS]**imapihp -/- C:\WINDOWS\system32\imapihp.exe
[00-PROCESS]**IMJPMIG -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
[00-PROCESS]**IMKRMIG -/- C:\Program Files\Common Files\Microsoft Shared\IME12\IMEKR\IMKRMIG.EXE
[00-PROCESS]**innofsb -/- C:\WINDOWS\system32\innofsb.exe
[00-PROCESS]**iviRegMgr -/- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
[00-PROCESS]**java -/- C:\Program Files\Samsung Network Printer Utilities\SyncThru Admin 5\jre\bin\java.exe
[00-PROCESS]**LGuideSC -/- C:\Program Files\Windows LGuide\LGuideSC.exe
[00-PROCESS]**LMS -/- C:\Program Files\Intel\AMT\LMS.exe
[00-PROCESS]**MicroPCRecordHelper -/- C:\Program Files\MicroPCRecord\MicroPCRecordHelper.exe
[00-PROCESS]**MicroPCRecordUdt -/- C:\Program Files\MicroPCRecord\MicroPCRecordUdt.exe
[00-PROCESS]**mysqld -/- c:\nhicgg\bin\mysqld.exe
[00-PROCESS]**mysqld-nt -/- C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**omtsreco -/- C:\oracle\ora92\bin\omtsreco.exe
[00-PROCESS]**ONRSD -/- C:\oracle\ora92\BIN\ONRSD.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**PCAngel -/- C:\WINDOWS\SMINST\PCAngel.exe
[00-PROCESS]**pdfsty -/- C:\Program Files\PDF Complete\pdfsty.exe
[00-PROCESS]**pdfsvc -/- C:\Program Files\PDF Complete\pdfsvc.exe
[00-PROCESS]**pg_ctl -/- C:\Program Files\Samsung Network Printer Utilities\SyncThru Admin 5\postgresql\engine\bin\pg_ctl.exe
[00-PROCESS]**PIIMSService -/- C:\Program Files\pims\PIIMSService.exe
[00-PROCESS]**PiViewMain -/- C:\INFINITT\PiViewSTAR\PiView\PiViewMain.exe
[00-PROCESS]**postgres -/- C:\Program Files\Samsung Network Printer Utilities\SyncThru Admin 5\postgresql\engine\bin\postgres.exe
[00-PROCESS]**PrivacyIconClient -/- C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe
[00-PROCESS]**PsiService_2 -/- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
[00-PROCESS]**PTChangeFilterService -/- C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
[00-PROCESS]**PTHOSTTR -/- C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE
[00-PROCESS]**Radiology -/- C:\magic\Exe\Radiology.exe
[00-PROCESS]**Recguard -/- C:\WINDOWS\Sminst\Recguard.exe
[00-PROCESS]**Remind_XP -/- C:\WINDOWS\Creator\Remind_XP.exe
[00-PROCESS]**reuserinfoset -/- C:\WINDOWS\reuserinfoset.exe
[00-PROCESS]**Scheduler -/- C:\WINDOWS\SMINST\Scheduler.exe
[00-PROCESS]**SetRefresh -/- C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
[00-PROCESS]**Smax4 -/- C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
[00-PROCESS]**smax4pnp -/- C:\Program Files\Analog Devices\Core\smax4pnp.exe
[00-PROCESS]**SMSvcHost -/- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**syncthru5 -/- C:\Program Files\Samsung Network Printer Utilities\SyncThru Admin 5\syncthru5.exe
[00-PROCESS]**TCSearch -/- C:\Program Files\AdvTopC\TCSearch.exe
[00-PROCESS]**TINTSETP -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
[00-PROCESS]**UNS -/- C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
[00-PROCESS]**V3SP -/- C:\Program Files\AhnLab\V3IS80\V3SP.exe
[00-PROCESS]**V3Svc -/- C:\Program Files\AhnLab\V3IS80\V3Svc.exe
[00-PROCESS]**WinRestore -/- C:\Program Files\SoftForum\ClientProxy\WinRestore.exe
[01-HKCUREG]**accrdsub -/- C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
[01-HKCUREG]**Adv_TopC -/- C:\Program Files\AdvTopC\TCSearch.exe
[01-HKCUREG]**CognizanceTS -/- rundll32.exe C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dllRegisterModule
[01-HKCUREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**EEventManager -/- C:\Program Files\Epson Software\Event Manager\EEventManager.exe
[01-HKCUREG]**EPLTarget\P0000000000000000 -/- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_TATII0E.EXE /EPT EPLTarget\P0000000000000000 /M L350 Series
[01-HKCUREG]**File Sanitizer -/- C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
[01-HKCUREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncUpdate.exe /A
[01-HKCUREG]**HotKeysCmds -/- C:\WINDOWS\system32\hkcmd.exe
[01-HKCUREG]**HP Software Update -/- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
[01-HKCUREG]**IgfxTray -/- C:\WINDOWS\system32\igfxtray.exe
[01-HKCUREG]**IHIRADUR -/- C:\HIRA\IHIRADUR\IHIRADUR.exe
[01-HKCUREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[01-HKCUREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[01-HKCUREG]**MicroPCRecord -/- C:\Program Files\MicroPCRecord\MicroPCRecordHelper.exe boot
[01-HKCUREG]**MicroPCRecordUdt -/- C:\Program Files\MicroPCRecord\MicroPCRecordUdt.exe boot
[01-HKCUREG]**PDF Complete -/- C:\Program Files\PDF Complete\pdfsty.exe
[01-HKCUREG]**Persistence -/- C:\WINDOWS\system32\igfxpers.exe
[01-HKCUREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[01-HKCUREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[01-HKCUREG]**picon -/- C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe -startup
[01-HKCUREG]**PTHOSTTR -/- C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
[01-HKCUREG]**Recguard -/- C:\WINDOWS\Sminst\Recguard.exe
[01-HKCUREG]**Reminder -/- C:\WINDOWS\Creator\Remind_XP.exe
[01-HKCUREG]**Scheduler -/- C:\WINDOWS\SMINST\Scheduler.exe
[01-HKCUREG]**SetRefresh -/- C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
[01-HKCUREG]**Softforum CSP -/- C:\Program Files\SoftForum\ClientProxy\WinRestore.exe
[01-HKCUREG]**SoundMAX -/- C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
[01-HKCUREG]**SoundMAXPnP -/- C:\Program Files\Analog Devices\Core\smax4pnp.exe
[01-HKCUREG]**V3 Session Process -/- C:\Program Files\AhnLab\V3IS80\V3SP.exe
[02-HKLMREG]**accrdsub -/- C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
[02-HKLMREG]**Adv_TopC -/- C:\Program Files\AdvTopC\TCSearch.exe
[02-HKLMREG]**CognizanceTS -/- rundll32.exe C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dllRegisterModule
[02-HKLMREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**EEventManager -/- C:\Program Files\Epson Software\Event Manager\EEventManager.exe
[02-HKLMREG]**EPLTarget\P0000000000000000 -/- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_TATII0E.EXE /EPT EPLTarget\P0000000000000000 /M L350 Series
[02-HKLMREG]**File Sanitizer -/- C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
[02-HKLMREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncUpdate.exe /A
[02-HKLMREG]**HotKeysCmds -/- C:\WINDOWS\system32\hkcmd.exe
[02-HKLMREG]**HP Software Update -/- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
[02-HKLMREG]**IgfxTray -/- C:\WINDOWS\system32\igfxtray.exe
[02-HKLMREG]**IHIRADUR -/- C:\HIRA\IHIRADUR\IHIRADUR.exe
[02-HKLMREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[02-HKLMREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[02-HKLMREG]**MicroPCRecord -/- C:\Program Files\MicroPCRecord\MicroPCRecordHelper.exe boot
[02-HKLMREG]**MicroPCRecordUdt -/- C:\Program Files\MicroPCRecord\MicroPCRecordUdt.exe boot
[02-HKLMREG]**PDF Complete -/- C:\Program Files\PDF Complete\pdfsty.exe
[02-HKLMREG]**Persistence -/- C:\WINDOWS\system32\igfxpers.exe
[02-HKLMREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[02-HKLMREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[02-HKLMREG]**picon -/- C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe -startup
[02-HKLMREG]**PTHOSTTR -/- C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
[02-HKLMREG]**Recguard -/- C:\WINDOWS\Sminst\Recguard.exe
[02-HKLMREG]**Reminder -/- C:\WINDOWS\Creator\Remind_XP.exe
[02-HKLMREG]**Scheduler -/- C:\WINDOWS\SMINST\Scheduler.exe
[02-HKLMREG]**SetRefresh -/- C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
[02-HKLMREG]**Softforum CSP -/- C:\Program Files\SoftForum\ClientProxy\WinRestore.exe
[02-HKLMREG]**SoundMAX -/- C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
[02-HKLMREG]**SoundMAXPnP -/- C:\Program Files\Analog Devices\Core\smax4pnp.exe
[02-HKLMREG]**V3 Session Process -/- C:\Program Files\AhnLab\V3IS80\V3SP.exe
[03-BHOCLSD]**{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -/- C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
[03-BHOCLSD]**{1EDE27F1-B6B0-40AD-98A6-5BEC8DF7BFE8} -/- C:\Program Files\Windows LGuide\LGuideP.dll
[03-BHOCLSD]**{3134413B-49B4-425C-98A5-893C1F195601} -/- C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
[03-BHOCLSD]**{3E5EF872-03E2-4CE0-94DF-CA8A5004ECFD} -/- C:\Program Files\AdvTopC\TCHelper.dll
[03-BHOCLSD]**{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -/- C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
[03-BHOCLSD]**{DF21F1DB-80C6-11D3-9483-B03D0EC10000} -/- C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
[03-BHOCLSD]**{E81E1598-BCE6-40B9-8B68-AE57DAA04452} -/- C:\Program Files\nate_as\nate_as.dll
[05-SERVICE]**0062551262946617mcinstcleanup -/- C:\Documents and Settings\Administrator\LOCALS~1\Temp\006255~1.EXE C:\PROGRA~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service
[05-SERVICE]**accoca -/- C:\Program Files\ActivIdentity\ActivClient\accoca.exe
[05-SERVICE]**ASBroker -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll
[05-SERVICE]**ASChannel -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\Hewlett-Packard\IAM\Bin\AsChnl.dll
[05-SERVICE]**ATService -/- C:\Program Files\Fingerprint Sensor\AtService.exe
[05-SERVICE]**EpsonScanSvc -/- C:\WINDOWS\system32\EscSvc.exe
[05-SERVICE]**FLCDLOCK -/- C:\WINDOWS\system32\flcdlock.exe
[05-SERVICE]**HP ProtectTools Service -/- C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
[05-SERVICE]**HpFkCryptService -/- C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
[05-SERVICE]**HPFSService -/- C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
[05-SERVICE]**hpqcxs08 -/- C:\WINDOWS\system32\svchost.exe -/- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
[05-SERVICE]**hpqddsvc -/- C:\WINDOWS\system32\svchost.exe -/- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
[05-SERVICE]**hpqwmiex -/- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
[05-SERVICE]**ImapiService -/- C:\WINDOWS\system32\imapihp.exe
[05-SERVICE]**Innofsb -/- C:\WINDOWS\system32\innofsb.exe
[05-SERVICE]**IviRegMgr -/- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
[05-SERVICE]**LGuide -/- C:\Program Files\Windows LGuide\LGuideSC.exe
[05-SERVICE]**LMS -/- C:\Program Files\Intel\AMT\LMS.exe
[05-SERVICE]**MySQL -/- C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt --defaults-file=C:\Program Files\MySQL\MySQL Server 5.0\my.ini MySQL
[05-SERVICE]**mysql_nhicgg -/- c:\nhicgg\bin\mysqld.exe --defaults-file=c:\nhicgg\my.ini mysql_nhicgg
[05-SERVICE]**napagent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**Net Driver HPZ12 -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\system32\HPZinw12.dll
[05-SERVICE]**odserv -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**OracleMTSRecoveryService -/- C:\oracle\ora92\bin\omtsreco.exe OracleMTSRecoveryService
[05-SERVICE]**OracleOraHome92ClientCache -/- C:\oracle\ora92\BIN\ONRSD.EXE
[05-SERVICE]**ose -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**PCA -/- C:\WINDOWS\SMINST\PCAngel.exe
[05-SERVICE]**pcguarder Update Service -/- C:\WINDOWS\reuserinfoset.exe
[05-SERVICE]**pdfcDispatcher -/- C:\Program Files\PDF Complete\pdfsvc.exe
[05-SERVICE]**PIIMSService -/- C:\Program Files\pims\PIIMSService.exe
[05-SERVICE]**Pml Driver HPZ12 -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\system32\HPZipm12.dll
[05-SERVICE]**PSI_SVC_2 -/- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
[05-SERVICE]**SyncThru Admin 5 -/- C:\Program Files\Samsung Network Printer Utilities\SyncThru Admin 5\syncthru5.exe -s C:\Program Files\Samsung Network Printer Utilities\SyncThru Admin 5\syncthru5_service.conf
[05-SERVICE]**SyncThru Admin 5 Database -/- C:/Program Files/Samsung Network Printer Utilities/SyncThru Admin 5/postgresql/engine/bin/pg_ctl.exe runservice -N SyncThru Admin 5 Database -D C:/Program Files/Samsung Network Printer Utilities/SyncThru Admin 5/postgresql/database
[05-SERVICE]**UNS -/- C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
[05-SERVICE]**V3 Service -/- C:\Program Files\AhnLab\V3IS80\V3Svc.exe
[05-SERVICE]**xgksteubcte -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\xgksteubcte\xgksteubcte.dll