프로그램분석

Code : sFkYkTWSE7ySe0M/kdpdn6yB2TonIx2jHNoljehKvGY=

프로세스 천국 2013. 4. 8. 23:18

[00-PROCESS]**acrotray -/- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
[00-PROCESS]**AdobeARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[00-PROCESS]**armsvc -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[00-PROCESS]**aspnet_state -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
[00-PROCESS]**BATINDICATOR -/- C:\Program Files\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe
[00-PROCESS]**Bonus.ScreenshotReader -/- C:\Program Files\ABBYY FineReader 10\Bonus.ScreenshotReader.exe
[00-PROCESS]**CNYHKEY -/- C:\Program Files\Hewlett-Packard\HP MAINSTREAM KEYBOARD\CNYHKEY.exe
[00-PROCESS]**DMService -/- C:\Windows\Downloaded Program Files\DMService.exe
[00-PROCESS]**firefox -/- C:\Program Files\Mozilla Firefox\firefox.exe
[00-PROCESS]**FlashPlayerPlugin_11_6_602_180 -/- C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**FNPLicensingService -/- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
[00-PROCESS]**GoogleUpdate -/- C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe
[00-PROCESS]**hkcmd -/- C:\Windows\system32\hkcmd.exe
[00-PROCESS]**HP_Remote_Solution -/- C:\Program Files\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
[00-PROCESS]**HPClientServices -/- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
[00-PROCESS]**HPDrvMntSvc -/- C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
[00-PROCESS]**hphc_service -/- C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
[00-PROCESS]**HPKEYBOARDx -/- C:\Program Files\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE
[00-PROCESS]**hpqWmiEx -/- C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
[00-PROCESS]**hpsysdrv -/- c:\program files\hewlett-packard\HP odometer\hpsysdrv.exe
[00-PROCESS]**igfxpers -/- C:\Windows\system32\igfxpers.exe
[00-PROCESS]**igfxtray -/- C:\Windows\system32\igfxtray.exe
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**Keystatus -/- C:\Program Files\Hewlett-Packard\HP Desktop Keyboard\Keystatus.exe
[00-PROCESS]**LaunchApp -/- C:\Program Files\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe
[00-PROCESS]**maintenanceservice -/- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
[00-PROCESS]**MsMpEng -/- c:\Program Files\Microsoft Security Client\MsMpEng.exe
[00-PROCESS]**msseces -/- c:\Program Files\Microsoft Security Client\msseces.exe
[00-PROCESS]**NisSrv -/- c:\Program Files\Microsoft Security Client\NisSrv.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**OSPPSVC -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[00-PROCESS]**pdfsty -/- C:\Program Files\PDF Complete\pdfsty.exe
[00-PROCESS]**pdfsvc -/- C:\Program Files\PDF Complete\pdfsvc.exe
[00-PROCESS]**plugin-container -/- C:\Program Files\Mozilla Firefox\plugin-container.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**ps64ldr -/- C:\Program Files\Yandex\Punto Switcher\ps64ldr.exe
[00-PROCESS]**punto -/- C:\Program Files\Yandex\Punto Switcher\punto.exe
[00-PROCESS]**SMSvcHost -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[00-PROCESS]**uagqecsvc -/- C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe
[00-PROCESS]**WatAdminSvc -/- C:\Windows\system32\Wat\WatAdminSvc.exe
[00-PROCESS]**WinRAR -/- C:\Program Files\WinRAR\WinRAR.exe
[00-PROCESS]**WLIDSVC -/- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**Acrobat Assistant 8.0 -/- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
[01-HKCUREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[01-HKCUREG]**BATINDICATOR -/- C:\Program Files\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe
[01-HKCUREG]**Bonus.SSR.FR10 -/- C:\Program Files\ABBYY FineReader 10\Bonus.ScreenshotReader.exe /autorun
[01-HKCUREG]**Google Update -/- C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe /c
[01-HKCUREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[01-HKCUREG]**HP KEYBOARDx -/- C:\Program Files\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE
[01-HKCUREG]**HP Remote Solution -/- C:\Program Files\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
[01-HKCUREG]**hpsysdrv -/- c:\program files\hewlett-packard\HP odometer\hpsysdrv.exe
[01-HKCUREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[01-HKCUREG]**LaunchHPOSIAPP -/- C:\Program Files\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe
[01-HKCUREG]**MSC -/- c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey
[01-HKCUREG]**PDF Complete -/- C:\Program Files\PDF Complete\pdfsty.exe
[01-HKCUREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[02-HKLMREG]**Acrobat Assistant 8.0 -/- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
[02-HKLMREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[02-HKLMREG]**BATINDICATOR -/- C:\Program Files\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe
[02-HKLMREG]**Bonus.SSR.FR10 -/- C:\Program Files\ABBYY FineReader 10\Bonus.ScreenshotReader.exe /autorun
[02-HKLMREG]**Google Update -/- C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe /c
[02-HKLMREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[02-HKLMREG]**HP KEYBOARDx -/- C:\Program Files\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE
[02-HKLMREG]**HP Remote Solution -/- C:\Program Files\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
[02-HKLMREG]**hpsysdrv -/- c:\program files\hewlett-packard\HP odometer\hpsysdrv.exe
[02-HKLMREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[02-HKLMREG]**LaunchHPOSIAPP -/- C:\Program Files\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe
[02-HKLMREG]**MSC -/- c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey
[02-HKLMREG]**PDF Complete -/- C:\Program Files\PDF Complete\pdfsty.exe
[02-HKLMREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[03-BHOCLSD]**{18DF081C-E8AD-4283-A596-FA578C2EBDC3} -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[03-BHOCLSD]**{9030D464-4C02-4ABF-8ECC-5164760863C6} -/- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[03-BHOCLSD]**{AE7CD045-E861-484f-8273-0445EE161910} -/- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
[03-BHOCLSD]**{B4F3A835-0E21-4959-BA22-42B3008E02FF} -/- C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
[03-BHOCLSD]**{B4F3A835-0E21-4959-BA22-42B3008E02FF} -/- C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
[03-BHOCLSD]**{DBC80044-A445-435b-BC74-9C25C1C588A9} -/- C:\Program Files\Java\jre7\bin\jp2ssv.dll
[04-TOOLBAR]**{47833539-D0C5-4125-9FA8-0819E2EAAC93} -/- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
[05-SERVICE]**ABBYY.Licensing.PDFTransformer.Classic.3.0 -/- C:\Program Files\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe -service
[05-SERVICE]**AdobeARMservice -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**DMService -/- C:\Windows\DOWNLO~1\DMService.exe
[05-SERVICE]**FLEXnet Licensing Service -/- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
[05-SERVICE]**HP Health Check Service -/- C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
[05-SERVICE]**HPClientSvc -/- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
[05-SERVICE]**HPDrvMntSvc.exe -/- C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
[05-SERVICE]**hpqwmiex -/- C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
[05-SERVICE]**lmhosts -/- C:\Windows\system32\svchost.exe -/- C:\Windows\System32\lltdsvc.dll
[05-SERVICE]**MozillaMaintenance -/- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
[05-SERVICE]**MsMpSvc -/- c:\Program Files\Microsoft Security Client\MsMpEng.exe
[05-SERVICE]**NetMsmqActivator -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe -NetMsmqActivator
[05-SERVICE]**NetPipeActivator -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**NetTcpActivator -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**NetTcpPortSharing -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**NisSrv -/- c:\Program Files\Microsoft Security Client\NisSrv.exe
[05-SERVICE]**NlaSvc -/- C:\Windows\System32\svchost.exe
[05-SERVICE]**nsi -/- C:\Windows\system32\svchost.exe
[05-SERVICE]**odserv -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**osppsvc -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[05-SERVICE]**pdfcDispatcher -/- C:\Program Files\PDF Complete\pdfsvc.exe
[05-SERVICE]**PerfHost -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**StorSvc -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\storsvc.dll
[05-SERVICE]**uagqecsvc -/- C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe
[05-SERVICE]**wlidsvc -/- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE