Code : RAVdfFkERpKmFJFEw0WIJZoiakXWMciW3sw7OieB6cE=

프로그램분석

Code : RAVdfFkERpKmFJFEw0WIJZoiakXWMciW3sw7OieB6cE=

프로세스 천국 2013. 4. 11. 02:01

[00-PROCESS]**Acrobat_sl -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
[00-PROCESS]**acrotray -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
[00-PROCESS]**AdobeARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[00-PROCESS]**Ares -/- C:\Program Files\Ares\Ares.exe
[00-PROCESS]**armsvc -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[00-PROCESS]**avp -/- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
[00-PROCESS]**chrome -/- C:\Program Files\Google\Chrome\Application\chrome.exe
[00-PROCESS]**CS4ServiceManager -/- C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
[00-PROCESS]**Dreamweaver -/- C:\Program Files\Adobe\Adobe Dreamweaver CS4\Dreamweaver.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**FNPLicensingService -/- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
[00-PROCESS]**GoogleUpdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[00-PROCESS]**hkcmd -/- C:\Windows\system32\hkcmd.exe
[00-PROCESS]**httpd -/- C:\AppServ\Apache2.2\bin\httpd.exe
[00-PROCESS]**igfxpers -/- C:\Windows\system32\igfxpers.exe
[00-PROCESS]**igfxsrvc -/- C:\Windows\system32\igfxsrvc.exe
[00-PROCESS]**igfxtray -/- C:\Windows\system32\igfxtray.exe
[00-PROCESS]**jusched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[00-PROCESS]**MsgPlusForSkypeService -/- C:\Program Files\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe
[00-PROCESS]**msvsmon -/- C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe
[00-PROCESS]**mysqld-nt -/- C:\AppServ\MySQL\bin\mysqld-nt.exe
[00-PROCESS]**NASvc -/- C:\Program Files\Nero\Update\NASvc.exe
[00-PROCESS]**NeroCheck -/- C:\Windows\system32\NeroCheck.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OptimizerPro -/- C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**PassThruSvr -/- C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
[00-PROCESS]**rmucs12 -/- C:\Program Files\Common Files\Liant Shared\rmucs12.exe
[00-PROCESS]**Skype -/- C:\Program Files\Skype\Phone\Skype.exe
[00-PROCESS]**SMSvcHost -/- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**SQLADHLP -/- C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
[00-PROCESS]**sqladhlp90 -/- C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
[00-PROCESS]**sqlbrowser -/- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
[00-PROCESS]**sqlservr -/- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
[00-PROCESS]**sqlservr -/- C:\Program Files\Microsoft SQL Server\MSSQL10_50.KAV_CS_ADMIN_KIT\MSSQL\Binn\sqlservr.exe
[00-PROCESS]**sqlwriter -/- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
[00-PROCESS]**Updater -/- C:\Program Files\Skype\Updater\Updater.exe
[00-PROCESS]**UpdaterService -/- C:\Program Files\SoftwareUpdater\UpdaterService.exe
[00-PROCESS]**VERSIO~2 -/- C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VERSIO~2.EXE
[00-PROCESS]**WatAdminSvc -/- C:\Windows\system32\Wat\WatAdminSvc.exe
[00-PROCESS]**WinRAR -/- C:\Program Files\WinRAR\WinRAR.exe
[00-PROCESS]**wmdc -/- C:\Windows\WindowsMobile\wmdc.exe
[00-PROCESS]**wmplayer -/- C:\Program Files\Windows Media Player\wmplayer.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[00-PROCESS]**Y2Desktop.Updater -/- C:\Program Files\Yontoo\Y2Desktop.Updater.exe
[00-PROCESS]**YontooDesktop -/- C:\Users\Administrator\AppData\Roaming\Yontoo\YontooDesktop.exe
[01-HKCUREG]**Acrobat Assistant 8.0 -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
[01-HKCUREG]**Adobe Acrobat Speed Launcher -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
[01-HKCUREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[01-HKCUREG]**Adobe_ID0ENQBO -/- C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
[01-HKCUREG]**AdobeCS4ServiceManager -/- C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe -launchedbylogin
[01-HKCUREG]**ares -/- C:\Program Files\Ares\Ares.exe -h
[01-HKCUREG]**AVP -/- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
[01-HKCUREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[01-HKCUREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[01-HKCUREG]**MessengerPlusForSkypeService -/- C:\Program Files\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe
[01-HKCUREG]**NeroFilterCheck -/- C:\Windows\system32\NeroCheck.exe
[01-HKCUREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[01-HKCUREG]**Skype -/- C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun
[01-HKCUREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[01-HKCUREG]**Windows Mobile Device Center -/- C:\Windows\WindowsMobile\wmdc.exe
[01-HKCUREG]**Yontoo Desktop -/- C:\Users\Administrator\AppData\Roaming\Yontoo\YontooDesktop.exe
[02-HKLMREG]**Acrobat Assistant 8.0 -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
[02-HKLMREG]**Adobe Acrobat Speed Launcher -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
[02-HKLMREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[02-HKLMREG]**Adobe_ID0ENQBO -/- C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
[02-HKLMREG]**AdobeCS4ServiceManager -/- C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe -launchedbylogin
[02-HKLMREG]**ares -/- C:\Program Files\Ares\Ares.exe -h
[02-HKLMREG]**AVP -/- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
[02-HKLMREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[02-HKLMREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[02-HKLMREG]**MessengerPlusForSkypeService -/- C:\Program Files\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe
[02-HKLMREG]**NeroFilterCheck -/- C:\Windows\system32\NeroCheck.exe
[02-HKLMREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[02-HKLMREG]**Skype -/- C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun
[02-HKLMREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[02-HKLMREG]**Windows Mobile Device Center -/- C:\Windows\WindowsMobile\wmdc.exe
[02-HKLMREG]**Yontoo Desktop -/- C:\Users\Administrator\AppData\Roaming\Yontoo\YontooDesktop.exe
[03-BHOCLSD]**{02478D38-C3F9-4efb-9B51-7695ECA05670} -/- N.A
[03-BHOCLSD]**{18DF081C-E8AD-4283-A596-FA578C2EBDC3} -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[03-BHOCLSD]**{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -/- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
[03-BHOCLSD]**{59C0C5BD-2579-433A-BBB8-AFFD59642BAF} -/- C:\Program Files\HappyLyrics\hppylrc.dll
[03-BHOCLSD]**{73455575-E40C-433C-9784-C78DC7761455} -/- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
[03-BHOCLSD]**{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -/- C:\Program Files\Java\jre7\bin\ssv.dll
[03-BHOCLSD]**{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -/- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
[03-BHOCLSD]**{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} -/- C:\Program Files\DealPly\DealPlyIE.dll
[03-BHOCLSD]**{AE7CD045-E861-484f-8273-0445EE161910} -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
[03-BHOCLSD]**{DBC80044-A445-435b-BC74-9C25C1C588A9} -/- C:\Program Files\Java\jre7\bin\jp2ssv.dll
[03-BHOCLSD]**{E33CF602-D945-461A-83F0-819F76A199F8} -/- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
[03-BHOCLSD]**{F4971EE7-DAA0-4053-9964-665D8EE6A077} -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
[03-BHOCLSD]**{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} -/- C:\Program Files\Yontoo\YontooIEClient.dll
[04-TOOLBAR]**{47833539-D0C5-4125-9FA8-0819E2EAAC93} -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
[04-TOOLBAR]**{ae07101b-46d4-4a98-af68-0333ea26e113} -/- N.A
[05-SERVICE]**Adobe Version Cue CS4 -/- C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe -win32service
[05-SERVICE]**AdobeARMservice -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**Apache2.2 -/- C:\AppServ\Apache2.2\bin\httpd.exe -k runservice
[05-SERVICE]**AVP -/- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe -r
[05-SERVICE]**FLEXnet Licensing Service -/- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
[05-SERVICE]**FontCache -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\FntCache.dll
[05-SERVICE]**gpsvc -/- C:\Windows\system32\svchost.exe -/- C:\Windows\System32\gpsvc.dll
[05-SERVICE]**gupdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**gupdatem -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**MSSQL$KAV_CS_ADMIN_KIT -/- C:\Program Files\Microsoft SQL Server\MSSQL10_50.KAV_CS_ADMIN_KIT\MSSQL\Binn\sqlservr.exe -sKAV_CS_ADMIN_KIT
[05-SERVICE]**MSSQL$SQLEXPRESS -/- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe -sSQLEXPRESS
[05-SERVICE]**MSSQLServerADHelper -/- C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
[05-SERVICE]**MSSQLServerADHelper100 -/- C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
[05-SERVICE]**msvsmon80 -/- C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe
[05-SERVICE]**mysql -/- C:\AppServ\MySQL\bin\mysqld-nt --defaults-file=C:\AppServ\MySQL\my.ini mysql
[05-SERVICE]**NAUpdate -/- C:\Program Files\Nero\Update\NASvc.exe
[05-SERVICE]**PassThru Service -/- C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
[05-SERVICE]**RapiMgr -/- C:\Windows\system32\svchost.exe -/- C:\Windows\WindowsMobile\rapimgr.dll
[05-SERVICE]**RMUCS12 -/- C:\Program Files\Common Files\Liant Shared\rmucs12.exe
[05-SERVICE]**SkypeUpdate -/- C:\Program Files\Skype\Updater\Updater.exe
[05-SERVICE]**SQLAgent$KAV_CS_ADMIN_KIT -/- C:\Program Files\Microsoft SQL Server\MSSQL10_50.KAV_CS_ADMIN_KIT\MSSQL\Binn\SQLAGENT.EXE -i KAV_CS_ADMIN_KIT
[05-SERVICE]**SQLBrowser -/- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
[05-SERVICE]**SQLWriter -/- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
[05-SERVICE]**SrvUpdater -/- C:\Program Files\SoftwareUpdater\UpdaterService.exe
[05-SERVICE]**StorSvc -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\storsvc.dll
[05-SERVICE]**WcesComm -/- C:\Windows\system32\svchost.exe -/- C:\Windows\WindowsMobile\wcescomm.dll
[05-SERVICE]**Yontoo Desktop Updater -/- C:\Program Files\Yontoo\Y2Desktop.Updater.exe C:\Users\Administrator\AppData\Roaming\Yontoo\YontooDesktop.exe