Code : ykXxWsj1U0UJ079d+JWGR4zMjfmuFRpQthxPWWU2Iuk=

프로그램분석

Code : ykXxWsj1U0UJ079d+JWGR4zMjfmuFRpQthxPWWU2Iuk=

프로세스 천국 2013. 4. 29. 23:11

[00-PROCESS]**AdobeARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[00-PROCESS]**Application Launcher -/- C:\Program Files\Sony Ericsson\Mobile4\Application Launcher\Application Launcher.exe
[00-PROCESS]**armsvc -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[00-PROCESS]**aspnet_state -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
[00-PROCESS]**atiesrxx -/- C:\Windows\system32\atiesrxx.exe
[00-PROCESS]**AvastSvc -/- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
[00-PROCESS]**avastUI -/- C:\Program Files\AVAST Software\Avast\avastUI.exe
[00-PROCESS]**BackupSvc -/- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
[00-PROCESS]**browser -/- C:\Users\Administrator\AppData\Local\Yandex\YandexBrowser\Application\browser.exe
[00-PROCESS]**CapabilityManager -/- C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
[00-PROCESS]**CCC -/- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
[00-PROCESS]**chrome -/- C:\Program Files\Google\Chrome\Application\chrome.exe
[00-PROCESS]**CLIStart -/- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
[00-PROCESS]**ConnectionWizard -/- C:\Program Files\Sony Ericsson\Mobile4\Connection Wizard\ConnectionWizard.exe
[00-PROCESS]**crash_service -/- C:\Users\Administrator\AppData\Local\Yandex\YandexBrowser\Application\22.0.1106.241\crash_service.exe
[00-PROCESS]**CVHSVC -/- C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
[00-PROCESS]**dsiwmis -/- C:\Program Files\Launch Manager\dsiwmis.exe
[00-PROCESS]**DTAgent -/- C:\Program Files\DAEMON Tools Pro\DTAgent.exe
[00-PROCESS]**DTShellHlp -/- C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
[00-PROCESS]**ePowerSvc -/- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
[00-PROCESS]**ePowerTray -/- C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**Fuel.Service -/- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
[00-PROCESS]**Generic -/- C:\Program Files\Common Files\Teleca Shared\Generic.exe
[00-PROCESS]**GoogleUpdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[00-PROCESS]**GoogleUpdaterService -/- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
[00-PROCESS]**GREGsvc -/- C:\Program Files\Acer\Registration\GREGsvc.exe
[00-PROCESS]**icq -/- C:\Users\Administrator\AppData\Roaming\ICQM\icq.exe
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**IScheduleSvc -/- C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
[00-PROCESS]**KeePass -/- C:\Program Files\KeePass Password Safe 2\KeePass.exe
[00-PROCESS]**LManager -/- C:\Program Files\Launch Manager\LManager.exe
[00-PROCESS]**logger -/- C:\Program Files\Common Files\Teleca Shared\logger.exe
[00-PROCESS]**mbamscheduler -/- C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
[00-PROCESS]**mbamservice -/- C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
[00-PROCESS]**mmc -/- C:\Windows\system32\mmc.exe
[00-PROCESS]**MMDx64Fx -/- C:\Program Files\Launch Manager\MMDx64Fx.exe
[00-PROCESS]**MOM -/- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
[00-PROCESS]**MROUTE~2 -/- C:\Program Files\Intuwave\Shared\mRouterRuntime\MROUTE~2.EXE
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OscarEditor -/- C:\Program Files\OSCAR Editor X7\OscarEditor.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**OSPPSVC -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**RAVCpl64 -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
[00-PROCESS]**SCBAL -/- C:\Program Files\Symbian\Shared\SymbianConnectRunTime\SCBAL.exe
[00-PROCESS]**SchedulerSvc -/- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
[00-PROCESS]**sftlist -/- C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
[00-PROCESS]**sftvsa -/- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
[00-PROCESS]**SMSvcHost -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[00-PROCESS]**SYMBIA~1 -/- C:\Program Files\Symbian\Shared\SymbianConnectRunTime\SYMBIA~1.EXE
[00-PROCESS]**SynTPEnh -/- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
[00-PROCESS]**unsecapp -/- C:\Windows\system32\wbem\unsecapp.exe
[00-PROCESS]**Updater -/- C:\Program Files\Skype\Updater\Updater.exe
[00-PROCESS]**UpdaterService -/- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**Acer ePower Management -/- C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
[01-HKCUREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[01-HKCUREG]**avast -/- C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui
[01-HKCUREG]**DAEMON Tools Pro Agent -/- C:\Program Files\DAEMON Tools Pro\DTAgent.exe -autorun
[01-HKCUREG]**icq -/- C:\Users\Administrator\AppData\Roaming\ICQM\icq.exe -CU
[01-HKCUREG]**KeePass 2 PreLoad -/- C:\Program Files\KeePass Password Safe 2\KeePass.exe --preload
[01-HKCUREG]**LManager -/- C:\Program Files\Launch Manager\LManager.exe
[01-HKCUREG]**OscarEditor -/- C:\Program Files\OSCAR Editor X7\OscarEditor.exe Minimum
[01-HKCUREG]**PC Suite for Smartphones -/- C:\Program Files\Sony Ericsson\Mobile4\Application Launcher\Application Launcher.exe /startoptions
[01-HKCUREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
[01-HKCUREG]**StartCCC -/- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun
[01-HKCUREG]**SynTPEnh -/- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
[02-HKLMREG]**Acer ePower Management -/- C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
[02-HKLMREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[02-HKLMREG]**avast -/- C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui
[02-HKLMREG]**DAEMON Tools Pro Agent -/- C:\Program Files\DAEMON Tools Pro\DTAgent.exe -autorun
[02-HKLMREG]**icq -/- C:\Users\Administrator\AppData\Roaming\ICQM\icq.exe -CU
[02-HKLMREG]**KeePass 2 PreLoad -/- C:\Program Files\KeePass Password Safe 2\KeePass.exe --preload
[02-HKLMREG]**LManager -/- C:\Program Files\Launch Manager\LManager.exe
[02-HKLMREG]**OscarEditor -/- C:\Program Files\OSCAR Editor X7\OscarEditor.exe Minimum
[02-HKLMREG]**PC Suite for Smartphones -/- C:\Program Files\Sony Ericsson\Mobile4\Application Launcher\Application Launcher.exe /startoptions
[02-HKLMREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
[02-HKLMREG]**StartCCC -/- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun
[02-HKLMREG]**SynTPEnh -/- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
[03-BHOCLSD]**{18DF081C-E8AD-4283-A596-FA578C2EBDC3} -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[03-BHOCLSD]**{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -/- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
[03-BHOCLSD]**{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -/- C:\Program Files\Java\jre7\bin\ssv.dll
[03-BHOCLSD]**{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -/- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
[03-BHOCLSD]**{9030D464-4C02-4ABF-8ECC-5164760863C6} -/- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[03-BHOCLSD]**{9961627E-4059-41B4-8E0E-A7D6B3854ADF} -/- C:\PROGRA~2\DOWNLO~1\dmiehlp.dll
[03-BHOCLSD]**{AA58ED58-01DD-4d91-8333-CF10577473F7} -/- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
[03-BHOCLSD]**{AA58ED58-01DD-4d91-8333-CF10577473F7} -/- C:\Program Files\Google\Google Toolbar\GoogleToolbar_64.dll
[03-BHOCLSD]**{DBC80044-A445-435b-BC74-9C25C1C588A9} -/- C:\Program Files\Java\jre7\bin\jp2ssv.dll
[04-TOOLBAR]**{2318C2B1-4965-11d4-9B18-009027A5CD4F} -/- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
[04-TOOLBAR]**{2318C2B1-4965-11d4-9B18-009027A5CD4F} -/- C:\Program Files\Google\Google Toolbar\GoogleToolbar_64.dll
[04-TOOLBAR]**{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -/- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
[04-TOOLBAR]**{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -/- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
[04-TOOLBAR]**Locked -/- N.A
[05-SERVICE]**AdobeARMservice -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**AMD External Events Utility -/- C:\Windows\system32\atiesrxx.exe
[05-SERVICE]**AMD FUEL Service -/- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
[05-SERVICE]**AppHostSvc -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\inetsrv\apphostsvc.dll
[05-SERVICE]**avast! Antivirus -/- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
[05-SERVICE]**cvhsvc -/- C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
[05-SERVICE]**DsiWMIService -/- C:\Program Files\Launch Manager\dsiwmis.exe
[05-SERVICE]**ePowerSvc -/- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
[05-SERVICE]**GREGService -/- C:\Program Files\Acer\Registration\GREGsvc.exe
[05-SERVICE]**gupdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**gupdatem -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**gusvc -/- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
[05-SERVICE]**lmhosts -/- C:\Windows\system32\svchost.exe -/- C:\Windows\System32\lltdsvc.dll
[05-SERVICE]**MBAMScheduler -/- C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
[05-SERVICE]**MBAMService -/- C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
[05-SERVICE]**NetMsmqActivator -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe -NetMsmqActivator
[05-SERVICE]**NetPipeActivator -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**NetTcpActivator -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**NetTcpPortSharing -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**NlaSvc -/- C:\Windows\System32\svchost.exe
[05-SERVICE]**nsi -/- C:\Windows\system32\svchost.exe
[05-SERVICE]**NTI IScheduleSvc -/- C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
[05-SERVICE]**NTIBackupSvc -/- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
[05-SERVICE]**NTISchedulerSvc -/- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
[05-SERVICE]**odserv -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**osppsvc -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[05-SERVICE]**PerfHost -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**sftlist -/- C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
[05-SERVICE]**sftvsa -/- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
[05-SERVICE]**SkypeUpdate -/- C:\Program Files\Skype\Updater\Updater.exe
[05-SERVICE]**Updater Service -/- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
[05-SERVICE]**W3SVC -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\inetsrv\iisw3adm.dll
[05-SERVICE]**WAS -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\inetsrv\iisw3adm.dll