Code : KL4zhqe32AxIb31DvuBykDYtw95lGyyZ

프로그램분석

Code : KL4zhqe32AxIb31DvuBykDYtw95lGyyZ

프로세스 천국 2013. 4. 30. 11:43

[00-PROCESS]**Acrobat_sl -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
[00-PROCESS]**Acrotray -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
[00-PROCESS]**APSDaemon -/- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
[00-PROCESS]**Ati2evxx -/- C:\WINDOWS\system32\Ati2evxx.exe
[00-PROCESS]**AYLaunch -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe
[00-PROCESS]**cloud_ -/- C:\Program Files\cloudpop\cloud_.exe
[00-PROCESS]**CS4ServiceManager -/- C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
[00-PROCESS]**daemon -/- C:\Program Files\D-Tools\daemon.exe
[00-PROCESS]**findkey_ -/- C:\Program Files\findkey\findkey_.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**FNPLicensingService -/- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
[00-PROCESS]**FWTAlert -/- C:\Program Files\FreeWebToon\FWTAlert.exe
[00-PROCESS]**FWTChkSvc -/- C:\Program Files\FreeWebToon\FWTChkSvc.exe
[00-PROCESS]**FWTUpdate -/- C:\Program Files\FreeWebToon\FWTUpdate.exe
[00-PROCESS]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncUpdate.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**IMJPMIG -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
[00-PROCESS]**IMKRMIG -/- C:\Program Files\Common Files\Microsoft Shared\IME12\IMEKR\IMKRMIG.EXE
[00-PROCESS]**msmsgs -/- C:\Program Files\Messenger\msmsgs.exe
[00-PROCESS]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe
[00-PROCESS]**ncleaner -/- C:\Program Files\Naver\NaverCleaner\ncleaner.exe
[00-PROCESS]**NCleanService -/- C:\Program Files\Naver\NaverCleaner\NCleanService.exe
[00-PROCESS]**NDriveSVC -/- C:\Program Files\Naver\NaverNDrive\NDriveSVC.exe
[00-PROCESS]**NetAccelerator -/- C:\Program Files\FileJo\NetAccelerator.exe
[00-PROCESS]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[00-PROCESS]**npkfxsvc -/- C:\WINDOWS\system32\npkfxsvc.exe
[00-PROCESS]**NToolsUpdater -/- C:\Program Files\Naver\NaverToolsUpdater\NToolsUpdater.exe
[00-PROCESS]**NToolsUpdaterLauncher -/- C:\Program Files\Naver\NaverToolsUpdater\NToolsUpdaterLauncher.exe
[00-PROCESS]**NVCUpgrader -/- C:\Program Files\Naver\NaverVaccine\NVCUpgrader.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**QTTask -/- C:\Program Files\QuickTime\QTTask.exe
[00-PROCESS]**qznewver -/- C:\Documents and Settings\Administrator\Application Data\QuickZone2\qznewver.exe
[00-PROCESS]**RTHDCPL -/- C:\WINDOWS\RTHDCPL.EXE
[00-PROCESS]**slink -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\slink\slink.exe
[00-PROCESS]**SoftwareUpdate -/- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
[00-PROCESS]**TINTSETP -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
[00-PROCESS]**toastpop -/- C:\Documents and Settings\Administrator\Application Data\toastpop\toastpop.exe
[00-PROCESS]**VERSIO~2 -/- C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VERSIO~2.EXE
[00-PROCESS]**WinCloud -/- C:\Program Files\Fileham.com\FileHam(fast)\WinCloud.exe
[00-PROCESS]**WinKeyword -/- C:\Program Files\KoreanKeyword\WinKeyword.exe
[00-PROCESS]**WinKeyword_Up -/- C:\Program Files\KoreanKeyword\WinKeyword_Up.exe
[01-HKCUREG]**Acrobat Assistant 8.0 -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
[01-HKCUREG]**Adobe Acrobat Speed Launcher -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
[01-HKCUREG]**Adobe_ID0ENQBO -/- C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
[01-HKCUREG]**AdobeCS4ServiceManager -/- C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe -launchedbylogin
[01-HKCUREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[01-HKCUREG]**APSDaemon -/- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
[01-HKCUREG]**cloud_.exe -/- C:\Program Files\cloudpop\cloud_.exe
[01-HKCUREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**DAEMON Tools-1033 -/- C:\Program Files\D-Tools\daemon.exe -lang 1033
[01-HKCUREG]**findkey_.exe -/- C:\Program Files\findkey\findkey_.exe
[01-HKCUREG]**FreeWebToon -/- C:\Program Files\FreeWebToon\FWTUpdate.exe
[01-HKCUREG]**fwtalert -/- C:\Program Files\FreeWebToon\FWTAlert.exe
[01-HKCUREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncUpdate.exe /A
[01-HKCUREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[01-HKCUREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[01-HKCUREG]**MSMSGS -/- C:\Program Files\Messenger\msmsgs.exe /background
[01-HKCUREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[01-HKCUREG]**NaverVaccine -/- C:\Program Files\Naver\NaverVaccine\NVCUpgrader.exe /reboot
[01-HKCUREG]**NCleaner -/- C:\Program Files\Naver\NaverCleaner\ncleaner.exe /reboot
[01-HKCUREG]**NtoolsUpdater -/- C:\Program Files\Naver\NaverToolsUpdater\NToolsUpdaterLauncher.exe /M /autorun
[01-HKCUREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[01-HKCUREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[01-HKCUREG]**QuickTime Task -/- C:\Program Files\QuickTime\QTTask.exe -atboottime
[01-HKCUREG]**QZNewVer -/- C:\Documents and Settings\Administrator\Application Data\QuickZone2\qznewver.exe
[01-HKCUREG]**RTHDCPL -/- RTHDCPL.EXE
[01-HKCUREG]**slink -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\slink\slink.exe
[01-HKCUREG]**toastpop -/- C:\Documents and Settings\Administrator\Application Data\toastpop\toastpop.exe update
[01-HKCUREG]**WinKeyword -/- C:\Program Files\KoreanKeyword\WinKeyword.exe
[01-HKCUREG]**WinKeyword_Up -/- C:\Program Files\KoreanKeyword\WinKeyword_Up.exe
[02-HKLMREG]**Acrobat Assistant 8.0 -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
[02-HKLMREG]**Adobe Acrobat Speed Launcher -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
[02-HKLMREG]**Adobe_ID0ENQBO -/- C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
[02-HKLMREG]**AdobeCS4ServiceManager -/- C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe -launchedbylogin
[02-HKLMREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[02-HKLMREG]**APSDaemon -/- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
[02-HKLMREG]**cloud_.exe -/- C:\Program Files\cloudpop\cloud_.exe
[02-HKLMREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**DAEMON Tools-1033 -/- C:\Program Files\D-Tools\daemon.exe -lang 1033
[02-HKLMREG]**findkey_.exe -/- C:\Program Files\findkey\findkey_.exe
[02-HKLMREG]**FreeWebToon -/- C:\Program Files\FreeWebToon\FWTUpdate.exe
[02-HKLMREG]**fwtalert -/- C:\Program Files\FreeWebToon\FWTAlert.exe
[02-HKLMREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncUpdate.exe /A
[02-HKLMREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[02-HKLMREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[02-HKLMREG]**MSMSGS -/- C:\Program Files\Messenger\msmsgs.exe /background
[02-HKLMREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[02-HKLMREG]**NaverVaccine -/- C:\Program Files\Naver\NaverVaccine\NVCUpgrader.exe /reboot
[02-HKLMREG]**NCleaner -/- C:\Program Files\Naver\NaverCleaner\ncleaner.exe /reboot
[02-HKLMREG]**NtoolsUpdater -/- C:\Program Files\Naver\NaverToolsUpdater\NToolsUpdaterLauncher.exe /M /autorun
[02-HKLMREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[02-HKLMREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[02-HKLMREG]**QuickTime Task -/- C:\Program Files\QuickTime\QTTask.exe -atboottime
[02-HKLMREG]**QZNewVer -/- C:\Documents and Settings\Administrator\Application Data\QuickZone2\qznewver.exe
[02-HKLMREG]**RTHDCPL -/- RTHDCPL.EXE
[02-HKLMREG]**slink -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\slink\slink.exe
[02-HKLMREG]**toastpop -/- C:\Documents and Settings\Administrator\Application Data\toastpop\toastpop.exe update
[02-HKLMREG]**WinKeyword -/- C:\Program Files\KoreanKeyword\WinKeyword.exe
[02-HKLMREG]**WinKeyword_Up -/- C:\Program Files\KoreanKeyword\WinKeyword_Up.exe
[03-BHOCLSD]**{000011A1-74C9-4c7e-9B4E-59B5765CF409} -/- c:\program files\naver\navervaccine\naversafeguard\nsafeguard_2013_4_18_1.dll
[03-BHOCLSD]**{67C41E9E-2EBF-4F2B-AF74-314F0D793172} -/- C:\Program Files\naver\NaverToolbar\NaverTB_4_0_16_241.dll
[04-TOOLBAR]**{47833539-D0C5-4125-9FA8-0819E2EAAC93} -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
[04-TOOLBAR]**{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} -/- C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll
[04-TOOLBAR]**{D09CFF09-A42A-4EDC-9804-E61224F59CA1} -/- C:\Program Files\naver\NaverToolbar\NaverTB_4_0_16_241.dll
[04-TOOLBAR]**Locked -/- N.A
[05-SERVICE]**Adobe Version Cue CS4 -/- C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe -win32service
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**ALYac_RTSrv -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**Ati HotKey Poller -/- C:\WINDOWS\system32\Ati2evxx.exe
[05-SERVICE]**CoosmSvc -/- C:\WINDOWS\system32\economicsv.exe
[05-SERVICE]**eichkwtz -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\eichkwtz\eichkwtz.dll
[05-SERVICE]**eqlxdkhioa -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\eqlxdkhioa\eqlxdkhioa.dll
[05-SERVICE]**FLEXnet Licensing Service -/- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
[05-SERVICE]**FreeWebToon -/- C:\Program Files\FreeWebToon\FWTChkSvc.exe
[05-SERVICE]**kjhsbpbzdvl -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\kjhsbpbzdvl\kjhsbpbzdvl.dll
[05-SERVICE]**Messenger -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\kkjjhmnfeqczzg.dll
[05-SERVICE]**NameCleanSvc -/- C:\Program Files\NameClean\PrivChkSvc.exe
[05-SERVICE]**napagent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**NCleanService -/- C:\Program Files\Naver\NaverCleaner\NCleanService.exe
[05-SERVICE]**NDrive Service -/- C:\Program Files\Naver\NaverNDrive\NDriveSVC.exe
[05-SERVICE]**NetAccelerator -/- C:\Program Files\FileJo\NetAccelerator.exe
[05-SERVICE]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[05-SERVICE]**npkfxsvc -/- C:\WINDOWS\system32\npkfxsvc.exe
[05-SERVICE]**Nsavsvc -/- C:\Program Files\Naver\NaverVaccine\Nsavsvc.npc
[05-SERVICE]**Nsvmon -/- C:\Program Files\Naver\NaverVaccine\Nsvmon.npc
[05-SERVICE]**odserv -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**piwjthbr -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\piwjthbr\piwjthbr.dll
[05-SERVICE]**rfjcmpsyiz -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\rfjcmpsyiz\rfjcmpsyiz.dll
[05-SERVICE]**SearchN -/- C:\Program Files\SearchN\SNChkSvc.exe
[05-SERVICE]**utvejroz -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\utvejroz\utvejroz.dll
[05-SERVICE]**WinCloud -/- C:\Program Files\Fileham.com\FileHam(fast)\WinCloud.exe
[05-SERVICE]**WPFFontCache_v0400 -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
[05-SERVICE]**zkinqmb -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\zkinqmb\zkinqmb.dll