Code : Aa9YNrXNwzSoe4mte5m99JkeSaMf6ZY2

프로그램분석

Code : Aa9YNrXNwzSoe4mte5m99JkeSaMf6ZY2

프로세스 천국 2013. 5. 1. 22:32

[00-PROCESS]**AdobeARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[00-PROCESS]**ALZip -/- C:\Program Files\ESTsoft\ALZip\ALZip.exe
[00-PROCESS]**AppleMobileDeviceService -/- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
[00-PROCESS]**APSDaemon -/- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
[00-PROCESS]**clgsve -/- C:\Program Files\Windows CloudGet\clgsve.exe
[00-PROCESS]**clgsvr -/- C:\Program Files\Windows CloudGet\clgsvr.exe
[00-PROCESS]**ClientSM -/- C:\Program Files\SoftForum\XecureWeb\ActiveX\ClientSM.exe
[00-PROCESS]**clipview -/- C:\Program Files\clipview\clipview.exe
[00-PROCESS]**EBAgentHe -/- C:\Program Files\HeAlimi\EBAgentHe.exe
[00-PROCESS]**EXCEL -/- C:\Program Files\Microsoft Office\Office12\EXCEL.EXE
[00-PROCESS]**GoogleUpdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[00-PROCESS]**GreenT -/- C:\GreenT\GreenT.exe
[00-PROCESS]**hAgentSvc -/- C:\Program Files\Hauri\Virobot Management System\4.0\Agent\hAgentSvc.exe
[00-PROCESS]**hAgentTray -/- C:\Program Files\Hauri\Virobot Management System\4.0\Agent\hAgentTray.exe
[00-PROCESS]**hkcmd -/- C:\WINDOWS\system32\hkcmd.exe
[00-PROCESS]**hLogSvc -/- C:\Program Files\Hauri\Common\Log\hLogSvc.exe
[00-PROCESS]**hUpSvc -/- C:\Program Files\Hauri\Common\Update\hUpSvc.exe
[00-PROCESS]**hVrCommandSvc -/- C:\Program Files\Hauri\VRIS2011\hVrCommandSvc.exe
[00-PROCESS]**hVrMalSvc -/- C:\Program Files\Hauri\VRIS2011\hVrMalSvc.exe
[00-PROCESS]**hVrTray -/- C:\Program Files\Hauri\VRIS2011\hVrTray.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**igfxpers -/- C:\WINDOWS\system32\igfxpers.exe
[00-PROCESS]**igfxtray -/- C:\WINDOWS\system32\igfxtray.exe
[00-PROCESS]**ImageSAFERSvc -/- C:\windows\ImageSAFERSvc.exe
[00-PROCESS]**IMJPMIG -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
[00-PROCESS]**IMKRMIG -/- C:\Program Files\Common Files\Microsoft Shared\IME12\IMEKR\IMKRMIG.EXE
[00-PROCESS]**InkDietAgentManager -/- C:\Users\Administrator\InkDiet\InkDietAgentManager.exe
[00-PROCESS]**InkDietHKManager -/- C:\Users\Administrator\InkDiet\InkDietHKManager.exe
[00-PROCESS]**iPodService -/- C:\Program Files\iPod\bin\iPodService.exe
[00-PROCESS]**ismsvc -/- C:\Program Files\insafeclient\ismsvc.exe
[00-PROCESS]**ismsvc -/- C:\Program Files\Windows ISM\ismsvc.exe
[00-PROCESS]**ISZone -/- C:\Program Files\ISZone\ISZone.exe
[00-PROCESS]**ISZoneUpdate -/- C:\Program Files\ISZone\ISZoneUpdate.exe
[00-PROCESS]**iTunesHelper -/- C:\Program Files\iTunes\iTunesHelper.exe
[00-PROCESS]**java -/- C:\Program Files\Java\jre6\bin\java.exe
[00-PROCESS]**jqs -/- C:\Program Files\Java\jre6\bin\jqs.exe
[00-PROCESS]**jucheck -/- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
[00-PROCESS]**jusched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[00-PROCESS]**lstspop -/- C:\Program Files\lastpopup\lstspop.exe
[00-PROCESS]**lstspsv -/- C:\Program Files\lastpopup\lstspsv.exe
[00-PROCESS]**MADRMAgent -/- C:\Program Files\Markany\Document SAFER\MADRMAgent.exe
[00-PROCESS]**mDNSResponder -/- C:\Program Files\Bonjour\mDNSResponder.exe
[00-PROCESS]**mebspebe -/- C:\Program Files\mebspebe\mebspebe.exe
[00-PROCESS]**memothis -/- C:\Documents and Settings\Administrator\Application Data\MemoThis\memothis.exe
[00-PROCESS]**metablogagent -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\MetablogNewIssues\metablogagent.exe
[00-PROCESS]**MiPlatform320U -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\TOBESOFT\MiPlatform320U\MiPlatform320U.exe
[00-PROCESS]**MyPCInspector -/- C:\Program Files\MyPCInspector2\MyPCInspector.exe
[00-PROCESS]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[00-PROCESS]**npkfxsvc -/- C:\windows\system32\npkfxsvc.exe
[00-PROCESS]**nsCatCom -/- C:\Program Files\Kyocera\FileUtility\nsCatCom.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**PassNi -/- C:\Program Files\UbiNtisLab\PassNi_v25m\PassNi.exe
[00-PROCESS]**PIAgent -/- C:\Program Files\Privacy-i\PIAgent.exe
[00-PROCESS]**PIProtector32 -/- C:\Program Files\Privacy-i\PIProtector32.exe
[00-PROCESS]**Reader_sl -/- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
[00-PROCESS]**SFUSVC -/- C:\Program Files\Kyocera\FileUtility\SFUSVC.exe
[00-PROCESS]**SoftwareUpdate -/- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
[00-PROCESS]**StickyPad -/- C:\Program Files\StickyPad\StickyPad.exe
[00-PROCESS]**TINTSETP -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
[00-PROCESS]**TsService -/- C:\windows\system32\TsService.exe
[00-PROCESS]**Updater -/- C:\Documents and Settings\Administrator\Application Data\MemoThis\Updater.exe
[00-PROCESS]**utilspae -/- C:\Program Files\utilspae\utilspae.exe
[00-PROCESS]**voaclt -/- C:\Program Files\Windows VOA\voaclt.exe
[00-PROCESS]**voasvc -/- C:\Program Files\Windows VOA\voasvc.exe
[00-PROCESS]**vrscan -/- C:\Program Files\Hauri\Common\Base\vrscan.exe
[00-PROCESS]**winspep -/- C:\Program Files\Windows Winerspop 1.5\winspep.exe
[00-PROCESS]**winspop -/- C:\Program Files\Windows Winerspop 1.5\winspop.exe
[00-PROCESS]**winspst -/- C:\Program Files\Windows Winerspop 1.5\winspst.exe
[00-PROCESS]**winspsv -/- C:\Program Files\Windows Winerspop 1.5\winspsv.exe
[00-PROCESS]**WMPNetwk -/- C:\Program Files\Windows Media Player\WMPNetwk.exe
[01-HKCUREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[01-HKCUREG]**Adobe Reader Speed Launcher -/- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
[01-HKCUREG]**APSDaemon -/- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
[01-HKCUREG]**clipview -/- C:\Program Files\clipview\clipview.exe
[01-HKCUREG]**ctfmon.exe -/- C:\windows\system32\ctfmon.exe
[01-HKCUREG]**DRMAgent -/- C:\Program Files\Markany\Document SAFER\MADRMAgent.exe
[01-HKCUREG]**hAgentTray -/- C:\Program Files\Hauri\Virobot Management System\4.0\Agent\hAgentTray.exe
[01-HKCUREG]**HotKeysCmds -/- C:\WINDOWS\system32\hkcmd.exe
[01-HKCUREG]**IgfxTray -/- C:\WINDOWS\system32\igfxtray.exe
[01-HKCUREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[01-HKCUREG]**InkDietAgentManager -/- C:\Users\Administrator\InkDiet\InkDietAgentManager.exe
[01-HKCUREG]**InkDietHKManager -/- C:\Users\Administrator\InkDiet\InkDietHKManager.exe -cs
[01-HKCUREG]**ISZone -/- C:\Program Files\ISZone\ISZoneUpdate.exe
[01-HKCUREG]**iTunesHelper -/- C:\Program Files\iTunes\iTunesHelper.exe
[01-HKCUREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[01-HKCUREG]**mebspebe -/- C:\Program Files\mebspebe\mebspebe.exe
[01-HKCUREG]**MemoThis Agent -/- C:\Documents and Settings\Administrator\Application Data\MemoThis\memothis.exe update
[01-HKCUREG]**MyPCInspector -/- C:\Program Files\MyPCInspector2\MyPCInspector.exe /a
[01-HKCUREG]**Persistence -/- C:\WINDOWS\system32\igfxpers.exe
[01-HKCUREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[01-HKCUREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[01-HKCUREG]**PIAgent.exe -/- C:\Program Files\Privacy-i\PIAgent.exe
[01-HKCUREG]**sevenlink -/- C:\Documents and Settings\Administrator\sevenlink.exe
[01-HKCUREG]**signkey -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\signkey\signkey.exe
[01-HKCUREG]**Sticky Pad -/- C:\Program Files\StickyPad\StickyPad.exe
[01-HKCUREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[01-HKCUREG]**utilspae -/- C:\Program Files\utilspae\utilspae.exe
[01-HKCUREG]**VRIS2011 -/- C:\Program Files\Hauri\VRIS2011\hVrTray.exe
[01-HKCUREG]**WidgetUpdater -/- C:\Documents and Settings\Administrator\Application Data\MemoThis\Updater.exe
[02-HKLMREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[02-HKLMREG]**Adobe Reader Speed Launcher -/- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
[02-HKLMREG]**APSDaemon -/- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
[02-HKLMREG]**clipview -/- C:\Program Files\clipview\clipview.exe
[02-HKLMREG]**ctfmon.exe -/- C:\windows\system32\ctfmon.exe
[02-HKLMREG]**DRMAgent -/- C:\Program Files\Markany\Document SAFER\MADRMAgent.exe
[02-HKLMREG]**hAgentTray -/- C:\Program Files\Hauri\Virobot Management System\4.0\Agent\hAgentTray.exe
[02-HKLMREG]**HotKeysCmds -/- C:\WINDOWS\system32\hkcmd.exe
[02-HKLMREG]**IgfxTray -/- C:\WINDOWS\system32\igfxtray.exe
[02-HKLMREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[02-HKLMREG]**InkDietAgentManager -/- C:\Users\Administrator\InkDiet\InkDietAgentManager.exe
[02-HKLMREG]**InkDietHKManager -/- C:\Users\Administrator\InkDiet\InkDietHKManager.exe -cs
[02-HKLMREG]**ISZone -/- C:\Program Files\ISZone\ISZoneUpdate.exe
[02-HKLMREG]**iTunesHelper -/- C:\Program Files\iTunes\iTunesHelper.exe
[02-HKLMREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[02-HKLMREG]**mebspebe -/- C:\Program Files\mebspebe\mebspebe.exe
[02-HKLMREG]**MemoThis Agent -/- C:\Documents and Settings\Administrator\Application Data\MemoThis\memothis.exe update
[02-HKLMREG]**MyPCInspector -/- C:\Program Files\MyPCInspector2\MyPCInspector.exe /a
[02-HKLMREG]**Persistence -/- C:\WINDOWS\system32\igfxpers.exe
[02-HKLMREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[02-HKLMREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[02-HKLMREG]**PIAgent.exe -/- C:\Program Files\Privacy-i\PIAgent.exe
[02-HKLMREG]**sevenlink -/- C:\Documents and Settings\Administrator\sevenlink.exe
[02-HKLMREG]**signkey -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\signkey\signkey.exe
[02-HKLMREG]**Sticky Pad -/- C:\Program Files\StickyPad\StickyPad.exe
[02-HKLMREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[02-HKLMREG]**utilspae -/- C:\Program Files\utilspae\utilspae.exe
[02-HKLMREG]**VRIS2011 -/- C:\Program Files\Hauri\VRIS2011\hVrTray.exe
[02-HKLMREG]**WidgetUpdater -/- C:\Documents and Settings\Administrator\Application Data\MemoThis\Updater.exe
[03-BHOCLSD]**{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
[03-BHOCLSD]**{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -/- C:\Program Files\Java\jre6\bin\ssv.dll
[03-BHOCLSD]**{C9F82DA9-F2FC-4AC0-86C2-A34A5C4E9073} -/- C:\Documents and Settings\Administrator\Application Data\MemoThis\memothis.dll
[03-BHOCLSD]**{DBC80044-A445-435b-BC74-9C25C1C588A9} -/- C:\Program Files\Java\jre6\bin\jp2ssv.dll
[03-BHOCLSD]**{E7E6F031-17CE-4C07-BC86-EABFE594F69C} -/- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
[05-SERVICE]**Apple Mobile Device -/- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
[05-SERVICE]**Bonjour Service -/- C:\Program Files\Bonjour\mDNSResponder.exe
[05-SERVICE]**clgsvr32 -/- C:\Program Files\Windows CloudGet\clgsvr.exe
[05-SERVICE]**CUPMoniteringService -/- C:\Program Files\CUPService\MoniteringCUPService.exe
[05-SERVICE]**gupdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**gupdatem -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**hAgentLogSvc -/- C:\Program Files\Hauri\Common\Log\hLogSvc.exe -agent
[05-SERVICE]**hAgentSvc -/- C:\Program Files\Hauri\Virobot Management System\4.0\Agent\hAgentSvc.exe
[05-SERVICE]**hAgentUpSvc -/- C:\Program Files\Hauri\Common\Update\hUpSvc.exe
[05-SERVICE]**hVrCommandSvc -/- C:\Program Files\Hauri\VRIS2011\hVrCommandSvc.exe
[05-SERVICE]**hVrMalSvc -/- C:\Program Files\Hauri\VRIS2011\hVrMalSvc.exe
[05-SERVICE]**Image Protection -/- C:\windows\ImageSAFERSvc.exe
[05-SERVICE]**InkDiet Service -/- C:\Users\Administrator\InkDiet\InkDietHKManager.exe
[05-SERVICE]**iPod Service -/- C:\Program Files\iPod\bin\iPodService.exe
[05-SERVICE]**ismsvc -/- C:\Program Files\Windows ISM\ismsvc.exe
[05-SERVICE]**ismsvc32 -/- C:\Program Files\insafeclient\ismsvc.exe
[05-SERVICE]**JavaQuickStarterService -/- C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
[05-SERVICE]**lstspsv32 -/- C:\Program Files\lastpopup\lstspsv.exe
[05-SERVICE]**napagent -/- C:\windows\System32\svchost.exe -/- C:\windows\System32\qagentrt.dll
[05-SERVICE]**Net Driver HPZ12 -/- C:\windows\System32\svchost.exe -/- C:\WINDOWS\system32\HPZinw12.dll
[05-SERVICE]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[05-SERVICE]**npkfxsvc -/- C:\windows\system32\npkfxsvc.exe
[05-SERVICE]**odserv -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**PIProtector -/- C:\Program Files\Privacy-i\PIProtector32.exe
[05-SERVICE]**Pml Driver HPZ12 -/- C:\windows\System32\svchost.exe -/- C:\WINDOWS\system32\HPZipm12.dll
[05-SERVICE]**SFUSVC -/- C:\Program Files\Kyocera\FileUtility\SFUSVC.exe
[05-SERVICE]**SiteClientService -/- C:\Program Files\Hauri\SiteClient\clisvc.exe
[05-SERVICE]**TsService -/- C:\windows\system32\TsService.exe
[05-SERVICE]**ViRobot Common Scan Service -/- C:\Program Files\Hauri\Common\Base\vrscan.exe
[05-SERVICE]**voasvc -/- C:\Program Files\Windows VOA\voasvc.exe
[05-SERVICE]**winspsv32 -/- C:\Program Files\Windows Winerspop 1.5\winspsv.exe