Code : +gse2uK7eZsuMnq1WYaKq3kM28g/khw3oy7fUty5kIY=

프로그램분석

Code : +gse2uK7eZsuMnq1WYaKq3kM28g/khw3oy7fUty5kIY=

프로세스 천국 2013. 5. 16. 21:37

[00-PROCESS]**avp -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
[00-PROCESS]**BTPlayerCtrl -/- C:\Program Files\Intel\Bluetooth\BTPlayerCtrl.exe
[00-PROCESS]**chrome -/- C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**devmonsrv -/- C:\Program Files\Intel\Bluetooth\devmonsrv.exe
[00-PROCESS]**DTUpdate -/- C:\Users\Administrator\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
[00-PROCESS]**ETDCtrl -/- C:\Program Files\Elantech\ETDCtrl.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**GrooveAuditService -/- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
[00-PROCESS]**GrooveMonitor -/- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
[00-PROCESS]**hkcmd -/- C:\Windows\system32\hkcmd.exe
[00-PROCESS]**hkcmd -/- C:\Windows\System32\hkcmd.exe
[00-PROCESS]**icq -/- C:\Users\Administrator\AppData\Roaming\ICQM\icq.exe
[00-PROCESS]**IDriverT -/- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
[00-PROCESS]**igfxpers -/- C:\Windows\system32\igfxpers.exe
[00-PROCESS]**igfxpers -/- C:\Windows\System32\igfxpers.exe
[00-PROCESS]**igfxsrvc -/- C:\Windows\system32\igfxsrvc.exe
[00-PROCESS]**igfxtray -/- C:\Windows\system32\igfxtray.exe
[00-PROCESS]**igfxtray -/- C:\Windows\System32\igfxtray.exe
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**IntelCpHeciSvc -/- C:\Windows\system32\IntelCpHeciSvc.exe
[00-PROCESS]**magent -/- C:\Users\Administrator\AppData\Roaming\Mail.Ru\Agent\magent.exe
[00-PROCESS]**ManyCam -/- C:\Program Files\Bin\ManyCam.exe
[00-PROCESS]**mediasrv -/- C:\Program Files\Intel\Bluetooth\mediasrv.exe
[00-PROCESS]**MsMpEng -/- C:\Program Files\Microsoft Security Client\MsMpEng.exe
[00-PROCESS]**msseces -/- C:\Program Files\Microsoft Security Client\msseces.exe
[00-PROCESS]**NisSrv -/- C:\Program Files\Microsoft Security Client\NisSrv.exe
[00-PROCESS]**NOTEPAD -/- C:\Windows\system32\NOTEPAD.EXE
[00-PROCESS]**nvtray -/- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
[00-PROCESS]**nvvsvc -/- C:\Windows\system32\nvvsvc.exe
[00-PROCESS]**obexsrv -/- C:\Program Files\Intel\Bluetooth\obexsrv.exe
[00-PROCESS]**OctoshapeClient -/- C:\Users\Administrator\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**oovoo -/- C:\Program Files\ooVoo\oovoo.exe
[00-PROCESS]**ooVoo -/- C:\Program Files\ooVoo\ooVoo.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**RAVCpl64 -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
[00-PROCESS]**RocketDock -/- C:\Program Files\RocketDock\RocketDock.exe
[00-PROCESS]**rundll32 -/- C:\Windows\System32\rundll32.exe
[00-PROCESS]**SbieCtrl -/- C:\Program Files\SbieCtrl.exe
[00-PROCESS]**SbieSvc -/- C:\Program Files\SbieSvc.exe
[00-PROCESS]**SMSvcHost -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**Updater -/- C:\Program Files\Skype\Updater\Updater.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**AVP -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
[01-HKCUREG]**BTMTrayAgent -/- rundll32.exe C:\Program Files\Intel\Bluetooth\btmshell.dllTrayApp
[01-HKCUREG]**ETDCtrl -/- C:\Program Files\Elantech\ETDCtrl.exe
[01-HKCUREG]**Evoxxxeaveckglba.exe -/- C:\Users\Administrator\AppData\Roaming\Evoxxxeaveckglba.exe
[01-HKCUREG]**GrooveMonitor -/- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
[01-HKCUREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[01-HKCUREG]**icq -/- C:\Users\Administrator\AppData\Roaming\ICQM\icq.exe -CU
[01-HKCUREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[01-HKCUREG]**MAgent -/- C:\Users\Administrator\AppData\Roaming\Mail.Ru\Agent\magent.exe -CU
[01-HKCUREG]**ManyCam -/- C:\Program Files\Bin\ManyCam.exe /silent
[01-HKCUREG]**MSC -/- C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey
[01-HKCUREG]**Octoshape Streaming Services -/- C:\Users\Administrator\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe -inv:bootrun
[01-HKCUREG]**ooVoo.exe -/- C:\Program Files\ooVoo\oovoo.exe /minimized
[01-HKCUREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[01-HKCUREG]**Qelauhahpduwdhqu.exe -/- C:\Users\Administrator\AppData\Roaming\Qelauhahpduwdhqu.exe
[01-HKCUREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
[01-HKCUREG]**SandboxieControl -/- C:\Program Files\SbieCtrl.exe
[01-HKCUREG]**SDP -/- C:\Program Files\FilesFrog Update Checker\update_checker.exe /auto
[02-HKLMREG]**AVP -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
[02-HKLMREG]**BTMTrayAgent -/- rundll32.exe C:\Program Files\Intel\Bluetooth\btmshell.dllTrayApp
[02-HKLMREG]**ETDCtrl -/- C:\Program Files\Elantech\ETDCtrl.exe
[02-HKLMREG]**Evoxxxeaveckglba.exe -/- C:\Users\Administrator\AppData\Roaming\Evoxxxeaveckglba.exe
[02-HKLMREG]**GrooveMonitor -/- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
[02-HKLMREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[02-HKLMREG]**icq -/- C:\Users\Administrator\AppData\Roaming\ICQM\icq.exe -CU
[02-HKLMREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[02-HKLMREG]**MAgent -/- C:\Users\Administrator\AppData\Roaming\Mail.Ru\Agent\magent.exe -CU
[02-HKLMREG]**ManyCam -/- C:\Program Files\Bin\ManyCam.exe /silent
[02-HKLMREG]**MSC -/- C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey
[02-HKLMREG]**Octoshape Streaming Services -/- C:\Users\Administrator\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe -inv:bootrun
[02-HKLMREG]**ooVoo.exe -/- C:\Program Files\ooVoo\oovoo.exe /minimized
[02-HKLMREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[02-HKLMREG]**Qelauhahpduwdhqu.exe -/- C:\Users\Administrator\AppData\Roaming\Qelauhahpduwdhqu.exe
[02-HKLMREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
[02-HKLMREG]**SandboxieControl -/- C:\Program Files\SbieCtrl.exe
[02-HKLMREG]**SDP -/- C:\Program Files\FilesFrog Update Checker\update_checker.exe /auto
[03-BHOCLSD]**Content Blocker Plugin -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll -/- {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}
[03-BHOCLSD]**Content Blocker Plugin -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll -/- {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}
[03-BHOCLSD]**DefaultTab Browser Helper -/- C:\Users\Administrator\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll -/- {7F6AFBF1-E065-4627-A2FD-810366367D01}
[03-BHOCLSD]**Groove GFS Browser Helper -/- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll -/- {72853161-30C5-4D22-B7F9-0BBC1D38A37E}
[03-BHOCLSD]**N.A -/- N.A -/- {7825CFB6-490A-436B-9F26-4A7B5CFC01A9}
[03-BHOCLSD]**N.A -/- N.A -/- {8984B388-A5BB-4DF7-B274-77B879E179DB}
[03-BHOCLSD]**N.A -/- N.A -/- {D5FEC983-01DB-414a-9456-AF95AC9ED7B5}
[03-BHOCLSD]**TimerBHO Class -/- C:\Program Files\Get-Styles 2.0\updatebho.dll -/- {963B125B-8B21-49A2-A3A8-E37092276531}
[03-BHOCLSD]**TimerBHO Class -/- C:\Program Files\Get-Styles 2.0\utils\updatebho.dll -/- {963B125B-8B21-49A2-A3A8-E37092276531}
[03-BHOCLSD]**URL Advisor Plugin -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dll -/- {E33CF602-D945-461A-83F0-819F76A199F8}
[03-BHOCLSD]**URL Advisor Plugin -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll -/- {E33CF602-D945-461A-83F0-819F76A199F8}
[03-BHOCLSD]**Virtual Keyboard Plugin -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll -/- {73455575-E40C-433C-9784-C78DC7761455}
[03-BHOCLSD]**Virtual Keyboard Plugin -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll -/- {73455575-E40C-433C-9784-C78DC7761455}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**AVP -/- Kaspersky Anti-Virus Service -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe -r
[05-SERVICE]**Bluetooth Device Monitor -/- Bluetooth Device Monitor -/- C:\Program Files\Intel\Bluetooth\devmonsrv.exe
[05-SERVICE]**Bluetooth Media Service -/- Bluetooth Media Service -/- C:\Program Files\Intel\Bluetooth\mediasrv.exe
[05-SERVICE]**Bluetooth OBEX Service -/- Bluetooth OBEX Service -/- C:\Program Files\Intel\Bluetooth\obexsrv.exe
[05-SERVICE]**cphs -/- Intel(R) Content Protection HECI Service -/- C:\Windows\system32\IntelCpHeciSvc.exe
[05-SERVICE]**DefaultTabSearch -/- DefaultTabSearch -/- C:\Program Files\DefaultTab\DefaultTabSearch.exe
[05-SERVICE]**DefaultTabUpdate -/- DefaultTabUpdate -/- C:\Users\Administrator\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
[05-SERVICE]**IDriverT -/- InstallDriver Table Manager -/- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
[05-SERVICE]**lmhosts -/- Модуль поддержки NetBIOS через TCP/IP -/- C:\Windows\system32\svchost.exe -/- C:\Windows\System32\lltdsvc.dll
[05-SERVICE]**Microsoft Office Groove Audit Service -/- Microsoft Office Groove Audit Service -/- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
[05-SERVICE]**MsMpSvc -/- Microsoft Antimalware Service -/- C:\Program Files\Microsoft Security Client\MsMpEng.exe
[05-SERVICE]**NetMsmqActivator -/- Адаптер прослушивателя Net.Msmq -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe -NetMsmqActivator
[05-SERVICE]**NetPipeActivator -/- Адаптер прослушивателя Net.Pipe -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**NetTcpActivator -/- Адаптер прослушивателя Net.Tcp -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**NetTcpPortSharing -/- Служба общего доступа к портам Net.Tcp -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**NisSrv -/- Проверка сети (Майкрософт) -/- C:\Program Files\Microsoft Security Client\NisSrv.exe
[05-SERVICE]**NlaSvc -/- Служба сведений о подключенных сетях -/- C:\Windows\System32\svchost.exe
[05-SERVICE]**nsi -/- Служба интерфейса сохранения сети -/- C:\Windows\system32\svchost.exe
[05-SERVICE]**nvsvc -/- NVIDIA Display Driver Service -/- C:\Windows\system32\nvvsvc.exe
[05-SERVICE]**nvUpdatusService -/- NVIDIA Update Service Daemon -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**odserv -/- Microsoft Office Diagnostics Service -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**PerfHost -/- Хост библиотеки счетчика производительности -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**SbieSvc -/- Sandboxie Service -/- C:\Program Files\SbieSvc.exe
[05-SERVICE]**SkypeUpdate -/- Skype Updater -/- C:\Program Files\Skype\Updater\Updater.exe