Code : S8SYyazuLPGDin+yX1kp7qAsmc+kAHUSzr7VAOChs7UFuxc47iwZUQ==

프로그램분석

Code : S8SYyazuLPGDin+yX1kp7qAsmc+kAHUSzr7VAOChs7UFuxc47iwZUQ==

프로세스 천국 2013. 5. 31. 21:38

[00-PROCESS]**Acrobat_sl -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
[00-PROCESS]**acrotray -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
[00-PROCESS]**Acrotray -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
[00-PROCESS]**AppleMobileDeviceService -/- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
[00-PROCESS]**APSDaemon -/- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
[00-PROCESS]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe
[00-PROCESS]**clgsve -/- C:\Program Files\Windows CloudGet\clgsve.exe
[00-PROCESS]**clgsvr -/- C:\Program Files\Windows CloudGet\clgsvr.exe
[00-PROCESS]**EasyPop_E -/- C:\Users\Administrator\AppData\Roaming\EasyPop\EasyPop_E.exe
[00-PROCESS]**EasyPop_S -/- C:\Users\Administrator\AppData\Roaming\EasyPop\EasyPop_S.exe
[00-PROCESS]**FNPLicensingService -/- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
[00-PROCESS]**GROOVE -/- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
[00-PROCESS]**hkcmd -/- C:\Windows\system32\hkcmd.exe
[00-PROCESS]**hkcmd -/- C:\Windows\System32\hkcmd.exe
[00-PROCESS]**HncChecker -/- C:\Program Files\Common Files\Hnc\HncUtils\HncChecker.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**igfxpers -/- C:\Windows\system32\igfxpers.exe
[00-PROCESS]**igfxpers -/- C:\Windows\System32\igfxpers.exe
[00-PROCESS]**igfxtray -/- C:\Windows\system32\igfxtray.exe
[00-PROCESS]**igfxtray -/- C:\Windows\System32\igfxtray.exe
[00-PROCESS]**IMEDICTUPDATE -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[00-PROCESS]**IMEKLMG -/- C:\Program Files\Common Files\microsoft shared\IME14\SHARED\IMEKLMG.EXE
[00-PROCESS]**IMEKLMG -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEKLMG.EXE
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**iPodService -/- C:\Program Files\iPod\bin\iPodService.exe
[00-PROCESS]**iTunesHelper -/- C:\Program Files\iTunes\iTunesHelper.exe
[00-PROCESS]**jucheck -/- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
[00-PROCESS]**jusched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[00-PROCESS]**LMS -/- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
[00-PROCESS]**mDNSResponder -/- C:\Program Files\Bonjour\mDNSResponder.exe
[00-PROCESS]**mmclt -/- C:\Program Files\Windows Multimedialab\mmclt.exe
[00-PROCESS]**mmsvc -/- C:\Program Files\Windows Multimedialab\mmsvc.exe
[00-PROCESS]**MpCmdRun -/- C:\Program Files\Microsoft Security Client\MpCmdRun.exe
[00-PROCESS]**mplus -/- C:\Program Files\gold-bar\mplus.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
[00-PROCESS]**MsMpEng -/- C:\Program Files\Microsoft Security Client\MsMpEng.exe
[00-PROCESS]**msseces -/- C:\Program Files\Microsoft Security Client\msseces.exe
[00-PROCESS]**NisSrv -/- C:\Program Files\Microsoft Security Client\NisSrv.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**OSPPSVC -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**Reader_sl -/- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
[00-PROCESS]**RTSHookInterop -/- C:\Program Files\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
[00-PROCESS]**smartmanager -/- C:\Program Files\smartmanager\smartmanager.exe
[00-PROCESS]**smpsvc -/- C:\Program Files\smartmanager\smpsvc.exe
[00-PROCESS]**smpsvt -/- C:\Program Files\smartmanager\smpsvt.exe
[00-PROCESS]**SMSvcHost -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**UltraMon -/- C:\Program Files\UltraMon\UltraMon.exe
[00-PROCESS]**UltraMonTaskbar -/- C:\Program Files\UltraMon\UltraMonTaskbar.exe
[00-PROCESS]**UNS -/- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
[00-PROCESS]**WatAdminSvc -/- C:\Windows\system32\Wat\WatAdminSvc.exe
[00-PROCESS]**wgmsvc -/- C:\Program Files\Windows Live Get Driver\wgmsvc.exe
[00-PROCESS]**winausrv -/- C:\Program Files\Windows Update Service\winausrv.exe
[00-PROCESS]**winkmv -/- C:\Program Files\Windows Key Manager\winkmv.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**Acrobat Assistant 8.0 -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
[01-HKCUREG]**Adobe Acrobat Speed Launcher -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
[01-HKCUREG]**Adobe Reader Speed Launcher -/- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
[01-HKCUREG]**APSDaemon -/- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
[01-HKCUREG]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices
[01-HKCUREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncChecker.exe
[01-HKCUREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[01-HKCUREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[01-HKCUREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[01-HKCUREG]**IME14 KOR Setup -/- C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[01-HKCUREG]**iTunesHelper -/- C:\Program Files\iTunes\iTunesHelper.exe
[01-HKCUREG]**MSC -/- C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey
[01-HKCUREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[01-HKCUREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[01-HKCUREG]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[01-HKCUREG]**WHelp -/- C:\Program Files\WHelp\WHelp.exe
[02-HKLMREG]**Acrobat Assistant 8.0 -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
[02-HKLMREG]**Adobe Acrobat Speed Launcher -/- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
[02-HKLMREG]**Adobe Reader Speed Launcher -/- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
[02-HKLMREG]**APSDaemon -/- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
[02-HKLMREG]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices
[02-HKLMREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncChecker.exe
[02-HKLMREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[02-HKLMREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[02-HKLMREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[02-HKLMREG]**IME14 KOR Setup -/- C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[02-HKLMREG]**iTunesHelper -/- C:\Program Files\iTunes\iTunesHelper.exe
[02-HKLMREG]**MSC -/- C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey
[02-HKLMREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[02-HKLMREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[02-HKLMREG]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[02-HKLMREG]**WHelp -/- C:\Program Files\WHelp\WHelp.exe
[03-BHOCLSD]**Adobe PDF Conversion Toolbar Helper -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll -/- {AE7CD045-E861-484f-8273-0445EE161910}
[03-BHOCLSD]**Adobe PDF Link Helper -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -/- {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
[03-BHOCLSD]**Groove GFS Browser Helper -/- C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL -/- {72853161-30C5-4D22-B7F9-0BBC1D38A37E}
[03-BHOCLSD]**Groove GFS Browser Helper -/- C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL -/- {72853161-30C5-4D22-B7F9-0BBC1D38A37E}
[03-BHOCLSD]**Java(tm) Plug-In 2 SSV Helper -/- C:\Program Files\Java\jre6\bin\jp2ssv.dll -/- {DBC80044-A445-435b-BC74-9C25C1C588A9}
[03-BHOCLSD]**Java(tm) Plug-In SSV Helper -/- C:\Program Files\Java\jre6\bin\ssv.dll -/- {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
[03-BHOCLSD]**Office Document Cache Handler -/- C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL -/- {B4F3A835-0E21-4959-BA22-42B3008E02FF}
[03-BHOCLSD]**Office Document Cache Handler -/- C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL -/- {B4F3A835-0E21-4959-BA22-42B3008E02FF}
[03-BHOCLSD]**Searchqu Toolbar -/- C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll -/- {99079a25-328f-4bd4-be04-00955acaa0a7}
[03-BHOCLSD]**SmartSelect Class -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll -/- {F4971EE7-DAA0-4053-9964-665D8EE6A077}
[03-BHOCLSD]**Windows Key Manager -/- C:\Program Files\Windows Key Manager\winkmc.dll -/- {53A4F514-7017-4927-B43C-E113D57D2F11}
[04-TOOLBAR]**Adobe PDF -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll -/- {47833539-D0C5-4125-9FA8-0819E2EAAC93}
[04-TOOLBAR]**N.A -/- N.A -/- !{2318C2B1-4965-11d4-9B18-009027A5CD4F}
[04-TOOLBAR]**N.A -/- N.A -/- !{9CA634EF-ECF0-4DD1-B7E2-B9CCFF40BCAF}
[04-TOOLBAR]**N.A -/- N.A -/- 10
[04-TOOLBAR]**N.A -/- N.A -/- Locked
[04-TOOLBAR]**Searchqu Toolbar -/- C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll -/- {99079a25-328f-4bd4-be04-00955acaa0a7}
[05-SERVICE]**Apple Mobile Device -/- Apple Mobile Device -/- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
[05-SERVICE]**Bonjour Service -/- Bonjour 서비스 -/- C:\Program Files\Bonjour\mDNSResponder.exe
[05-SERVICE]**clgsvr32 -/- Windows CloudGet Service -/- C:\Program Files\Windows CloudGet\clgsvr.exe
[05-SERVICE]**EasyPop_Service -/- EasyPop_Service -/- C:\Users\Administrator\AppData\Roaming\EasyPop\EasyPop_S.exe wiz0811
[05-SERVICE]**FLEXnet Licensing Service -/- FLEXnet Licensing Service -/- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
[05-SERVICE]**FontCache -/- Windows Font Cache Service -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\FntCache.dll
[05-SERVICE]**ImeDictUpdateService -/- Microsoft IME Dictionary Update -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[05-SERVICE]**iPod Service -/- iPod 서비스 -/- C:\Program Files\iPod\bin\iPodService.exe
[05-SERVICE]**LMS -/- Intel(R) Management and Security Application Local Management Service -/- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
[05-SERVICE]**Microsoft SharePoint Workspace Audit Service -/- Microsoft SharePoint Workspace Audit Service -/- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
[05-SERVICE]**mmsvc -/- Windows Multimedialab Service -/- C:\Program Files\Windows Multimedialab\mmsvc.exe
[05-SERVICE]**MsMpSvc -/- Microsoft Antimalware Service -/- C:\Program Files\Microsoft Security Client\MsMpEng.exe
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**NisSrv -/- Microsoft 네트워크 검사 -/- C:\Program Files\Microsoft Security Client\NisSrv.exe
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**osppsvc -/- Office Software Protection Platform -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**smpsvc32 -/- Windows Smart Pack Service -/- C:\Program Files\smartmanager\smpsvc.exe
[05-SERVICE]**UNS -/- Intel(R) Management and Security Application User Notification Service -/- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
[05-SERVICE]**wgmsvc32 -/- Windows Live Get Driver -/- C:\Program Files\Windows Live Get Driver\wgmsvc.exe
[05-SERVICE]**winausrv -/- Windows Update Service -/- C:\Program Files\Windows Update Service\winausrv.exe
[05-SERVICE]**winkmsvc -/- Windows Key Manager -/- C:\Program Files\Windows Key Manager\winkmv.exe