Code : 7E7vaJbBPG5TG2BXniQWCuZkqV3F4s0UGZRkW/ySlKqxj+4Q3b8EUA==

프로그램분석

Code : 7E7vaJbBPG5TG2BXniQWCuZkqV3F4s0UGZRkW/ySlKqxj+4Q3b8EUA==

프로세스 천국 2013. 6. 15. 22:20

[00-PROCESS]**00f1e2f3 -/- C:\Users\Administrator\AppData\Local\Temp\00f1e2f3.exe
[00-PROCESS]**9b1145846 -/- C:\Users\Administrator\AppData\Roaming\9b1145846.exe
[00-PROCESS]**chrome -/- C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
[00-PROCESS]**csrss -/- C:\Users\Administrator\AppData\Roaming\csrss.exe
[00-PROCESS]**csrss -/- C:\Users\Administrator\AppData\Roaming\System32\csrss.exe
[00-PROCESS]**DCSHelper -/- C:\ProgramData\DatacardService\DCSHelper.exe
[00-PROCESS]**GoogleUpdate -/- C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe
[00-PROCESS]**GrooveAuditService -/- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
[00-PROCESS]**GrooveMonitor -/- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**maubv -/- C:\Users\Administrator\AppData\Roaming\Juyrwa\maubv.exe
[00-PROCESS]**NwSapAutoWorkstationUpdateService -/- C:\Program Files\SAP\SAPsetup\setup\Updater\NwSapAutoWorkstationUpdateService.exe
[00-PROCESS]**NwSapSetupUserNotificationTool -/- C:\Program Files\SAP\SapSetup\setup\Updater\NwSapSetupUserNotificationTool.exe
[00-PROCESS]**NwSapSetupUserNotificationTool -/- C:\Program Files\SAP\SAPsetup\setup\Updater\NwSapSetupUserNotificationTool.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**Reader_sl -/- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[00-PROCESS]**sapsetup -/- C:\Users\Administrator\Downloads\setup\sapsetup.exe
[00-PROCESS]**service -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\O20303Z\service.exe
[00-PROCESS]**SMSvcHost -/- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**svchost -/- C:\Users\Administrator\AppData\Roaming\svchost.exe
[00-PROCESS]**TeamViewer_Service -/- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
[00-PROCESS]**winlogon -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\O20303Z\winlogon.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**{A74C188A-D2E4-AD42-9DAA-EA13AB6FC90E} -/- C:\Users\Administrator\AppData\Roaming\Juyrwa\maubv.exe
[01-HKCUREG]**9b1145846 -/- C:\Users\Administrator\AppData\Roaming\9b1145846.exe
[01-HKCUREG]**Adobe Reader Speed Launcher -/- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[01-HKCUREG]**Client Server Runtime Process -/- C:\Users\Administrator\AppData\Roaming\csrss.exe
[01-HKCUREG]**DP -/- C:\Users\Administrator\AppData\Local\Temp\00f1e2f3.exe
[01-HKCUREG]**Google Update -/- C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe /c
[01-HKCUREG]**GrooveMonitor -/- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
[01-HKCUREG]**Host-process Windows (Rundll32.exe) -/- C:\Users\Administrator\AppData\Roaming\System32\csrss.exe
[01-HKCUREG]**Microsoft Device Manager -/-
[01-HKCUREG]**SAP_WUS_UNT -/- C:\Program Files\SAP\SAPsetup\setup\Updater\NwSapSetupUserNotificationTool.exe
[01-HKCUREG]**SAPSETUP_PENDING_INST -/- C:\Users\Administrator\Downloads\setup\sapsetup.exe /continue /log:append
[01-HKCUREG]**Service Host Process for Windows -/- C:\Users\Administrator\AppData\Roaming\svchost.exe
[01-HKCUREG]**T1024844TT4 -/- C:\Windows\system32\773043201538l.exe
[01-HKCUREG]**T1TT4 -/- \l.exe
[01-HKCUREG]**tcpudp -/- C:\Windows\0133f868.exe
[01-HKCUREG]**uTorrent -/- C:\Program Files\uTorrent\uTorrent.exe /MINIMIZED
[02-HKLMREG]**{A74C188A-D2E4-AD42-9DAA-EA13AB6FC90E} -/- C:\Users\Administrator\AppData\Roaming\Juyrwa\maubv.exe
[02-HKLMREG]**9b1145846 -/- C:\Users\Administrator\AppData\Roaming\9b1145846.exe
[02-HKLMREG]**Adobe Reader Speed Launcher -/- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[02-HKLMREG]**Client Server Runtime Process -/- C:\Users\Administrator\AppData\Roaming\csrss.exe
[02-HKLMREG]**DP -/- C:\Users\Administrator\AppData\Local\Temp\00f1e2f3.exe
[02-HKLMREG]**Google Update -/- C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe /c
[02-HKLMREG]**GrooveMonitor -/- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
[02-HKLMREG]**Host-process Windows (Rundll32.exe) -/- C:\Users\Administrator\AppData\Roaming\System32\csrss.exe
[02-HKLMREG]**Microsoft Device Manager -/-
[02-HKLMREG]**SAP_WUS_UNT -/- C:\Program Files\SAP\SAPsetup\setup\Updater\NwSapSetupUserNotificationTool.exe
[02-HKLMREG]**SAPSETUP_PENDING_INST -/- C:\Users\Administrator\Downloads\setup\sapsetup.exe /continue /log:append
[02-HKLMREG]**Service Host Process for Windows -/- C:\Users\Administrator\AppData\Roaming\svchost.exe
[02-HKLMREG]**T1024844TT4 -/- C:\Windows\system32\773043201538l.exe
[02-HKLMREG]**T1TT4 -/- \l.exe
[02-HKLMREG]**tcpudp -/- C:\Windows\0133f868.exe
[02-HKLMREG]**uTorrent -/- C:\Program Files\uTorrent\uTorrent.exe /MINIMIZED
[03-BHOCLSD]**Adobe PDF Link Helper -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -/- {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
[03-BHOCLSD]**Groove GFS Browser Helper -/- C:\PROGRA~1\MICROS~1\Office12\GR469A~1.DLL -/- {72853161-30C5-4D22-B7F9-0BBC1D38A37E}
[05-SERVICE]**HWDeviceService.exe -/- HWDeviceService.exe -/- C:\ProgramData\DatacardService\HWDeviceService.exe -/service
[05-SERVICE]**lmhosts -/- TCP/IP NetBIOS Helper -/- C:\Windows\system32\svchost.exe -/- C:\Windows\System32\lltdsvc.dll
[05-SERVICE]**Microsoft Office Groove Audit Service -/- Microsoft Office Groove Audit Service -/- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
[05-SERVICE]**NlaSvc -/- Network Location Awareness -/- C:\Windows\System32\svchost.exe
[05-SERVICE]**nsi -/- Network Store Interface Service -/- C:\Windows\system32\svchost.exe
[05-SERVICE]**NWSAPAutoWorkstationUpdateSvc -/- SAPSetup Automatic Workstation Update Service -/- C:\Program Files\SAP\SAPsetup\setup\Updater\NwSapAutoWorkstationUpdateService.exe
[05-SERVICE]**odserv -/- Microsoft Office Diagnostics Service -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**StorSvc -/- Storage Service -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\storsvc.dll
[05-SERVICE]**TeamViewer8 -/- TeamViewer 8 -/- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe