Code : DQBCmY0HyRh+EAaDdmrhxdFjWwbRzpYmmmGYFndsyVfG/qz+lgYN3g==

프로그램분석

Code : DQBCmY0HyRh+EAaDdmrhxdFjWwbRzpYmmmGYFndsyVfG/qz+lgYN3g==

프로세스 천국 2013. 6. 16. 20:44

[00-PROCESS]**avp -/- C:\Program Files\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\avp.exe
[00-PROCESS]**Clock4_0 -/- C:\milad\clock4\Clock4_0.exe
[00-PROCESS]**FJTWMKSV -/- C:\WINDOWS\twain_32\fjscan32\FJTWMKSV.exe
[00-PROCESS]**FjtwMkup -/- C:\WINDOWS\Twain_32\fjscan32\FjtwMkup.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**FTErGuid -/- C:\WINDOWS\Twain_32\Fjscan32\ERG\FTErGuid.exe
[00-PROCESS]**FtLnSOP -/- C:\WINDOWS\Twain_32\Fjscan32\SOP\FtLnSOP.exe
[00-PROCESS]**FTPWREVT -/- C:\WINDOWS\Twain_32\Fjscan32\FTPWREVT\FTPWREVT.exe
[00-PROCESS]**hkcmd -/- C:\WINDOWS\system32\hkcmd.exe
[00-PROCESS]**HPWuSchd2 -/- C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
[00-PROCESS]**HPZipm12 -/- C:\WINDOWS\system32\HPZipm12.exe
[00-PROCESS]**IDMan -/- C:\Program Files\Internet Download Manager\IDMan.exe
[00-PROCESS]**IEMonitor -/- C:\Program Files\Internet Download Manager\IEMonitor.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**igfxpers -/- C:\WINDOWS\system32\igfxpers.exe
[00-PROCESS]**igfxsrvc -/- C:\WINDOWS\system32\igfxsrvc.exe
[00-PROCESS]**igfxtray -/- C:\WINDOWS\system32\igfxtray.exe
[00-PROCESS]**klnagent -/- C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe
[00-PROCESS]**maintenanceservice -/- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
[00-PROCESS]**MDM -/- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
[00-PROCESS]**NBService -/- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
[00-PROCESS]**NeroCheck -/- C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
[00-PROCESS]**Nitro_PIPAssistant -/- C:\Program Files\Nitro\Pro 8\Nitro_PIPAssistant.exe
[00-PROCESS]**NitroPDF -/- C:\Program Files\Nitro\Pro 8\NitroPDF.exe
[00-PROCESS]**NitroPDFDriverService8 -/- C:\Program Files\Nitro\Pro 8\NitroPDFDriverService8.exe
[00-PROCESS]**NLSSRV32 -/- C:\WINDOWS\system32\NLSSRV32.EXE
[00-PROCESS]**NMBgMonitor -/- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
[00-PROCESS]**NMIndexStoreSvr -/- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
[00-PROCESS]**ONRSD -/- C:\oracle\ora92\BIN\ONRSD.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**PandoraService -/- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
[00-PROCESS]**PanProcess -/- C:\Program Files\PANDORA.TV\PanService\PanProcess.exe
[00-PROCESS]**Reader_sl -/- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[00-PROCESS]**RTHDCPL -/- C:\WINDOWS\RTHDCPL.EXE
[00-PROCESS]**vapm -/- C:\Program Files\Kaspersky Lab\NetworkAgent\vapm.exe
[00-PROCESS]**ventafax -/- C:\Program Files\Venta\VentaFax & Voice 6\ventafax.exe
[00-PROCESS]**vfdrv32 -/- C:\Program Files\Venta\VentaFax & Voice 6\vfdrv32.exe
[00-PROCESS]**wdfmgr -/- C:\WINDOWS\system32\wdfmgr.exe
[00-PROCESS]**wmccds -/- C:\Program Files\Windows Media Connect 2\wmccds.exe
[00-PROCESS]**wscntfy -/- C:\WINDOWS\system32\wscntfy.exe
[01-HKCUREG]**Adobe Reader Speed Launcher -/- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[01-HKCUREG]**AVP -/- C:\Program Files\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\avp.exe
[01-HKCUREG]**BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} -/- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
[01-HKCUREG]**CTFMON.EXE -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**FJTWAIN Setup -/- C:\WINDOWS\Twain_32\fjscan32\FjtwMkup.exe /Station
[01-HKCUREG]**FtLnSOP_setup -/- C:\WINDOWS\Twain_32\Fjscan32\SOP\FtLnSOP.exe
[01-HKCUREG]**FTPWRENV -/- C:\WINDOWS\Twain_32\Fjscan32\FTPWREVT\FTPWREVT.exe
[01-HKCUREG]**HotKeysCmds -/- C:\WINDOWS\system32\hkcmd.exe
[01-HKCUREG]**HP Software Update -/- C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
[01-HKCUREG]**IDMan -/- C:\Program Files\Internet Download Manager\IDMan.exe /onboot
[01-HKCUREG]**IgfxTray -/- C:\WINDOWS\system32\igfxtray.exe
[01-HKCUREG]**NeroFilterCheck -/- C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
[01-HKCUREG]**Persistence -/- C:\WINDOWS\system32\igfxpers.exe
[01-HKCUREG]**RTHDCPL -/- RTHDCPL.EXE
[02-HKLMREG]**Adobe Reader Speed Launcher -/- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[02-HKLMREG]**AVP -/- C:\Program Files\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\avp.exe
[02-HKLMREG]**BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} -/- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
[02-HKLMREG]**CTFMON.EXE -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**FJTWAIN Setup -/- C:\WINDOWS\Twain_32\fjscan32\FjtwMkup.exe /Station
[02-HKLMREG]**FtLnSOP_setup -/- C:\WINDOWS\Twain_32\Fjscan32\SOP\FtLnSOP.exe
[02-HKLMREG]**FTPWRENV -/- C:\WINDOWS\Twain_32\Fjscan32\FTPWREVT\FTPWREVT.exe
[02-HKLMREG]**HotKeysCmds -/- C:\WINDOWS\system32\hkcmd.exe
[02-HKLMREG]**HP Software Update -/- C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
[02-HKLMREG]**IDMan -/- C:\Program Files\Internet Download Manager\IDMan.exe /onboot
[02-HKLMREG]**IgfxTray -/- C:\WINDOWS\system32\igfxtray.exe
[02-HKLMREG]**NeroFilterCheck -/- C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
[02-HKLMREG]**Persistence -/- C:\WINDOWS\system32\igfxpers.exe
[02-HKLMREG]**RTHDCPL -/- RTHDCPL.EXE
[03-BHOCLSD]**Adobe PDF Link Helper -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -/- {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
[03-BHOCLSD]**IDM integration (IDMIEHlprObj Class) -/- C:\Program Files\Internet Download Manager\IDMIECC.dll -/- {0055C089-8582-441B-A0BF-17B458C2A3A8}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**AVP -/- Kaspersky Endpoint Security Service -/- C:\Program Files\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\avp.exe -r
[05-SERVICE]**FJTWMKSV -/- FJTWMKSV -/- C:\WINDOWS\twain_32\fjscan32\FJTWMKSV.exe
[05-SERVICE]**klnagent -/- Kaspersky Lab Network Agent -/- C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe
[05-SERVICE]**klnsacwsrv -/- Kaspersky Lab authorization portal -/- C:\Program Files\Kaspersky Lab\NetworkAgent\klnsacwsrv.exe
[05-SERVICE]**MDM -/- Machine Debug Manager -/- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
[05-SERVICE]**MozillaMaintenance -/- Mozilla Maintenance Service -/- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
[05-SERVICE]**NBService -/- NBService -/- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
[05-SERVICE]**NitroDriverReadSpool8 -/- NitroPDFDriverCreatorReadSpool8 -/- C:\Program Files\Nitro\Pro 8\NitroPDFDriverService8.exe
[05-SERVICE]**nlsX86cc -/- Nalpeiron Licensing Service -/- C:\WINDOWS\system32\NLSSRV32.EXE
[05-SERVICE]**OracleOraHome92ClientCache -/- OracleOraHome92ClientCache -/- C:\oracle\ora92\BIN\ONRSD.EXE
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**PanService -/- PandoraService -/- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
[05-SERVICE]**Pml Driver HPZ12 -/- Pml Driver HPZ12 -/- C:\WINDOWS\system32\HPZipm12.exe
[05-SERVICE]**UMWdf -/- Windows User Mode Driver Framework -/- C:\WINDOWS\system32\wdfmgr.exe
[05-SERVICE]**WMConnectCDS -/- Windows Media Connect Service -/- C:\Program Files\Windows Media Connect 2\wmccds.exe