Code : Nq4BvbZWOUjfSXlqi6ZCCcfTbWGXfbscq5cLtSBqHTQoJnU19SZ2Eg==

프로그램분석

Code : Nq4BvbZWOUjfSXlqi6ZCCcfTbWGXfbscq5cLtSBqHTQoJnU19SZ2Eg==

프로세스 천국 2013. 6. 21. 21:00

[00-PROCESS]**AdobeARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[00-PROCESS]**AStarter -/- C:\Program Files\Net-Class7 DMS Client\AStarter.exe
[00-PROCESS]**avp -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe
[00-PROCESS]**E_FATIELP -/- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIELP.EXE
[00-PROCESS]**EXCEL -/- C:\Program Files\Microsoft Office\Office12\EXCEL.EXE
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**HncViewerChecker -/- C:\Program Files\HNC\HOfficeViewer80\HncUtils\HncViewerChecker.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**IMJPMIG -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
[00-PROCESS]**IMKRMIG -/- C:\Program Files\Common Files\Microsoft Shared\IME12\IMEKR\IMKRMIG.EXE
[00-PROCESS]**innosvc -/- C:\WINDOWS\system32\innosvc.exe
[00-PROCESS]**jqs -/- C:\Program Files\Java\jre7\bin\jqs.exe
[00-PROCESS]**jucheck -/- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
[00-PROCESS]**jusched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[00-PROCESS]**klnagent -/- C:\Program Files\Kaspersky Lab\NetworkAgent 8\klnagent.exe
[00-PROCESS]**MagicAgent -/- C:\Program Files\Net-Class7 DMS Client\MagicAgent.exe
[00-PROCESS]**MagicClient -/- C:\Program Files\Net-Class7 DMS Client\MagicClient.exe
[00-PROCESS]**MagicMP -/- C:\Program Files\Net-Class7 DMS Client\MagicMP.exe
[00-PROCESS]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe
[00-PROCESS]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[00-PROCESS]**nvsvc32 -/- C:\WINDOWS\system32\nvsvc32.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**RTHDCPL -/- C:\WINDOWS\RTHDCPL.EXE
[00-PROCESS]**RUNDLL32 -/- C:\WINDOWS\system32\RUNDLL32.EXE
[00-PROCESS]**shdserv -/- C:\Program Files\MagicRC\shdserv.exe
[00-PROCESS]**shieldclnt -/- C:\Program Files\MagicRC\shieldclnt.exe
[00-PROCESS]**SMSvcHost -/- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**soffice -/- C:\Program Files\OpenOffice.org 3\program\soffice.exe
[00-PROCESS]**TINTSETP -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
[00-PROCESS]**UserMgr -/- C:\Program Files\Net-Class7 DMS Client\UserMgr.exe
[01-HKCUREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[01-HKCUREG]**Alcmtr -/- ALCMTR.EXE
[01-HKCUREG]**AVP -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe
[01-HKCUREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**EPSON T40W Series -/- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIELP.EXE /FU C:\WINDOWS\TEMP\E_S49.tmp /EF HKCU
[01-HKCUREG]**HOfficeViewerUpdate -/- C:\Program Files\HNC\HOfficeViewer80\HncUtils\HncViewerChecker.exe
[01-HKCUREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[01-HKCUREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[01-HKCUREG]**MStarter -/- C:\Program Files\Net-Class7 DMS Client\AStarter.exe
[01-HKCUREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[01-HKCUREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dllNvStartup
[01-HKCUREG]**NvMediaCenter -/- RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dllNvTaskbarInit
[01-HKCUREG]**nwiz -/- nwiz.exe /installquiet
[01-HKCUREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[01-HKCUREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[01-HKCUREG]**RTHDCPL -/- RTHDCPL.EXE
[01-HKCUREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[02-HKLMREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[02-HKLMREG]**Alcmtr -/- ALCMTR.EXE
[02-HKLMREG]**AVP -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe
[02-HKLMREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**EPSON T40W Series -/- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIELP.EXE /FU C:\WINDOWS\TEMP\E_S49.tmp /EF HKCU
[02-HKLMREG]**HOfficeViewerUpdate -/- C:\Program Files\HNC\HOfficeViewer80\HncUtils\HncViewerChecker.exe
[02-HKLMREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[02-HKLMREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[02-HKLMREG]**MStarter -/- C:\Program Files\Net-Class7 DMS Client\AStarter.exe
[02-HKLMREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[02-HKLMREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dllNvStartup
[02-HKLMREG]**NvMediaCenter -/- RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dllNvTaskbarInit
[02-HKLMREG]**nwiz -/- nwiz.exe /installquiet
[02-HKLMREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[02-HKLMREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[02-HKLMREG]**RTHDCPL -/- RTHDCPL.EXE
[02-HKLMREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[03-BHOCLSD]**Adobe PDF Link Helper -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -/- {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
[03-BHOCLSD]**Java(tm) Plug-In 2 SSV Helper -/- C:\Program Files\Java\jre7\bin\jp2ssv.dll -/- {DBC80044-A445-435b-BC74-9C25C1C588A9}
[03-BHOCLSD]**Java(tm) Plug-In SSV Helper -/- C:\Program Files\Java\jre7\bin\ssv.dll -/- {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
[03-BHOCLSD]**Naver SafeGuard -/- c:\program files\naver\navertoolbar\naversafeguard\nsafeguard_2012_9_24_1.dll -/- {000011A1-74C9-4c7e-9B4E-59B5765CF409}
[03-BHOCLSD]**네이버 툴바 도우미 -/- C:\Program Files\naver\NaverToolbar\NaverTB_4_0_12_199.dll -/- {67C41E9E-2EBF-4F2B-AF74-314F0D793172}
[04-TOOLBAR]**네이버 툴바 -/- C:\Program Files\naver\NaverToolbar\NaverTB_4_0_12_199.dll -/- {D09CFF09-A42A-4EDC-9804-E61224F59CA1}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**AVP -/- Kaspersky Anti-Virus 6.0 -/- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe -r
[05-SERVICE]**Innosvc -/- Innosvc -/- C:\WINDOWS\system32\innosvc.exe
[05-SERVICE]**Irmon -/- Infrared Monitor -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\irmon.dll
[05-SERVICE]**JavaQuickStarterService -/- Java Quick Starter -/- C:\Program Files\Java\jre7\bin\jqs.exe -service -config C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf
[05-SERVICE]**klnagent -/- Kaspersky Lab Network Agent -/- C:\Program Files\Kaspersky Lab\NetworkAgent 8\klnagent.exe
[05-SERVICE]**MagicAgent_Service -/- Magic Agent Service -/- C:\Program Files\Net-Class7 DMS Client\MagicClient.exe
[05-SERVICE]**napagent -/- Network Access Protection Agent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**Net Driver HPZ12 -/- Net Driver HPZ12 -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\system32\HPZinw12.dll
[05-SERVICE]**npkcmsvc -/- npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[05-SERVICE]**nvsvc -/- NVIDIA Display Driver Service -/- C:\WINDOWS\system32\nvsvc32.exe
[05-SERVICE]**odserv -/- Microsoft Office Diagnostics Service -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**Pml Driver HPZ12 -/- Pml Driver HPZ12 -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\system32\HPZipm12.dll
[05-SERVICE]**SHDSERV -/- SHDSERV -/- C:\Program Files\MagicRC\shdserv.exe
[05-SERVICE]**ShieldClientService -/- Shield Client Service -/- C:\Program Files\MagicRC\shieldclnt.exe