Code : rb6guAjCeLGqfc4Uu4AhWem4A2Lf1cCVTIx3Ok2MFDA=

프로그램분석

Code : rb6guAjCeLGqfc4Uu4AhWem4A2Lf1cCVTIx3Ok2MFDA=

프로세스 천국 2013. 6. 27. 13:53

[00-PROCESS]**AdobeARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[00-PROCESS]**AYLaunch -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe
[00-PROCESS]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe
[00-PROCESS]**CNSEMAIN -/- C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE
[00-PROCESS]**CNSEUPDT -/- C:\Program Files\Canon\Solution Menu EX\CNSEUPDT.EXE
[00-PROCESS]**ConversionService -/- C:\Program Files\Soda PDF 3D Reader\ConversionService.exe
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**DTLite -/- C:\Program Files\DAEMON Tools Lite\DTLite.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**FNPLicensingService -/- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
[00-PROCESS]**FullUtilService -/- C:\Program Files\FullUtil\FullUtilService.exe
[00-PROCESS]**GoogleUpdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[00-PROCESS]**GROOVE -/- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
[00-PROCESS]**hcsvc -/- C:\Program Files\hcpop\hcsvc.exe
[00-PROCESS]**HelperService -/- C:\Program Files\Soda PDF 3D Reader\HelperService.exe
[00-PROCESS]**IMEDICTUPDATE -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[00-PROCESS]**IMEKLMG -/- C:\Program Files\Common Files\microsoft shared\IME14\SHARED\IMEKLMG.EXE
[00-PROCESS]**IMEKLMG -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEKLMG.EXE
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**InstHelper -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe
[00-PROCESS]**jusched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[00-PROCESS]**Magnify -/- C:\Windows\System32\Magnify.exe
[00-PROCESS]**mDNSResponder -/- C:\Program Files\Bonjour\mDNSResponder.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
[00-PROCESS]**MUIStartMenu -/- C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe
[00-PROCESS]**npesvc -/- C:\Program Files\nProtect\nProtect Online Security\npesvc.exe
[00-PROCESS]**npkfxsvc -/- C:\Windows\system32\npkfxsvc.exe
[00-PROCESS]**nvSCPAPISvr -/- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
[00-PROCESS]**nvtray -/- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
[00-PROCESS]**nvvsvc -/- C:\Windows\system32\nvvsvc.exe
[00-PROCESS]**nvxdsync -/- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**OSPPSVC -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**QTTask -/- C:\Program Files\QuickTime\QTTask.exe
[00-PROCESS]**RAVCpl64 -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
[00-PROCESS]**Reader_sl -/- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[00-PROCESS]**RichVideo -/- C:\Program Files\CyberLink\Shared files\RichVideo.exe
[00-PROCESS]**rundll32 -/- C:\Windows\system32\rundll32.exe
[00-PROCESS]**sbwenmgr -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\sbwenmgr.exe
[00-PROCESS]**sbwenup -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\sbwenup.exe
[00-PROCESS]**setup_wm -/- C:\Program Files\Windows Media Player\setup_wm.exe
[00-PROCESS]**splwow64 -/- C:\Windows\splwow64.exe
[00-PROCESS]**svcwsmwin -/- C:\Windows\system32\svcwsmwin.exe
[00-PROCESS]**WatAdminSvc -/- C:\Windows\system32\Wat\WatAdminSvc.exe
[00-PROCESS]**wdrwsmsvc -/- C:\Windows\system32\wdrwsmsvc.exe
[00-PROCESS]**WindowNetworkManager -/- C:\Program Files\Window Network Manager\WindowNetworkManager.exe
[00-PROCESS]**windowstab -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab.exe
[00-PROCESS]**windowstab_mon -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[00-PROCESS]**windowstab_uc -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe
[00-PROCESS]**winsmex -/- C:\Program Files\WinsManager\winsmex.exe
[00-PROCESS]**WinxpendUP_s2vdk -/- C:\Program Files\WinExpand_s2vdk\WinxpendUP_s2vdk.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[01-HKCUREG]**Adobe Reader Speed Launcher -/- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[01-HKCUREG]**ALToolBar -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe -boot
[01-HKCUREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[01-HKCUREG]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices
[01-HKCUREG]**CanonSolutionMenuEx -/- C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
[01-HKCUREG]**DAEMON Tools Lite -/- C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun
[01-HKCUREG]**FullUtilService -/- C:\Program Files\FullUtil\FullUtilService.exe run
[01-HKCUREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[01-HKCUREG]**IME14 KOR Setup -/- C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[01-HKCUREG]**QuickTime Task -/- C:\Program Files\QuickTime\QTTask.exe -atboottime
[01-HKCUREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
[01-HKCUREG]**sbwen -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\sbwenup.exe
[01-HKCUREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[01-HKCUREG]**UpdatePDRShortCut -/- C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\PowerDirector UpdateWithCreateOnce Software\CyberLink\PowerDirector\8.0
[01-HKCUREG]**Window Network Manager -/- C:\Program Files\Window Network Manager\WindowNetworkManager.exe
[01-HKCUREG]**WINDOWSTAB_UC -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe /run
[01-HKCUREG]**windvieweropt -/- C:\Program Files\windviewer\windopt.exe
[02-HKLMREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[02-HKLMREG]**Adobe Reader Speed Launcher -/- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[02-HKLMREG]**ALToolBar -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe -boot
[02-HKLMREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[02-HKLMREG]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices
[02-HKLMREG]**CanonSolutionMenuEx -/- C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
[02-HKLMREG]**DAEMON Tools Lite -/- C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun
[02-HKLMREG]**FullUtilService -/- C:\Program Files\FullUtil\FullUtilService.exe run
[02-HKLMREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[02-HKLMREG]**IME14 KOR Setup -/- C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[02-HKLMREG]**QuickTime Task -/- C:\Program Files\QuickTime\QTTask.exe -atboottime
[02-HKLMREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
[02-HKLMREG]**sbwen -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\sbwenup.exe
[02-HKLMREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[02-HKLMREG]**UpdatePDRShortCut -/- C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\PowerDirector UpdateWithCreateOnce Software\CyberLink\PowerDirector\8.0
[02-HKLMREG]**Window Network Manager -/- C:\Program Files\Window Network Manager\WindowNetworkManager.exe
[02-HKLMREG]**WINDOWSTAB_UC -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe /run
[02-HKLMREG]**windvieweropt -/- C:\Program Files\windviewer\windopt.exe
[03-BHOCLSD]**Adobe PDF Link Helper -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -/- {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
[03-BHOCLSD]**ALToolbarBho -/- C:\Program Files\ESTsoft\ALToolBar\ALToolBar_3100.dll -/- {7F1A79F9-78D1-4186-9F60-EE0B63DF042A}
[03-BHOCLSD]**Canon Easy-WebPrint EX BHO -/- C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll -/- {3785D0AD-BFFF-47F6-BF5B-A587C162FED9}
[03-BHOCLSD]**Groove GFS Browser Helper -/- C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL -/- {72853161-30C5-4D22-B7F9-0BBC1D38A37E}
[03-BHOCLSD]**Groove GFS Browser Helper -/- C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL -/- {72853161-30C5-4D22-B7F9-0BBC1D38A37E}
[03-BHOCLSD]**IESMon.Mon9 -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\sbwenim.dll -/- {354569A1-F753-4F90-B993-6CE219F55595}
[03-BHOCLSD]**Java(tm) Plug-In 2 SSV Helper -/- C:\Program Files\Java\jre7\bin\jp2ssv.dll -/- {DBC80044-A445-435b-BC74-9C25C1C588A9}
[03-BHOCLSD]**Java(tm) Plug-In SSV Helper -/- C:\Program Files\Java\jre7\bin\ssv.dll -/- {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
[03-BHOCLSD]**Office Document Cache Handler -/- C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL -/- {B4F3A835-0E21-4959-BA22-42B3008E02FF}
[03-BHOCLSD]**Office Document Cache Handler -/- C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL -/- {B4F3A835-0E21-4959-BA22-42B3008E02FF}
[03-BHOCLSD]**Soda PDF 3D Reader Helper -/- C:\Program Files\Soda PDF 3D Reader\PDFIEHelper.dll -/- {2FE0F895-6D1D-4c80-A20D-18E42DE9B631}
[03-BHOCLSD]**windviewer Class -/- C:\Program Files\windviewer\windviewer.dll -/- {CC34B3C3-3904-4D0E-8035-536715B28BBA}
[03-BHOCLSD]**WinExpandB Class -/- C:\Program Files\WinExpand_s2vdk\WinExpand_s2vdk.dll -/- {0000066B-0414-40BF-8558-765BCFDF7762}
[04-TOOLBAR]**ALToolBar -/- C:\Program Files\ESTsoft\ALToolBar\ALToolBar_3100.dll -/- {38FBE93D-4CA1-4414-AF6A-94920C5BD8DA}
[04-TOOLBAR]**Canon Easy-WebPrint EX -/- C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll -/- {759D9886-0C6F-4498-BAB6-4A5F47C6C72F}
[04-TOOLBAR]**Soda PDF 3D Reader Toolbar -/- C:\Program Files\Soda PDF 3D Reader\PDFIEPlugin.dll -/- {64C9D46E-8F8B-4158-9780-A6581C7439B1}
[04-TOOLBAR]**잠김영역복사 -/- C:\Program Files\Racl\RaclTB.dll -/- {BCE04A5B-2B7D-4F4B-BB8E-2A59611733DD}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**ALYac_RTSrv -/- ALYac RealTime Service -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- ALYac Update Service -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**Bonjour Service -/- ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## -/- C:\Program Files\Bonjour\mDNSResponder.exe
[05-SERVICE]**FLEXnet Licensing Service -/- FLEXnet Licensing Service -/- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
[05-SERVICE]**FontCache -/- Windows Font Cache Service -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\FntCache.dll
[05-SERVICE]**gupdate -/- Google 업데이트 서비스 (gupdate) -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**gupdatem -/- Google 업데이트 서비스 (gupdatem) -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**hcpop update -/- hcpop update svc -/- C:\Program Files\hcpop\hcsvc.exe
[05-SERVICE]**ImeDictUpdateService -/- Microsoft IME Dictionary Update -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[05-SERVICE]**Microsoft SharePoint Workspace Audit Service -/- Microsoft SharePoint Workspace Audit Service -/- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**npkfxsvc -/- npkfxsvc -/- C:\Windows\system32\npkfxsvc.exe
[05-SERVICE]**nProtect Online Security Service -/- nProtect Online Security Service -/- C:\Program Files\nProtect\nProtect Online Security\npesvc.exe
[05-SERVICE]**nvsvc -/- NVIDIA Display Driver Service -/- C:\Windows\system32\nvvsvc.exe
[05-SERVICE]**nvUpdatusService -/- NVIDIA Update Service Daemon -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**ose64 -/- Office 64 Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**osppsvc -/- Office Software Protection Platform -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**RichVideo -/- Cyberlink RichVideo Service(CRVS) -/- C:\Program Files\CyberLink\Shared files\RichVideo.exe
[05-SERVICE]**Soda PDF 3D Reader Helper Service -/- Soda PDF 3D Reader Helper Service -/- C:\Program Files\Soda PDF 3D Reader\HelperService.exe
[05-SERVICE]**Soda PDF 3D Reader Service -/- Soda PDF 3D Reader Service -/- C:\Program Files\Soda PDF 3D Reader\ConversionService.exe
[05-SERVICE]**Stereo Service -/- NVIDIA Stereoscopic 3D Driver Service -/- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
[05-SERVICE]**StorSvc -/- Storage Service -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\storsvc.dll
[05-SERVICE]**Windows WinsManager Diagnostics Service -/- Windows WinsManager Diagnostics Service -/- C:\Windows\system32\wdrwsmsvc.exe
[05-SERVICE]**WindowsDriver -/- WindowsDriver -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\WindowsDriver.dll
[05-SERVICE]**windowstab_mon -/- Windows Tab Manager -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[05-SERVICE]**WinsManager Service -/- WinsManager Service -/- C:\Windows\system32\svcwsmwin.exe