프로그램분석

Code : zibM1qD053DaEyxPWLvFjiw2X7GN7+YQn7s8S6KVT6ajcSWBQ0G/uw==

프로세스 천국 2013. 8. 17. 22:47

[00-PROCESS]**AdobeARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[00-PROCESS]**alg -/- C:\WINDOWS\System32\alg.exe
[00-PROCESS]**appst -/- C:\Documents and Settings\Administrator\Application Data\appsigntool\appst.exe
[00-PROCESS]**aspnet_state -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
[00-PROCESS]**cisvc -/- C:\WINDOWS\system32\cisvc.exe
[00-PROCESS]**clipsrv -/- C:\WINDOWS\system32\clipsrv.exe
[00-PROCESS]**conime -/- C:\WINDOWS\system32\conime.exe
[00-PROCESS]**ctfmon -/- C:\WINDOWS\system32\ctfmon.exe
[00-PROCESS]**dllhost -/- C:\WINDOWS\system32\dllhost.exe
[00-PROCESS]**dmadmin -/- C:\WINDOWS\System32\dmadmin.exe
[00-PROCESS]**Explorer -/- C:\WINDOWS\Explorer.EXE
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**hkcmd -/- C:\WINDOWS\system32\hkcmd.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**igfxpers -/- C:\WINDOWS\system32\igfxpers.exe
[00-PROCESS]**igfxtray -/- C:\WINDOWS\system32\igfxtray.exe
[00-PROCESS]**imapi -/- C:\WINDOWS\system32\imapi.exe
[00-PROCESS]**infocard -/- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**jqs -/- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
[00-PROCESS]**kos_earchup -/- C:\Program Files\KTH_OpenSearch\kos_earchup.exe
[00-PROCESS]**locator -/- C:\WINDOWS\system32\locator.exe
[00-PROCESS]**lsass -/- C:\WINDOWS\system32\lsass.exe
[00-PROCESS]**mDNSResponder -/- C:\Program Files\Bonjour\mDNSResponder.exe
[00-PROCESS]**mmc -/- C:\WINDOWS\system32\mmc.exe
[00-PROCESS]**mnmsrvc -/- C:\WINDOWS\system32\mnmsrvc.exe
[00-PROCESS]**mscorsvw -/- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
[00-PROCESS]**mscorsvw -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
[00-PROCESS]**msdtc -/- C:\WINDOWS\system32\msdtc.exe
[00-PROCESS]**msiexec -/- C:\WINDOWS\system32\msiexec.exe
[00-PROCESS]**netdde -/- C:\WINDOWS\system32\netdde.exe
[00-PROCESS]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[00-PROCESS]**npkfxsvc -/- C:\WINDOWS\system32\npkfxsvc.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**PresentationFontCache -/- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**rsvp -/- C:\WINDOWS\system32\rsvp.exe
[00-PROCESS]**SCardSvr -/- C:\WINDOWS\System32\SCardSvr.exe
[00-PROCESS]**ServiceFilter -/- C:\Program Files\AquaPlayer\ServiceFilter.exe
[00-PROCESS]**services -/- C:\WINDOWS\system32\services.exe
[00-PROCESS]**sessmgr -/- C:\WINDOWS\system32\sessmgr.exe
[00-PROCESS]**significant -/- C:\Program Files\Windows Media Player\significant.exe
[00-PROCESS]**smlogsvc -/- C:\WINDOWS\system32\smlogsvc.exe
[00-PROCESS]**smss -/- C:\WINDOWS\System32\smss.exe
[00-PROCESS]**SMSvcHost -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
[00-PROCESS]**spoolsv -/- C:\WINDOWS\system32\spoolsv.exe
[00-PROCESS]**svchost -/- C:\WINDOWS\system32\svchost.exe
[00-PROCESS]**taskmgr -/- C:\WINDOWS\system32\taskmgr.exe
[00-PROCESS]**tlntsvr -/- C:\WINDOWS\system32\tlntsvr.exe
[00-PROCESS]**ups -/- C:\WINDOWS\System32\ups.exe
[00-PROCESS]**V3LiveRun -/- C:\Documents and Settings\Administrator\Local Settings\Temp\V3LiveRun.exe
[00-PROCESS]**vssvc -/- C:\WINDOWS\System32\vssvc.exe
[00-PROCESS]**wdfmgr -/- C:\WINDOWS\system32\wdfmgr.exe
[00-PROCESS]**winlogon -/- C:\WINDOWS\system32\winlogon.exe
[00-PROCESS]**wmiapsrv -/- C:\WINDOWS\system32\wbem\wmiapsrv.exe
[00-PROCESS]**WPFFontCache_v0400 -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
[01-HKCUREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[01-HKCUREG]**AhnLab V3Lite Update Process -/- C:\Documents and Settings\Administrator\LOCALS~1\Temp\V3LiveRun.exe
[01-HKCUREG]**appsigntool -/- C:\Documents and Settings\Administrator\Application Data\appsigntool\appst.exe update
[01-HKCUREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**HotKeysCmds -/- C:\WINDOWS\system32\hkcmd.exe
[01-HKCUREG]**IgfxTray -/- C:\WINDOWS\system32\igfxtray.exe
[01-HKCUREG]**iniweblink -/- C:\Documents and Settings\Administrator\Application Data\iniweblink\weblinkup.exe
[01-HKCUREG]**kos_earchup -/- C:\Program Files\KTH_OpenSearch\kos_earchup.exe
[01-HKCUREG]**Persistence -/- C:\WINDOWS\system32\igfxpers.exe
[02-HKLMREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[02-HKLMREG]**AhnLab V3Lite Update Process -/- C:\Documents and Settings\Administrator\LOCALS~1\Temp\V3LiveRun.exe
[02-HKLMREG]**appsigntool -/- C:\Documents and Settings\Administrator\Application Data\appsigntool\appst.exe update
[02-HKLMREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**HotKeysCmds -/- C:\WINDOWS\system32\hkcmd.exe
[02-HKLMREG]**IgfxTray -/- C:\WINDOWS\system32\igfxtray.exe
[02-HKLMREG]**iniweblink -/- C:\Documents and Settings\Administrator\Application Data\iniweblink\weblinkup.exe
[02-HKLMREG]**kos_earchup -/- C:\Program Files\KTH_OpenSearch\kos_earchup.exe
[02-HKLMREG]**Persistence -/- C:\WINDOWS\system32\igfxpers.exe
[03-BHOCLSD]**CKOS_Guide Class -/- C:\Program Files\KTH_OpenSearch\kos_guide.dll -/- {E9176D00-F8EB-4E40-B09C-04FD140CA277}
[03-BHOCLSD]**DefaultTab Browser Helper -/- C:\Documents and Settings\Administrator\Application Data\DefaultTab\DefaultTab\DefaultTabBHO.dll -/- {7F6AFBF1-E065-4627-A2FD-810366367D01}
[03-BHOCLSD]**HelloWorldBHO Class -/- C:\WINDOWS\system32\crypt.dll -/- {8D26D304-3890-4ED7-9A8E-FBAC954440AE}
[03-BHOCLSD]**SelectionLinks -/- C:\Program Files\OApps\SelectionLinks.dll -/- {7825CFB6-490A-436B-9F26-4A7B5CFC01A9}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**aonmzessk -/- Server Boot -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\svlhv.dll
[05-SERVICE]**Bonjour Service -/- Bonjour 서비스 -/- C:\Program Files\Bonjour\mDNSResponder.exe
[05-SERVICE]**DefaultTabUpdate -/- DefaultTabUpdate -/- C:\Documents and Settings\Administrator\Application Data\DefaultTab\DefaultTab\DTUpdate.exe
[05-SERVICE]**ezHelpRemoteServer -/- ezHelp Remote Server Service -/- C:\WINDOWS\system32\ezHelpServer.exe -service
[05-SERVICE]**gncbbqzc -/- Windows Config -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\cusdlkb.dll
[05-SERVICE]**irrvb -/- Boot Security -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\svlhv.dll
[05-SERVICE]**JavaQuickStarterService -/- Java Quick Starter -/- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe -service -config C:\Program Files\Oracle\JavaFX 2.1 Runtime\lib\deploy\jqs\jqs.conf
[05-SERVICE]**napagent -/- Network Access Protection Agent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**NetsearchService -/- Netsearch Service -/- C:\Program Files\netsearch\netsearch-se.exe
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**npkcmsvc -/- npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[05-SERVICE]**npkfxsvc -/- npkfxsvc -/- C:\WINDOWS\system32\npkfxsvc.exe
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**RunS -/- MultidownLoad Service -/- C:\Documents and Settings\Administrator\APPLIC~1\MULTID~1\MultiDownLoadSvc.exe
[05-SERVICE]**service_filter -/- ActiveX Filter -/- C:\Program Files\AquaPlayer\ServiceFilter.exe
[05-SERVICE]**Significance -/- Security Center Significantly -/- C:\Program Files\Windows Media Player\significant.exe
[05-SERVICE]**UMWdf -/- Windows User Mode Driver Framework -/- C:\WINDOWS\system32\wdfmgr.exe
[05-SERVICE]**WPFFontCache_v0400 -/- Windows Presentation Foundation Font Cache 4.0.0.0 -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
[05-SERVICE]**yuxur -/- Center Driver -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\cusdlkb.dll