Code : JODaidD7jA3gvVIQNQyQoHz/sCVj6YCLZYxs6+vRryULjOSk/6eNoA==

프로그램분석

Code : JODaidD7jA3gvVIQNQyQoHz/sCVj6YCLZYxs6+vRryULjOSk/6eNoA==

프로세스 천국 2013. 9. 7. 00:15

[00-PROCESS]**AdobeARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[00-PROCESS]**alg -/- C:\Windows\System32\alg.exe
[00-PROCESS]**apple -/- C:\Users\Administrator\AppData\Local\Temp\apple.exe
[00-PROCESS]**armsvc -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[00-PROCESS]**AUDIODG -/- C:\Windows\system32\AUDIODG.EXE
[00-PROCESS]**CCC -/- C:\\CCC.exe
[00-PROCESS]**dllhost -/- C:\Windows\system32\dllhost.exe
[00-PROCESS]**dmain -/- C:\windows\dmain.exe
[00-PROCESS]**Dwm -/- C:\Windows\system32\Dwm.exe
[00-PROCESS]**ehRecvr -/- C:\Windows\ehome\ehRecvr.exe
[00-PROCESS]**ehsched -/- C:\Windows\ehome\ehsched.exe
[00-PROCESS]**Explorer -/- C:\Windows\Explorer.EXE
[00-PROCESS]**FavoriteIconsUpdate -/- C:\Program Files\Favorite_Icons\FavoriteIconsUpdate.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**fxssvc -/- C:\Windows\system32\fxssvc.exe
[00-PROCESS]**GDownService -/- C:\Program Files\sudisk\GDownService.exe
[00-PROCESS]**HncChecker -/- C:\Program Files\Common Files\Hnc\HncUtils\HncChecker.exe
[00-PROCESS]**howcodecopen -/- c:\Users\Administrator\appdata\roaming\howcodec\howcodecopen.exe
[00-PROCESS]**howcodecsrv -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodecsrv.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**IMKRMIG -/- C:\Program Files\Common Files\microsoft shared\IME12\IMEKR\IMKRMIG.EXE
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**J2J25 -/- C:\Program Files\J2J25\J2J25.exe
[00-PROCESS]**locator -/- C:\Windows\system32\locator.exe
[00-PROCESS]**lsass -/- C:\Windows\system32\lsass.exe
[00-PROCESS]**lsm -/- C:\Windows\system32\lsm.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
[00-PROCESS]**msdtc -/- C:\Windows\System32\msdtc.exe
[00-PROCESS]**msiexec -/- C:\Windows\system32\msiexec.exe
[00-PROCESS]**natsvc -/- C:\Program Files\NAT Service\natsvc.exe
[00-PROCESS]**NaverAdminAPISvc -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[00-PROCESS]**npkcmsvc -/- C:\Windows\system32\npkcmsvc.exe
[00-PROCESS]**npnj5Agent -/- C:\Windows\system32\npnj5Agent.exe
[00-PROCESS]**nPStarterSVC -/- C:\Windows\system32\nPStarterSVC.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**pcalua -/- C:\Windows\system32\pcalua.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**Sdmain -/- C:\windows\Sdmain.exe
[00-PROCESS]**SearchFilterHost -/- C:\Windows\system32\SearchFilterHost.exe
[00-PROCESS]**SearchIndexer -/- C:\Windows\system32\SearchIndexer.exe
[00-PROCESS]**SearchProtocolHost -/- C:\Windows\system32\SearchProtocolHost.exe
[00-PROCESS]**services -/- C:\Windows\system32\services.exe
[00-PROCESS]**SMSvcHost -/- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**snmptrap -/- C:\Windows\System32\snmptrap.exe
[00-PROCESS]**spools -/- c:\PfsLog\Logs\spools.exe
[00-PROCESS]**spoolsv -/- C:\Windows\System32\spoolsv.exe
[00-PROCESS]**sppsvc -/- C:\Windows\system32\sppsvc.exe
[00-PROCESS]**svccap -/- C:\PfsLog\Logs\svccap.exe
[00-PROCESS]**svchost -/- C:\Windows\system32\svchost.exe
[00-PROCESS]**taskhost -/- C:\Windows\system32\taskhost.exe
[00-PROCESS]**TrustedInstaller -/- C:\Windows\servicing\TrustedInstaller.exe
[00-PROCESS]**UI0Detect -/- C:\Windows\system32\UI0Detect.exe
[00-PROCESS]**V3LSvc -/- C:\Program Files\AhnLab\V3Lite\V3LSvc.exe
[00-PROCESS]**V3LTray -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe
[00-PROCESS]**vds -/- C:\Windows\System32\vds.exe
[00-PROCESS]**vssvc -/- C:\Windows\system32\vssvc.exe
[00-PROCESS]**wbengine -/- C:\Windows\system32\wbengine.exe
[00-PROCESS]**WBPatch -/- C:\Program Files\WindowBoanPatch\WBPatch.exe
[00-PROCESS]**WBPatchCntr -/- C:\Program Files\WindowBoanPatch\WBPatchCntr.exe
[00-PROCESS]**WBPatchMainMgr -/- C:\Program Files\WindowBoanPatch\WBPatchMainMgr.exe
[00-PROCESS]**wininit -/- C:\Windows\system32\wininit.exe
[00-PROCESS]**winlogon -/- C:\Windows\system32\winlogon.exe
[00-PROCESS]**WmiApSrv -/- C:\Windows\system32\wbem\WmiApSrv.exe
[00-PROCESS]**wmiprvse -/- C:\Windows\system32\wbem\wmiprvse.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[01-HKCUREG]**AhnLab V3Lite Tray Process -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe /logon
[01-HKCUREG]**AhnLab V3Lite Update Process -/- C:\Windows\system32\nusb3mon.exe
[01-HKCUREG]**ATI Lab -/- C:/CCC.exe
[01-HKCUREG]**AyService -/- C:\Users\Administrator\AppData\Local\Temp\E1F3CA.exe
[01-HKCUREG]**B24231C6 -/- C:\Windows\B24231C6\svchsot.exe
[01-HKCUREG]**Configuring -/- rundll32.exe C:\Users\Administrator\AppData\Local\Temp\40139.txtM
[01-HKCUREG]**Disker -/- rundll32.exe C:\Windows\System32\HIMYM.dllDW
[01-HKCUREG]**Favorite_Icons -/- C:\Program Files\Favorite_Icons\FavoriteIconsUpdate.exe
[01-HKCUREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncChecker.exe
[01-HKCUREG]**howcodec -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodechper.exe
[01-HKCUREG]**howcodechper -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodechper.exe
[01-HKCUREG]**howcodecopen -/- c:\Users\Administrator\appdata\roaming\howcodec\howcodecopen.exe
[01-HKCUREG]**howcodecopen -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodecopen.exe
[01-HKCUREG]**J2J25 -/- C:\Program Files\J2J25\J2J25.exe
[01-HKCUREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[01-HKCUREG]**stubpath -/- C:\Users\Administrator\AppData\Local\Temp\apple.exe
[01-HKCUREG]**svccap -/- c:\PfsLog\Logs\spools.exe
[01-HKCUREG]**WindowBoanPatch -/- C:\Program Files\WindowBoanPatch\WBPatchMainMgr.exe /startup
[02-HKLMREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[02-HKLMREG]**AhnLab V3Lite Tray Process -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe /logon
[02-HKLMREG]**AhnLab V3Lite Update Process -/- C:\Windows\system32\nusb3mon.exe
[02-HKLMREG]**ATI Lab -/- C:/CCC.exe
[02-HKLMREG]**AyService -/- C:\Users\Administrator\AppData\Local\Temp\E1F3CA.exe
[02-HKLMREG]**B24231C6 -/- C:\Windows\B24231C6\svchsot.exe
[02-HKLMREG]**Configuring -/- rundll32.exe C:\Users\Administrator\AppData\Local\Temp\40139.txtM
[02-HKLMREG]**Disker -/- rundll32.exe C:\Windows\System32\HIMYM.dllDW
[02-HKLMREG]**Favorite_Icons -/- C:\Program Files\Favorite_Icons\FavoriteIconsUpdate.exe
[02-HKLMREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncChecker.exe
[02-HKLMREG]**howcodec -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodechper.exe
[02-HKLMREG]**howcodechper -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodechper.exe
[02-HKLMREG]**howcodecopen -/- c:\Users\Administrator\appdata\roaming\howcodec\howcodecopen.exe
[02-HKLMREG]**howcodecopen -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodecopen.exe
[02-HKLMREG]**J2J25 -/- C:\Program Files\J2J25\J2J25.exe
[02-HKLMREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[02-HKLMREG]**stubpath -/- C:\Users\Administrator\AppData\Local\Temp\apple.exe
[02-HKLMREG]**svccap -/- c:\PfsLog\Logs\spools.exe
[02-HKLMREG]**WindowBoanPatch -/- C:\Program Files\WindowBoanPatch\WBPatchMainMgr.exe /startup
[03-BHOCLSD]**Adobe PDF Link Helper -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -/- {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
[03-BHOCLSD]**BrKeywordObj Class -/- C:\Program Files\Favorite_Icons\FavoriteIcons.dll -/- {4D4D2A74-0249-49E6-BC41-0586A0333CB3}
[03-BHOCLSD]**howcodecband -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodecband.dll -/- {5D19999A-E977-46A5-BD6A-6E816262F399}
[03-BHOCLSD]**PatchHelper -/- C:\Program Files\WindowBoanPatch\PatchHelper.dll -/- {33B2561D-446A-4716-A6AD-382CA6BCC2B5}
[05-SERVICE]**AdobeARMservice -/- Adobe Acrobat Update Service -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**GDownService -/- GDownServiceManager -/- C:\Program Files\sudisk\GDownService.exe
[05-SERVICE]**howcodec -/- howcodec -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodecsrv.exe
[05-SERVICE]**MyServiceDemos -/- My Service Demos -/- C:\windows\Sdmain.exe
[05-SERVICE]**NATService -/- NATService -/- C:\Program Files\NAT Service\natsvc.exe
[05-SERVICE]**Naver Updater -/- Naver Updater -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[05-SERVICE]**npkcmsvc -/- npkcmsvc -/- C:\Windows\system32\npkcmsvc.exe
[05-SERVICE]**nPStarterSVC -/- nProtect Starter -/- C:\Windows\system32\nPStarterSVC.exe
[05-SERVICE]**odserv -/- Microsoft Office Diagnostics Service -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**RunS -/- MultidownLoad Service -/- C:\Users\Administrator\AppData\Roaming\MULTID~1\MultiDownLoadSvc.exe
[05-SERVICE]**V3 Lite Service -/- V3 Lite Service -/- C:\Program Files\AhnLab\V3Lite\V3LSvc.exe
[05-SERVICE]**WindowBoanPatch OEM Monitoring Center -/- WindowBoanPatch OEM Monitoring Center -/- C:\Program Files\WindowBoanPatch\WBPatchCntr.exe
[06-TASKLST]**{1AACA046-70BE-48A5-B000-9497918ADC23} -/- C:\Windows\system32\pcalua.exe
[06-TASKLST]**{531AC833-2EA1-412C-8632-6E3265584D66} -/- C:\Windows\system32\pcalua.exe
[06-TASKLST]**{5CDDAF89-ADB6-49FA-88B3-F7E414768A6C} -/- C:\Windows\system32\pcalua.exe
[06-TASKLST]**Adobe Flash Player Updater -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[06-TASKLST]**At1 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At10 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At11 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At12 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At13 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At14 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At15 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At16 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At17 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At18 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At19 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At2 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At20 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At21 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At22 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At23 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At24 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At3 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At4 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At5 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At6 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At7 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At8 -/- C:\Windows\B24231C6\svchsot.exe
[06-TASKLST]**At9 -/- C:\Windows\B24231C6\svchsot.exe