Code : +qqXsrGYftk/qjixRgBMIuGzpwxAulpj

프로그램분석

Code : +qqXsrGYftk/qjixRgBMIuGzpwxAulpj

프로세스 천국 2013. 6. 21. 17:49

[00-PROCESS]**AYLaunch -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**hkcmd -/- C:\Windows\system32\hkcmd.exe
[00-PROCESS]**hkcmd -/- C:\Windows\System32\hkcmd.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**igfxpers -/- C:\Windows\system32\igfxpers.exe
[00-PROCESS]**igfxpers -/- C:\Windows\System32\igfxpers.exe
[00-PROCESS]**igfxtray -/- C:\Windows\system32\igfxtray.exe
[00-PROCESS]**igfxtray -/- C:\Windows\System32\igfxtray.exe
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**IntelCpHeciSvc -/- C:\Windows\system32\IntelCpHeciSvc.exe
[00-PROCESS]**nate_as -/- C:\Program Files\nate_as\nate_as.exe
[00-PROCESS]**NATEONMain -/- C:\Program Files\NATEON\BIN\NATEONMain.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**PDVDServ -/- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**RAVCpl64 -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
[00-PROCESS]**Reader_sl -/- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[00-PROCESS]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[00-PROCESS]**V3LSvc -/- C:\Program Files\AhnLab\V3Lite\V3LSvc.exe
[00-PROCESS]**v3ltray -/- C:\Program Files\AhnLab\V3Lite\v3ltray.exe
[00-PROCESS]**V3LTray -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe
[00-PROCESS]**weblinkup -/- C:\ProgramData\iniweblink\weblinkup.exe
[00-PROCESS]**windoguide -/- C:\Program Files\windoguide\windoguide.exe
[00-PROCESS]**windoguideagent -/- C:\Program Files\windoguide\windoguideagent.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[00-PROCESS]**Wormhole -/- C:\Users\Administrator\AppData\Roaming\KaiJet\Wormhole1107\FunctModules\{92EEDB7D-755A-4a90-A79D-C0BD0ACF1A7F}\Wormhole.exe
[00-PROCESS]**wuu -/- C:\Program Files\Windows Utility Update\wuu.exe
[01-HKCUREG]**Adobe Reader Speed Launcher -/- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[01-HKCUREG]**AhnLab V3Lite Tray Process -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe /logon
[01-HKCUREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[01-HKCUREG]**CS Dispatch -/- C:\Users\Administrator\AppData\Roaming\KaiJet\Wormhole1107\FunctModules\{92EEDB7D-755A-4a90-A79D-C0BD0ACF1A7F}\Wormhole.exe -GN:RunFromRegistry
[01-HKCUREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[01-HKCUREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[01-HKCUREG]**iniweblink -/- C:\ProgramData\iniweblink\weblinkup.exe
[01-HKCUREG]**Nate -/- C:\Program Files\nate_as\nate_as.exe
[01-HKCUREG]**NeroFilterCheck -/- C:\Windows\system32\NeroCheck.exe
[01-HKCUREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[01-HKCUREG]**RemoteControl -/- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
[01-HKCUREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
[01-HKCUREG]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[01-HKCUREG]**windoguide -/- C:\Program Files\windoguide\windoguide.exe
[01-HKCUREG]**windoguideagent -/- C:\Program Files\windoguide\windoguideagent.exe
[01-HKCUREG]**windoguideopt -/- C:\Program Files\windoguide\windopt.exe
[01-HKCUREG]**wuu -/- C:\Program Files\Windows Utility Update\wuu.exe
[02-HKLMREG]**Adobe Reader Speed Launcher -/- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[02-HKLMREG]**AhnLab V3Lite Tray Process -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe /logon
[02-HKLMREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[02-HKLMREG]**CS Dispatch -/- C:\Users\Administrator\AppData\Roaming\KaiJet\Wormhole1107\FunctModules\{92EEDB7D-755A-4a90-A79D-C0BD0ACF1A7F}\Wormhole.exe -GN:RunFromRegistry
[02-HKLMREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[02-HKLMREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[02-HKLMREG]**iniweblink -/- C:\ProgramData\iniweblink\weblinkup.exe
[02-HKLMREG]**Nate -/- C:\Program Files\nate_as\nate_as.exe
[02-HKLMREG]**NeroFilterCheck -/- C:\Windows\system32\NeroCheck.exe
[02-HKLMREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[02-HKLMREG]**RemoteControl -/- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
[02-HKLMREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
[02-HKLMREG]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[02-HKLMREG]**windoguide -/- C:\Program Files\windoguide\windoguide.exe
[02-HKLMREG]**windoguideagent -/- C:\Program Files\windoguide\windoguideagent.exe
[02-HKLMREG]**windoguideopt -/- C:\Program Files\windoguide\windopt.exe
[02-HKLMREG]**wuu -/- C:\Program Files\Windows Utility Update\wuu.exe
[03-BHOCLSD]**Adobe PDF Link Helper -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -/- {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
[03-BHOCLSD]**CNATE_ASBHO Object -/- C:\Program Files\nate_as\nate_as.dll -/- {E81E1598-BCE6-40B9-8B68-AE57DAA04452}
[03-BHOCLSD]**windgdo -/- c:\PROGRA~2\WINDOG~1\windgdo.dll -/- {CC01FC6C-ED00-4E28-BCBC-F4AD5F9F0D7D}
[03-BHOCLSD]**windoguide Class -/- C:\Program Files\windoguide\wgbho.dll -/- {46E54E77-A5AE-4AB0-B27F-22DA3F95FAD6}
[03-BHOCLSD]**네이트 한글 주소창 검색 -/- C:\Program Files\nate_as\nate_as.dll -/- {E77FA0B2-C931-411C-82A2-FF672456B730}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**ALYac_RTSrv -/- ALYac RealTime Service -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- ALYac Update Service -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**cphs -/- Intel(R) Content Protection HECI Service -/- C:\Windows\system32\IntelCpHeciSvc.exe
[05-SERVICE]**lmhosts -/- TCP/IP NetBIOS Helper -/- C:\Windows\system32\svchost.exe -/- C:\Windows\System32\lltdsvc.dll
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**NlaSvc -/- Network Location Awareness -/- C:\Windows\System32\svchost.exe
[05-SERVICE]**nsi -/- Network Store Interface Service -/- C:\Windows\system32\svchost.exe
[05-SERVICE]**odserv -/- Microsoft Office Diagnostics Service -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**StorSvc -/- Storage Service -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\storsvc.dll
[05-SERVICE]**V3 Lite Service -/- V3 Lite Service -/- C:\Program Files\AhnLab\V3Lite\V3LSvc.exe