Code : 25l/dVzb/QrLU4vCWTwnQVy+ehGCoR5GSBS7nzuYDW0=

프로그램분석

Code : 25l/dVzb/QrLU4vCWTwnQVy+ehGCoR5GSBS7nzuYDW0=

프로세스 천국 2013. 3. 29. 07:28

[00-PROCESS]**AdMatching -/- C:\Program Files\AdMatching\AdMatching.exe
[00-PROCESS]**admsys -/- C:\Program Files\AdMatching\admsys.exe
[00-PROCESS]**atbsvc -/- C:\Program Files\ESTsoft\ALToolBar\atbsvc.exe
[00-PROCESS]**AYLaunch -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe
[00-PROCESS]**baconup -/- C:\Program Files\newbac\baconup.exe
[00-PROCESS]**bigacademy -/- C:\Documents and Settings\Administrator\Application Data\bigacademy\bigacademy.exe
[00-PROCESS]**bigacademys -/- C:\Documents and Settings\Administrator\Application Data\bigacademy\bigacademys.exe
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**EasyOn -/- C:\Program Files\EasyOn\EasyOn.exe
[00-PROCESS]**entering-se -/- C:\WINDOWS\system32\entering-se.exe
[00-PROCESS]**FBDSvcMan -/- C:\Documents and Settings\Administrator\Application Data\SpeedDownload\FBDSvcMan.exe
[00-PROCESS]**FsUsbExService -/- C:\WINDOWS\system32\FsUsbExService.Exe
[00-PROCESS]**GuardConvert -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe
[00-PROCESS]**IEXPLORE -/- C:\Program Files\Internet Explorer\IEXPLORE.EXE
[00-PROCESS]**inforesetupdate -/- C:\WINDOWS\inforesetupdate.exe
[00-PROCESS]**InstHelper -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe
[00-PROCESS]**internetdownload_se -/- C:\WINDOWS\system32\internetdownload_se.exe
[00-PROCESS]**keypang -/- C:\Program Files\KeyPang\keypang.exe
[00-PROCESS]**KGAChkSvc -/- C:\Program Files\KongGa\KGAChkSvc.exe
[00-PROCESS]**kgaprot -/- C:\Program Files\KongGa\kgaprot.exe
[00-PROCESS]**Kies -/- C:\Program Files\Samsung\Kies\Kies.exe
[00-PROCESS]**KiesPDLR -/- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
[00-PROCESS]**KiesTrayAgent -/- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
[00-PROCESS]**kpupdate -/- C:\Program Files\kpupdate\kpupdate.exe
[00-PROCESS]**LMS -/- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
[00-PROCESS]**micropoweroff_mon -/- C:\Program Files\MicroPowerOff\micropoweroff_mon.exe
[00-PROCESS]**micropoweroff_uc -/- C:\Program Files\micropoweroff\micropoweroff_uc.exe
[00-PROCESS]**micropoweroff_uc -/- C:\Program Files\MicroPowerOff\micropoweroff_uc.exe
[00-PROCESS]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe
[00-PROCESS]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe
[00-PROCESS]**microservice-se -/- C:\Program Files\microservice\microservice-se.exe
[00-PROCESS]**msvca -/- C:\Program Files\msvc\msvca.exe
[00-PROCESS]**nmnewmgr -/- C:\Program Files\addendum_sb\nmnewmgr.exe
[00-PROCESS]**nmnewup -/- C:\Program Files\addendum_sb\nmnewup.exe
[00-PROCESS]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[00-PROCESS]**nvsvc32 -/- C:\WINDOWS\system32\nvsvc32.exe
[00-PROCESS]**nwiz -/- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**pcpoweroffmon -/- C:\Program Files\pcpoweroff\pcpoweroffmon.exe
[00-PROCESS]**pcpoweroffuc -/- C:\Program Files\pcpoweroff\pcpoweroffuc.exe
[00-PROCESS]**PIIMSService -/- C:\Program Files\pims\PIIMSService.exe
[00-PROCESS]**powertime_mon -/- C:\Program Files\powertime\powertime_mon.exe
[00-PROCESS]**powertime_uc -/- C:\Program Files\powertime\powertime_uc.exe
[00-PROCESS]**ProcService -/- C:\Documents and Settings\Administrator\My Documents\ProcessClean\ProcService.exe
[00-PROCESS]**revealingst -/- C:\Program Files\revealing\revealingst.exe
[00-PROCESS]**revealingu -/- C:\Program Files\revealing\revealingu.exe
[00-PROCESS]**rundll32 -/- C:\WINDOWS\system32\rundll32.exe
[00-PROCESS]**RunDLL32 -/- C:\WINDOWS\system32\RunDLL32.exe
[00-PROCESS]**smartmode_se -/- C:\WINDOWS\system32\smartmode_se.exe
[00-PROCESS]**SNChkSvc -/- C:\Program Files\SearchN\SNChkSvc.exe
[00-PROCESS]**snprot -/- C:\Program Files\SearchN\snprot.exe
[00-PROCESS]**SNSvcApp -/- C:\Program Files\SearchN\SNSvcApp.exe
[00-PROCESS]**SNUpdate -/- C:\Program Files\SearchN\SNUpdate.exe
[00-PROCESS]**svcspwin -/- C:\WINDOWS\System32\svcspwin.exe
[00-PROCESS]**TCCheckAgent -/- C:\Program Files\AdvTopC\TCCheckAgent.exe
[00-PROCESS]**UNS -/- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
[00-PROCESS]**updateservice-se -/- C:\Program Files\updateservice\updateservice-se.exe
[00-PROCESS]**userstart-se -/- C:\Program Files\userstart\userstart-se.exe
[00-PROCESS]**wdrwspsvc -/- C:\WINDOWS\System32\wdrwspsvc.exe
[00-PROCESS]**weblink -/- C:\Documents and Settings\Administrator\Application Data\iniweblink\weblink.exe
[00-PROCESS]**weblinkup -/- C:\Documents and Settings\Administrator\Application Data\iniweblink\weblinkup.exe
[00-PROCESS]**windowstab -/- C:\Documents and Settings\Administrator\Application Data\WindowsTab\windowstab.exe
[00-PROCESS]**windowstabup -/- C:\Documents and Settings\Administrator\Application Data\WindowsTab\windowstabup.exe
[00-PROCESS]**windowuserinforeset -/- C:\WINDOWS\windowuserinforeset.exe
[00-PROCESS]**winggou -/- C:\Program Files\WingGo\winggou.exe
[00-PROCESS]**winspex -/- C:\Program Files\WinsPop\winspex.exe
[00-PROCESS]**WinxpendUP_itdw5 -/- C:\Program Files\WinExpand_itdw5\WinxpendUP_itdw5.exe
[00-PROCESS]**winziscalesvc -/- C:\WINDOWS\System32\winziscalesvc.exe
[00-PROCESS]**WMPNetwk -/- C:\Program Files\Windows Media Player\WMPNetwk.exe
[01-HKCUREG]**AdMatching -/- C:\Program Files\AdMatching\AdMatching.exe
[01-HKCUREG]**admsys -/- C:\Program Files\AdMatching\admsys.exe
[01-HKCUREG]**ALToolBar -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe -boot
[01-HKCUREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[01-HKCUREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**EasyOn -/- C:\Program Files\EasyOn\EasyOn.exe
[01-HKCUREG]**GuardSupport -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe -wRHyMWFF
[01-HKCUREG]**iniweblink -/- C:\Documents and Settings\Administrator\Application Data\iniweblink\weblinkup.exe
[01-HKCUREG]**kgaprot -/- C:\Program Files\KongGa\kgaprot.exe
[01-HKCUREG]**KiesPDLR -/- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
[01-HKCUREG]**KiesPreload -/- C:\Program Files\Samsung\Kies\Kies.exe /preload
[01-HKCUREG]**KiesTrayAgent -/- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
[01-HKCUREG]**Kp -/- C:\Program Files\kpupdate\kpupdate.exe
[01-HKCUREG]**MicroLabCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -sMDtHSA
[01-HKCUREG]**MicroLabProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -sMDtHSA
[01-HKCUREG]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -wRHyMWFF
[01-HKCUREG]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -wRHyMWFF
[01-HKCUREG]**newbac -/- C:\Program Files\newbac\baconup.exe
[01-HKCUREG]**nmnew -/- C:\Program Files\addendum_sb\nmnewup.exe
[01-HKCUREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dllNvStartup
[01-HKCUREG]**NvMediaCenter -/- RunDLL32.exe NvMCTray.dllNvTaskbarInit -login
[01-HKCUREG]**nwiz -/- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
[01-HKCUREG]**pcpoweroff -/- C:\Program Files\pcpoweroff\pcpoweroffuc.exe /run
[01-HKCUREG]**poweroff/counter.php -/- C:\Program Files\micropoweroff\micropoweroff_uc.exe /run
[01-HKCUREG]**poweroff/counter.php -/- C:\Program Files\MicroPowerOff\micropoweroff_uc.exe /run
[01-HKCUREG]**powertime -/- C:\Program Files\powertime\powertime_uc.exe /run
[01-HKCUREG]**revealing_st -/- C:\Program Files\revealing\revealingst.exe Runcmd
[01-HKCUREG]**revealing_u -/- C:\Program Files\revealing\revealingu.exe Runcmd
[01-HKCUREG]**SearchN -/- C:\Program Files\SearchN\SNUpdate.exe
[01-HKCUREG]**snprot -/- C:\Program Files\SearchN\snprot.exe
[01-HKCUREG]**WindowsTab -/- C:\Documents and Settings\Administrator\Application Data\WindowsTab\windowstabup.exe
[01-HKCUREG]**WingGo -/- C:\Program Files\WingGo\winggou.exe UPDATE
[02-HKLMREG]**AdMatching -/- C:\Program Files\AdMatching\AdMatching.exe
[02-HKLMREG]**admsys -/- C:\Program Files\AdMatching\admsys.exe
[02-HKLMREG]**ALToolBar -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe -boot
[02-HKLMREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[02-HKLMREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**EasyOn -/- C:\Program Files\EasyOn\EasyOn.exe
[02-HKLMREG]**GuardSupport -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe -wRHyMWFF
[02-HKLMREG]**iniweblink -/- C:\Documents and Settings\Administrator\Application Data\iniweblink\weblinkup.exe
[02-HKLMREG]**kgaprot -/- C:\Program Files\KongGa\kgaprot.exe
[02-HKLMREG]**KiesPDLR -/- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
[02-HKLMREG]**KiesPreload -/- C:\Program Files\Samsung\Kies\Kies.exe /preload
[02-HKLMREG]**KiesTrayAgent -/- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
[02-HKLMREG]**Kp -/- C:\Program Files\kpupdate\kpupdate.exe
[02-HKLMREG]**MicroLabCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -sMDtHSA
[02-HKLMREG]**MicroLabProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -sMDtHSA
[02-HKLMREG]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -wRHyMWFF
[02-HKLMREG]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -wRHyMWFF
[02-HKLMREG]**newbac -/- C:\Program Files\newbac\baconup.exe
[02-HKLMREG]**nmnew -/- C:\Program Files\addendum_sb\nmnewup.exe
[02-HKLMREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dllNvStartup
[02-HKLMREG]**NvMediaCenter -/- RunDLL32.exe NvMCTray.dllNvTaskbarInit -login
[02-HKLMREG]**nwiz -/- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
[02-HKLMREG]**pcpoweroff -/- C:\Program Files\pcpoweroff\pcpoweroffuc.exe /run
[02-HKLMREG]**poweroff/counter.php -/- C:\Program Files\micropoweroff\micropoweroff_uc.exe /run
[02-HKLMREG]**poweroff/counter.php -/- C:\Program Files\MicroPowerOff\micropoweroff_uc.exe /run
[02-HKLMREG]**powertime -/- C:\Program Files\powertime\powertime_uc.exe /run
[02-HKLMREG]**revealing_st -/- C:\Program Files\revealing\revealingst.exe Runcmd
[02-HKLMREG]**revealing_u -/- C:\Program Files\revealing\revealingu.exe Runcmd
[02-HKLMREG]**SearchN -/- C:\Program Files\SearchN\SNUpdate.exe
[02-HKLMREG]**snprot -/- C:\Program Files\SearchN\snprot.exe
[02-HKLMREG]**WindowsTab -/- C:\Documents and Settings\Administrator\Application Data\WindowsTab\windowstabup.exe
[02-HKLMREG]**WingGo -/- C:\Program Files\WingGo\winggou.exe UPDATE
[03-BHOCLSD]**{00000FEA-958F-4E27-B8ED-95CCAFF55535} -/- C:\Program Files\WinExpand_itdw5\WinExpand_itdw5.dll
[03-BHOCLSD]**{002B9765-AB24-47E6-8DB6-6A1A0CE11BC9} -/- C:\PROGRA~1\WingGo\winggo.dll
[03-BHOCLSD]**{432339F4-9FDC-43BA-99C2-FEE0D9EA7C74} -/- C:\Program Files\KongGa\KongGaCtrl.dll
[03-BHOCLSD]**{6956446B-312B-4F69-B23B-FEF01097EB12} -/- C:\Program Files\addendum\sidebar\addendum_ts.dll
[03-BHOCLSD]**{7F1A79F9-78D1-4186-9F60-EE0B63DF042A} -/- C:\Program Files\ESTsoft\ALToolBar\ALToolBar_3100.dll
[03-BHOCLSD]**{FE14A4CA-5CFA-4C05-9274-6006397B68C9} -/- C:\Program Files\SearchN\SearchN.dll
[04-TOOLBAR]**{003B9765-AB24-47E6-8DB6-6A1A0CE11BC9} -/- C:\PROGRA~1\WingGo\winggo.dll
[04-TOOLBAR]**{38FBE93D-4CA1-4414-AF6A-94920C5BD8DA} -/- C:\Program Files\ESTsoft\ALToolBar\ALToolBar_3100.dll
[04-TOOLBAR]**{D09CFF09-A42A-4EDC-9804-E61224F59CA1} -/- N.A
[04-TOOLBAR]**{EB291D96-1D76-450D-90E4-BE798BA796E8} -/- N.A
[05-SERVICE]**ALYac_RTSrv -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**bigacademy -/- C:\Documents and Settings\Administrator\Application Data\bigacademy\bigacademys.exe
[05-SERVICE]**BstHdAndroidSvc -/- C:\Program Files\BlueStacks\HD-Service.exe BstHdAndroidSvc Android
[05-SERVICE]**BstHdLogRotatorSvc -/- C:\Program Files\BlueStacks\HD-LogRotatorService.exe
[05-SERVICE]**enteringservice -/- C:\WINDOWS\system32\entering-se.exe
[05-SERVICE]**FBDSvcman -/- C:\Documents and Settings\Administrator\Application Data\SpeedDownload\FBDSvcMan.exe
[05-SERVICE]**FsUsbExService -/- C:\WINDOWS\system32\FsUsbExService.Exe
[05-SERVICE]**hpqcxs08 -/- C:\WINDOWS\system32\svchost.exe -/- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
[05-SERVICE]**hpqddsvc -/- C:\WINDOWS\system32\svchost.exe -/- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
[05-SERVICE]**InternetDownload Update Service -/- C:\WINDOWS\system32\internetdownload_se.exe
[05-SERVICE]**Irmon -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\irmon.dll
[05-SERVICE]**JavaQuickStarterService -/- C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
[05-SERVICE]**KongGa -/- C:\Program Files\KongGa\KGAChkSvc.exe
[05-SERVICE]**LMS -/- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
[05-SERVICE]**microserviceservice -/- C:\Program Files\microservice\microservice-se.exe
[05-SERVICE]**monpcpoweroff -/- C:\Program Files\pcpoweroff\pcpoweroffmon.exe
[05-SERVICE]**msvc -/- C:\Program Files\msvc\msvca.exe
[05-SERVICE]**napagent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**npggsvc -/- C:\WINDOWS\system32\GameMon.des -service
[05-SERVICE]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[05-SERVICE]**NVSvc -/- C:\WINDOWS\system32\nvsvc32.exe
[05-SERVICE]**nvUpdatusService -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**NWCWorkstation -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\nwwks.dll
[05-SERVICE]**PIIMSService -/- C:\Program Files\pims\PIIMSService.exe
[05-SERVICE]**Process Clean Service -/- C:\Documents and Settings\Administrator\My Documents\ProcessClean\ProcService.exe
[05-SERVICE]**SearchN -/- C:\Program Files\SearchN\SNChkSvc.exe
[05-SERVICE]**SmartMode Update Service -/- C:\WINDOWS\system32\smartmode_se.exe
[05-SERVICE]**TCCheckAgent -/- C:\Program Files\AdvTopC\TCCheckAgent.exe
[05-SERVICE]**UNS -/- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
[05-SERVICE]**updateserviceservice -/- C:\Program Files\updateservice\updateservice-se.exe
[05-SERVICE]**userpc Update Service -/- C:\WINDOWS\inforesetupdate.exe
[05-SERVICE]**userstartservice -/- C:\Program Files\userstart\userstart-se.exe
[05-SERVICE]**vaccintoolbar Update Service -/- C:\WINDOWS\windowuserinforeset.exe
[05-SERVICE]**Windows MineService Diagnostics Service -/- C:\WINDOWS\System32\winziscalesvc.exe
[05-SERVICE]**Windows WinsPop Diagnostics Service -/- C:\WINDOWS\System32\wdrwspsvc.exe
[05-SERVICE]**WinsPop Service -/- C:\WINDOWS\System32\svcspwin.exe
[05-SERVICE]**wqyqrmpo -/- C:\Program Files\MicroPowerOff/micropoweroff_mon.exe
[05-SERVICE]**wqyqrpt -/- C:\Program Files\powertime\powertime_mon.exe