Code : 25l/dVzb/QpJfQpSxtHUZqBJDnmMyeGD

프로그램분석

Code : 25l/dVzb/QpJfQpSxtHUZqBJDnmMyeGD

프로세스 천국 2013. 4. 5. 09:50

[00-PROCESS]**allpopsvi -/- C:\Program Files\allpopup\allpopsvi.exe
[00-PROCESS]**AYLaunch -/- C:\program files\estsoft\alyac\AYLaunch.exe
[00-PROCESS]**boansolutionsvc -/- C:\Program Files\boansolution\boansolutionsvc.exe
[00-PROCESS]**clgsve -/- C:\Program Files\Windows CloudGet\clgsve.exe
[00-PROCESS]**clgsvr -/- C:\Program Files\Windows CloudGet\clgsvr.exe
[00-PROCESS]**ctpop -/- C:\Program Files\ctpop\ctpop.exe
[00-PROCESS]**enumerate_gtu -/- C:\Program Files\enumerate\gt\enumerate_gtu.exe
[00-PROCESS]**enumst -/- C:\Program Files\enumerate\gt\enumst.exe
[00-PROCESS]**FBDManager -/- C:\Documents and Settings\Administrator\Application Data\SpeedDownload\FBDManager.exe
[00-PROCESS]**FBDSvcMan -/- C:\Documents and Settings\Administrator\Application Data\SpeedDownload\FBDSvcMan.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**FNPLicensingService -/- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
[00-PROCESS]**GnAgent -/- C:\PROGRAM FILES\Geni\Genian\GnAgent.exe
[00-PROCESS]**GNESTSOFT -/- C:\PROGRAM FILES\GENI\GENIAN\GNESTSOFT.EXE
[00-PROCESS]**GnStart -/- C:\PROGRAM FILES\Geni\Genian\GnStart.exe
[00-PROCESS]**GoogleUpdate -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**iMonCMD_1365119289 -/- C:\Documents and Settings\Administrator\Application Data\iMonClient\iMonCMD_1365119289.EXE
[00-PROCESS]**ImonService -/- C:\Documents and Settings\Administrator\Application Data\iMonClient\ImonService.exe
[00-PROCESS]**ismsvc -/- C:\Program Files\insafeclient\ismsvc.exe
[00-PROCESS]**jqs -/- C:\Program Files\Java\jre6\bin\jqs.exe
[00-PROCESS]**lstspsv -/- C:\Program Files\lastpopup\lstspsv.exe
[00-PROCESS]**mDNSResponder -/- C:\Program Files\Bonjour\mDNSResponder.exe
[00-PROCESS]**memoryupsvc -/- C:\Program Files\memoryup\memoryupsvc.exe
[00-PROCESS]**NetMWin -/- C:\Program Files\NetMWin\NetMWin.exe
[00-PROCESS]**nextray -/- C:\Program Files\nextray\nextray.exe
[00-PROCESS]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[00-PROCESS]**npkfxsvc -/- C:\WINDOWS\system32\npkfxsvc.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**qttask -/- C:\Program Files\QuickTime\qttask.exe
[00-PROCESS]**SafeNet -/- C:\Program Files\Syworks\SafeNET\SafeNet.exe
[00-PROCESS]**SNService -/- C:\Program Files\Syworks\SafeNET\SNService.exe
[00-PROCESS]**sup -/- C:\Program Files\searchup\sup.exe
[00-PROCESS]**TsService -/- C:\WINDOWS\system32\TsService.exe
[00-PROCESS]**V3LSvc -/- C:\Program Files\AhnLab\V3Lite\V3LSvc.exe
[00-PROCESS]**V3LTray -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe
[00-PROCESS]**VaccineTools -/- C:\Program Files\VaccineTools\VaccineTools.exe
[00-PROCESS]**windiscover -/- C:\Program Files\windiscover\windiscover.exe
[00-PROCESS]**windowstab -/- C:\Documents and Settings\Administrator\Application Data\WindowsTab\windowstab.exe
[00-PROCESS]**windowstabup -/- C:\Documents and Settings\Administrator\Application Data\WindowsTab\windowstabup.exe
[00-PROCESS]**winggou -/- C:\Program Files\WingGo\winggou.exe
[00-PROCESS]**winst -/- C:\Documents and Settings\Administrator\Application Data\winsigntool\winst.exe
[00-PROCESS]**wsupd -/- C:\Program Files\windiscover\wsupd.exe
[01-HKCUREG]**AddendumAgent -/- C:\Program Files\addendum\sidebar\AddendumAgent.exe
[01-HKCUREG]**AhnLab V3Lite Tray Process -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe /logon
[01-HKCUREG]**ALYac -/- C:\program files\estsoft\alyac\AYLaunch.exe /run
[01-HKCUREG]**ctdata -/- C:\Documents and Settings\Administrator\LOCALS~1\Temp\data.exe
[01-HKCUREG]**ctpop -/- C:\Program Files\ctpop\ctpop.exe
[01-HKCUREG]**Enumerate_gt -/- C:\Program Files\enumerate\gt\enumerate_gtu.exe Runcmd
[01-HKCUREG]**Enumerate_gtst -/- C:\Program Files\enumerate\gt\enumst.exe Runcmd
[01-HKCUREG]**Google Update -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /c
[01-HKCUREG]**JoyUtilService -/- C:\Program Files\JoyUtil\JoyUtilService.exe run
[01-HKCUREG]**nextray -/- C:\Program Files\nextray\nextray.exe
[01-HKCUREG]**QuickTime Task -/- C:\Program Files\QuickTime\qttask.exe -atboottime
[01-HKCUREG]**rpga -/- C:\Documents and Settings\Administrator\Application Data\SpeedDownload\rpgchk.exe
[01-HKCUREG]**searchup -/- C:\Program Files\searchup\sup.exe UPDATE
[01-HKCUREG]**SpeedDownload -/- C:\Documents and Settings\Administrator\Application Data\SpeedDownload\FBDManager.exe
[01-HKCUREG]**VaccineTools -/- C:\Program Files\VaccineTools\VaccineTools.exe /Scan
[01-HKCUREG]**windiscover -/- C:\Program Files\windiscover\windiscover.exe
[01-HKCUREG]**WindowsTab -/- C:\Documents and Settings\Administrator\Application Data\WindowsTab\windowstabup.exe
[01-HKCUREG]**WingGo -/- C:\Program Files\WingGo\winggou.exe UPDATE
[01-HKCUREG]**winsigntool -/- C:\Documents and Settings\Administrator\Application Data\winsigntool\winst.exe update
[01-HKCUREG]**wsupd -/- C:\Program Files\windiscover\wsupd.exe
[02-HKLMREG]**AddendumAgent -/- C:\Program Files\addendum\sidebar\AddendumAgent.exe
[02-HKLMREG]**AhnLab V3Lite Tray Process -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe /logon
[02-HKLMREG]**ALYac -/- C:\program files\estsoft\alyac\AYLaunch.exe /run
[02-HKLMREG]**ctdata -/- C:\Documents and Settings\Administrator\LOCALS~1\Temp\data.exe
[02-HKLMREG]**ctpop -/- C:\Program Files\ctpop\ctpop.exe
[02-HKLMREG]**Enumerate_gt -/- C:\Program Files\enumerate\gt\enumerate_gtu.exe Runcmd
[02-HKLMREG]**Enumerate_gtst -/- C:\Program Files\enumerate\gt\enumst.exe Runcmd
[02-HKLMREG]**Google Update -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /c
[02-HKLMREG]**JoyUtilService -/- C:\Program Files\JoyUtil\JoyUtilService.exe run
[02-HKLMREG]**nextray -/- C:\Program Files\nextray\nextray.exe
[02-HKLMREG]**QuickTime Task -/- C:\Program Files\QuickTime\qttask.exe -atboottime
[02-HKLMREG]**rpga -/- C:\Documents and Settings\Administrator\Application Data\SpeedDownload\rpgchk.exe
[02-HKLMREG]**searchup -/- C:\Program Files\searchup\sup.exe UPDATE
[02-HKLMREG]**SpeedDownload -/- C:\Documents and Settings\Administrator\Application Data\SpeedDownload\FBDManager.exe
[02-HKLMREG]**VaccineTools -/- C:\Program Files\VaccineTools\VaccineTools.exe /Scan
[02-HKLMREG]**windiscover -/- C:\Program Files\windiscover\windiscover.exe
[02-HKLMREG]**WindowsTab -/- C:\Documents and Settings\Administrator\Application Data\WindowsTab\windowstabup.exe
[02-HKLMREG]**WingGo -/- C:\Program Files\WingGo\winggou.exe UPDATE
[02-HKLMREG]**winsigntool -/- C:\Documents and Settings\Administrator\Application Data\winsigntool\winst.exe update
[02-HKLMREG]**wsupd -/- C:\Program Files\windiscover\wsupd.exe
[03-BHOCLSD]**{002B9765-AB24-47E6-8DB6-6A1A0CE11BC9} -/- C:\PROGRA~1\WingGo\winggo.dll
[03-BHOCLSD]**{7760E6D4-CC93-4495-981B-5E23919D602A} -/- C:\Program Files\NetMWin\NMHelper.dll
[03-BHOCLSD]**{A6DBA346-DB0B-4C41-A016-0B9D119DA78A} -/- C:\Program Files\enumerate\gt\enumerate_gt.dll
[03-BHOCLSD]**{AE7CD045-E861-484f-8273-0445EE161910} -/- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
[04-TOOLBAR]**{003B9765-AB24-47E6-8DB6-6A1A0CE11BC9} -/- C:\PROGRA~1\WingGo\winggo.dll
[04-TOOLBAR]**{47833539-D0C5-4125-9FA8-0819E2EAAC93} -/- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**allpopup -/- C:\Program Files\allpopup\allpopsvi.exe
[05-SERVICE]**ALYac_AgentSrv -/- C:\Program Files\ESTsoft\ASM\AYAgentSrv.aye
[05-SERVICE]**ALYac_RTSrv -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**boansolution -/- C:\Program Files\boansolution\boansolutionsvc.exe
[05-SERVICE]**Bonjour Service -/- C:\Program Files\Bonjour\mDNSResponder.exe
[05-SERVICE]**clgsvr32 -/- C:\Program Files\Windows CloudGet\clgsvr.exe
[05-SERVICE]**FBDSvcman -/- C:\Documents and Settings\Administrator\Application Data\SpeedDownload\FBDSvcMan.exe
[05-SERVICE]**FLEXnet Licensing Service -/- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
[05-SERVICE]**GnAgent -/- C:\PROGRAM FILES\Geni\Genian\GnAgent.exe
[05-SERVICE]**GnStart -/- C:\PROGRAM FILES\Geni\Genian\GnStart.exe
[05-SERVICE]**iMONClientService -/- C:\Documents and Settings\Administrator\Application Data\iMonClient\ImonService.exe
[05-SERVICE]**ismsvc32 -/- C:\Program Files\insafeclient\ismsvc.exe
[05-SERVICE]**JavaQuickStarterService -/- C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
[05-SERVICE]**litevaccine Update Service -/- C:\WINDOWS\reconfigset.exe
[05-SERVICE]**lstspsv32 -/- C:\Program Files\lastpopup\lstspsv.exe
[05-SERVICE]**memoryup -/- C:\Program Files\memoryup\memoryupsvc.exe
[05-SERVICE]**microsolution Update Service -/- C:\Program Files\microsolution\microsolution_se.exe
[05-SERVICE]**napagent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**NetsearchService -/- C:\Program Files\netsearch\netsearch-se.exe
[05-SERVICE]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[05-SERVICE]**npkfxsvc -/- C:\WINDOWS\system32\npkfxsvc.exe
[05-SERVICE]**ose -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**SNService -/- C:\Program Files\Syworks\SafeNET\SNService.exe
[05-SERVICE]**TsService -/- C:\WINDOWS\system32\TsService.exe
[05-SERVICE]**V3 Lite Service -/- C:\Program Files\AhnLab\V3Lite\V3LSvc.exe
[05-SERVICE]**WindowSystem Update Service -/- C:\Program Files\WindowSystem\WindowSystem_se.exe