Code : sFkYkTWSE7xGqU72nR8/VyRyrFmiDXV/F3+4DdACnVU=

프로그램분석

Code : sFkYkTWSE7xGqU72nR8/VyRyrFmiDXV/F3+4DdACnVU=

프로세스 천국 2013. 4. 19. 19:56

[00-PROCESS]**22xc -/- C:\Documents and Settings\Administrator\22xc.exe
[00-PROCESS]**42xc -/- C:\Documents and Settings\Administrator\42xc.exe
[00-PROCESS]**AutoDect -/- C:\WINDOWS\system32\SupportAppXL\AutoDect.exe
[00-PROCESS]**avgnt -/- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
[00-PROCESS]**avguard -/- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
[00-PROCESS]**chrome -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
[00-PROCESS]**hkcmd -/- C:\WINDOWS\system32\hkcmd.exe
[00-PROCESS]**igfxpers -/- C:\WINDOWS\system32\igfxpers.exe
[00-PROCESS]**igfxsrvc -/- C:\WINDOWS\system32\igfxsrvc.exe
[00-PROCESS]**igfxtray -/- C:\WINDOWS\system32\igfxtray.exe
[00-PROCESS]**leezea -/- C:\Documents and Settings\Administrator\leezea.exe
[00-PROCESS]**LouderIt -/- C:\Program Files\louderit\LouderIt.exe
[00-PROCESS]**MAgent -/- C:\Program Files\Mail.ru\Agent\MAgent.exe
[00-PROCESS]**NeroCheck -/- C:\WINDOWS\system32\NeroCheck.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**RTHDCPL -/- C:\WINDOWS\RTHDCPL.EXE
[00-PROCESS]**rundll32 -/- C:\WINDOWS\system32\rundll32.exe
[00-PROCESS]**sched -/- C:\Program Files\Avira\AntiVir Desktop\sched.exe
[00-PROCESS]**SMSvcHost -/- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**tigixbakydqy -/- C:\Documents and Settings\Administrator\tigixbakydqy.exe
[00-PROCESS]**UIMain -/- C:\Program Files\USB-модем Билайн\UIMain.exe
[00-PROCESS]**vaazel -/- C:\Documents and Settings\Administrator\Application Data\Quujxy\vaazel.exe
[00-PROCESS]**vaoimi -/- C:\Documents and Settings\Administrator\vaoimi.exe
[00-PROCESS]**vsdrv -/- C:\Program Files\VistaDrive\vsdrv.exe
[00-PROCESS]**WinRAR -/- C:\Program Files\WinRAR\WinRAR.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**{FC271580-D612-AD42-3232-D4E5173AF7F7} -/- C:\Documents and Settings\Administrator\Application Data\Quujxy\vaazel.exe
[01-HKCUREG]**Alcmtr -/- ALCMTR.EXE
[01-HKCUREG]**autodetect -/- C:\WINDOWS\system32\SupportAppXL\AutoDect.exe
[01-HKCUREG]**avgnt -/- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe /min
[01-HKCUREG]**BluetoothAuthenticationAgent -/- rundll32.exe bthprops.cplBluetoothAuthenticationAgent
[01-HKCUREG]**CTFMON.EXE -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**HotKeysCmds -/- C:\WINDOWS\system32\hkcmd.exe
[01-HKCUREG]**IgfxTray -/- C:\WINDOWS\system32\igfxtray.exe
[01-HKCUREG]**leezea -/- C:\Documents and Settings\Administrator\leezea.exe /a
[01-HKCUREG]**louderit.exe -/- C:\Program Files\louderit\LouderIt.exe
[01-HKCUREG]**MAgent -/- C:\Program Files\Mail.ru\Agent\MAgent.exe -LM
[01-HKCUREG]**NeroFilterCheck -/- C:\WINDOWS\system32\NeroCheck.exe
[01-HKCUREG]**Persistence -/- C:\WINDOWS\system32\igfxpers.exe
[01-HKCUREG]**RTHDCPL -/- RTHDCPL.EXE
[01-HKCUREG]**tigixbakydqy -/- C:\Documents and Settings\Administrator\tigixbakydqy.exe
[01-HKCUREG]**vaoimi -/- C:\Documents and Settings\Administrator\vaoimi.exe /z
[01-HKCUREG]**Vistadrv -/- C:\Program Files\VistaDrive\vsdrv.exe
[02-HKLMREG]**{FC271580-D612-AD42-3232-D4E5173AF7F7} -/- C:\Documents and Settings\Administrator\Application Data\Quujxy\vaazel.exe
[02-HKLMREG]**Alcmtr -/- ALCMTR.EXE
[02-HKLMREG]**autodetect -/- C:\WINDOWS\system32\SupportAppXL\AutoDect.exe
[02-HKLMREG]**avgnt -/- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe /min
[02-HKLMREG]**BluetoothAuthenticationAgent -/- rundll32.exe bthprops.cplBluetoothAuthenticationAgent
[02-HKLMREG]**CTFMON.EXE -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**HotKeysCmds -/- C:\WINDOWS\system32\hkcmd.exe
[02-HKLMREG]**IgfxTray -/- C:\WINDOWS\system32\igfxtray.exe
[02-HKLMREG]**leezea -/- C:\Documents and Settings\Administrator\leezea.exe /a
[02-HKLMREG]**louderit.exe -/- C:\Program Files\louderit\LouderIt.exe
[02-HKLMREG]**MAgent -/- C:\Program Files\Mail.ru\Agent\MAgent.exe -LM
[02-HKLMREG]**NeroFilterCheck -/- C:\WINDOWS\system32\NeroCheck.exe
[02-HKLMREG]**Persistence -/- C:\WINDOWS\system32\igfxpers.exe
[02-HKLMREG]**RTHDCPL -/- RTHDCPL.EXE
[02-HKLMREG]**tigixbakydqy -/- C:\Documents and Settings\Administrator\tigixbakydqy.exe
[02-HKLMREG]**vaoimi -/- C:\Documents and Settings\Administrator\vaoimi.exe /z
[02-HKLMREG]**Vistadrv -/- C:\Program Files\VistaDrive\vsdrv.exe
[03-BHOCLSD]**{DBC80044-A445-435b-BC74-9C25C1C588A9} -/- C:\Program Files\Java\jre6\bin\jp2ssv.dll
[03-BHOCLSD]**{E7E6F031-17CE-4C07-BC86-EABFE594F69C} -/- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
[05-SERVICE]**AntiVirSchedulerService -/- C:\Program Files\Avira\AntiVir Desktop\sched.exe
[05-SERVICE]**AntiVirService -/- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
[05-SERVICE]**JavaQuickStarterService -/- C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
[05-SERVICE]**napagent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**odserv -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**UPHClean -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\uphclean.dll