Code : 25l/dVzb/QraNdYgOZW5sJ5E39ePdFve

프로그램분석

Code : 25l/dVzb/QraNdYgOZW5sJ5E39ePdFve

프로세스 천국 2013. 4. 20. 16:53

[00-PROCESS]**052hq27cik -/- C:\WINDOWS\system32\052hq27cik.exe
[00-PROCESS]**7g3nh8s7b2 -/- C:\WINDOWS\system32\7g3nh8s7b2.exe
[00-PROCESS]**BJMyPrt -/- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
[00-PROCESS]**CNSEMAIN -/- C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**DaemonUpdate -/- C:\Program Files\DAEMON Tools Lite\DaemonUpdate.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**GuardConvert -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe
[00-PROCESS]**HDeck -/- C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**IJPLMSVC -/- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
[00-PROCESS]**IMJPMIG -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
[00-PROCESS]**Kies -/- C:\Program Files\Samsung\Kies\Kies.exe
[00-PROCESS]**KiesAirMessage -/- C:\Program Files\Samsung\Kies\KiesAirMessage.exe
[00-PROCESS]**KiesTrayAgent -/- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
[00-PROCESS]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe
[00-PROCESS]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe
[00-PROCESS]**nateon -/- C:\program files\nateon\bin\nateon.exe
[00-PROCESS]**natsvc -/- C:\Program Files\NAT Service\natsvc.exe
[00-PROCESS]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe
[00-PROCESS]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[00-PROCESS]**nvsvc32 -/- C:\WINDOWS\system32\nvsvc32.exe
[00-PROCESS]**nwiz -/- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe
[00-PROCESS]**PIIMSService -/- C:\Program Files\pims\PIIMSService.exe
[00-PROCESS]**primead -/- C:\Program Files\prime\primead.exe
[00-PROCESS]**regsvr32 -/- C:\WINDOWS\system32\regsvr32.exe
[00-PROCESS]**RunDLL32 -/- C:\WINDOWS\system32\RunDLL32.exe
[00-PROCESS]**Searcher -/- C:\Documents and Settings\Administrator\Local Settings\Temp\IXP249.TMP\Searcher.exe
[00-PROCESS]**stickads -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Stickads\stickads.exe
[00-PROCESS]**TCCheckAgent -/- C:\Program Files\AdvTopC\TCCheckAgent.exe
[00-PROCESS]**TINTSETP -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
[00-PROCESS]**vipxie -/- C:\WINDOWS\system32\vipxie.exe
[00-PROCESS]**windowsstats -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Applications\windowsstats.exe
[00-PROCESS]**windowstatus -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Applications\windowstatus.exe
[00-PROCESS]**winmdnts -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Winmdnts\winmdnts.exe
[00-PROCESS]**wscntfy -/- C:\WINDOWS\system32\wscntfy.exe
[01-HKCUREG]**0667C93C -/- C:\WINDOWS\0667C93C\svchsot.exe
[01-HKCUREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[01-HKCUREG]**CanonMyPrinter -/- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
[01-HKCUREG]**CanonSolutionMenuEx -/- C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
[01-HKCUREG]**DAEMON Tools Lite -/- C:\Program Files\DAEMON Tools Lite\DaemonUpdate.exe
[01-HKCUREG]**GuardSupport -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe -cmVVIuWs
[01-HKCUREG]**HDAudDeck -/- C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1
[01-HKCUREG]**HiSch -/- C:\Program Files\HiSearch\HSSearch.exe
[01-HKCUREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[01-HKCUREG]**KiesAirMessage -/- C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup
[01-HKCUREG]**KiesPreload -/- C:\Program Files\Samsung\Kies\Kies.exe /preload
[01-HKCUREG]**KiesTrayAgent -/- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
[01-HKCUREG]**MicroLabCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -RmcTh
[01-HKCUREG]**MicroLabProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -RmcTh
[01-HKCUREG]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -xRIyMXFF
[01-HKCUREG]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -xRIyMXFF
[01-HKCUREG]**NATEON -/- C:\program files\nateon\bin\nateon.exe -as
[01-HKCUREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[01-HKCUREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dllNvStartup
[01-HKCUREG]**NvMediaCenter -/- RunDLL32.exe NvMCTray.dllNvTaskbarInit -login
[01-HKCUREG]**nwiz -/- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
[01-HKCUREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[01-HKCUREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[01-HKCUREG]**primead.exe -/- C:\Program Files\prime\primead.exe
[01-HKCUREG]**signkey -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\signkey\signkey.exe
[01-HKCUREG]**stickads -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Stickads\stickads.exe
[01-HKCUREG]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[01-HKCUREG]**windowsstats -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Applications\windowsstats.exe
[01-HKCUREG]**windowstatus -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Applications\windowstatus.exe
[01-HKCUREG]**winmdnts -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Winmdnts\winmdnts.exe
[01-HKCUREG]**WinPro -/- C:\Program Files\WinPro\WinPro.exe
[02-HKLMREG]**0667C93C -/- C:\WINDOWS\0667C93C\svchsot.exe
[02-HKLMREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[02-HKLMREG]**CanonMyPrinter -/- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
[02-HKLMREG]**CanonSolutionMenuEx -/- C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
[02-HKLMREG]**DAEMON Tools Lite -/- C:\Program Files\DAEMON Tools Lite\DaemonUpdate.exe
[02-HKLMREG]**GuardSupport -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe -cmVVIuWs
[02-HKLMREG]**HDAudDeck -/- C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1
[02-HKLMREG]**HiSch -/- C:\Program Files\HiSearch\HSSearch.exe
[02-HKLMREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[02-HKLMREG]**KiesAirMessage -/- C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup
[02-HKLMREG]**KiesPreload -/- C:\Program Files\Samsung\Kies\Kies.exe /preload
[02-HKLMREG]**KiesTrayAgent -/- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
[02-HKLMREG]**MicroLabCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -RmcTh
[02-HKLMREG]**MicroLabProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -RmcTh
[02-HKLMREG]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -xRIyMXFF
[02-HKLMREG]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -xRIyMXFF
[02-HKLMREG]**NATEON -/- C:\program files\nateon\bin\nateon.exe -as
[02-HKLMREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[02-HKLMREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dllNvStartup
[02-HKLMREG]**NvMediaCenter -/- RunDLL32.exe NvMCTray.dllNvTaskbarInit -login
[02-HKLMREG]**nwiz -/- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
[02-HKLMREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[02-HKLMREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[02-HKLMREG]**primead.exe -/- C:\Program Files\prime\primead.exe
[02-HKLMREG]**signkey -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\signkey\signkey.exe
[02-HKLMREG]**stickads -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Stickads\stickads.exe
[02-HKLMREG]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[02-HKLMREG]**windowsstats -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Applications\windowsstats.exe
[02-HKLMREG]**windowstatus -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Applications\windowstatus.exe
[02-HKLMREG]**winmdnts -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Winmdnts\winmdnts.exe
[02-HKLMREG]**WinPro -/- C:\Program Files\WinPro\WinPro.exe
[03-BHOCLSD]**{AB705622-B25B-491B-A6BF-4A46FDDBC88E} -/- C:\WINDOWS\system32\kakutk.dll
[04-TOOLBAR]**{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} -/- C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
[04-TOOLBAR]**{BCE04A5B-2B7D-4F4B-BB8E-2A59611733DD} -/- C:\Program Files\Racl\RaclTB.dll
[04-TOOLBAR]**{D09CFF09-A42A-4EDC-9804-E61224F59CA1} -/- C:\Program Files\naver\NaverToolbar\NaverTB_4_0_15_232.dll
[05-SERVICE]**adbfqqnvftj -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\adbfqqnvftj\adbfqqnvftj.dll
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**ALYac_RTSrv -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**bhwjobm -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\bhwjobm\bhwjobm.dll
[05-SERVICE]**crzflgqdg -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\crzflgqdg\crzflgqdg.dll
[05-SERVICE]**ctwopop -/- C:\Program Files\ctserv\ctserv.exe
[05-SERVICE]**dogrwsmkj -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\dogrwsmkj\dogrwsmkj.dll
[05-SERVICE]**dwmruwy -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\dwmruwy\dwmruwy.dll
[05-SERVICE]**egsiecyqfh -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\egsiecyqfh\egsiecyqfh.dll
[05-SERVICE]**ensxrfiibn -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\ensxrfiibn\ensxrfiibn.dll
[05-SERVICE]**fmzwrbz -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\fmzwrbz\fmzwrbz.dll
[05-SERVICE]**hksimrooxgx -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\hksimrooxgx\hksimrooxgx.dll
[05-SERVICE]**IJPLMSVC -/- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
[05-SERVICE]**ipjdpig -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\ipjdpig\ipjdpig.dll
[05-SERVICE]**jcotskrp -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\jcotskrp\jcotskrp.dll
[05-SERVICE]**jonaodf -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\jonaodf\jonaodf.dll
[05-SERVICE]**jqmusqcnpw -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\jqmusqcnpw\jqmusqcnpw.dll
[05-SERVICE]**jvmpnq -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\jvmpnq\jvmpnq.dll
[05-SERVICE]**llgmmh -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\llgmmh\llgmmh.dll
[05-SERVICE]**lytnxjgk -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\lytnxjgk\lytnxjgk.dll
[05-SERVICE]**napagent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**Nationalaem -/- C:\WINDOWS\system32\vipxie.exe
[05-SERVICE]**Nationalhmc -/- C:\WINDOWS\system32\7g3nh8s7b2.exe
[05-SERVICE]**NATService -/- C:\Program Files\NAT Service\natsvc.exe
[05-SERVICE]**ncighstd -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\ncighstd\ncighstd.dll
[05-SERVICE]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[05-SERVICE]**nsearchx -/- C:\Program Files\nxtech\nxsub.exe
[05-SERVICE]**NVSvc -/- C:\WINDOWS\system32\nvsvc32.exe
[05-SERVICE]**nvUpdatusService -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**PIIMSService -/- C:\Program Files\pims\PIIMSService.exe
[05-SERVICE]**qfskyebnlbl -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\qfskyebnlbl\qfskyebnlbl.dll
[05-SERVICE]**svclcaskkkz -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\svclcaskkkz\svclcaskkkz.dll
[05-SERVICE]**TCCheckAgent -/- C:\Program Files\AdvTopC\TCCheckAgent.exe
[05-SERVICE]**vmewhsllaq -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\vmewhsllaq\vmewhsllaq.dll
[05-SERVICE]**WindowsDriver -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\WindowsDriver.dll
[05-SERVICE]**xsherlock -/- C:\WINDOWS\system32\xsherlock.xem