Code : 25l/dVzb/QqaRTXdR/uePUPVEeDbS5Ml

프로그램분석

Code : 25l/dVzb/QqaRTXdR/uePUPVEeDbS5Ml

프로세스 천국 2013. 4. 22. 21:25

[00-PROCESS]**AdMatching -/- C:\Program Files\AdMatching\AdMatching.exe
[00-PROCESS]**admsys -/- C:\Program Files\AdMatching\admsys.exe
[00-PROCESS]**ALZip -/- C:\Program Files\ESTsoft\ALZip\ALZip.exe
[00-PROCESS]**AYLaunch -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe
[00-PROCESS]**BBSvc -/- C:\Program Files\Microsoft\BingBar\7.1.391.0\BBSvc.exe
[00-PROCESS]**ConversionService -/- C:\Program Files\Soda PDF 5\ConversionService.exe
[00-PROCESS]**ctserv -/- C:\Program Files\ctserv\ctserv.exe
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**FBDManager -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDManager.exe
[00-PROCESS]**FBDSvcMan -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDSvcMan.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**hanasvc -/- C:\Program Files\hanactrl\hanasvc.exe
[00-PROCESS]**HeciServer -/- C:\Program Files\Intel\iCLS Client\HeciServer.exe
[00-PROCESS]**HelperService -/- C:\Program Files\Soda PDF 5\HelperService.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**IJPLMSVC -/- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**InstHelper -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe
[00-PROCESS]**ISZone -/- C:\Program Files\ISZone\ISZone.exe
[00-PROCESS]**LMS -/- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
[00-PROCESS]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe
[00-PROCESS]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
[00-PROCESS]**msfeedssync -/- C:\Windows\system32\msfeedssync.exe
[00-PROCESS]**MsMpEng -/- C:\Program Files\Microsoft Security Client\MsMpEng.exe
[00-PROCESS]**msseces -/- C:\Program Files\Microsoft Security Client\msseces.exe
[00-PROCESS]**natsvc -/- C:\Program Files\NAT Service\natsvc.exe
[00-PROCESS]**NaverAdminAPISvc -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[00-PROCESS]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe
[00-PROCESS]**NisSrv -/- C:\Program Files\Microsoft Security Client\NisSrv.exe
[00-PROCESS]**npkcmsvc -/- C:\Windows\system32\npkcmsvc.exe
[00-PROCESS]**nvSCPAPISvr -/- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
[00-PROCESS]**nvtray -/- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
[00-PROCESS]**nvvsvc -/- C:\Windows\system32\nvvsvc.exe
[00-PROCESS]**nvxdsync -/- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**RaMediaServer -/- C:\Program Files\Ralink\Common\RaMediaServer.exe
[00-PROCESS]**RaRegistry -/- C:\Program Files\Ralink\Common\RaRegistry.exe
[00-PROCESS]**RaRegistry64 -/- C:\Program Files\Ralink\Common\RaRegistry64.exe
[00-PROCESS]**RaUI -/- C:\Program Files\Ralink\Common\RaUI.exe
[00-PROCESS]**revealingdc -/- C:\Program Files\revealing\revealingdc.exe
[00-PROCESS]**ROC_roc_ssl_v12 -/- C:\Program Files\AVG Secure Search\ROC_roc_ssl_v12.exe
[00-PROCESS]**rundll32 -/- C:\Windows\system32\rundll32.exe
[00-PROCESS]**SeaPort -/- C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe
[00-PROCESS]**SNChkSvc -/- C:\Program Files\SearchN\SNChkSvc.exe
[00-PROCESS]**SNSlide -/- C:\Program Files\SearchN\SNSlide.exe
[00-PROCESS]**SNUpdate -/- C:\Program Files\SearchN\SNUpdate.exe
[00-PROCESS]**TCCheckAgent -/- C:\Program Files\AdvTopC\TCCheckAgent.exe
[00-PROCESS]**ToolbarUpdater -/- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
[00-PROCESS]**UNS -/- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
[00-PROCESS]**VDeck -/- C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
[00-PROCESS]**viakaraokesrv -/- C:\Windows\system32\viakaraokesrv.exe
[00-PROCESS]**vprot -/- C:\Program Files\AVG Secure Search\vprot.exe
[00-PROCESS]**WatAdminSvc -/- C:\Windows\system32\Wat\WatAdminSvc.exe
[00-PROCESS]**WHelp -/- C:\Program Files\WHelp\WHelp.exe
[00-PROCESS]**windowsph -/- C:\ProgramData\WindowsPurchaseHelper\windowsph.exe
[00-PROCESS]**windowsphup -/- C:\ProgramData\WindowsPurchaseHelper\windowsphup.exe
[00-PROCESS]**windowstab -/- C:\ProgramData\WindowsTab\windowstab.exe
[00-PROCESS]**windowstabup -/- C:\ProgramData\WindowsTab\windowstabup.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**AdMatching -/- C:\Program Files\AdMatching\AdMatching.exe
[01-HKCUREG]**AdMatching -/- C:\Program Files\AdMatching\AdMatching.exe /byboot
[01-HKCUREG]**admsys -/- C:\Program Files\AdMatching\admsys.exe
[01-HKCUREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[01-HKCUREG]**AtbOptimize -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe -preload
[01-HKCUREG]**HDAudDeck -/- C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r
[01-HKCUREG]**MicroLabProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -xRIyMXF
[01-HKCUREG]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -RmcTh
[01-HKCUREG]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -RmcTh
[01-HKCUREG]**MSC -/- C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey
[01-HKCUREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[01-HKCUREG]**revealing_dc -/- C:\Program Files\revealing\revealingdc.exe
[01-HKCUREG]**ROC_roc_ssl_v12 -/- C:\Program Files\AVG Secure Search\ROC_roc_ssl_v12.exe / /PROMPT /CMPID=roc_ssl_v12
[01-HKCUREG]**rpga -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\rpgchk.exe
[01-HKCUREG]**SearchN -/- C:\Program Files\SearchN\SNUpdate.exe
[01-HKCUREG]**snslide -/- C:\Program Files\SearchN\SNSlide.exe
[01-HKCUREG]**SpeedDownload -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDManager.exe
[01-HKCUREG]**vProt -/- C:\Program Files\AVG Secure Search\vprot.exe
[01-HKCUREG]**WHelp -/- C:\Program Files\WHelp\WHelp.exe
[01-HKCUREG]**WindowsPurchaseHelper -/- C:\ProgramData\WindowsPurchaseHelper\windowsphup.exe
[01-HKCUREG]**WindowsTab -/- C:\ProgramData\WindowsTab\windowstabup.exe
[02-HKLMREG]**AdMatching -/- C:\Program Files\AdMatching\AdMatching.exe
[02-HKLMREG]**AdMatching -/- C:\Program Files\AdMatching\AdMatching.exe /byboot
[02-HKLMREG]**admsys -/- C:\Program Files\AdMatching\admsys.exe
[02-HKLMREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[02-HKLMREG]**AtbOptimize -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe -preload
[02-HKLMREG]**HDAudDeck -/- C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r
[02-HKLMREG]**MicroLabProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -xRIyMXF
[02-HKLMREG]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -RmcTh
[02-HKLMREG]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -RmcTh
[02-HKLMREG]**MSC -/- C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey
[02-HKLMREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[02-HKLMREG]**revealing_dc -/- C:\Program Files\revealing\revealingdc.exe
[02-HKLMREG]**ROC_roc_ssl_v12 -/- C:\Program Files\AVG Secure Search\ROC_roc_ssl_v12.exe / /PROMPT /CMPID=roc_ssl_v12
[02-HKLMREG]**rpga -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\rpgchk.exe
[02-HKLMREG]**SearchN -/- C:\Program Files\SearchN\SNUpdate.exe
[02-HKLMREG]**snslide -/- C:\Program Files\SearchN\SNSlide.exe
[02-HKLMREG]**SpeedDownload -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDManager.exe
[02-HKLMREG]**vProt -/- C:\Program Files\AVG Secure Search\vprot.exe
[02-HKLMREG]**WHelp -/- C:\Program Files\WHelp\WHelp.exe
[02-HKLMREG]**WindowsPurchaseHelper -/- C:\ProgramData\WindowsPurchaseHelper\windowsphup.exe
[02-HKLMREG]**WindowsTab -/- C:\ProgramData\WindowsTab\windowstabup.exe
[03-BHOCLSD]**{000011A1-74C9-4c7e-9B4E-59B5765CF409} -/- c:\program files\naver\navertoolbar\naversafeguard\nsafeguard_2012_9_24_1.dll
[03-BHOCLSD]**{2F2CF04D-300B-49A2-A23B-407D27FB9BFB} -/- C:\Program Files\WHelp\WHelp.dll
[03-BHOCLSD]**{3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -/- C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
[03-BHOCLSD]**{3E5EF872-03E2-4CE0-94DF-CA8A5004ECFD} -/- C:\Program Files\AdvTopC\TCHelper.dll
[03-BHOCLSD]**{67C41E9E-2EBF-4F2B-AF74-314F0D793172} -/- C:\Program Files\naver\NaverToolbar\NaverTB_4_0_14_224.dll
[03-BHOCLSD]**{77BD0634-EF6C-4C8F-9A89-01F0CCE15768} -/- C:\Program Files\revealing\revealing.dll
[03-BHOCLSD]**{7F1A79F9-78D1-4186-9F60-EE0B63DF042A} -/- C:\Program Files\ESTsoft\ALToolBar\ALToolBar_3020.dll
[03-BHOCLSD]**{95B7759C-8C7F-4BF1-B163-73684A933233} -/- C:\Program Files\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll
[03-BHOCLSD]**{C737F472-1193-4281-BF53-A00B67AB3E19} -/- C:\Program Files\Soda PDF 5\PDFIEHelper.dll
[03-BHOCLSD]**{d2ce3e00-f94a-4740-988e-03dc2f38c34f} -/- C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll
[03-BHOCLSD]**{DF9042E7-BE36-4FDC-9213-30C1765DC115} -/- C:\Users\Administrator\AppData\Roaming\enumerate_nm\tpsnmiem.dll
[03-BHOCLSD]**{FE14A4CA-5CFA-4C05-9274-6006397B68C9} -/- C:\Program Files\SearchN\SearchN.dll
[04-TOOLBAR]**{38FBE93D-4CA1-4414-AF6A-94920C5BD8DA} -/- C:\Program Files\ESTsoft\ALToolBar\ALToolBar_3020.dll
[04-TOOLBAR]**{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} -/- C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
[04-TOOLBAR]**{8dcb7100-df86-4384-8842-8fa844297b3f} -/- C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll
[04-TOOLBAR]**{95B7759C-8C7F-4BF1-B163-73684A933233} -/- C:\Program Files\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll
[04-TOOLBAR]**{D09CFF09-A42A-4EDC-9804-E61224F59CA1} -/- C:\Program Files\naver\NaverToolbar\NaverTB_4_0_14_224.dll
[04-TOOLBAR]**{F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} -/- C:\Program Files\Soda PDF 5\PDFIEPlugin.dll
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**ALYac_RTSrv -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**BBSvc -/- C:\Program Files\Microsoft\BingBar\7.1.391.0\BBSvc.exe
[05-SERVICE]**BBUpdate -/- C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe
[05-SERVICE]**ctwopop -/- C:\Program Files\ctserv\ctserv.exe
[05-SERVICE]**FBDSvcman -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDSvcMan.exe
[05-SERVICE]**gpsvc -/- C:\Windows\system32\svchost.exe -/- C:\Windows\System32\gpsvc.dll
[05-SERVICE]**hanactrl -/- C:\Program Files\hanactrl\hanasvc.exe
[05-SERVICE]**IJPLMSVC -/- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
[05-SERVICE]**Intel(R) Capability Licensing Service Interface -/- C:\Program Files\Intel\iCLS Client\HeciServer.exe
[05-SERVICE]**LMS -/- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
[05-SERVICE]**MsMpSvc -/- C:\Program Files\Microsoft Security Client\MsMpEng.exe
[05-SERVICE]**NATService -/- C:\Program Files\NAT Service\natsvc.exe
[05-SERVICE]**Naver Updater -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[05-SERVICE]**NetTcpPortSharing -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**NisSrv -/- C:\Program Files\Microsoft Security Client\NisSrv.exe
[05-SERVICE]**npggsvc -/- C:\Windows\system32\GameMon.des -service
[05-SERVICE]**npkcmsvc -/- C:\Windows\system32\npkcmsvc.exe
[05-SERVICE]**nvsvc -/- C:\Windows\system32\nvvsvc.exe
[05-SERVICE]**nvUpdatusService -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**PerfHost -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**RalinkRegistryWriter -/- C:\Program Files\Ralink\Common\RaRegistry.exe
[05-SERVICE]**RalinkRegistryWriter64 -/- C:\Program Files\Ralink\Common\RaRegistry64.exe
[05-SERVICE]**RaMediaServer -/- C:\Program Files\Ralink\Common\RaMediaServer.exe
[05-SERVICE]**SearchN -/- C:\Program Files\SearchN\SNChkSvc.exe
[05-SERVICE]**Soda PDF 5 Helper Service -/- C:\Program Files\Soda PDF 5\HelperService.exe
[05-SERVICE]**Soda PDF 5 Service -/- C:\Program Files\Soda PDF 5\ConversionService.exe
[05-SERVICE]**Stereo Service -/- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
[05-SERVICE]**TCCheckAgent -/- C:\Program Files\AdvTopC\TCCheckAgent.exe
[05-SERVICE]**UNS -/- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
[05-SERVICE]**VIAKaraokeService -/- C:\Windows\system32\viakaraokesrv.exe
[05-SERVICE]**vToolbarUpdater14.2.0 -/- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
[05-SERVICE]**WindowsDriver -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\WindowsDriver.dll