Code : 3C2W1CFs2CrZx2Teppx8GbjhLc+Ukcgc

프로그램분석

Code : 3C2W1CFs2CrZx2Teppx8GbjhLc+Ukcgc

프로세스 천국 2013. 5. 1. 20:07

[00-PROCESS]**AdobeARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[00-PROCESS]**armsvc -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[00-PROCESS]**aspnet_state -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
[00-PROCESS]**atieclxx -/- C:\Windows\system32\atieclxx.exe
[00-PROCESS]**atiesrxx -/- C:\Windows\system32\atiesrxx.exe
[00-PROCESS]**brainclan_CP -/- C:\Program Files\brainclan CP\brainclan_CP.exe
[00-PROCESS]**brainclan_CP_updater -/- C:\Program Files\brainclan CP\brainclan_CP_updater.exe
[00-PROCESS]**CCC -/- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
[00-PROCESS]**CLIStart -/- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
[00-PROCESS]**conditionuserinfo -/- C:\Windows\conditionuserinfo.exe
[00-PROCESS]**DaumSAM -/- C:\Users\Administrator\AppData\Local\Daum\DaumLiveAgent\DaumSAM.exe
[00-PROCESS]**DTLite -/- C:\Program Files\DAEMON Tools Lite\DTLite.exe
[00-PROCESS]**firefox -/- C:\Program Files\Mozilla Firefox\firefox.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**GoogleCrashHandler -/- C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe
[00-PROCESS]**GoogleCrashHandler64 -/- C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
[00-PROCESS]**GoogleUpdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[00-PROCESS]**GuardConvert -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe
[00-PROCESS]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncUpdate.exe
[00-PROCESS]**iestart -/- C:\Program Files\iestart\iestart.exe
[00-PROCESS]**iestartagent -/- C:\Program Files\iestart\iestartagent.exe
[00-PROCESS]**iestartv -/- C:\Program Files\iestart\iestartv.exe
[00-PROCESS]**IETab -/- C:\Program Files\IETab\IETab.exe
[00-PROCESS]**ImageSAFERStart_X64 -/- C:\Windows\system32\ImageSAFERStart_X64.exe
[00-PROCESS]**ImageSAFERStart_X86 -/- C:\Windows\system32\ImageSAFERStart_X86.exe
[00-PROCESS]**ImageSAFERSvc -/- C:\Windows\ImageSAFERSvc.exe
[00-PROCESS]**IMEDICTUPDATE -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[00-PROCESS]**IMEKLMG -/- C:\Program Files\Common Files\microsoft shared\IME14\SHARED\IMEKLMG.EXE
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**InstHelper -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe
[00-PROCESS]**jucheck -/- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
[00-PROCESS]**jusched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[00-PROCESS]**linkdoumi -/- C:\Program Files\linkdoumi\linkdoumi.exe
[00-PROCESS]**linkdoumiagentv -/- C:\Program Files\linkdoumi\linkdoumiagentv.exe
[00-PROCESS]**linkdoumiv -/- C:\Program Files\linkdoumi\linkdoumiv.exe
[00-PROCESS]**maintenanceservice -/- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
[00-PROCESS]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe
[00-PROCESS]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe
[00-PROCESS]**MOM -/- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
[00-PROCESS]**MsMpEng -/- C:\Program Files\Microsoft Security Client\MsMpEng.exe
[00-PROCESS]**msseces -/- C:\Program Files\Microsoft Security Client\msseces.exe
[00-PROCESS]**MultiAddress -/- C:\Program Files\MulAdreess\MultiAddress.exe
[00-PROCESS]**NaverAdminAPISvc -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[00-PROCESS]**NisSrv -/- C:\Program Files\Microsoft Security Client\NisSrv.exe
[00-PROCESS]**npnj5Agent -/- C:\Windows\system32\npnj5Agent.exe
[00-PROCESS]**nPStarterSVC -/- C:\Windows\system32\nPStarterSVC.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**OSPPSVC -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**RAVCpl64 -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
[00-PROCESS]**Steam -/- C:\Program Files\Steam\Steam.exe
[00-PROCESS]**SteamService -/- C:\Program Files\Common Files\Steam\SteamService.exe
[00-PROCESS]**WatAdminSvc -/- C:\Windows\system32\Wat\WatAdminSvc.exe
[00-PROCESS]**wkwd_u_dll -/- C:\Program Files\Common Files\wkwd_u_dll.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[01-HKCUREG]**AtbOptimize -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe -preload
[01-HKCUREG]**clover -/- C:\Program Files\brainclan CP\brainclan_CP.exe
[01-HKCUREG]**clover_u -/- C:\Program Files\brainclan CP\brainclan_CP_updater.exe
[01-HKCUREG]**DAEMON Tools Lite -/- C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun
[01-HKCUREG]**Daum Streaming Service -/- C:\Users\Administrator\AppData\Local\Daum\DaumLiveAgent\DaumSAM.exe
[01-HKCUREG]**GuardSupport -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe -Ytjao
[01-HKCUREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncUpdate.exe /A
[01-HKCUREG]**iestart -/- C:\Program Files\iestart\iestart.exe
[01-HKCUREG]**iestartagent -/- C:\Program Files\iestart\iestartagent.exe
[01-HKCUREG]**iestartv -/- C:\Program Files\iestart\iestartv.exe
[01-HKCUREG]**IETab -/- C:\Program Files\IETab\IETab.exe
[01-HKCUREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[01-HKCUREG]**IME14 KOR Setup -/- C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[01-HKCUREG]**linkdoumi -/- C:\Program Files\linkdoumi\linkdoumi.exe
[01-HKCUREG]**linkdoumiagentv -/- C:\Program Files\linkdoumi\linkdoumiagentv.exe
[01-HKCUREG]**linkdoumiv -/- C:\Program Files\linkdoumi\linkdoumiv.exe
[01-HKCUREG]**MicroLabCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -dyoftD
[01-HKCUREG]**MicroLabProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -dyoftD
[01-HKCUREG]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -Ytjao
[01-HKCUREG]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -Ytjao
[01-HKCUREG]**MSC -/- C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey
[01-HKCUREG]**MultiAddress.exe -/- C:\Program Files\\MulAdreess\MultiAddress.exe
[01-HKCUREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
[01-HKCUREG]**StartCCC -/- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun
[01-HKCUREG]**Steam -/- C:\Program Files\Steam\Steam.exe -silent
[01-HKCUREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[02-HKLMREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[02-HKLMREG]**AtbOptimize -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe -preload
[02-HKLMREG]**clover -/- C:\Program Files\brainclan CP\brainclan_CP.exe
[02-HKLMREG]**clover_u -/- C:\Program Files\brainclan CP\brainclan_CP_updater.exe
[02-HKLMREG]**DAEMON Tools Lite -/- C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun
[02-HKLMREG]**Daum Streaming Service -/- C:\Users\Administrator\AppData\Local\Daum\DaumLiveAgent\DaumSAM.exe
[02-HKLMREG]**GuardSupport -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe -Ytjao
[02-HKLMREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncUpdate.exe /A
[02-HKLMREG]**iestart -/- C:\Program Files\iestart\iestart.exe
[02-HKLMREG]**iestartagent -/- C:\Program Files\iestart\iestartagent.exe
[02-HKLMREG]**iestartv -/- C:\Program Files\iestart\iestartv.exe
[02-HKLMREG]**IETab -/- C:\Program Files\IETab\IETab.exe
[02-HKLMREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[02-HKLMREG]**IME14 KOR Setup -/- C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[02-HKLMREG]**linkdoumi -/- C:\Program Files\linkdoumi\linkdoumi.exe
[02-HKLMREG]**linkdoumiagentv -/- C:\Program Files\linkdoumi\linkdoumiagentv.exe
[02-HKLMREG]**linkdoumiv -/- C:\Program Files\linkdoumi\linkdoumiv.exe
[02-HKLMREG]**MicroLabCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -dyoftD
[02-HKLMREG]**MicroLabProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -dyoftD
[02-HKLMREG]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -Ytjao
[02-HKLMREG]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -Ytjao
[02-HKLMREG]**MSC -/- C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey
[02-HKLMREG]**MultiAddress.exe -/- C:\Program Files\\MulAdreess\MultiAddress.exe
[02-HKLMREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
[02-HKLMREG]**StartCCC -/- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun
[02-HKLMREG]**Steam -/- C:\Program Files\Steam\Steam.exe -silent
[02-HKLMREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[03-BHOCLSD]**{18DF081C-E8AD-4283-A596-FA578C2EBDC3} -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[03-BHOCLSD]**{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -/- C:\Program Files\Java\jre7\bin\ssv.dll
[03-BHOCLSD]**{7F1A79F9-78D1-4186-9F60-EE0B63DF042A} -/- C:\Program Files\ESTsoft\ALToolBar\ALToolBar_3020.dll
[03-BHOCLSD]**{B4F3A835-0E21-4959-BA22-42B3008E02FF} -/- C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
[03-BHOCLSD]**{B4F3A835-0E21-4959-BA22-42B3008E02FF} -/- C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
[03-BHOCLSD]**{C9CFB9D3-1AE8-4AF5-9760-28D0D0045033} -/- C:\Program Files\linkdoumi\linkdoumivb.dll
[03-BHOCLSD]**{CC01FC6C-4839-47A9-ABCF-1913D4FF4ECD} -/- c:\PROGRA~2\LINKDO~1\lnkdo.dll
[03-BHOCLSD]**{DBC80044-A445-435b-BC74-9C25C1C588A9} -/- C:\Program Files\Java\jre7\bin\jp2ssv.dll
[03-BHOCLSD]**{F8D523EB-98BB-4094-8D55-FF494D7DE323} -/- C:\Program Files\iestart\iestartvb.dll
[03-BHOCLSD]**{FEC9FE9D-7417-4371-98FA-6DAA9E3A1C62} -/- C:\Users\Administrator\AppData\Roaming\Macromedia\smcl.dll
[04-TOOLBAR]**{38FBE93D-4CA1-4414-AF6A-94920C5BD8DA} -/- C:\Program Files\ESTsoft\ALToolBar\ALToolBar_3020.dll
[04-TOOLBAR]**10 -/- N.A
[05-SERVICE]**AdobeARMservice -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**AMD External Events Utility -/- C:\Windows\system32\atiesrxx.exe
[05-SERVICE]**autokwds -/- C:\Program Files\Common Files\wkwd_u_dll.exe
[05-SERVICE]**gpsvc -/- C:\Windows\system32\svchost.exe -/- C:\Windows\System32\gpsvc.dll
[05-SERVICE]**gupdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**gupdatem -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**highspeed Update Service -/- C:\Windows\conditionuserinfo.exe
[05-SERVICE]**HPSLPSVC -/- C:\Windows\system32\svchost.exe -/- C:\Users\Administrator\AppData\Local\Temp\7zS54CE\hpslpsvc64.dll
[05-SERVICE]**Image Protection -/- C:\Windows\ImageSAFERSvc.exe
[05-SERVICE]**ImeDictUpdateService -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[05-SERVICE]**MozillaMaintenance -/- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
[05-SERVICE]**MsMpSvc -/- C:\Program Files\Microsoft Security Client\MsMpEng.exe
[05-SERVICE]**Naver Updater -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[05-SERVICE]**NetMsmqActivator -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe -NetMsmqActivator
[05-SERVICE]**NetPipeActivator -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**NetTcpActivator -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**NetTcpPortSharing -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**NisSrv -/- C:\Program Files\Microsoft Security Client\NisSrv.exe
[05-SERVICE]**nPStarterSVC -/- C:\Windows\system32\nPStarterSVC.exe
[05-SERVICE]**ose64 -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**osppsvc -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[05-SERVICE]**PerfHost -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**Steam Client Service -/- C:\Program Files\Common Files\Steam\SteamService.exe