Code : HWSiN1V+c3iYFQhXT1GkUkFpeMV6AqDX

프로그램분석

Code : HWSiN1V+c3iYFQhXT1GkUkFpeMV6AqDX

프로세스 천국 2013. 5. 13. 20:33

[00-PROCESS]**adInstall_ad039 -/- C:\Windows\adInstall_ad039.exe
[00-PROCESS]**bizboan -/- C:\Program Files\Bizboan\bizboan.exe
[00-PROCESS]**BizMon -/- C:\Program Files\Bizboan\BizMon.exe
[00-PROCESS]**bizstartup -/- C:\Program Files\Bizboan\bizstartup.exe
[00-PROCESS]**bizsvc -/- C:\Program Files\Bizboan\bizsvc.exe
[00-PROCESS]**catroot -/- C:\Windows\system32\AppCompat\catroot\catroot.exe
[00-PROCESS]**catroot -/- C:\WINDOWS\system32\AppCompat\catroot\catroot.exe
[00-PROCESS]**catrootsz -/- C:\Windows\system32\AppCompat\catroot\catrootsz.exe
[00-PROCESS]**checkscan -/- C:\Program Files\checkscan\checkscan.exe
[00-PROCESS]**checkscanEngine -/- C:\Program Files\checkscan\checkscanEngine.exe
[00-PROCESS]**checkscanse -/- C:\Program Files\checkscan\checkscanse.exe
[00-PROCESS]**checkscansetup_fastrealm -/- C:\Windows\checkscansetup_fastrealm.exe
[00-PROCESS]**checkscanU -/- C:\Program Files\checkscan\checkscanU.exe
[00-PROCESS]**clcatrootsz -/- C:\Windows\system32\AppCompat\catroot\clcatrootsz.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**FreeApp -/- C:\Windows\system32\MicrowindowSearch\FreeApp.exe
[00-PROCESS]**FreeListen_Setup_121 -/- C:\Users\Administrator\AppData\Local\Temp\FreeListen_Setup_121.exe
[00-PROCESS]**FreeListenDownLoader -/- C:\Windows\FreeListenDownLoader.exe
[00-PROCESS]**gongoo -/- C:\Windows\gongoo.exe
[00-PROCESS]**IETab -/- C:\Program Files\IETab\IETab.exe
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**ISZoneSetup_66_hide -/- C:\Windows\ISZoneSetup_66_hide.exe
[00-PROCESS]**kongga -/- C:\Program Files\KongGa\kongga.exe
[00-PROCESS]**KongGa -/- C:\Program Files\KongGa\KongGa.exe
[00-PROCESS]**kwinso -/- C:\Program Files\kwinstart\kwinso.exe
[00-PROCESS]**kwinstart -/- C:\Program Files\kwinstart\kwinstart.exe
[00-PROCESS]**kwinstartagent -/- C:\Program Files\kwinstart\kwinstartagent.exe
[00-PROCESS]**loa7 -/- C:\Users\Administrator\AppData\Roaming\loa7\loa7.exe
[00-PROCESS]**loa7agent -/- C:\Users\Administrator\AppData\Roaming\loa7\loa7agent.exe
[00-PROCESS]**metablogagent -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\metablogagent.exe
[00-PROCESS]**MetablogNewIssues -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\MetablogNewIssues.exe
[00-PROCESS]**MicrowindowSearch -/- C:\Windows\system32\MicrowindowSearch\MicrowindowSearch.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**RaclSetup_tjco001 -/- C:\Windows\RaclSetup_tjco001.exe
[00-PROCESS]**RaclUninst -/- C:\Program Files\Racl\RaclUninst.exe
[00-PROCESS]**SpdMgMain -/- C:\Program Files\speedmagic\SpdMgMain.exe
[00-PROCESS]**SpdMgService -/- C:\Program Files\speedmagic\SpdMgService.exe
[00-PROCESS]**SpdMgUpdater -/- C:\Program Files\speedmagic\SpdMgUpdater.exe
[00-PROCESS]**spfree -/- C:\Program Files\sppen\spfree.exe
[00-PROCESS]**sppen -/- C:\Program Files\sppen\sppen.exe
[00-PROCESS]**svcspwin -/- C:\Windows\system32\svcspwin.exe
[00-PROCESS]**TPAutoConnSvc -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[00-PROCESS]**TPVCGateway -/- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe
[00-PROCESS]**vaccineclass -/- C:\Program Files\vaccineclass\vaccineclass.exe
[00-PROCESS]**vaccineclassstart -/- C:\Program Files\vaccineclass\vaccineclassstart.exe
[00-PROCESS]**vaccineclassu -/- C:\Program Files\vaccineclass\vaccineclassu.exe
[00-PROCESS]**vmtoolsd -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe
[00-PROCESS]**wdrwspsvc -/- C:\Windows\system32\wdrwspsvc.exe
[00-PROCESS]**wennmmgr -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\wennmmgr.exe
[00-PROCESS]**wennmup -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\wennmup.exe
[00-PROCESS]**WindowmodusSetup_k10000 -/- C:\Windows\WindowmodusSetup_k10000.exe
[00-PROCESS]**WindowmodusUpdateService -/- C:\ProgramData\Window modus\WindowmodusUpdateService.exe
[00-PROCESS]**WindowServiceNT -/- C:\Windows\system32\WindowServiceNT.exe
[00-PROCESS]**winspex -/- C:\Program Files\WinsPop\winspex.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**catroot -/- C:\WINDOWS\system32\AppCompat\catroot\catrootsz.exe
[01-HKCUREG]**kgaprot -/- C:\Program Files\KongGa\kgaprot.exe
[01-HKCUREG]**kgmain -/- C:\Program Files\KongGa\kongga.exe
[01-HKCUREG]**kwinso -/- C:\Program Files\kwinstart\kwinso.exe
[01-HKCUREG]**kwinstart -/- C:\Program Files\kwinstart\kwinstart.exe
[01-HKCUREG]**kwinstartagent -/- C:\Program Files\kwinstart\kwinstartagent.exe
[01-HKCUREG]**loa7 -/- C:\Users\Administrator\AppData\Roaming\loa7\loa7agent.exe
[01-HKCUREG]**metablogagent -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\metablogagent.exe
[01-HKCUREG]**MetablogNewIssues -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\MetablogNewIssues.exe /byboot
[01-HKCUREG]**MicrowindowSearch -/- C:\WINDOWS\system32\MicrowindowSearch\MicrowindowSearch.exe
[01-HKCUREG]**sppen -/- C:\Program Files\sppen\sppen.exe
[01-HKCUREG]**vaccineclass main -/- C:\Program Files\vaccineclass\vaccineclassu.exe /8L
[01-HKCUREG]**vaccineclassstart.exe -/- C:\Program Files\vaccineclass\vaccineclassstart.exe
[01-HKCUREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -n vmusr
[01-HKCUREG]**wennm -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\wennmup.exe
[02-HKLMREG]**catroot -/- C:\WINDOWS\system32\AppCompat\catroot\catrootsz.exe
[02-HKLMREG]**kgaprot -/- C:\Program Files\KongGa\kgaprot.exe
[02-HKLMREG]**kgmain -/- C:\Program Files\KongGa\kongga.exe
[02-HKLMREG]**kwinso -/- C:\Program Files\kwinstart\kwinso.exe
[02-HKLMREG]**kwinstart -/- C:\Program Files\kwinstart\kwinstart.exe
[02-HKLMREG]**kwinstartagent -/- C:\Program Files\kwinstart\kwinstartagent.exe
[02-HKLMREG]**loa7 -/- C:\Users\Administrator\AppData\Roaming\loa7\loa7agent.exe
[02-HKLMREG]**metablogagent -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\metablogagent.exe
[02-HKLMREG]**MetablogNewIssues -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\MetablogNewIssues.exe /byboot
[02-HKLMREG]**MicrowindowSearch -/- C:\WINDOWS\system32\MicrowindowSearch\MicrowindowSearch.exe
[02-HKLMREG]**sppen -/- C:\Program Files\sppen\sppen.exe
[02-HKLMREG]**vaccineclass main -/- C:\Program Files\vaccineclass\vaccineclassu.exe /8L
[02-HKLMREG]**vaccineclassstart.exe -/- C:\Program Files\vaccineclass\vaccineclassstart.exe
[02-HKLMREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -n vmusr
[02-HKLMREG]**wennm -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\wennmup.exe
[03-BHOCLSD]**kwinso -/- c:\PROGRA~2\KWINST~1\kwinso.dll -/- {CC01FC6C-CACC-4E17-8C06-95C30EF5E6A7}
[03-BHOCLSD]**sppen Puligin -/- C:\PROGRA~2\sppen\sppen.dll -/- {A3781F6D-1AC1-CF40-D744-1F65F8F1498D}
[04-TOOLBAR]**N.A -/- N.A -/- {BCE04A5B-2B7D-4F4B-BB8E-2A59611733DD}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**AppCatroots -/- Application Catroots -/- C:\WINDOWS\system32\AppCompat\catroot\catroot.exe
[05-SERVICE]**ApplicationSpecialManagement -/- Application Special Management -/- C:\Windows\system32\WindowServiceNT.exe
[05-SERVICE]**bizboan -/- bizboan 서비스 -/- C:\Program Files\Bizboan\bizsvc.exe
[05-SERVICE]**checkscanService -/- checkscan Service -/- C:\Program Files\checkscan\checkscanse.exe
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**SpdMgService -/- speedmagic Service -/- C:\Program Files\speedmagic\SpdMgService.exe
[05-SERVICE]**TPAutoConnSvc -/- TP AutoConnect Service -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[05-SERVICE]**TPVCGateway -/- TP VC Gateway Service -/- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe
[05-SERVICE]**VMTools -/- VMware Tools -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe
[05-SERVICE]**vmvss -/- VMware Snapshot Provider -/- C:\Windows\system32\dllhost.exe
[05-SERVICE]**Windows WinsPop Diagnostics Service -/- Windows WinsPop Diagnostics Service -/- C:\Windows\system32\wdrwspsvc.exe
[05-SERVICE]**WindowsDriver -/- WindowsDriver -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\WindowsDriver.dll
[05-SERVICE]**WinsPop Service -/- WinsPop Service -/- C:\Windows\system32\svcspwin.exe