Code : 66TeVNLOVXcPg81sq0q8K9TFyZPOiCJQqs5fzUUrgT8=

프로그램분석

Code : 66TeVNLOVXcPg81sq0q8K9TFyZPOiCJQqs5fzUUrgT8=

프로세스 천국 2013. 5. 14. 16:28

[00-PROCESS]**AESTSr64 -/- C:\Program Files\IDT\WDM\AESTSr64.exe
[00-PROCESS]**aim -/- C:\Users\Administrator\AppData\Local\AOL\AIM\aim.exe
[00-PROCESS]**AliimSafe -/- C:\AliWangWang\7.20.11T\miser\AliimSafe.exe
[00-PROCESS]**ApMsgFwd -/- C:\Program Files\DellTPad\ApMsgFwd.exe
[00-PROCESS]**Apntex -/- C:\Program Files\DellTPad\Apntex.exe
[00-PROCESS]**Apoint -/- C:\Program Files\DellTPad\Apoint.exe
[00-PROCESS]**AYLaunch -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe
[00-PROCESS]**BaiduP2PService -/- C:\Baidu\BaiduPlayer\1.19.0.137\BaiduP2PService.exe
[00-PROCESS]**chrome -/- C:\Program Files\Google\Chrome\Application\chrome.exe
[00-PROCESS]**D4Ser_ICBC -/- C:\Windows\system32\D4Ser_ICBC.exe
[00-PROCESS]**D4Svr_ICBC -/- C:\Windows\system32\D4Svr_ICBC.exe
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**DBank_ClickUp -/- C:\Program Files\DBank\ClickUp\DBank_ClickUp.exe
[00-PROCESS]**DefenderDaemon -/- C:\Program Files\Shadow Defender\DefenderDaemon.exe
[00-PROCESS]**devmonsrv -/- C:\Program Files\Intel\Bluetooth\devmonsrv.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**FlashUtil32_11_6_602_180_ActiveX -/- C:\Windows\system32\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe
[00-PROCESS]**GoogleUpdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[00-PROCESS]**HidFind -/- C:\Program Files\DellTPad\HidFind.exe
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**IntelCpHeciSvc -/- C:\Windows\system32\IntelCpHeciSvc.exe
[00-PROCESS]**mediasrv -/- C:\Program Files\Intel\Bluetooth\mediasrv.exe
[00-PROCESS]**nusb3mon -/- C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
[00-PROCESS]**nvSCPAPISvr -/- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
[00-PROCESS]**nvtray -/- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
[00-PROCESS]**nvvsvc -/- C:\Windows\system32\nvvsvc.exe
[00-PROCESS]**nvxdsync -/- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
[00-PROCESS]**obexsrv -/- C:\Program Files\Intel\Bluetooth\obexsrv.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**QQ -/- C:\Program Files\QQ2013木头显IP版\Bin\QQ.exe
[00-PROCESS]**QQExternal -/- C:\Program Files\QQ2013木头显IP版\Bin\QQExternal.exe
[00-PROCESS]**regieplugin -/- C:\Program Files\HttpWatch\regieplugin.exe
[00-PROCESS]**RIconMan -/- C:\Program Files\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
[00-PROCESS]**RunYNote -/- C:\Program Files\Youdao\YoudaoNote\RunYNote.exe
[00-PROCESS]**SGImeGuard -/- C:\Program Files\SogouInput\Components\AddressSearch\1.0.0.1169\SGImeGuard.exe
[00-PROCESS]**Skycn -/- C:\Program Files\Skycn\Skycn.exe
[00-PROCESS]**Skype -/- C:\skype\Skype\Phone\Skype.exe
[00-PROCESS]**SMSvcHost -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**SogouCloud -/- C:\Program Files\SogouInput\6.5.0.8433\SogouCloud.exe
[00-PROCESS]**STacSV64 -/- C:\Program Files\IDT\WDM\STacSV64.exe
[00-PROCESS]**sttray64 -/- C:\Program Files\IDT\WDM\sttray64.exe
[00-PROCESS]**TenpayServer -/- C:\Program Files\Common Files\Tencent\Paycenter\TenpayServer.exe
[00-PROCESS]**ThunderMobilePlatform -/- C:\Thunder Network\Thunder\Program\ThunderMobilePlatform.exe
[00-PROCESS]**TXPlatform -/- C:\Program Files\QQ2013木头显IP版\Bin\TXPlatform.exe
[00-PROCESS]**Updater -/- C:\skype\skype\Updater\Updater.exe
[00-PROCESS]**vmnat -/- C:\Windows\system32\vmnat.exe
[00-PROCESS]**vmnetdhcp -/- C:\Windows\system32\vmnetdhcp.exe
[00-PROCESS]**vmware -/- C:\VMWare\vmware.exe
[00-PROCESS]**vmware-authd -/- C:\VMWare\vmware-authd.exe
[00-PROCESS]**vmware-tray -/- C:\VMWare\vmware-tray.exe
[00-PROCESS]**vmware-unity-helper -/- C:\VMWare\vmware-unity-helper.exe
[00-PROCESS]**vmware-usbarbitrator -/- C:\VMWare\vmware-usbarbitrator.exe
[00-PROCESS]**vmware-vmx -/- C:\VMWare\vmware-vmx.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[00-PROCESS]**WVSScheduler -/- C:\Acunetix\Web Vulnerability Scanner 8\WVSScheduler.exe
[00-PROCESS]**XmpTipWnd.1.0.0.61 -/- C:\Users\Administrator\Thunder Network\KanKan\Pusher\XmpTipWnd.1.0.0.61.exe
[01-HKCUREG]**AIM for Windows -/- C:\Users\Administrator\AppData\Local\AOL\AIM\aim.exe
[01-HKCUREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[01-HKCUREG]**Apoint -/- C:\Program Files\DellTPad\Apoint.exe
[01-HKCUREG]**ctfmon -/- C:\Windows\System32\ctfmon.exe
[01-HKCUREG]**D4Svr_ICBC.exe -/- D4Svr_ICBC.exe
[01-HKCUREG]**DBank_ClickUp -/- C:\Program Files\DBank\ClickUp\DBank_ClickUp.exe
[01-HKCUREG]**HttpWatch_RegIEPlugin -/- C:\Program Files\HttpWatch\regieplugin.exe
[01-HKCUREG]**ImeGuardCom -/- C:\Program Files\SogouInput\Components\AddressSearch\1.0.0.1169\SGImeGuard.exe
[01-HKCUREG]**NUSB3MON -/- C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
[01-HKCUREG]**Shadow Defender Daemon -/- C:\Program Files\Shadow Defender\DefenderDaemon.exe /Auto
[01-HKCUREG]**SysTrayApp -/- C:\Program Files\IDT\WDM\sttray64.exe
[01-HKCUREG]**ynote -/- C:\Program Files\Youdao\YoudaoNote\RunYNote.exe hide
[02-HKLMREG]**AIM for Windows -/- C:\Users\Administrator\AppData\Local\AOL\AIM\aim.exe
[02-HKLMREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[02-HKLMREG]**Apoint -/- C:\Program Files\DellTPad\Apoint.exe
[02-HKLMREG]**ctfmon -/- C:\Windows\System32\ctfmon.exe
[02-HKLMREG]**D4Svr_ICBC.exe -/- D4Svr_ICBC.exe
[02-HKLMREG]**DBank_ClickUp -/- C:\Program Files\DBank\ClickUp\DBank_ClickUp.exe
[02-HKLMREG]**HttpWatch_RegIEPlugin -/- C:\Program Files\HttpWatch\regieplugin.exe
[02-HKLMREG]**ImeGuardCom -/- C:\Program Files\SogouInput\Components\AddressSearch\1.0.0.1169\SGImeGuard.exe
[02-HKLMREG]**NUSB3MON -/- C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
[02-HKLMREG]**Shadow Defender Daemon -/- C:\Program Files\Shadow Defender\DefenderDaemon.exe /Auto
[02-HKLMREG]**SysTrayApp -/- C:\Program Files\IDT\WDM\sttray64.exe
[02-HKLMREG]**ynote -/- C:\Program Files\Youdao\YoudaoNote\RunYNote.exe hide
[03-BHOCLSD]**HttpWatch Basic -/- C:\Program Files\HttpWatch\httpwatchsc.dll -/- {F1F69322-008F-4895-B2BF-AD194219825A}
[03-BHOCLSD]**迅雷FLV视频嗅探及下载支持 -/- C:\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.8.71.dll -/- {0EA37B17-6B8B-4085-8257-F3A4AA69C27A}
[03-BHOCLSD]**迅雷下载支持 -/- C:\Thunder Network\Thunder\BHO\XunleiBHO647.2.13.3882.dll -/- {004B0726-A010-4ABF-8556-FCDB7F1FCA1E}
[03-BHOCLSD]**迅雷下载支持 -/- C:\Thunder Network\Thunder\BHO\XunleiBHO7.2.13.3882.dll -/- {889D2FEB-5411-4565-8998-1DD2C5261283}
[05-SERVICE]**AcuWVSSchedulerv8 -/- Acunetix WVS Scheduler v8 -/- C:\Acunetix\Web Vulnerability Scanner 8\WVSScheduler.exe
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**AESTFilters -/- Andrea ST Filters Service -/- C:\Program Files\IDT\WDM\AESTSr64.exe
[05-SERVICE]**ALYac_RTSrv -/- ALYac RealTime Service -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- ALYac Update Service -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**Bluetooth Device Monitor -/- Bluetooth Device Monitor -/- C:\Program Files\Intel\Bluetooth\devmonsrv.exe
[05-SERVICE]**Bluetooth Media Service -/- Bluetooth Media Service -/- C:\Program Files\Intel\Bluetooth\mediasrv.exe
[05-SERVICE]**Bluetooth OBEX Service -/- Bluetooth OBEX Service -/- C:\Program Files\Intel\Bluetooth\obexsrv.exe
[05-SERVICE]**cphs -/- Intel(R) Content Protection HECI Service -/- C:\Windows\system32\IntelCpHeciSvc.exe
[05-SERVICE]**FastUserSwitchingCompatibility -/- FastUserSwitchingCompatibility -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\FastUserSwitchingCompatibility.dll
[05-SERVICE]**gpsvc -/- Group Policy Client -/- C:\Windows\system32\svchost.exe -/- C:\Windows\System32\gpsvc.dll
[05-SERVICE]**gupdate -/- Google 更新服务 (gupdate) -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**gupdatem -/- Google 更新服务 (gupdatem) -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**helpsvc -/- helpsvc -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\helpsvc.dll
[05-SERVICE]**Ias -/- Ias -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\Ias.dll
[05-SERVICE]**IconMan_R -/- IconMan_R -/- C:\Program Files\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
[05-SERVICE]**Irmon -/- Irmon -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\Irmon.dll
[05-SERVICE]**LogonHours -/- LogonHours -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\LogonHours.dll
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**Nla -/- Nla -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\Nla.dll
[05-SERVICE]**nvsvc -/- NVIDIA Display Driver Service -/- C:\Windows\system32\nvvsvc.exe
[05-SERVICE]**nvUpdatusService -/- NVIDIA Update Service Daemon -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**NWCWorkstation -/- NWCWorkstation -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\NWCWorkstation.dll
[05-SERVICE]**Nwsapagent -/- Nwsapagent -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\Nwsapagent.dll
[05-SERVICE]**OnKey Service _ICBC -/- OnKey Service _ICBC -/- C:\Windows\system32\D4Ser_ICBC.exe
[05-SERVICE]**PCAudit -/- PCAudit -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\PCAudit.dll
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**QQCertificateService -/- Tenpay Certificate Service -/- C:\Program Files\Common Files\Tencent\Paycenter\TenpayServer.exe
[05-SERVICE]**SkypeUpdate -/- Skype Updater -/- C:\skype\skype\Updater\Updater.exe
[05-SERVICE]**SRService -/- SRService -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\SRService.dll
[05-SERVICE]**STacSV -/- Audio Service -/- C:\Program Files\IDT\WDM\STacSV64.exe
[05-SERVICE]**Stereo Service -/- NVIDIA Stereoscopic 3D Driver Service -/- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
[05-SERVICE]**uploadmgr -/- uploadmgr -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\uploadmgr.dll
[05-SERVICE]**VMAuthdService -/- VMware Authorization Service -/- C:\VMWare\vmware-authd.exe
[05-SERVICE]**VMnetDHCP -/- VMware DHCP Service -/- C:\Windows\system32\vmnetdhcp.exe
[05-SERVICE]**VMUSBArbService -/- VMware USB Arbitration Service -/- C:\VMWare\vmware-usbarbitrator.exe
[05-SERVICE]**VMware NAT Service -/- VMware NAT Service -/- C:\Windows\system32\vmnat.exe
[05-SERVICE]**WmdmPmSp -/- WmdmPmSp -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\WmdmPmSp.dll
[05-SERVICE]**Wmi -/- Wmi -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\Wmi.dll
[05-SERVICE]**XLServicePlatform -/- XLServicePlatform -/- C:\Windows\system32\svchost -k XLServicePlatform -/- C:\Program Files\Common Files\Thunder Network\ServicePlatform\XLSP.dll