Code : fOBomjh0MXYk4OtNCjxsJ6fjGmqU63ib

프로그램분석

Code : fOBomjh0MXYk4OtNCjxsJ6fjGmqU63ib

프로세스 천국 2013. 5. 17. 10:04

[00-PROCESS]**ALZip -/- C:\Program Files\ESTsoft\ALZip\ALZip.exe
[00-PROCESS]**AppleMobileDeviceService -/- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
[00-PROCESS]**ASCService -/- C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
[00-PROCESS]**AvastEmUpdate -/- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
[00-PROCESS]**AvastSvc -/- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
[00-PROCESS]**avastUI -/- C:\Program Files\AVAST Software\Avast\avastUI.exe
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**Goma -/- C:\Program Files\GRETECH\GomAudio\Goma.exe
[00-PROCESS]**GoogleUpdate -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**IMJPMIG -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
[00-PROCESS]**IMKRMIG -/- C:\Program Files\Common Files\Microsoft Shared\IME12\IMEKR\IMKRMIG.EXE
[00-PROCESS]**iPodService -/- C:\Program Files\iPod\bin\iPodService.exe
[00-PROCESS]**mDNSResponder -/- C:\Program Files\Bonjour\mDNSResponder.exe
[00-PROCESS]**msfeedssync -/- C:\WINDOWS\system32\msfeedssync.exe
[00-PROCESS]**npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[00-PROCESS]**nvsvc32 -/- C:\WINDOWS\system32\nvsvc32.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**RunDLL32 -/- C:\WINDOWS\system32\RunDLL32.exe
[00-PROCESS]**SmartDefrag -/- C:\Program Files\IObit\Smart Defrag 2\SmartDefrag.exe
[00-PROCESS]**SoftwareUpdate -/- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
[00-PROCESS]**taskmgr -/- C:\WINDOWS\system32\taskmgr.exe
[00-PROCESS]**TINTSETP -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
[00-PROCESS]**uphclean -/- C:\Program Files\UPHClean\uphclean.exe
[00-PROCESS]**vpnclient -/- C:\Program Files\PacketiX VPN Client\vpnclient.exe
[00-PROCESS]**winnetadv -/- C:\Program Files\FileNori\winnetadv.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**avast -/- C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui
[01-HKCUREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**Google Update -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /c
[01-HKCUREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[01-HKCUREG]**KernelFaultCheck -/- C:\WINDOWS\system32\dumprep 0 -k
[01-HKCUREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[01-HKCUREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dllNvStartup
[01-HKCUREG]**NvMediaCenter -/- RunDLL32.exe NvMCTray.dllNvTaskbarInit -login
[01-HKCUREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[01-HKCUREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[02-HKLMREG]**avast -/- C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui
[02-HKLMREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**Google Update -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /c
[02-HKLMREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[02-HKLMREG]**KernelFaultCheck -/- C:\WINDOWS\system32\dumprep 0 -k
[02-HKLMREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[02-HKLMREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dllNvStartup
[02-HKLMREG]**NvMediaCenter -/- RunDLL32.exe NvMCTray.dllNvTaskbarInit -login
[02-HKLMREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[02-HKLMREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[03-BHOCLSD]**Adobe PDF Link Helper -/- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -/- {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
[03-BHOCLSD]**avast! WebRep -/- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll -/- {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
[03-BHOCLSD]**miconsoftOBJ Class -/- C:\Program Files\Miconsoft\miconsoft.dll -/- {C1A91C02-B799-4F73-9F6A-E4A7F06AFCE4}
[03-BHOCLSD]**N.A -/- N.A -/- {432339F4-9FDC-43BA-99C2-FEE0D9EA7C74}
[03-BHOCLSD]**N.A -/- N.A -/- {6F6C2391-3353-4424-9614-DB5868315F66}
[04-TOOLBAR]**avast! WebRep -/- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll -/- {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
[04-TOOLBAR]**N.A -/- N.A -/- {BCE04A5B-2B7D-4F4B-BB8E-2A59611733DD}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**AdvancedSystemCareService6 -/- Advanced SystemCare Service 6 -/- C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
[05-SERVICE]**Apple Mobile Device -/- Apple Mobile Device -/- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
[05-SERVICE]**avast! Antivirus -/- avast! Antivirus -/- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
[05-SERVICE]**Bonjour Service -/- Bonjour 서비스 -/- C:\Program Files\Bonjour\mDNSResponder.exe
[05-SERVICE]**EapHost -/- Extensible Authentication Protocol Service -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\system32\phqghu.dll
[05-SERVICE]**iPod Service -/- iPod 서비스 -/- C:\Program Files\iPod\bin\iPodService.exe
[05-SERVICE]**KongGa -/- 무료만화(KongGa) -/- C:\Program Files\KongGa\KGAChkSvc.exe
[05-SERVICE]**napagent -/- Network Access Protection Agent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**npggsvc -/- nProtect GameGuard Service -/- C:\WINDOWS\system32\GameMon.des -service
[05-SERVICE]**npkcmsvc -/- npkcmsvc -/- C:\WINDOWS\system32\npkcmsvc.exe
[05-SERVICE]**NVSvc -/- NVIDIA Driver Helper Service -/- C:\WINDOWS\system32\nvsvc32.exe
[05-SERVICE]**nvUpdatusService -/- NVIDIA Update Service Daemon -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**odserv -/- Microsoft Office Diagnostics Service -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**RPGSvcman -/- RPGSvcman -/- C:\Documents and Settings\Administrator\Application Data\RapidGet\RPGSvcMan.exe
[05-SERVICE]**System Service -/- System Service -/- C:\WINDOWS\SYSTEM32\w32svc.exe
[05-SERVICE]**UPHClean -/- User Profile Hive Cleanup -/- C:\Program Files\UPHClean\uphclean.exe
[05-SERVICE]**usprserv -/- User Privilege Service -/- C:\WINDOWS\System32\svchost.exe
[05-SERVICE]**vpnclient -/- PacketiX VPN Client -/- C:\Program Files\PacketiX VPN Client\vpnclient.exe
[05-SERVICE]**WinnetAdvService -/- WinnetAdvService -/- C:\Program Files\FileNori\winnetadv.exe
[05-SERVICE]**WinRM -/- Windows Remote Management (WS-Management) -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\WsmSvc.dll
[05-SERVICE]**WPFFontCache_v0400 -/- Windows Presentation Foundation Font Cache 4.0.0.0 -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe