Code : DvXJmwuDZinOHfMmK2WqLdxjYgpWBm60fY6RQhFhnRU=

프로그램분석

Code : DvXJmwuDZinOHfMmK2WqLdxjYgpWBm60fY6RQhFhnRU=

프로세스 천국 2013. 5. 18. 16:16

[00-PROCESS]**ALZip -/- C:\Program Files\ESTsoft\ALZip\ALZip.exe
[00-PROCESS]**arunsinghit -/- C:\Documents and Settings\Administrator\Application Data\wingarunsinghit\arunsinghit.exe
[00-PROCESS]**arunsinghits -/- C:\Documents and Settings\Administrator\Application Data\wingarunsinghit\arunsinghits.exe
[00-PROCESS]**cmd -/- C:\WINDOWS\system32\cmd.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**GROOVE -/- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
[00-PROCESS]**GuardConvert -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe
[00-PROCESS]**HncChecker -/- C:\Program Files\Hnc\HncUtils\HncChecker.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**IMEDICTUPDATE -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[00-PROCESS]**IMEKLMG -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEKLMG.EXE
[00-PROCESS]**innosvc -/- C:\WINDOWS\system32\innosvc.exe
[00-PROCESS]**KaraokeSer -/- C:\WINDOWS\system32\KaraokeSer.exe
[00-PROCESS]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe
[00-PROCESS]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe
[00-PROCESS]**msfeedssync -/- C:\WINDOWS\system32\msfeedssync.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**OSPPSVC -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[00-PROCESS]**soheuy -/- C:\Documents and Settings\Administrator\Application Data\soheuy\soheuy.exe
[00-PROCESS]**soheuys -/- C:\Documents and Settings\Administrator\Application Data\soheuy\soheuys.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[00-PROCESS]**wuu -/- C:\Program Files\Windows Utility Update\wuu.exe
[01-HKCUREG]**GuardSupport -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe -hCsjxH
[01-HKCUREG]**HncUpdate -/- C:\Program Files\Hnc\HncUtils\HncChecker.exe
[01-HKCUREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[01-HKCUREG]**Kp -/- C:\Program Files\kpupdate\kpupdate.exe
[01-HKCUREG]**MicroLabCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -BWMDRbKJ
[01-HKCUREG]**MicroLabProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -BWMDRbKJ
[01-HKCUREG]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -hCsjxH
[01-HKCUREG]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -hCsjxH
[01-HKCUREG]**signkey -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\signkey\signkey.exe
[01-HKCUREG]**VaccineSecureMain -/- C:\Program Files\VaccineSecure\VaccineSecure.exe /Boot
[01-HKCUREG]**windgdo -/-
[01-HKCUREG]**wuu -/- C:\Program Files\Windows Utility Update\wuu.exe
[02-HKLMREG]**GuardSupport -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe -hCsjxH
[02-HKLMREG]**HncUpdate -/- C:\Program Files\Hnc\HncUtils\HncChecker.exe
[02-HKLMREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[02-HKLMREG]**Kp -/- C:\Program Files\kpupdate\kpupdate.exe
[02-HKLMREG]**MicroLabCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -BWMDRbKJ
[02-HKLMREG]**MicroLabProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -BWMDRbKJ
[02-HKLMREG]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -hCsjxH
[02-HKLMREG]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -hCsjxH
[02-HKLMREG]**signkey -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\signkey\signkey.exe
[02-HKLMREG]**VaccineSecureMain -/- C:\Program Files\VaccineSecure\VaccineSecure.exe /Boot
[02-HKLMREG]**windgdo -/-
[02-HKLMREG]**wuu -/- C:\Program Files\Windows Utility Update\wuu.exe
[03-BHOCLSD]**IEHlprObj Class -/- C:\WINDOWS\system32\kakutk.dll -/- {AB705622-B25B-491B-A6BF-4A46FDDBC88E}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**ALYac_RTSrv -/- ALYac RealTime Service -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- ALYac Update Service -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**arunsinghit -/- Microsoft AD WS -/- C:\Documents and Settings\Administrator\Application Data\wingarunsinghit\arunsinghits.exe
[05-SERVICE]**deofru -/- deofru -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\deofru\deofru.dll
[05-SERVICE]**dogrwsmkj -/- dogrwsmkj -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\dogrwsmkj\dogrwsmkj.dll
[05-SERVICE]**ensxrfiibn -/- ensxrfiibn -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\ensxrfiibn\ensxrfiibn.dll
[05-SERVICE]**ImeDictUpdateService -/- Microsoft IME Dictionary Update -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[05-SERVICE]**Innosvc -/- Innosvc -/- C:\WINDOWS\system32\innosvc.exe
[05-SERVICE]**jbcyqyioqyf -/- jbcyqyioqyf -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\jbcyqyioqyf\jbcyqyioqyf.dll
[05-SERVICE]**jqmusqcnpw -/- jqmusqcnpw -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\jqmusqcnpw\jqmusqcnpw.dll
[05-SERVICE]**KaraokeService -/- VIA Karaoke digital mixer Service -/- C:\WINDOWS\system32\KaraokeSer.exe
[05-SERVICE]**Microsoft SharePoint Workspace Audit Service -/- Microsoft SharePoint Workspace Audit Service -/- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
[05-SERVICE]**napagent -/- Network Access Protection Agent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**npggsvc -/- nProtect GameGuard Service -/- C:\WINDOWS\system32\GameMon.des -service
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**osppsvc -/- Office Software Protection Platform -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[05-SERVICE]**soheuy -/- DreamNet Service -/- C:\Documents and Settings\Administrator\Application Data\soheuy\soheuys.exe
[05-SERVICE]**tnkljfkzboz -/- tnkljfkzboz -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\tnkljfkzboz\tnkljfkzboz.dll
[05-SERVICE]**WindowsDriver -/- WindowsDriver -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\WindowsDriver.dll