Code : nD47z2YNCxoJIC2T3SGs+OQkcQDSdVybmF80AaEXYJvQZRvUl4XfeA==

프로그램분석

Code : nD47z2YNCxoJIC2T3SGs+OQkcQDSdVybmF80AaEXYJvQZRvUl4XfeA==

프로세스 천국 2013. 5. 23. 17:40

[00-PROCESS]**AdskScSrv -/- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
[00-PROCESS]**allpopsvi -/- C:\Program Files\allpopup\allpopsvi.exe
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**GuardConvert -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe
[00-PROCESS]**hcpms -/- C:\Program Files\hcpop\hcpms.exe
[00-PROCESS]**HncChecker -/- C:\Program Files\Common Files\Hnc\HncUtils\HncChecker.exe
[00-PROCESS]**IEXPLORE -/- C:\Program Files\Internet Explorer\IEXPLORE.EXE
[00-PROCESS]**IMJPMIG -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
[00-PROCESS]**IMKRMIG -/- C:\Program Files\Common Files\Microsoft Shared\IME12\IMEKR\IMKRMIG.EXE
[00-PROCESS]**metablogagent -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\MetablogNewIssues\metablogagent.exe
[00-PROCESS]**MetablogNewIssues -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\MetablogNewIssues\MetablogNewIssues.exe
[00-PROCESS]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe
[00-PROCESS]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe
[00-PROCESS]**nvsvc32 -/- C:\WINDOWS\system32\nvsvc32.exe
[00-PROCESS]**nwiz -/- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**RunDLL32 -/- C:\WINDOWS\system32\RunDLL32.exe
[00-PROCESS]**SMSvcHost -/- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**TINTSETP -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
[00-PROCESS]**Upgrade -/- C:\Program Files\filenolja\Upgrade.exe
[00-PROCESS]**userinfoconfig -/- C:\WINDOWS\userinfoconfig.exe
[00-PROCESS]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[00-PROCESS]**wscntfy -/- C:\WINDOWS\system32\wscntfy.exe
[01-HKCUREG]**Alcmtr -/- ALCMTR.EXE
[01-HKCUREG]**AlcWzrd -/- ALCWZRD.EXE
[01-HKCUREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**FileNolja -/- C:\Program Files\filenolja\Upgrade.exe
[01-HKCUREG]**GuardSupport -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe -SmdTh
[01-HKCUREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncChecker.exe
[01-HKCUREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[01-HKCUREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[01-HKCUREG]**metablogagent -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\MetablogNewIssues\metablogagent.exe
[01-HKCUREG]**MetablogNewIssues -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\MetablogNewIssues\MetablogNewIssues.exe /byboot
[01-HKCUREG]**MicroLabCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -iCtjxI
[01-HKCUREG]**MicroLabProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -iCtjxI
[01-HKCUREG]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -SmdTh
[01-HKCUREG]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -SmdTh
[01-HKCUREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dllNvStartup
[01-HKCUREG]**NvMediaCenter -/- RunDLL32.exe NvMCTray.dllNvTaskbarInit -login
[01-HKCUREG]**nwiz -/- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
[01-HKCUREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[01-HKCUREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[01-HKCUREG]**RTHDCPL -/- RTHDCPL.EXE
[01-HKCUREG]**SoundMan -/- SOUNDMAN.EXE
[01-HKCUREG]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[02-HKLMREG]**Alcmtr -/- ALCMTR.EXE
[02-HKLMREG]**AlcWzrd -/- ALCWZRD.EXE
[02-HKLMREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**FileNolja -/- C:\Program Files\filenolja\Upgrade.exe
[02-HKLMREG]**GuardSupport -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe -SmdTh
[02-HKLMREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncChecker.exe
[02-HKLMREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[02-HKLMREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[02-HKLMREG]**metablogagent -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\MetablogNewIssues\metablogagent.exe
[02-HKLMREG]**MetablogNewIssues -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\MetablogNewIssues\MetablogNewIssues.exe /byboot
[02-HKLMREG]**MicroLabCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -iCtjxI
[02-HKLMREG]**MicroLabProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -iCtjxI
[02-HKLMREG]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -SmdTh
[02-HKLMREG]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -SmdTh
[02-HKLMREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dllNvStartup
[02-HKLMREG]**NvMediaCenter -/- RunDLL32.exe NvMCTray.dllNvTaskbarInit -login
[02-HKLMREG]**nwiz -/- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
[02-HKLMREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[02-HKLMREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[02-HKLMREG]**RTHDCPL -/- RTHDCPL.EXE
[02-HKLMREG]**SoundMan -/- SOUNDMAN.EXE
[02-HKLMREG]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[03-BHOCLSD]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.dll -/- {1C5099DD-7923-45e8-9680-5F285DC61213}
[04-TOOLBAR]**N.A -/- N.A -/- {9CA634EF-ECF0-4DD1-B7E2-B9CCFF40BCAF}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**allpopup -/- allpopup svc -/- C:\Program Files\allpopup\allpopsvi.exe
[05-SERVICE]**Autodesk Licensing Service -/- Autodesk Licensing Service -/- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
[05-SERVICE]**hcpopwin -/- hcpopwin svc -/- C:\Program Files\hcpop\hcpms.exe
[05-SERVICE]**livespeed Update Service -/- livespeed Support Service -/- C:\WINDOWS\userinfoconfig.exe
[05-SERVICE]**napagent -/- Network Access Protection Agent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**NVSvc -/- NVIDIA Driver Helper Service -/- C:\WINDOWS\system32\nvsvc32.exe
[05-SERVICE]**nvUpdatusService -/- NVIDIA Update Service Daemon -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**odserv -/- Microsoft Office Diagnostics Service -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**WindowsDriver -/- WindowsDriver -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\WindowsDriver.dll