프로그램분석
Code : 0UvRrhl0fzF1euy7930ZIGTBsUziIrMZ
프로세스 천국
2013. 5. 25. 00:52
[00-PROCESS]**allpopsvi -/- C:\Program Files\allpopup\allpopsvi.exe
[00-PROCESS]**allpopup -/- C:\Program Files\allpopup\allpopup.exe
[00-PROCESS]**boanfilesvc -/- C:\Program Files\boanfile\boanfilesvc.exe
[00-PROCESS]**boansolution -/- C:\Program Files\boansolution\boansolution.exe
[00-PROCESS]**boansolutioncnt -/- C:\Users\Administrator\AppData\Roaming\boansolution\boansolutioncnt.exe
[00-PROCESS]**boansolutionmon -/- C:\Program Files\boansolution\boansolutionmon.exe
[00-PROCESS]**boansolutionsvc -/- C:\Program Files\boansolution\boansolutionsvc.exe
[00-PROCESS]**bootingprosvc -/- C:\Program Files\bootingpro\bootingprosvc.exe
[00-PROCESS]**BTCN_5KM -/- C:\Users\Administrator\Documents\BTCN_5KM.exe
[00-PROCESS]**CleanMemory -/- C:\Program Files\CleanMemory\CleanMemory.exe
[00-PROCESS]**CleanMemUD -/- C:\Program Files\CleanMemory\CleanMemUD.exe
[00-PROCESS]**clgsvr -/- C:\Program Files\Windows CloudGet\clgsvr.exe
[00-PROCESS]**DController -/- C:\Users\Administrator\AppData\Roaming\DController\DController.exe
[00-PROCESS]**DControllerManager3 -/- C:\DController\DControllerManager3.exe
[00-PROCESS]**dynamo6 -/- C:\Users\Administrator\AppData\Roaming\wingdynamo6\dynamo6.exe
[00-PROCESS]**dynamo6s -/- C:\Users\Administrator\AppData\Roaming\wingdynamo6\dynamo6s.exe
[00-PROCESS]**dynamo6u -/- C:\Users\Administrator\AppData\Roaming\wingdynamo6\dynamo6u.exe
[00-PROCESS]**enumerate_gtu -/- C:\Program Files\enumerate\gt\enumerate_gtu.exe
[00-PROCESS]**enumst -/- C:\Program Files\enumerate\gt\enumst.exe
[00-PROCESS]**fbdchk -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\fbdchk.exe
[00-PROCESS]**FBDManager -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDManager.exe
[00-PROCESS]**FBDSvcMan -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDSvcMan.exe
[00-PROCESS]**FBDUnist -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDUnist.exe
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**InfoSave -/- C:\Program Files\Info-Save\InfoSave.exe
[00-PROCESS]**InfoSave_topbar -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\InfoSave_topbar.exe
[00-PROCESS]**InfoSaveMtr -/- C:\Program Files\Info-Save\InfoSaveMtr.exe
[00-PROCESS]**InfoSaveuck -/- C:\Program Files\Info-Save\InfoSaveuck.exe
[00-PROCESS]**INIWebCleaner -/- C:\ProgramData\iniweblink\INIWebCleaner.exe
[00-PROCESS]**INIWebLinkSetup_P026_1 -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\INIWebLinkSetup_P026_1.exe
[00-PROCESS]**ins -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\ins.exe
[00-PROCESS]**InternetSaferSetup_ver3503_pro03 -/- C:\Users\Administrator\Documents\InternetSaferSetup_ver3503_pro03.exe
[00-PROCESS]**InternetSaferSetupS -/- C:\Program Files\Windows InternetSafer\InternetSaferSetupS.exe
[00-PROCESS]**intsfad -/- C:\Program Files\Windows InternetSafer\intsfad.exe
[00-PROCESS]**intsfc -/- C:\Program Files\Windows InternetSafer\intsfc.exe
[00-PROCESS]**intsfex -/- C:\Program Files\Windows InternetSafer\intsfex.exe
[00-PROCESS]**intsfm -/- C:\Program Files\Windows InternetSafer\intsfm.exe
[00-PROCESS]**intsfmgr -/- C:\Program Files\Windows InternetSafer\intsfmgr.exe
[00-PROCESS]**intsfsrv -/- C:\Program Files\Windows InternetSafer\intsfsrv.exe
[00-PROCESS]**intsfuninst -/- C:\Program Files\Windows InternetSafer\intsfuninst.exe
[00-PROCESS]**ismsvc -/- C:\Program Files\insafeclient\ismsvc.exe
[00-PROCESS]**ismsvc -/- C:\Program Files\Windows ISM\ismsvc.exe
[00-PROCESS]**ISZoneSetup_93_hide -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\ISZoneSetup_93_hide.exe
[00-PROCESS]**koreamessenger_CP -/- C:\Program Files\KoreaMessenger CP\koreamessenger_CP.exe
[00-PROCESS]**koreamessenger_CP_updater -/- C:\Program Files\KoreaMessenger CP\koreamessenger_CP_updater.exe
[00-PROCESS]**kwinso -/- C:\Program Files\kwinstart\kwinso.exe
[00-PROCESS]**kwinstart -/- C:\Program Files\kwinstart\kwinstart.exe
[00-PROCESS]**kwinstartagent -/- C:\Program Files\kwinstart\kwinstartagent.exe
[00-PROCESS]**lstspsv -/- C:\Program Files\lastpopup\lstspsv.exe
[00-PROCESS]**nextray -/- C:\Program Files\nextray\nextray.exe
[00-PROCESS]**nmwenmgr -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\nmwenmgr.exe
[00-PROCESS]**nmwenup -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\nmwenup.exe
[00-PROCESS]**opensearchgt -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgt.exe
[00-PROCESS]**opensearchGT_12_hinst -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\opensearchGT_12_hinst.exe
[00-PROCESS]**opensearchgtu -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgtu.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**RaclSetup_utils001 -/- C:\Users\Administrator\Documents\RaclSetup_utils001.exe
[00-PROCESS]**RaclSvc -/- C:\Program Files\Racl\RaclSvc.exe
[00-PROCESS]**RaclUninst -/- C:\Program Files\Racl\RaclUninst.exe
[00-PROCESS]**RepairCode -/- C:\Program Files\Info-Save\RepairCode.exe
[00-PROCESS]**revealer -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe
[00-PROCESS]**revealerul -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[00-PROCESS]**setup_jamong_silent -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\setup_jamong_silent.exe
[00-PROCESS]**setup-topspace5 -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\setup-topspace5.exe
[00-PROCESS]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[00-PROCESS]**SpeedGet -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\SpeedGet.exe
[00-PROCESS]**srankingdc -/- C:\Program Files\SRankingPopView\srankingdc.exe
[00-PROCESS]**srankingp -/- C:\Program Files\SRankingPopView\srankingp.exe
[00-PROCESS]**SRankingPopView_06_hinst -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\SRankingPopView_06_hinst.exe
[00-PROCESS]**STool -/- C:\Program Files\STool\STool.exe
[00-PROCESS]**TopSpace5Helper -/- C:\Program Files\TopSpace5\bin\TopSpace5Helper.exe
[00-PROCESS]**TopSpace5Service -/- C:\Program Files\TopSpace5\bin\TopSpace5Service.exe
[00-PROCESS]**TPAutoConnSvc -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[00-PROCESS]**TPVCGateway -/- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe
[00-PROCESS]**VaccineSecure -/- C:\Program Files\VaccineSecure\VaccineSecure.exe
[00-PROCESS]**vmtoolsd -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe
[00-PROCESS]**voasvc -/- C:\Program Files\Windows VOA\voasvc.exe
[00-PROCESS]**VSAutoUpdate -/- C:\Program Files\VaccineSecure\VSAutoUpdate.exe
[00-PROCESS]**vsMon -/- C:\Program Files\VaccineSecure\etc\vsMon.exe
[00-PROCESS]**vsReg -/- C:\Program Files\VaccineSecure\etc\vsReg.exe
[00-PROCESS]**weblink -/- C:\ProgramData\iniweblink\weblink.exe
[00-PROCESS]**weblinkup -/- C:\ProgramData\iniweblink\weblinkup.exe
[00-PROCESS]**windowstab -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab.exe
[00-PROCESS]**windowstab_mon -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[00-PROCESS]**windowstab_uc -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe
[00-PROCESS]**windowstab_unins -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_unins.exe
[00-PROCESS]**windowviewcon -/- C:\ProgramData\windowviewcon\windowviewcon.exe
[00-PROCESS]**WindowviewconSetup_enterjoy1 -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\WindowviewconSetup_enterjoy1.exe
[00-PROCESS]**windowviewconup -/- C:\ProgramData\windowviewcon\windowviewconup.exe
[00-PROCESS]**winkr -/- C:\Users\Administrator\AppData\Roaming\wingdynamo6\winkr.exe
[00-PROCESS]**winsearchkhsdl -/- C:\Program Files\Winsearchkhs\winsearchkhsdl.exe
[00-PROCESS]**winsearchkhsp -/- C:\Program Files\Winsearchkhs\winsearchkhsp.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**CleanMemoryUpdate -/- C:\Program Files\CleanMemory\CleanMemUD.exe
[01-HKCUREG]**clover -/- C:\Program Files\KoreaMessenger CP\koreamessenger_CP.exe
[01-HKCUREG]**clover_u -/- C:\Program Files\KoreaMessenger CP\koreamessenger_CP_updater.exe
[01-HKCUREG]**DController.exe -/- C:\Users\Administrator\AppData\Roaming\DController\DController.exe
[01-HKCUREG]**DControllerManager3.exe -/- C:\DController\DControllerManager3.exe
[01-HKCUREG]**Enumerate_gt -/- C:\Program Files\enumerate\gt\enumerate_gtu.exe Runcmd
[01-HKCUREG]**Enumerate_gtst -/- C:\Program Files\enumerate\gt\enumst.exe Runcmd
[01-HKCUREG]**InfoSave -/- C:\Program Files\Info-Save\InfoSave.exe /run1
[01-HKCUREG]**iniweblink -/- C:\ProgramData\iniweblink\weblinkup.exe
[01-HKCUREG]**kwinso -/- C:\Program Files\kwinstart\kwinso.exe
[01-HKCUREG]**kwinstart -/- C:\Program Files\kwinstart\kwinstart.exe
[01-HKCUREG]**kwinstartagent -/- C:\Program Files\kwinstart\kwinstartagent.exe
[01-HKCUREG]**nextray -/- C:\Program Files\nextray\nextray.exe
[01-HKCUREG]**nmwen -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\nmwenup.exe
[01-HKCUREG]**opensearchGT -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgt.exe Runcmd
[01-HKCUREG]**opensearchGTupdate -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgtu.exe
[01-HKCUREG]**Racl -/- C:\Program Files\Racl\RaclSvc.exe
[01-HKCUREG]**revealerApp -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe Runcmd
[01-HKCUREG]**revealerApps -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[01-HKCUREG]**rpga -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\rpgchk.exe
[01-HKCUREG]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[01-HKCUREG]**SpeedDownload -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDManager.exe
[01-HKCUREG]**SRankingPopView -/- C:\Program Files\SRankingPopView\srankingp.exe Runcmd
[01-HKCUREG]**SRankingPopViewupdate -/- C:\Program Files\SRankingPopView\srankingdc.exe
[01-HKCUREG]**STool -/- C:\Program Files\STool\STool.exe
[01-HKCUREG]**TopSpace5 -/- C:\Program Files\TopSpace5\bin\TopSpace5Helper.exe UPDATE
[01-HKCUREG]**VMware Tools -/- C:\Program Files\VMware\VMware Tools\VMwareTray.exe
[01-HKCUREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -n vmusr
[01-HKCUREG]**WINDOWSTAB_UC -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe /run
[01-HKCUREG]**windowviewcon -/- C:\ProgramData\windowviewcon\windowviewconup.exe
[02-HKLMREG]**CleanMemoryUpdate -/- C:\Program Files\CleanMemory\CleanMemUD.exe
[02-HKLMREG]**clover -/- C:\Program Files\KoreaMessenger CP\koreamessenger_CP.exe
[02-HKLMREG]**clover_u -/- C:\Program Files\KoreaMessenger CP\koreamessenger_CP_updater.exe
[02-HKLMREG]**DController.exe -/- C:\Users\Administrator\AppData\Roaming\DController\DController.exe
[02-HKLMREG]**DControllerManager3.exe -/- C:\DController\DControllerManager3.exe
[02-HKLMREG]**Enumerate_gt -/- C:\Program Files\enumerate\gt\enumerate_gtu.exe Runcmd
[02-HKLMREG]**Enumerate_gtst -/- C:\Program Files\enumerate\gt\enumst.exe Runcmd
[02-HKLMREG]**InfoSave -/- C:\Program Files\Info-Save\InfoSave.exe /run1
[02-HKLMREG]**iniweblink -/- C:\ProgramData\iniweblink\weblinkup.exe
[02-HKLMREG]**kwinso -/- C:\Program Files\kwinstart\kwinso.exe
[02-HKLMREG]**kwinstart -/- C:\Program Files\kwinstart\kwinstart.exe
[02-HKLMREG]**kwinstartagent -/- C:\Program Files\kwinstart\kwinstartagent.exe
[02-HKLMREG]**nextray -/- C:\Program Files\nextray\nextray.exe
[02-HKLMREG]**nmwen -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\nmwenup.exe
[02-HKLMREG]**opensearchGT -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgt.exe Runcmd
[02-HKLMREG]**opensearchGTupdate -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgtu.exe
[02-HKLMREG]**Racl -/- C:\Program Files\Racl\RaclSvc.exe
[02-HKLMREG]**revealerApp -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe Runcmd
[02-HKLMREG]**revealerApps -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[02-HKLMREG]**rpga -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\rpgchk.exe
[02-HKLMREG]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[02-HKLMREG]**SpeedDownload -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDManager.exe
[02-HKLMREG]**SRankingPopView -/- C:\Program Files\SRankingPopView\srankingp.exe Runcmd
[02-HKLMREG]**SRankingPopViewupdate -/- C:\Program Files\SRankingPopView\srankingdc.exe
[02-HKLMREG]**STool -/- C:\Program Files\STool\STool.exe
[02-HKLMREG]**TopSpace5 -/- C:\Program Files\TopSpace5\bin\TopSpace5Helper.exe UPDATE
[02-HKLMREG]**VMware Tools -/- C:\Program Files\VMware\VMware Tools\VMwareTray.exe
[02-HKLMREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -n vmusr
[02-HKLMREG]**WINDOWSTAB_UC -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe /run
[02-HKLMREG]**windowviewcon -/- C:\ProgramData\windowviewcon\windowviewconup.exe
[03-BHOCLSD]**Enumerate Top Search - GT -/- C:\Program Files\enumerate\gt\enumerate_gt.dll -/- {A7E36709-4042-421E-9C90-C4D8CC79A475}
[03-BHOCLSD]**IESMon.Mon6 -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\nmwenim.dll -/- {D5DD563F-B087-480A-A596-DC372BA3B191}
[03-BHOCLSD]**kwinso -/- c:\PROGRA~2\KWINST~1\kwinso.dll -/- {CC01FC6C-CACC-4E17-8C06-95C30EF5E6A7}
[03-BHOCLSD]**kwinstartvb Class -/- C:\Program Files\kwinstart\kwinstartvb.dll -/- {546B17D8-0CAE-451B-B953-673628864920}
[03-BHOCLSD]**OpenSearchGT SubTap -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgt.dll -/- {F48F659E-88A3-4EFA-804E-833609E15AD6}
[03-BHOCLSD]**Revealing Top Search App -/- C:\Users\Administrator\AppData\Roaming\revealer\revealertop.dll -/- {A1B22260-52C2-47C1-B497-1971BE481DC1}
[03-BHOCLSD]**STool -/- C:\Program Files\STool\STool.dll -/- {88B3E7BD-0AD1-44FD-823F-9E880D871D5D}
[03-BHOCLSD]**Styleranking Popview Class -/- C:\Program Files\SRankingPopView\sranking.dll -/- {BA8A50DA-6832-49BC-B479-A8C7420F8E1C}
[03-BHOCLSD]**winsearchkhsprg.winsearchkhs -/- C:\Program Files\Winsearchkhs\winsearchkhs.dll -/- {B999DF93-FB03-4785-BCAE-20150EBF5881}
[04-TOOLBAR]**잠김영역복사 -/- C:\Program Files\Racl\RaclTB.dll -/- {BCE04A5B-2B7D-4F4B-BB8E-2A59611733DD}
[05-SERVICE]**allpopup -/- allpopup svc -/- C:\Program Files\allpopup\allpopsvi.exe
[05-SERVICE]**boanfile -/- boanfile svc -/- C:\Program Files\boanfile\boanfilesvc.exe
[05-SERVICE]**boansolution -/- boansolution svc -/- C:\Program Files\boansolution\boansolutionsvc.exe
[05-SERVICE]**bootingpro -/- bootingpro svc -/- C:\Program Files\bootingpro\bootingprosvc.exe
[05-SERVICE]**clgsvr32 -/- Windows CloudGet Service -/- C:\Program Files\Windows CloudGet\clgsvr.exe
[05-SERVICE]**dynamo6 -/- Microsoft AD WS -/- C:\Users\Administrator\AppData\Roaming\wingdynamo6\dynamo6s.exe
[05-SERVICE]**FBDSvcman -/- FBDSvcman -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDSvcMan.exe
[05-SERVICE]**InternetSafer Protector -/- InternetSafer Protector Application -/- C:\Program Files\Windows InternetSafer\intsfsrv.exe
[05-SERVICE]**ismsvc -/- Windows ISM -/- C:\Program Files\Windows ISM\ismsvc.exe
[05-SERVICE]**ismsvc32 -/- INSAFE Client 1.0 -/- C:\Program Files\insafeclient\ismsvc.exe
[05-SERVICE]**lstspsv32 -/- Windows Explorer Lastpopup v1.11 -/- C:\Program Files\lastpopup\lstspsv.exe
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**TPAutoConnSvc -/- TP AutoConnect Service -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[05-SERVICE]**TPVCGateway -/- TP VC Gateway Service -/- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe
[05-SERVICE]**VMTools -/- VMware Tools -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe
[05-SERVICE]**vmvss -/- VMware Snapshot Provider -/- C:\Windows\system32\dllhost.exe
[05-SERVICE]**voasvc -/- Windows VOA -/- C:\Program Files\Windows VOA\voasvc.exe
[05-SERVICE]**windowstab_mon -/- Windows Tab Manager -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[00-PROCESS]**allpopup -/- C:\Program Files\allpopup\allpopup.exe
[00-PROCESS]**boanfilesvc -/- C:\Program Files\boanfile\boanfilesvc.exe
[00-PROCESS]**boansolution -/- C:\Program Files\boansolution\boansolution.exe
[00-PROCESS]**boansolutioncnt -/- C:\Users\Administrator\AppData\Roaming\boansolution\boansolutioncnt.exe
[00-PROCESS]**boansolutionmon -/- C:\Program Files\boansolution\boansolutionmon.exe
[00-PROCESS]**boansolutionsvc -/- C:\Program Files\boansolution\boansolutionsvc.exe
[00-PROCESS]**bootingprosvc -/- C:\Program Files\bootingpro\bootingprosvc.exe
[00-PROCESS]**BTCN_5KM -/- C:\Users\Administrator\Documents\BTCN_5KM.exe
[00-PROCESS]**CleanMemory -/- C:\Program Files\CleanMemory\CleanMemory.exe
[00-PROCESS]**CleanMemUD -/- C:\Program Files\CleanMemory\CleanMemUD.exe
[00-PROCESS]**clgsvr -/- C:\Program Files\Windows CloudGet\clgsvr.exe
[00-PROCESS]**DController -/- C:\Users\Administrator\AppData\Roaming\DController\DController.exe
[00-PROCESS]**DControllerManager3 -/- C:\DController\DControllerManager3.exe
[00-PROCESS]**dynamo6 -/- C:\Users\Administrator\AppData\Roaming\wingdynamo6\dynamo6.exe
[00-PROCESS]**dynamo6s -/- C:\Users\Administrator\AppData\Roaming\wingdynamo6\dynamo6s.exe
[00-PROCESS]**dynamo6u -/- C:\Users\Administrator\AppData\Roaming\wingdynamo6\dynamo6u.exe
[00-PROCESS]**enumerate_gtu -/- C:\Program Files\enumerate\gt\enumerate_gtu.exe
[00-PROCESS]**enumst -/- C:\Program Files\enumerate\gt\enumst.exe
[00-PROCESS]**fbdchk -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\fbdchk.exe
[00-PROCESS]**FBDManager -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDManager.exe
[00-PROCESS]**FBDSvcMan -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDSvcMan.exe
[00-PROCESS]**FBDUnist -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDUnist.exe
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**InfoSave -/- C:\Program Files\Info-Save\InfoSave.exe
[00-PROCESS]**InfoSave_topbar -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\InfoSave_topbar.exe
[00-PROCESS]**InfoSaveMtr -/- C:\Program Files\Info-Save\InfoSaveMtr.exe
[00-PROCESS]**InfoSaveuck -/- C:\Program Files\Info-Save\InfoSaveuck.exe
[00-PROCESS]**INIWebCleaner -/- C:\ProgramData\iniweblink\INIWebCleaner.exe
[00-PROCESS]**INIWebLinkSetup_P026_1 -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\INIWebLinkSetup_P026_1.exe
[00-PROCESS]**ins -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\ins.exe
[00-PROCESS]**InternetSaferSetup_ver3503_pro03 -/- C:\Users\Administrator\Documents\InternetSaferSetup_ver3503_pro03.exe
[00-PROCESS]**InternetSaferSetupS -/- C:\Program Files\Windows InternetSafer\InternetSaferSetupS.exe
[00-PROCESS]**intsfad -/- C:\Program Files\Windows InternetSafer\intsfad.exe
[00-PROCESS]**intsfc -/- C:\Program Files\Windows InternetSafer\intsfc.exe
[00-PROCESS]**intsfex -/- C:\Program Files\Windows InternetSafer\intsfex.exe
[00-PROCESS]**intsfm -/- C:\Program Files\Windows InternetSafer\intsfm.exe
[00-PROCESS]**intsfmgr -/- C:\Program Files\Windows InternetSafer\intsfmgr.exe
[00-PROCESS]**intsfsrv -/- C:\Program Files\Windows InternetSafer\intsfsrv.exe
[00-PROCESS]**intsfuninst -/- C:\Program Files\Windows InternetSafer\intsfuninst.exe
[00-PROCESS]**ismsvc -/- C:\Program Files\insafeclient\ismsvc.exe
[00-PROCESS]**ismsvc -/- C:\Program Files\Windows ISM\ismsvc.exe
[00-PROCESS]**ISZoneSetup_93_hide -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\ISZoneSetup_93_hide.exe
[00-PROCESS]**koreamessenger_CP -/- C:\Program Files\KoreaMessenger CP\koreamessenger_CP.exe
[00-PROCESS]**koreamessenger_CP_updater -/- C:\Program Files\KoreaMessenger CP\koreamessenger_CP_updater.exe
[00-PROCESS]**kwinso -/- C:\Program Files\kwinstart\kwinso.exe
[00-PROCESS]**kwinstart -/- C:\Program Files\kwinstart\kwinstart.exe
[00-PROCESS]**kwinstartagent -/- C:\Program Files\kwinstart\kwinstartagent.exe
[00-PROCESS]**lstspsv -/- C:\Program Files\lastpopup\lstspsv.exe
[00-PROCESS]**nextray -/- C:\Program Files\nextray\nextray.exe
[00-PROCESS]**nmwenmgr -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\nmwenmgr.exe
[00-PROCESS]**nmwenup -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\nmwenup.exe
[00-PROCESS]**opensearchgt -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgt.exe
[00-PROCESS]**opensearchGT_12_hinst -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\opensearchGT_12_hinst.exe
[00-PROCESS]**opensearchgtu -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgtu.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**RaclSetup_utils001 -/- C:\Users\Administrator\Documents\RaclSetup_utils001.exe
[00-PROCESS]**RaclSvc -/- C:\Program Files\Racl\RaclSvc.exe
[00-PROCESS]**RaclUninst -/- C:\Program Files\Racl\RaclUninst.exe
[00-PROCESS]**RepairCode -/- C:\Program Files\Info-Save\RepairCode.exe
[00-PROCESS]**revealer -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe
[00-PROCESS]**revealerul -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[00-PROCESS]**setup_jamong_silent -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\setup_jamong_silent.exe
[00-PROCESS]**setup-topspace5 -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\setup-topspace5.exe
[00-PROCESS]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[00-PROCESS]**SpeedGet -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\SpeedGet.exe
[00-PROCESS]**srankingdc -/- C:\Program Files\SRankingPopView\srankingdc.exe
[00-PROCESS]**srankingp -/- C:\Program Files\SRankingPopView\srankingp.exe
[00-PROCESS]**SRankingPopView_06_hinst -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\SRankingPopView_06_hinst.exe
[00-PROCESS]**STool -/- C:\Program Files\STool\STool.exe
[00-PROCESS]**TopSpace5Helper -/- C:\Program Files\TopSpace5\bin\TopSpace5Helper.exe
[00-PROCESS]**TopSpace5Service -/- C:\Program Files\TopSpace5\bin\TopSpace5Service.exe
[00-PROCESS]**TPAutoConnSvc -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[00-PROCESS]**TPVCGateway -/- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe
[00-PROCESS]**VaccineSecure -/- C:\Program Files\VaccineSecure\VaccineSecure.exe
[00-PROCESS]**vmtoolsd -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe
[00-PROCESS]**voasvc -/- C:\Program Files\Windows VOA\voasvc.exe
[00-PROCESS]**VSAutoUpdate -/- C:\Program Files\VaccineSecure\VSAutoUpdate.exe
[00-PROCESS]**vsMon -/- C:\Program Files\VaccineSecure\etc\vsMon.exe
[00-PROCESS]**vsReg -/- C:\Program Files\VaccineSecure\etc\vsReg.exe
[00-PROCESS]**weblink -/- C:\ProgramData\iniweblink\weblink.exe
[00-PROCESS]**weblinkup -/- C:\ProgramData\iniweblink\weblinkup.exe
[00-PROCESS]**windowstab -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab.exe
[00-PROCESS]**windowstab_mon -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[00-PROCESS]**windowstab_uc -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe
[00-PROCESS]**windowstab_unins -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_unins.exe
[00-PROCESS]**windowviewcon -/- C:\ProgramData\windowviewcon\windowviewcon.exe
[00-PROCESS]**WindowviewconSetup_enterjoy1 -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\WindowviewconSetup_enterjoy1.exe
[00-PROCESS]**windowviewconup -/- C:\ProgramData\windowviewcon\windowviewconup.exe
[00-PROCESS]**winkr -/- C:\Users\Administrator\AppData\Roaming\wingdynamo6\winkr.exe
[00-PROCESS]**winsearchkhsdl -/- C:\Program Files\Winsearchkhs\winsearchkhsdl.exe
[00-PROCESS]**winsearchkhsp -/- C:\Program Files\Winsearchkhs\winsearchkhsp.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**CleanMemoryUpdate -/- C:\Program Files\CleanMemory\CleanMemUD.exe
[01-HKCUREG]**clover -/- C:\Program Files\KoreaMessenger CP\koreamessenger_CP.exe
[01-HKCUREG]**clover_u -/- C:\Program Files\KoreaMessenger CP\koreamessenger_CP_updater.exe
[01-HKCUREG]**DController.exe -/- C:\Users\Administrator\AppData\Roaming\DController\DController.exe
[01-HKCUREG]**DControllerManager3.exe -/- C:\DController\DControllerManager3.exe
[01-HKCUREG]**Enumerate_gt -/- C:\Program Files\enumerate\gt\enumerate_gtu.exe Runcmd
[01-HKCUREG]**Enumerate_gtst -/- C:\Program Files\enumerate\gt\enumst.exe Runcmd
[01-HKCUREG]**InfoSave -/- C:\Program Files\Info-Save\InfoSave.exe /run1
[01-HKCUREG]**iniweblink -/- C:\ProgramData\iniweblink\weblinkup.exe
[01-HKCUREG]**kwinso -/- C:\Program Files\kwinstart\kwinso.exe
[01-HKCUREG]**kwinstart -/- C:\Program Files\kwinstart\kwinstart.exe
[01-HKCUREG]**kwinstartagent -/- C:\Program Files\kwinstart\kwinstartagent.exe
[01-HKCUREG]**nextray -/- C:\Program Files\nextray\nextray.exe
[01-HKCUREG]**nmwen -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\nmwenup.exe
[01-HKCUREG]**opensearchGT -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgt.exe Runcmd
[01-HKCUREG]**opensearchGTupdate -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgtu.exe
[01-HKCUREG]**Racl -/- C:\Program Files\Racl\RaclSvc.exe
[01-HKCUREG]**revealerApp -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe Runcmd
[01-HKCUREG]**revealerApps -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[01-HKCUREG]**rpga -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\rpgchk.exe
[01-HKCUREG]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[01-HKCUREG]**SpeedDownload -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDManager.exe
[01-HKCUREG]**SRankingPopView -/- C:\Program Files\SRankingPopView\srankingp.exe Runcmd
[01-HKCUREG]**SRankingPopViewupdate -/- C:\Program Files\SRankingPopView\srankingdc.exe
[01-HKCUREG]**STool -/- C:\Program Files\STool\STool.exe
[01-HKCUREG]**TopSpace5 -/- C:\Program Files\TopSpace5\bin\TopSpace5Helper.exe UPDATE
[01-HKCUREG]**VMware Tools -/- C:\Program Files\VMware\VMware Tools\VMwareTray.exe
[01-HKCUREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -n vmusr
[01-HKCUREG]**WINDOWSTAB_UC -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe /run
[01-HKCUREG]**windowviewcon -/- C:\ProgramData\windowviewcon\windowviewconup.exe
[02-HKLMREG]**CleanMemoryUpdate -/- C:\Program Files\CleanMemory\CleanMemUD.exe
[02-HKLMREG]**clover -/- C:\Program Files\KoreaMessenger CP\koreamessenger_CP.exe
[02-HKLMREG]**clover_u -/- C:\Program Files\KoreaMessenger CP\koreamessenger_CP_updater.exe
[02-HKLMREG]**DController.exe -/- C:\Users\Administrator\AppData\Roaming\DController\DController.exe
[02-HKLMREG]**DControllerManager3.exe -/- C:\DController\DControllerManager3.exe
[02-HKLMREG]**Enumerate_gt -/- C:\Program Files\enumerate\gt\enumerate_gtu.exe Runcmd
[02-HKLMREG]**Enumerate_gtst -/- C:\Program Files\enumerate\gt\enumst.exe Runcmd
[02-HKLMREG]**InfoSave -/- C:\Program Files\Info-Save\InfoSave.exe /run1
[02-HKLMREG]**iniweblink -/- C:\ProgramData\iniweblink\weblinkup.exe
[02-HKLMREG]**kwinso -/- C:\Program Files\kwinstart\kwinso.exe
[02-HKLMREG]**kwinstart -/- C:\Program Files\kwinstart\kwinstart.exe
[02-HKLMREG]**kwinstartagent -/- C:\Program Files\kwinstart\kwinstartagent.exe
[02-HKLMREG]**nextray -/- C:\Program Files\nextray\nextray.exe
[02-HKLMREG]**nmwen -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\nmwenup.exe
[02-HKLMREG]**opensearchGT -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgt.exe Runcmd
[02-HKLMREG]**opensearchGTupdate -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgtu.exe
[02-HKLMREG]**Racl -/- C:\Program Files\Racl\RaclSvc.exe
[02-HKLMREG]**revealerApp -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe Runcmd
[02-HKLMREG]**revealerApps -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[02-HKLMREG]**rpga -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\rpgchk.exe
[02-HKLMREG]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[02-HKLMREG]**SpeedDownload -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDManager.exe
[02-HKLMREG]**SRankingPopView -/- C:\Program Files\SRankingPopView\srankingp.exe Runcmd
[02-HKLMREG]**SRankingPopViewupdate -/- C:\Program Files\SRankingPopView\srankingdc.exe
[02-HKLMREG]**STool -/- C:\Program Files\STool\STool.exe
[02-HKLMREG]**TopSpace5 -/- C:\Program Files\TopSpace5\bin\TopSpace5Helper.exe UPDATE
[02-HKLMREG]**VMware Tools -/- C:\Program Files\VMware\VMware Tools\VMwareTray.exe
[02-HKLMREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -n vmusr
[02-HKLMREG]**WINDOWSTAB_UC -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe /run
[02-HKLMREG]**windowviewcon -/- C:\ProgramData\windowviewcon\windowviewconup.exe
[03-BHOCLSD]**Enumerate Top Search - GT -/- C:\Program Files\enumerate\gt\enumerate_gt.dll -/- {A7E36709-4042-421E-9C90-C4D8CC79A475}
[03-BHOCLSD]**IESMon.Mon6 -/- C:\Users\Administrator\AppData\Roaming\addendum_sb\nmwenim.dll -/- {D5DD563F-B087-480A-A596-DC372BA3B191}
[03-BHOCLSD]**kwinso -/- c:\PROGRA~2\KWINST~1\kwinso.dll -/- {CC01FC6C-CACC-4E17-8C06-95C30EF5E6A7}
[03-BHOCLSD]**kwinstartvb Class -/- C:\Program Files\kwinstart\kwinstartvb.dll -/- {546B17D8-0CAE-451B-B953-673628864920}
[03-BHOCLSD]**OpenSearchGT SubTap -/- C:\Users\Administrator\AppData\Roaming\opensearchGT\opensearchgt.dll -/- {F48F659E-88A3-4EFA-804E-833609E15AD6}
[03-BHOCLSD]**Revealing Top Search App -/- C:\Users\Administrator\AppData\Roaming\revealer\revealertop.dll -/- {A1B22260-52C2-47C1-B497-1971BE481DC1}
[03-BHOCLSD]**STool -/- C:\Program Files\STool\STool.dll -/- {88B3E7BD-0AD1-44FD-823F-9E880D871D5D}
[03-BHOCLSD]**Styleranking Popview Class -/- C:\Program Files\SRankingPopView\sranking.dll -/- {BA8A50DA-6832-49BC-B479-A8C7420F8E1C}
[03-BHOCLSD]**winsearchkhsprg.winsearchkhs -/- C:\Program Files\Winsearchkhs\winsearchkhs.dll -/- {B999DF93-FB03-4785-BCAE-20150EBF5881}
[04-TOOLBAR]**잠김영역복사 -/- C:\Program Files\Racl\RaclTB.dll -/- {BCE04A5B-2B7D-4F4B-BB8E-2A59611733DD}
[05-SERVICE]**allpopup -/- allpopup svc -/- C:\Program Files\allpopup\allpopsvi.exe
[05-SERVICE]**boanfile -/- boanfile svc -/- C:\Program Files\boanfile\boanfilesvc.exe
[05-SERVICE]**boansolution -/- boansolution svc -/- C:\Program Files\boansolution\boansolutionsvc.exe
[05-SERVICE]**bootingpro -/- bootingpro svc -/- C:\Program Files\bootingpro\bootingprosvc.exe
[05-SERVICE]**clgsvr32 -/- Windows CloudGet Service -/- C:\Program Files\Windows CloudGet\clgsvr.exe
[05-SERVICE]**dynamo6 -/- Microsoft AD WS -/- C:\Users\Administrator\AppData\Roaming\wingdynamo6\dynamo6s.exe
[05-SERVICE]**FBDSvcman -/- FBDSvcman -/- C:\Users\Administrator\AppData\Roaming\SpeedDownload\FBDSvcMan.exe
[05-SERVICE]**InternetSafer Protector -/- InternetSafer Protector Application -/- C:\Program Files\Windows InternetSafer\intsfsrv.exe
[05-SERVICE]**ismsvc -/- Windows ISM -/- C:\Program Files\Windows ISM\ismsvc.exe
[05-SERVICE]**ismsvc32 -/- INSAFE Client 1.0 -/- C:\Program Files\insafeclient\ismsvc.exe
[05-SERVICE]**lstspsv32 -/- Windows Explorer Lastpopup v1.11 -/- C:\Program Files\lastpopup\lstspsv.exe
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**TPAutoConnSvc -/- TP AutoConnect Service -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[05-SERVICE]**TPVCGateway -/- TP VC Gateway Service -/- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe
[05-SERVICE]**VMTools -/- VMware Tools -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe
[05-SERVICE]**vmvss -/- VMware Snapshot Provider -/- C:\Windows\system32\dllhost.exe
[05-SERVICE]**voasvc -/- Windows VOA -/- C:\Program Files\Windows VOA\voasvc.exe
[05-SERVICE]**windowstab_mon -/- Windows Tab Manager -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe