Code : h7gTVqxS/rre12ebk+AKcphSyYN9Kc17q7PLGvVl3Fg=

프로그램분석

Code : h7gTVqxS/rre12ebk+AKcphSyYN9Kc17q7PLGvVl3Fg=

프로세스 천국 2013. 5. 27. 21:27

[00-PROCESS]**allpopsvi -/- C:\Program Files\allpopup\allpopsvi.exe
[00-PROCESS]**ALZip -/- C:\Program Files\ESTsoft\ALZip\ALZip.exe
[00-PROCESS]**BBSvc -/- C:\Program Files\Microsoft\BingBar\BBSvc.EXE
[00-PROCESS]**clgsve -/- C:\Program Files\Windows CloudGet\clgsve.exe
[00-PROCESS]**clgsvr -/- C:\Program Files\Windows CloudGet\clgsvr.exe
[00-PROCESS]**cmd -/- C:\Windows\system32\cmd.exe
[00-PROCESS]**conditionuserinfo -/- C:\Windows\conditionuserinfo.exe
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**DTLite -/- C:\Program Files\DAEMON Tools Lite\DTLite.exe
[00-PROCESS]**e_signkey -/- C:\Users\Administrator\AppData\Local\signkey\e_signkey.exe
[00-PROCESS]**ebspebe -/- C:\Program Files\ebspebe\ebspebe.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**fsssvc -/- C:\Program Files\Windows Live\Family Safety\fsssvc.exe
[00-PROCESS]**gomhelpersvc -/- C:\Program Files\GRETECH\GomHelper\gomhelpersvc.exe
[00-PROCESS]**GuardConvert -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe
[00-PROCESS]**hcpms -/- C:\Program Files\hcpop\hcpms.exe
[00-PROCESS]**HncChecker -/- C:\Program Files\Common Files\Hnc\HncUtils\HncChecker.exe
[00-PROCESS]**IETab -/- C:\Program Files\IETab\IETab.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**IEXPLORE -/- C:\Program Files\Internet Explorer\IEXPLORE.EXE
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**install_flashplayer11x32ax_gtbp_chra_aih -/- C:\Users\Administrator\AppData\Local\Temp\install_flashplayer11x32ax_gtbp_chra_aih.exe
[00-PROCESS]**ISZone -/- C:\Program Files\ISZone\ISZone.exe
[00-PROCESS]**LMS -/- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
[00-PROCESS]**lstspop -/- C:\Program Files\lastpopup\lstspop.exe
[00-PROCESS]**lstspsv -/- C:\Program Files\lastpopup\lstspsv.exe
[00-PROCESS]**metablogagent -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\metablogagent.exe
[00-PROCESS]**MetablogNewIssues -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\MetablogNewIssues.exe
[00-PROCESS]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe
[00-PROCESS]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
[00-PROCESS]**NaverAdminAPISvc -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[00-PROCESS]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe
[00-PROCESS]**NexonPlug -/- C:\Nexon\NexonPlug\NexonPlug.exe
[00-PROCESS]**nvSCPAPISvr -/- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
[00-PROCESS]**nvtray -/- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
[00-PROCESS]**nvvsvc -/- C:\Windows\system32\nvvsvc.exe
[00-PROCESS]**nvxdsync -/- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**revealer -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe
[00-PROCESS]**revealerul -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[00-PROCESS]**SeaPort -/- C:\Program Files\Microsoft\BingBar\SeaPort.EXE
[00-PROCESS]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[00-PROCESS]**UNS -/- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
[00-PROCESS]**Upgrade -/- C:\Program Files\filenolja\Upgrade.exe
[00-PROCESS]**utilspae -/- C:\Program Files\utilspae\utilspae.exe
[00-PROCESS]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[00-PROCESS]**V3LSvc -/- C:\Program Files\AhnLab\V3Lite\V3LSvc.exe
[00-PROCESS]**V3LTray -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe
[00-PROCESS]**VDeck -/- C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
[00-PROCESS]**WatAdminSvc -/- C:\Windows\system32\Wat\WatAdminSvc.exe
[00-PROCESS]**windiscover -/- C:\Users\Administrator\AppData\Local\windiscover\windiscover.exe
[00-PROCESS]**winspep -/- C:\Program Files\Windows Winerspop 1.5\winspep.exe
[00-PROCESS]**winspop -/- C:\Program Files\Windows Winerspop 1.5\winspop.exe
[00-PROCESS]**winspst -/- C:\Program Files\Windows Winerspop 1.5\winspst.exe
[00-PROCESS]**winspsv -/- C:\Program Files\Windows Winerspop 1.5\winspsv.exe
[00-PROCESS]**wlcrasvc -/- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
[00-PROCESS]**WLIDSVC -/- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
[00-PROCESS]**WLIDSvcM -/- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[00-PROCESS]**wsupd -/- C:\Users\Administrator\AppData\Local\windiscover\wsupd.exe
[01-HKCUREG]**AhnLab V3Lite Tray Process -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe /logon
[01-HKCUREG]**DAEMON Tools Lite -/- C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun
[01-HKCUREG]**ebspebe -/- C:\Program Files\ebspebe\ebspebe.exe
[01-HKCUREG]**FileNolja -/- C:\Program Files\filenolja\Upgrade.exe
[01-HKCUREG]**GuardSupport -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe -XriYm
[01-HKCUREG]**HDAudDeck -/- C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r
[01-HKCUREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncChecker.exe
[01-HKCUREG]**IETab -/- C:\Program Files\IETab\IETab.exe
[01-HKCUREG]**metablogagent -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\metablogagent.exe
[01-HKCUREG]**MetablogNewIssues -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\MetablogNewIssues.exe /byboot
[01-HKCUREG]**MicroLabCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -AUKBPZI
[01-HKCUREG]**MicroLabProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -BWMDRbKK
[01-HKCUREG]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -XriYm
[01-HKCUREG]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -cxnesC
[01-HKCUREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[01-HKCUREG]**NexonPlug -/- C:\Nexon\NexonPlug\NexonPlug.exe
[01-HKCUREG]**revealerApp -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe Runcmd
[01-HKCUREG]**revealerApps -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[01-HKCUREG]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[01-HKCUREG]**utilspae -/- C:\Program Files\utilspae\utilspae.exe
[01-HKCUREG]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[01-HKCUREG]**windiscover -/- C:\Users\Administrator\AppData\Local\windiscover\windiscover.exe
[01-HKCUREG]**wsupd -/- C:\Users\Administrator\AppData\Local\windiscover\wsupd.exe
[02-HKLMREG]**AhnLab V3Lite Tray Process -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe /logon
[02-HKLMREG]**DAEMON Tools Lite -/- C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun
[02-HKLMREG]**ebspebe -/- C:\Program Files\ebspebe\ebspebe.exe
[02-HKLMREG]**FileNolja -/- C:\Program Files\filenolja\Upgrade.exe
[02-HKLMREG]**GuardSupport -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe -XriYm
[02-HKLMREG]**HDAudDeck -/- C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r
[02-HKLMREG]**HncUpdate -/- C:\Program Files\Common Files\Hnc\HncUtils\HncChecker.exe
[02-HKLMREG]**IETab -/- C:\Program Files\IETab\IETab.exe
[02-HKLMREG]**metablogagent -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\metablogagent.exe
[02-HKLMREG]**MetablogNewIssues -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\MetablogNewIssues.exe /byboot
[02-HKLMREG]**MicroLabCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -AUKBPZI
[02-HKLMREG]**MicroLabProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -BWMDRbKK
[02-HKLMREG]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -XriYm
[02-HKLMREG]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -cxnesC
[02-HKLMREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[02-HKLMREG]**NexonPlug -/- C:\Nexon\NexonPlug\NexonPlug.exe
[02-HKLMREG]**revealerApp -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe Runcmd
[02-HKLMREG]**revealerApps -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[02-HKLMREG]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[02-HKLMREG]**utilspae -/- C:\Program Files\utilspae\utilspae.exe
[02-HKLMREG]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[02-HKLMREG]**windiscover -/- C:\Users\Administrator\AppData\Local\windiscover\windiscover.exe
[02-HKLMREG]**wsupd -/- C:\Users\Administrator\AppData\Local\windiscover\wsupd.exe
[03-BHOCLSD]**Bing Bar Helper -/- C:\Program Files\Microsoft\BingBar\BingExt.dll -/- {d2ce3e00-f94a-4740-988e-03dc2f38c34f}
[03-BHOCLSD]**Naver SafeGuard -/- c:\program files\naver\navertoolbar\naversafeguard\nsafeguard_2013_3_11_1.dll -/- {000011A1-74C9-4c7e-9B4E-59B5765CF409}
[03-BHOCLSD]**Revealing Top Search App -/- C:\Users\Administrator\AppData\Roaming\revealer\revealertop.dll -/- {A1B22260-52C2-47C1-B497-1971BE481DC1}
[03-BHOCLSD]**Windows Live ID Sign-in Helper -/- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll -/- {9030D464-4C02-4ABF-8ECC-5164760863C6}
[03-BHOCLSD]**네이버 툴바 도우미 -/- C:\Program Files\naver\NaverToolbar\NaverTB_4_0_16_241.dll -/- {67C41E9E-2EBF-4F2B-AF74-314F0D793172}
[03-BHOCLSD]**확장검색서비스 -/- C:\Program Files\GRETECH\GomHelper\gomhelper.dll -/- {A14EAA16-CA35-4666-845A-DC084DCDF356}
[04-TOOLBAR]**Bing Bar -/- C:\Program Files\Microsoft\BingBar\BingExt.dll -/- {8dcb7100-df86-4384-8842-8fa844297b3f}
[04-TOOLBAR]**N.A -/- N.A -/- Locked
[04-TOOLBAR]**네이버 툴바 -/- C:\Program Files\naver\NaverToolbar\NaverTB_4_0_16_241.dll -/- {D09CFF09-A42A-4EDC-9804-E61224F59CA1}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**allpopup -/- allpopup svc -/- C:\Program Files\allpopup\allpopsvi.exe
[05-SERVICE]**BBSvc -/- Bing Bar Update Service -/- C:\Program Files\Microsoft\BingBar\BBSvc.EXE
[05-SERVICE]**clgsvr32 -/- Windows CloudGet Service -/- C:\Program Files\Windows CloudGet\clgsvr.exe
[05-SERVICE]**FontCache -/- Windows Font Cache Service -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\FntCache.dll
[05-SERVICE]**fsssvc -/- Windows Live Family Safety Service -/- C:\Program Files\Windows Live\Family Safety\fsssvc.exe
[05-SERVICE]**GomHelper Update Services -/- GomHelper Update Services -/- C:\Program Files\GRETECH\GomHelper\gomhelpersvc.exe
[05-SERVICE]**gpsvc -/- Group Policy Client -/- C:\Windows\system32\svchost.exe -/- C:\Windows\System32\gpsvc.dll
[05-SERVICE]**hcpopwin -/- hcpopwin svc -/- C:\Program Files\hcpop\hcpms.exe
[05-SERVICE]**highspeed Update Service -/- highspeed Support Service -/- C:\Windows\conditionuserinfo.exe
[05-SERVICE]**LMS -/- Intel(R) Management and Security Application Local Management Service -/- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
[05-SERVICE]**lstspsv32 -/- Windows Explorer Lastpopup v1.11 -/- C:\Program Files\lastpopup\lstspsv.exe
[05-SERVICE]**Naver Updater -/- Naver Updater -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**nvsvc -/- NVIDIA Display Driver Service -/- C:\Windows\system32\nvvsvc.exe
[05-SERVICE]**nvUpdatusService -/- NVIDIA Update Service Daemon -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**SeaPort -/- SeaPort -/- C:\Program Files\Microsoft\BingBar\SeaPort.EXE
[05-SERVICE]**Stereo Service -/- NVIDIA Stereoscopic 3D Driver Service -/- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
[05-SERVICE]**UNS -/- Intel(R) Management and Security Application User Notification Service -/- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
[05-SERVICE]**V3 Lite Service -/- V3 Lite Service -/- C:\Program Files\AhnLab\V3Lite\V3LSvc.exe
[05-SERVICE]**winspsv32 -/- Windows Winerspop Service -/- C:\Program Files\Windows Winerspop 1.5\winspsv.exe
[05-SERVICE]**wlcrasvc -/- Windows Live Mesh remote connections service -/- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
[05-SERVICE]**wlidsvc -/- Windows Live ID Sign-in Assistant -/- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE