Code : O/Rcbg9awYPwg4Yxc2c4s62SkU/MYsoMz32Fn0V8lyo=

프로그램분석

Code : O/Rcbg9awYPwg4Yxc2c4s62SkU/MYsoMz32Fn0V8lyo=

프로세스 천국 2013. 6. 6. 03:03

[00-PROCESS]**e_signkey -/- C:\Users\Administrator\AppData\Local\signkey\e_signkey.exe
[00-PROCESS]**FavoritesURLChanger -/- C:\Program Files\LinkDirect\FavoritesURLChanger.exe
[00-PROCESS]**FreeListen_Setup_120 -/- C:\Users\Administrator\AppData\Local\Temp\FreeListen_Setup_120.exe
[00-PROCESS]**FreeListenDownLoader -/- C:\Windows\FreeListenDownLoader.exe
[00-PROCESS]**FreeListenManager -/- C:\Program Files\FreeListen\FreeListenManager.exe
[00-PROCESS]**FreeListenUpdate -/- C:\Program Files\FreeListen\FreeListenUpdate.exe
[00-PROCESS]**GoGoBox -/- C:\Program Files\Gogobox\GoGoBox.exe
[00-PROCESS]**gogoboxupdater -/- C:\Program Files\Gogobox\gogoboxupdater.exe
[00-PROCESS]**HappyLotto -/- C:\Program Files\HappyLotto\HappyLotto.exe
[00-PROCESS]**HappyLottoT -/- C:\Program Files\HappyLotto\HappyLottoT.exe
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**InfoSave -/- C:\Program Files\InfoSave\InfoSave.exe
[00-PROCESS]**InfoSaveMtr -/- C:\Program Files\InfoSave\InfoSaveMtr.exe
[00-PROCESS]**InfoSaveuck -/- C:\Program Files\InfoSave\InfoSaveuck.exe
[00-PROCESS]**INIWebCleaner -/- C:\ProgramData\iniweblink\INIWebCleaner.exe
[00-PROCESS]**IProtect -/- C:\Program Files\IProtect\IProtect.exe
[00-PROCESS]**IProtectUpdate -/- C:\Program Files\IProtect\IProtectUpdate.exe
[00-PROCESS]**linkdirectT -/- C:\Program Files\LinkDirect\linkdirectT.exe
[00-PROCESS]**metablogagent -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\metablogagent.exe
[00-PROCESS]**MetablogNewIssues -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\MetablogNewIssues.exe
[00-PROCESS]**OpenKeyword -/- C:\Program Files\openkeyword\OpenKeyword.exe
[00-PROCESS]**OpenKeywordAgent -/- C:\Program Files\openkeyword\OpenKeywordAgent.exe
[00-PROCESS]**PatchUpInit -/- C:\Program Files\PatchUp_Plus\PatchUpInit.exe
[00-PROCESS]**PatchUpPlus -/- C:\Program Files\PatchUp_Plus\PatchUpPlus.exe
[00-PROCESS]**premiumpc -/- C:\Program Files\premiumpc\premiumpc.exe
[00-PROCESS]**premiumpcse -/- C:\Program Files\premiumpc\premiumpcse.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**RClean -/- C:\Program Files\RClean\RClean.exe
[00-PROCESS]**RCleanT -/- C:\Program Files\RClean\RCleanT.exe
[00-PROCESS]**RepairCode -/- C:\Program Files\InfoSave\RepairCode.exe
[00-PROCESS]**revealer -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe
[00-PROCESS]**revealerul -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[00-PROCESS]**scsys -/- C:\Program Files\skplus\scsys.exe
[00-PROCESS]**scUserSet -/- C:\Program Files\skplus\scUserSet.exe
[00-PROCESS]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[00-PROCESS]**skplus -/- C:\Program Files\skplus\skplus.exe
[00-PROCESS]**skun -/- C:\Users\Administrator\AppData\Local\signkey\skun.exe
[00-PROCESS]**StarCleaner -/- C:\Program Files\STARtools\StarCleaner\StarCleaner.exe
[00-PROCESS]**starcleanerup -/- C:\Program Files\STARtools\StarCleaner\starcleanerup.exe
[00-PROCESS]**StarMemo -/- C:\Program Files\STARtools\StarMemo\StarMemo.exe
[00-PROCESS]**starmemoup -/- C:\Program Files\STARtools\StarMemo\starmemoup.exe
[00-PROCESS]**StarPDF -/- C:\Program Files\STARtools\StarPDF\StarPDF.exe
[00-PROCESS]**starpdfup -/- C:\Program Files\STARtools\StarPDF\starpdfup.exe
[00-PROCESS]**startools_addzip -/- C:\Program Files\STARtools\StarZip\startools_addzip.exe
[00-PROCESS]**StartoolsLauncher -/- C:\Program Files\STARtools\StarZip\StartoolsLauncher.exe
[00-PROCESS]**STARUpdate -/- C:\Program Files\STARtools\StarToolsUP\STARUpdate.exe
[00-PROCESS]**StarZip -/- C:\Program Files\STARtools\StarZip\StarZip.exe
[00-PROCESS]**starzipextchg -/- C:\Program Files\STARtools\StarZip\starzipextchg.exe
[00-PROCESS]**starzipup -/- C:\Program Files\STARtools\StarZip\starzipup.exe
[00-PROCESS]**szVCDMod -/- C:\Program Files\STARtools\StarZip\szVCDMod.exe
[00-PROCESS]**TPAutoConnSvc -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[00-PROCESS]**TPVCGateway -/- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe
[00-PROCESS]**updatePlus -/- C:\Program Files\PatchUp_Plus\updatePlus.exe
[00-PROCESS]**VaccineSecure -/- C:\Program Files\VaccineSecure\VaccineSecure.exe
[00-PROCESS]**vmtoolsd -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe
[00-PROCESS]**VSAutoUpdate -/- C:\Program Files\VaccineSecure\VSAutoUpdate.exe
[00-PROCESS]**vsMon -/- C:\Program Files\VaccineSecure\etc\vsMon.exe
[00-PROCESS]**vsReg -/- C:\Program Files\VaccineSecure\etc\vsReg.exe
[00-PROCESS]**weblink -/- C:\ProgramData\iniweblink\weblink.exe
[00-PROCESS]**weblinkup -/- C:\ProgramData\iniweblink\weblinkup.exe
[00-PROCESS]**windoguide -/- C:\Program Files\windoguide\windoguide.exe
[00-PROCESS]**windoguideagent -/- C:\Program Files\windoguide\windoguideagent.exe
[00-PROCESS]**WindowNetworkManager -/- C:\Program Files\Window Network Manager\WindowNetworkManager.exe
[00-PROCESS]**windowstab -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab.exe
[00-PROCESS]**windowstab_mon -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[00-PROCESS]**windowstab_uc -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe
[00-PROCESS]**windowstab_unins -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_unins.exe
[00-PROCESS]**WindowWizard -/- C:\Program Files\WindowWizard\WindowWizard.exe
[00-PROCESS]**WindowWizardT -/- C:\Program Files\WindowWizard\WindowWizardT.exe
[00-PROCESS]**winesrp -/- C:\Program Files\Windows Everlive\winesrp.exe
[00-PROCESS]**winesru -/- C:\Program Files\Windows Everlive\winesru.exe
[00-PROCESS]**winesrv -/- C:\Program Files\Windows Everlive\winesrv.exe
[00-PROCESS]**winever -/- C:\Program Files\Windows Everlive\winever.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[00-PROCESS]**wuu -/- C:\Program Files\Windows Utility Update\wuu.exe
[01-HKCUREG]**ALLSONG -/- C:\Program Files\ALLSONG\ALLSONG.exe
[01-HKCUREG]**gogobox -/- C:\Program Files\Gogobox\gogoboxupdater.exe -o
[01-HKCUREG]**happylotto -/- C:\Program Files\HappyLotto\HappyLottoT.exe -o
[01-HKCUREG]**InfoSave -/- C:\Program Files\InfoSave\InfoSave.exe /run1
[01-HKCUREG]**iniweblink -/- C:\ProgramData\iniweblink\weblinkup.exe
[01-HKCUREG]**linkdirectmain -/- C:\Program Files\LinkDirect\linkdirectT.exe -o
[01-HKCUREG]**metablogagent -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\metablogagent.exe
[01-HKCUREG]**MetablogNewIssues -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\MetablogNewIssues.exe /byboot
[01-HKCUREG]**PatchUp_Plus -/- C:\Program Files\PatchUp_Plus\updatePlus.exe -r
[01-HKCUREG]**RCleanMain -/- C:\Program Files\RClean\RCleanT.exe -o
[01-HKCUREG]**revealerApp -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe Runcmd
[01-HKCUREG]**revealerApps -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[01-HKCUREG]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[01-HKCUREG]**skplus -/- C:\Program Files\skplus\skplus.exe
[01-HKCUREG]**startoolsup -/- C:\Program Files\STARtools\StarToolsUP\STARUpdate.exe -o
[01-HKCUREG]**VMware Tools -/- C:\Program Files\VMware\VMware Tools\VMwareTray.exe
[01-HKCUREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -n vmusr
[01-HKCUREG]**windoguide -/- C:\Program Files\windoguide\windoguide.exe
[01-HKCUREG]**windoguideagent -/- C:\Program Files\windoguide\windoguideagent.exe
[01-HKCUREG]**windoguideopt -/- C:\Program Files\windoguide\windopt.exe
[01-HKCUREG]**Window Network Manager -/- C:\Program Files\Window Network Manager\WindowNetworkManager.exe
[01-HKCUREG]**WINDOWSTAB_UC -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe /run
[01-HKCUREG]**windowwizard -/- C:\Program Files\WindowWizard\WindowWizardT.exe -o
[01-HKCUREG]**wuu -/- C:\Program Files\Windows Utility Update\wuu.exe
[02-HKLMREG]**ALLSONG -/- C:\Program Files\ALLSONG\ALLSONG.exe
[02-HKLMREG]**gogobox -/- C:\Program Files\Gogobox\gogoboxupdater.exe -o
[02-HKLMREG]**happylotto -/- C:\Program Files\HappyLotto\HappyLottoT.exe -o
[02-HKLMREG]**InfoSave -/- C:\Program Files\InfoSave\InfoSave.exe /run1
[02-HKLMREG]**iniweblink -/- C:\ProgramData\iniweblink\weblinkup.exe
[02-HKLMREG]**linkdirectmain -/- C:\Program Files\LinkDirect\linkdirectT.exe -o
[02-HKLMREG]**metablogagent -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\metablogagent.exe
[02-HKLMREG]**MetablogNewIssues -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\MetablogNewIssues.exe /byboot
[02-HKLMREG]**PatchUp_Plus -/- C:\Program Files\PatchUp_Plus\updatePlus.exe -r
[02-HKLMREG]**RCleanMain -/- C:\Program Files\RClean\RCleanT.exe -o
[02-HKLMREG]**revealerApp -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe Runcmd
[02-HKLMREG]**revealerApps -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[02-HKLMREG]**signkey -/- C:\Users\Administrator\AppData\Local\signkey\signkey.exe
[02-HKLMREG]**skplus -/- C:\Program Files\skplus\skplus.exe
[02-HKLMREG]**startoolsup -/- C:\Program Files\STARtools\StarToolsUP\STARUpdate.exe -o
[02-HKLMREG]**VMware Tools -/- C:\Program Files\VMware\VMware Tools\VMwareTray.exe
[02-HKLMREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -n vmusr
[02-HKLMREG]**windoguide -/- C:\Program Files\windoguide\windoguide.exe
[02-HKLMREG]**windoguideagent -/- C:\Program Files\windoguide\windoguideagent.exe
[02-HKLMREG]**windoguideopt -/- C:\Program Files\windoguide\windopt.exe
[02-HKLMREG]**Window Network Manager -/- C:\Program Files\Window Network Manager\WindowNetworkManager.exe
[02-HKLMREG]**WINDOWSTAB_UC -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe /run
[02-HKLMREG]**windowwizard -/- C:\Program Files\WindowWizard\WindowWizardT.exe -o
[02-HKLMREG]**wuu -/- C:\Program Files\Windows Utility Update\wuu.exe
[03-BHOCLSD]**Revealing Top Search App -/- C:\Users\Administrator\AppData\Roaming\revealer\revealertop.dll -/- {5DE6D47F-8805-4AB9-BD32-6D1D13F43C14}
[03-BHOCLSD]**windgdo -/- c:\PROGRA~2\WINDOG~1\windgdo.dll -/- {CC01FC6C-ED00-4E28-BCBC-F4AD5F9F0D7D}
[03-BHOCLSD]**windoguide Class -/- C:\Program Files\windoguide\wgbho.dll -/- {46E54E77-A5AE-4AB0-B27F-22DA3F95FAD6}
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**premiumpcService -/- premiumpc Service -/- C:\Program Files\premiumpc\premiumpcse.exe
[05-SERVICE]**TPAutoConnSvc -/- TP AutoConnect Service -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[05-SERVICE]**TPVCGateway -/- TP VC Gateway Service -/- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe
[05-SERVICE]**VMTools -/- VMware Tools -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe
[05-SERVICE]**vmvss -/- VMware Snapshot Provider -/- C:\Windows\system32\dllhost.exe
[05-SERVICE]**windowstab_mon -/- Windows Tab Manager -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[05-SERVICE]**winesrv32 -/- Windows Everlive Service -/- C:\Program Files\Windows Everlive\winesrv.exe