Code : WE4xfKnEjuioriv+Qn7N0Lbe7BY9bJt0q5k3xSYPSMc=

프로그램분석

Code : WE4xfKnEjuioriv+Qn7N0Lbe7BY9bJt0q5k3xSYPSMc=

프로세스 천국 2013. 6. 8. 00:13

[00-PROCESS]**ALZip -/- C:\Program Files\ESTsoft\ALZip\ALZip.exe
[00-PROCESS]**avgfws -/- C:\Program Files\AVG\AVG2012\avgfws.exe
[00-PROCESS]**avgidsagent -/- C:\Program Files\AVG\AVG2012\avgidsagent.exe
[00-PROCESS]**avgwdsvc -/- C:\Program Files\AVG\AVG2012\avgwdsvc.exe
[00-PROCESS]**avket -/- C:\Documents and Settings\Administrator\Local Settings\Temp\avket.exe
[00-PROCESS]**barosvc -/- C:\Program Files\barocn\barosvc.exe
[00-PROCESS]**c2c_service -/- C:\Documents and Settings\Administrator\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
[00-PROCESS]**chrome -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\MapleStudio\ChromePlus\Application\chrome.exe
[00-PROCESS]**ctpopsvc -/- C:\Program Files\ctpop\ctpopsvc.exe
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**DirectKeywordUpdateService -/- C:\Documents and Settings\Administrator\Application Data\DirectKeyword2\DirectKeywordUpdateService.exe
[00-PROCESS]**entering-se -/- C:\WINDOWS\system32\entering-se.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**GomHelperSvc -/- C:\Program Files\GRETECH\GomHelper\GomHelperSvc.exe
[00-PROCESS]**Hanvon_Tablet -/- C:\WINDOWS\system32\Hanvon_Tablet.exe
[00-PROCESS]**hardcopy -/- C:\Program Files\Hardcopy\hardcopy.exe
[00-PROCESS]**inforesetupdate -/- C:\WINDOWS\inforesetupdate.exe
[00-PROCESS]**internetdownload_se -/- C:\WINDOWS\system32\internetdownload_se.exe
[00-PROCESS]**internetservice-se -/- C:\Program Files\internetservice\internetservice-se.exe
[00-PROCESS]**JWPen -/- C:\WINDOWS\system32\JWPen.exe
[00-PROCESS]**liveupdater-se -/- C:\Program Files\liveupdater\liveupdater-se.exe
[00-PROCESS]**LolClient -/- C:\Riot Games\League of Legends KR\RADS\projects\lol_air_client\releases\0.0.0.94\deploy\LolClient.exe
[00-PROCESS]**LoLLauncher -/- C:\Riot Games\League of Legends KR\RADS\projects\lol_launcher\releases\0.0.0.13\deploy\LoLLauncher.exe
[00-PROCESS]**lucascomer -/- C:\Documents and Settings\Administrator\Application Data\lucascome\lucascomer.exe
[00-PROCESS]**NATEONMain -/- C:\Program Files\NATEON\BIN\NATEONMain.exe
[00-PROCESS]**natsvc -/- C:\Program Files\NAT Service\natsvc.exe
[00-PROCESS]**npkfxsvc -/- C:\WINDOWS\system32\npkfxsvc.exe
[00-PROCESS]**nvsvc32 -/- C:\WINDOWS\system32\nvsvc32.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**ProcessClean -/- C:\Documents and Settings\Administrator\바탕 화면\ProcessClean.exe
[00-PROCESS]**ProcLauncher -/- C:\Documents and Settings\Administrator\My Documents\ProcessClean\ProcLauncher.exe
[00-PROCESS]**ProcService -/- C:\Documents and Settings\Administrator\My Documents\ProcessClean\ProcService.exe
[00-PROCESS]**rads_user_kernel -/- C:\Riot Games\League of Legends KR\RADS\system\rads_user_kernel.exe
[00-PROCESS]**revealer -/- C:\Documents and Settings\Administrator\Application Data\revealer\revealer.exe
[00-PROCESS]**revealerul -/- C:\Documents and Settings\Administrator\Application Data\revealer\revealerul.exe
[00-PROCESS]**RocketDock -/- C:\Program Files\RocketDock\RocketDock.exe
[00-PROCESS]**SNChkSvc -/- C:\Program Files\SearchN\SNChkSvc.exe
[00-PROCESS]**ToolbarUpdater -/- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
[00-PROCESS]**topfastersvc -/- C:\Program Files\topfaster\topfastersvc.exe
[00-PROCESS]**Updater -/- C:\Program Files\Skype\Updater\Updater.exe
[00-PROCESS]**weblink -/- C:\Documents and Settings\Administrator\Application Data\iniweblink\weblink.exe
[00-PROCESS]**weblinkup -/- C:\Documents and Settings\Administrator\Application Data\iniweblink\weblinkup.exe
[00-PROCESS]**windoguide -/- C:\Program Files\windoguide\windoguide.exe
[00-PROCESS]**windoguideagent -/- C:\Program Files\windoguide\windoguideagent.exe
[00-PROCESS]**windowfastse -/- C:\Program Files\windowfast\windowfastse.exe
[00-PROCESS]**windowsclick -/- C:\Documents and Settings\Administrator\Application Data\windowsclick\windowsclick.exe
[00-PROCESS]**winspsv -/- C:\Program Files\Windows Winerspop\winspsv.exe
[00-PROCESS]**winuserdata -/- C:\WINDOWS\winuserdata.exe
[00-PROCESS]**winusersetupdate -/- C:\WINDOWS\winusersetupdate.exe
[00-PROCESS]**WinxpendUP_itdw5 -/- C:\Program Files\WinExpand_itdw5\WinxpendUP_itdw5.exe
[00-PROCESS]**wscntfy -/- C:\WINDOWS\system32\wscntfy.exe
[00-PROCESS]**wuu -/- C:\Program Files\Windows Utility Update\wuu.exe
[01-HKCUREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**iniweblink -/- C:\Documents and Settings\Administrator\Application Data\iniweblink\weblinkup.exe
[01-HKCUREG]**ProcessClean -/- C:\Documents and Settings\Administrator\바탕 화면\ProcessClean.exe
[01-HKCUREG]**revealerApp -/- C:\Documents and Settings\Administrator\Application Data\revealer\revealer.exe Runcmd
[01-HKCUREG]**revealerApps -/- C:\Documents and Settings\Administrator\Application Data\revealer\revealerul.exe
[01-HKCUREG]**RocketDock -/- C:\Program Files\RocketDock\RocketDock.exe
[01-HKCUREG]**signkey -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\signkey\signkey.exe
[01-HKCUREG]**uTorrent -/- C:\Documents and Settings\Administrator\바탕 화면\토렌저\uTorrent.exe /MINIMIZED
[01-HKCUREG]**windoguide -/- C:\Program Files\windoguide\windoguide.exe
[01-HKCUREG]**windoguideagent -/- C:\Program Files\windoguide\windoguideagent.exe
[01-HKCUREG]**windoguideopt -/- C:\Program Files\windoguide\windopt.exe
[01-HKCUREG]**wuu -/- C:\Program Files\Windows Utility Update\wuu.exe
[02-HKLMREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**iniweblink -/- C:\Documents and Settings\Administrator\Application Data\iniweblink\weblinkup.exe
[02-HKLMREG]**ProcessClean -/- C:\Documents and Settings\Administrator\바탕 화면\ProcessClean.exe
[02-HKLMREG]**revealerApp -/- C:\Documents and Settings\Administrator\Application Data\revealer\revealer.exe Runcmd
[02-HKLMREG]**revealerApps -/- C:\Documents and Settings\Administrator\Application Data\revealer\revealerul.exe
[02-HKLMREG]**RocketDock -/- C:\Program Files\RocketDock\RocketDock.exe
[02-HKLMREG]**signkey -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\signkey\signkey.exe
[02-HKLMREG]**uTorrent -/- C:\Documents and Settings\Administrator\바탕 화면\토렌저\uTorrent.exe /MINIMIZED
[02-HKLMREG]**windoguide -/- C:\Program Files\windoguide\windoguide.exe
[02-HKLMREG]**windoguideagent -/- C:\Program Files\windoguide\windoguideagent.exe
[02-HKLMREG]**windoguideopt -/- C:\Program Files\windoguide\windopt.exe
[02-HKLMREG]**wuu -/- C:\Program Files\Windows Utility Update\wuu.exe
[03-BHOCLSD]**WinExpandB Class -/- C:\Program Files\WinExpand_itdw5\WinExpand_itdw5.dll -/- {00000FEA-958F-4E27-B8ED-95CCAFF55535}
[04-TOOLBAR]**N.A -/- N.A -/- Locked
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**ALYac_RTSrv -/- ALYac RealTime Service -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- ALYac Update Service -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**avgfws -/- AVG Firewall -/- C:\Program Files\AVG\AVG2012\avgfws.exe
[05-SERVICE]**AVGIDSAgent -/- AVGIDSAgent -/- C:\Program Files\AVG\AVG2012\avgidsagent.exe
[05-SERVICE]**avgwd -/- AVG WatchDog -/- C:\Program Files\AVG\AVG2012\avgwdsvc.exe
[05-SERVICE]**barocn -/- barocn svc -/- C:\Program Files\barocn\barosvc.exe
[05-SERVICE]**clpakbom -/- clpakbom -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\clpakbom\clpakbom.dll
[05-SERVICE]**codevaccine Update Service -/- codevaccine Support Service -/- C:\WINDOWS\winusersetupdate.exe
[05-SERVICE]**ctwopop -/- ctwopop svc -/- C:\Program Files\ctpop\ctpopsvc.exe
[05-SERVICE]**DirectKeywordUpdateService -/- DirectKeywordUpdateService -/- C:\Documents and Settings\Administrator\Application Data\DirectKeyword2\DirectKeywordUpdateService.exe
[05-SERVICE]**EapHost -/- Extensible Authentication Protocol Service -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\system32\lcovpqfvsknqlj.dll
[05-SERVICE]**enteringservice -/- Entering Service -/- C:\WINDOWS\system32\entering-se.exe
[05-SERVICE]**GomHelper Update Services -/- GomHelper Update Services -/- C:\Program Files\GRETECH\GomHelper\GomHelperSvc.exe
[05-SERVICE]**Hamachi2Svc -/- LogMeIn Hamachi Tunneling Engine -/- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -s
[05-SERVICE]**HWTablet -/- HWTablet -/- C:\WINDOWS\system32\JWPen.exe
[05-SERVICE]**InternetDownload Update Service -/- InternetDownload Support Service -/- C:\WINDOWS\system32\internetdownload_se.exe
[05-SERVICE]**internetserviceservice -/- Internetservice Service -/- C:\Program Files\internetservice\internetservice-se.exe
[05-SERVICE]**JavaQuickStarterService -/- Java Quick Starter -/- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe -service -config C:\Program Files\Oracle\JavaFX 2.1 Runtime\lib\deploy\jqs\jqs.conf
[05-SERVICE]**lamwnum SVC -/- lamwnum SERVICE -/- C:\Program Files\lamwnum\lamwsvc.exe
[05-SERVICE]**liveupdaterservice -/- liveupdater service -/- C:\Program Files\liveupdater\liveupdater-se.exe
[05-SERVICE]**lucascome -/- Lucas Studio System -/- C:\Documents and Settings\Administrator\Application Data\lucascome\lucascomer.exe
[05-SERVICE]**napagent -/- Network Access Protection Agent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**NATService -/- NATService -/- C:\Program Files\NAT Service\natsvc.exe
[05-SERVICE]**newupse -/- newupse services. -/- C:\Program Files\newupse\newupsesvc.exe
[05-SERVICE]**NMIndexingService -/- NMIndexingService -/- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
[05-SERVICE]**npkfxsvc -/- npkfxsvc -/- C:\WINDOWS\system32\npkfxsvc.exe
[05-SERVICE]**NVSvc -/- NVIDIA Driver Helper Service -/- C:\WINDOWS\system32\nvsvc32.exe
[05-SERVICE]**nvUpdatusService -/- NVIDIA Update Service Daemon -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**odserv -/- Microsoft Office Diagnostics Service -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**pdscword SVC -/- pdscword SERVICE -/- C:\Program Files\pdscword\pdscssvc.exe
[05-SERVICE]**premiumpc Update Service -/- premiumpc Support Service -/- C:\WINDOWS\winuserdata.exe
[05-SERVICE]**Process Clean Service -/- Process Clean Service -/- C:\Documents and Settings\Administrator\My Documents\ProcessClean\ProcService.exe
[05-SERVICE]**SearchN -/- 서치엔(SearchN) -/- C:\Program Files\SearchN\SNChkSvc.exe
[05-SERVICE]**Skype C2C Service -/- Skype C2C Service -/- C:\Documents and Settings\Administrator\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
[05-SERVICE]**SkypeUpdate -/- Skype Updater -/- C:\Program Files\Skype\Updater\Updater.exe
[05-SERVICE]**SmartMode Update Service -/- SmartMode Support Service -/- C:\WINDOWS\system32\smartmode_se.exe
[05-SERVICE]**TCCheckAgent -/- TCCheckAgent -/- C:\Program Files\AdvTopC\TCCheckAgent.exe
[05-SERVICE]**topfaster -/- topfaster svc -/- C:\Program Files\topfaster\topfastersvc.exe
[05-SERVICE]**topscan Update Service -/- topscan Support Service -/- C:\WINDOWS\resetuserwindowinfo.exe
[05-SERVICE]**userpc Update Service -/- userpc Support Service -/- C:\WINDOWS\inforesetupdate.exe
[05-SERVICE]**vaccinechecker Update Service -/- vaccinechecker Support Service -/- C:\WINDOWS\winsetuserconfig.exe
[05-SERVICE]**vToolbarUpdater14.2.0 -/- vToolbarUpdater14.2.0 -/- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
[05-SERVICE]**windowfastService -/- windowfast Service -/- C:\Program Files\windowfast\windowfastse.exe
[05-SERVICE]**WindowsDriver -/- WindowsDriver -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\WindowsDriver.dll
[05-SERVICE]**winspsv32 -/- Windows Winerspop Service -/- C:\Program Files\Windows Winerspop\winspsv.exe
[05-SERVICE]**WPFFontCache_v0400 -/- Windows Presentation Foundation Font Cache 4.0.0.0 -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe