Code : q7So7mwdaZlWMYIhDYbRFkLiJJFWUa4uKLbArpXhg14=

프로그램분석

Code : q7So7mwdaZlWMYIhDYbRFkLiJJFWUa4uKLbArpXhg14=

프로세스 천국 2013. 6. 9. 07:13

[00-PROCESS]**AC3CONFIG -/- C:\Users\Administrator\AppData\Roaming\howcodec\AC3FILTER\AC3CONFIG.EXE
[00-PROCESS]**config -/- C:\Users\Administrator\AppData\Roaming\howcodec\DivX Decoder\config.exe
[00-PROCESS]**DIALOG_PATCH -/- C:\Users\Administrator\AppData\Roaming\howcodec\AC3FILTER\DIALOG_PATCH.EXE
[00-PROCESS]**everytoolbar -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\everytoolbar.exe
[00-PROCESS]**everytoolbar2_setup -/- C:\Users\Administrator\AppData\Roaming\FileDown\FileDown\everytoolbar2_setup.exe
[00-PROCESS]**everytoolbarapp -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\everytoolbarapp.exe
[00-PROCESS]**EveryToolBarapp -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\EveryToolBarapp.exe
[00-PROCESS]**everytoolbarch -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\everytoolbarch.exe
[00-PROCESS]**everytoolbarchg -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\everytoolbarchg.exe
[00-PROCESS]**everytoolbardel -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\everytoolbardel.exe
[00-PROCESS]**everytoolbardel -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\up\everytoolbardel.exe
[00-PROCESS]**everytoolbarhper -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\everytoolbarhper.exe
[00-PROCESS]**everytoolbaropen -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\everytoolbaropen.exe
[00-PROCESS]**everytoolbarup -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\everytoolbarup.exe
[00-PROCESS]**FavoriteIcons -/- C:\Program Files\Favorite_Icons\FavoriteIcons.exe
[00-PROCESS]**FavoriteIconsControl -/- C:\Program Files\Favorite_Icons\FavoriteIconsControl.exe
[00-PROCESS]**favoriteiconssetup -/- C:\Users\Administrator\AppData\Roaming\FileDown\FileDown\favoriteiconssetup.exe
[00-PROCESS]**FavoriteIconsUpdate -/- C:\Program Files\Favorite_Icons\FavoriteIconsUpdate.exe
[00-PROCESS]**FileDown -/- C:\Users\Administrator\AppData\Roaming\FileDown\FileDown\FileDown.exe
[00-PROCESS]**FileDownChange -/- C:\Users\Administrator\AppData\Roaming\FileDown\FileDown\FileDownChange.exe
[00-PROCESS]**FileDownDownLoadAgree -/- C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\FileDownDownLoadAgree.exe
[00-PROCESS]**FileDownInstall -/- C:\Users\Administrator\AppData\Roaming\FileDown\FileDown\FileDownInstall.exe
[00-PROCESS]**filedownupgrade -/- c:\Users\Administrator\appdata\roaming\filedown\filedown\filedownupgrade.exe
[00-PROCESS]**FileDownUpgrade -/- C:\Users\Administrator\AppData\Roaming\FileDown\FileDown\FileDownUpgrade.exe
[00-PROCESS]**filedownuphp -/- c:\Users\Administrator\appdata\roaming\filedown\filedown\filedownuphp.exe
[00-PROCESS]**FileDownupHp -/- C:\Users\Administrator\AppData\Roaming\FileDown\FileDown\FileDownupHp.exe
[00-PROCESS]**greenopen -/- C:\Users\Administrator\AppData\Roaming\greenopen2\greenopen.exe
[00-PROCESS]**greenopen_goodfilecokr_setup -/- C:\Users\Administrator\AppData\Roaming\FileDown\FileDown\greenopen_goodfilecokr_setup.exe
[00-PROCESS]**greenopen_goodfilecokr4_setup -/- C:\Users\Administrator\AppData\Roaming\greenopen2\greenopen_goodfilecokr4_setup.exe
[00-PROCESS]**greenopench -/- C:\Users\Administrator\AppData\Roaming\greenopen2\greenopench.exe
[00-PROCESS]**greenopendel -/- C:\Users\Administrator\AppData\Roaming\greenopen2\greenopendel.exe
[00-PROCESS]**greenopenhper -/- C:\Users\Administrator\AppData\Roaming\greenopen2\greenopenhper.exe
[00-PROCESS]**greenopenuper -/- c:\Users\Administrator\appdata\roaming\greenopen2\greenopenuper.exe
[00-PROCESS]**greenopenuper -/- C:\Users\Administrator\AppData\Roaming\greenopen2\greenopenuper.exe
[00-PROCESS]**HowCodec_UnIns -/- C:\Users\Administrator\AppData\Roaming\howcodec\HowCodec_UnIns.exe
[00-PROCESS]**HowCodec_Update -/- C:\Users\Administrator\AppData\Roaming\howcodec\HowCodec_Update.exe
[00-PROCESS]**howcodecch -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodecch.exe
[00-PROCESS]**howcodechper -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodechper.exe
[00-PROCESS]**howcodecopen -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodecopen.exe
[00-PROCESS]**howcodecsvc -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodecsvc.exe
[00-PROCESS]**Howcodecsvc -/- C:\Users\Administrator\AppData\Roaming\howcodec\Howcodecsvc.exe
[00-PROCESS]**ic -/- C:\Program Files\Favorite_Icons\ic.exe
[00-PROCESS]**IEXPLORE -/- C:\Program Files\Internet Explorer\IEXPLORE.EXE
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**Jamaks -/- C:\Users\Administrator\AppData\Roaming\Jamaks\Jamaks.exe
[00-PROCESS]**JamaksCh -/- C:\Users\Administrator\AppData\Roaming\Jamaks\JamaksCh.exe
[00-PROCESS]**JamaksUnIns -/- C:\Users\Administrator\AppData\Roaming\Jamaks\JamaksUnIns.exe
[00-PROCESS]**JamaksUnIns -/- C:\Windows\system32\JamaksUnIns.exe
[00-PROCESS]**jamaksupdate -/- c:\Users\Administrator\appdata\roaming\jamaks\jamaksupdate.exe
[00-PROCESS]**JamaksUpdate -/- C:\Users\Administrator\AppData\Roaming\Jamaks\JamaksUpdate.exe
[00-PROCESS]**JamaksUpHp -/- C:\Users\Administrator\AppData\Roaming\Jamaks\JamaksUpHp.exe
[00-PROCESS]**MediaInfo -/- C:\Users\Administrator\AppData\Roaming\howcodec\MediaInfo\MediaInfo.exe
[00-PROCESS]**MPLAYERC -/- C:\Users\Administrator\AppData\Roaming\howcodec\Media Player Classic\MPLAYERC.EXE
[00-PROCESS]**powerpc -/- C:\Program Files\PowerPC\powerpc.exe
[00-PROCESS]**powerpcsetup_fileget -/- C:\Users\Administrator\AppData\Roaming\FileDown\FileDown\powerpcsetup_fileget.exe
[00-PROCESS]**powerup -/- C:\Program Files\PowerPC\powerup.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**pwtray -/- C:\Program Files\PowerPC\pwtray.exe
[00-PROCESS]**spoolsv -/- C:\Program Files\Favorite_Icons\spoolsv.exe
[00-PROCESS]**TPAutoConnSvc -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[00-PROCESS]**TPVCGateway -/- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe
[00-PROCESS]**vdpro -/- C:\Program Files\VDoctor Professional\vdpro.exe
[00-PROCESS]**vdprol -/- C:\Program Files\VDoctor Professional\vdprol.exe
[00-PROCESS]**vdpromonitor -/- C:\Program Files\VDoctor Professional\vdpromonitor.exe
[00-PROCESS]**vdprop -/- C:\Program Files\VDoctor Professional\vdprop.exe
[00-PROCESS]**vdpror -/- C:\Program Files\VDoctor Professional\vdpror.exe
[00-PROCESS]**vdpros -/- C:\Program Files\VDoctor Professional\vdpros.exe
[00-PROCESS]**VDProSetup_vd1 -/- C:\Users\Administrator\AppData\Roaming\FileDown\FileDown\VDProSetup_vd1.exe
[00-PROCESS]**vdprou -/- C:\Program Files\VDoctor Professional\vdprou.exe
[00-PROCESS]**vmtoolsd -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe
[00-PROCESS]**vprodefender -/- C:\Users\Administrator\AppData\Roaming\VPro Defender\vprodefender.exe
[00-PROCESS]**vprodefenderl -/- C:\Users\Administrator\AppData\Roaming\VPro Defender\vprodefenderl.exe
[00-PROCESS]**vprodefenderp -/- C:\Users\Administrator\AppData\Roaming\VPro Defender\vprodefenderp.exe
[00-PROCESS]**vprodefenderu -/- C:\Users\Administrator\AppData\Roaming\VPro Defender\vprodefenderu.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[00-PROCESS]**X264 -/- C:\Users\Administrator\AppData\Roaming\howcodec\x264 Video Codec\X264.EXE
[01-HKCUREG]**everytoolbar -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\EveryToolBarapp.exe
[01-HKCUREG]**Favorite_Icons -/- C:\Program Files\Favorite_Icons\FavoriteIconsUpdate.exe
[01-HKCUREG]**FDStart -/- c:\Users\Administrator\appdata\roaming\filedown\filedown\filedownupgrade.exe
[01-HKCUREG]**FDup2Start -/- c:\Users\Administrator\appdata\roaming\filedown\filedown\filedownuphp.exe
[01-HKCUREG]**greenopen -/- c:\Users\Administrator\appdata\roaming\greenopen2\greenopenuper.exe
[01-HKCUREG]**JamaksRun -/- c:\Users\Administrator\appdata\roaming\jamaks\jamaksupdate.exe
[01-HKCUREG]**PowerPc -/- c:\Users\Administrator\appdata\roaming\powerpc\powerup.exe boot
[01-HKCUREG]**VDoctor Professional -/- C:\Program Files\VDoctor Professional\vdprop.exe
[01-HKCUREG]**VMware Tools -/- C:\Program Files\VMware\VMware Tools\VMwareTray.exe
[01-HKCUREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -n vmusr
[01-HKCUREG]**VPro Defender -/- C:\Users\Administrator\AppData\Roaming\VPro Defender\vprodefenderp.exe
[02-HKLMREG]**everytoolbar -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\EveryToolBarapp.exe
[02-HKLMREG]**Favorite_Icons -/- C:\Program Files\Favorite_Icons\FavoriteIconsUpdate.exe
[02-HKLMREG]**FDStart -/- c:\Users\Administrator\appdata\roaming\filedown\filedown\filedownupgrade.exe
[02-HKLMREG]**FDup2Start -/- c:\Users\Administrator\appdata\roaming\filedown\filedown\filedownuphp.exe
[02-HKLMREG]**greenopen -/- c:\Users\Administrator\appdata\roaming\greenopen2\greenopenuper.exe
[02-HKLMREG]**JamaksRun -/- c:\Users\Administrator\appdata\roaming\jamaks\jamaksupdate.exe
[02-HKLMREG]**PowerPc -/- c:\Users\Administrator\appdata\roaming\powerpc\powerup.exe boot
[02-HKLMREG]**VDoctor Professional -/- C:\Program Files\VDoctor Professional\vdprop.exe
[02-HKLMREG]**VMware Tools -/- C:\Program Files\VMware\VMware Tools\VMwareTray.exe
[02-HKLMREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -n vmusr
[02-HKLMREG]**VPro Defender -/- C:\Users\Administrator\AppData\Roaming\VPro Defender\vprodefenderp.exe
[03-BHOCLSD]**BrKeywordObj Class -/- C:\Program Files\Favorite_Icons\FavoriteIcons.dll -/- {4D4D2A74-0249-49E6-BC41-0586A0333CB3}
[03-BHOCLSD]**howcodecband -/- C:\Users\Administrator\AppData\Roaming\howcodec\howcodecband.dll -/- {5D19999A-E977-46A5-BD6A-6E816262F399}
[03-BHOCLSD]**N -/- C:\Users\Administrator\AppData\Roaming\greenopen2\greenopenwb.dll -/- {0ACCE902-BA49-444A-A339-C5E738A6DB0E}
[03-BHOCLSD]**에브리툴바 -/- C:\Users\Administrator\AppData\Roaming\EveryToolBar\EveryToolBar.dll -/- {1DD969CD-3842-4EAD-A912-1429DCC1638D}
[04-TOOLBAR]**N.A -/- N.A -/- {9CA634EF-ECF0-4DD1-B7E2-B9CCFF40BCAF}
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**TPAutoConnSvc -/- TP AutoConnect Service -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[05-SERVICE]**TPVCGateway -/- TP VC Gateway Service -/- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe
[05-SERVICE]**VMTools -/- VMware Tools -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe
[05-SERVICE]**vmvss -/- VMware Snapshot Provider -/- C:\Windows\system32\dllhost.exe