Code : YYumqzU5qED5CSJIOPS7fYWiQ3tc5Jgl5eCwDoJePxcgvX1v6wxUIw==

프로그램분석

Code : YYumqzU5qED5CSJIOPS7fYWiQ3tc5Jgl5eCwDoJePxcgvX1v6wxUIw==

프로세스 천국 2013. 6. 24. 22:40

[00-PROCESS]**ASDSvc -/- C:\Program Files\AhnLab\V3Lite30\ASDSvc.exe
[00-PROCESS]**blenxor -/- C:\Documents and Settings\Administrator\Application Data\blenxor\blenxor.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**gongmoja -/- C:\Documents and Settings\Administrator\Application Data\gongmoja\gongmoja.exe
[00-PROCESS]**gongmojas -/- C:\Documents and Settings\Administrator\Application Data\gongmoja\gongmojas.exe
[00-PROCESS]**GuardConvert -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**IMJPMIG -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
[00-PROCESS]**IMKRMIG -/- C:\Program Files\Common Files\Microsoft Shared\IME12\IMEKR\IMKRMIG.EXE
[00-PROCESS]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe
[00-PROCESS]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**SearchhostUpdate -/- C:\Program Files\Searchhost\SearchhostUpdate.exe
[00-PROCESS]**SMSvcHost -/- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
[00-PROCESS]**SOUNDMAN -/- C:\WINDOWS\SOUNDMAN.EXE
[00-PROCESS]**timeAdd -/- C:\Program Files\WindowSearch\timeAdd.exe
[00-PROCESS]**TINTSETP -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
[00-PROCESS]**tostpop_ -/- C:\Program Files\tostpop\tostpop_.exe
[00-PROCESS]**V3Lite -/- C:\Program Files\AhnLab\V3Lite30\V3Lite.exe
[00-PROCESS]**winausrv -/- C:\Program Files\Windows Update Service\winausrv.exe
[00-PROCESS]**WMPNetwk -/- C:\Program Files\Windows Media Player\WMPNetwk.exe
[00-PROCESS]**wscntfy -/- C:\WINDOWS\system32\wscntfy.exe
[00-PROCESS]**wsstart -/- C:\Program Files\WindowSearch\wsstart.exe
[01-HKCUREG]**adhelp.exe -/- C:\Program Files\adhelp\adhelp.exe
[01-HKCUREG]**blenxor -/- C:\Documents and Settings\Administrator\Application Data\blenxor\blenxor.exe
[01-HKCUREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**FindLock -/- C:\Documents and Settings\Administrator\Application Data\FindLock\fnlag.exe
[01-HKCUREG]**GuardSupport -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe -gArhvG
[01-HKCUREG]**IETab -/- C:\Program Files\IETab\IETab.exe
[01-HKCUREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[01-HKCUREG]**JoyUtilService -/- C:\Program Files\JoyUtil\JoyUtilService.exe run
[01-HKCUREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[01-HKCUREG]**MicroLabCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -LgWNblUU
[01-HKCUREG]**MicroLabProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -LgWNblUU
[01-HKCUREG]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -aulbpA
[01-HKCUREG]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -aulbpA
[01-HKCUREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[01-HKCUREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[01-HKCUREG]**PostTip -/- C:\Program Files\PostTip\PostTip.exe
[01-HKCUREG]**safefence firewall -/- C:\Program Files\safe fence\sfencefw.exe startup
[01-HKCUREG]**safefence_realtime_agent -/- C:\Program Files\safe fence\sfenceagt.exe
[01-HKCUREG]**searchhostupdate -/- C:\Program Files\Searchhost\SearchhostUpdate.exe run
[01-HKCUREG]**SmartTool -/- C:\Program Files\SmartTool\SmartTool.exe
[01-HKCUREG]**snprot -/- C:\Program Files\SearchN\snprot.exe
[01-HKCUREG]**SoundMan -/- SOUNDMAN.EXE
[01-HKCUREG]**sponsormatchagent -/- C:\Program Files\sponsormatch\sponsormatchagent.exe
[01-HKCUREG]**SynTPEnh -/- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
[01-HKCUREG]**tostpop.exe -/- C:\Program Files\tostpop\tostpop.exe
[01-HKCUREG]**tostpop_.exe -/- C:\Program Files\tostpop\tostpop_.exe
[01-HKCUREG]**upstechv3 -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\upstech\upstech.exe
[01-HKCUREG]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[01-HKCUREG]**V3 Application -/- C:\Program Files\AhnLab\V3Lite30\V3Lite.exe /tray
[01-HKCUREG]**WindowSearch Service -/- C:\Program Files\WindowSearch\wsstart.exe
[01-HKCUREG]**WinPro -/- C:\Program Files\WinPro\WinPro.exe
[02-HKLMREG]**adhelp.exe -/- C:\Program Files\adhelp\adhelp.exe
[02-HKLMREG]**blenxor -/- C:\Documents and Settings\Administrator\Application Data\blenxor\blenxor.exe
[02-HKLMREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**FindLock -/- C:\Documents and Settings\Administrator\Application Data\FindLock\fnlag.exe
[02-HKLMREG]**GuardSupport -/- C:\Documents and Settings\Administrator\Application Data\GuardSupport\GuardConvert.exe -gArhvG
[02-HKLMREG]**IETab -/- C:\Program Files\IETab\IETab.exe
[02-HKLMREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[02-HKLMREG]**JoyUtilService -/- C:\Program Files\JoyUtil\JoyUtilService.exe run
[02-HKLMREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[02-HKLMREG]**MicroLabCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -LgWNblUU
[02-HKLMREG]**MicroLabProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -LgWNblUU
[02-HKLMREG]**MicroProCon -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProCon.exe -aulbpA
[02-HKLMREG]**MicroProProc -/- C:\Documents and Settings\Administrator\Application Data\MicroLab\MyEngin\Common\MicroProProc.exe -aulbpA
[02-HKLMREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[02-HKLMREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[02-HKLMREG]**PostTip -/- C:\Program Files\PostTip\PostTip.exe
[02-HKLMREG]**safefence firewall -/- C:\Program Files\safe fence\sfencefw.exe startup
[02-HKLMREG]**safefence_realtime_agent -/- C:\Program Files\safe fence\sfenceagt.exe
[02-HKLMREG]**searchhostupdate -/- C:\Program Files\Searchhost\SearchhostUpdate.exe run
[02-HKLMREG]**SmartTool -/- C:\Program Files\SmartTool\SmartTool.exe
[02-HKLMREG]**snprot -/- C:\Program Files\SearchN\snprot.exe
[02-HKLMREG]**SoundMan -/- SOUNDMAN.EXE
[02-HKLMREG]**sponsormatchagent -/- C:\Program Files\sponsormatch\sponsormatchagent.exe
[02-HKLMREG]**SynTPEnh -/- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
[02-HKLMREG]**tostpop.exe -/- C:\Program Files\tostpop\tostpop.exe
[02-HKLMREG]**tostpop_.exe -/- C:\Program Files\tostpop\tostpop_.exe
[02-HKLMREG]**upstechv3 -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\upstech\upstech.exe
[02-HKLMREG]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[02-HKLMREG]**V3 Application -/- C:\Program Files\AhnLab\V3Lite30\V3Lite.exe /tray
[02-HKLMREG]**WindowSearch Service -/- C:\Program Files\WindowSearch\wsstart.exe
[02-HKLMREG]**WinPro -/- C:\Program Files\WinPro\WinPro.exe
[03-BHOCLSD]**N -/- -/- {07B38C99-F0EA-43B7-82D4-2CA96799BDF5}
[03-BHOCLSD]**N -/- -/- {451679EF-B256-4CF7-9543-5FE66E0BEA26}
[03-BHOCLSD]**NeoStartPageObj Class -/- C:\Program Files\WindowSearch\wsact.dll -/- {EBF3CCAD-8529-439D-A17F-B35ACFC57939}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**bbodiskService -/- bbodisk Service -/- C:\WINDOWS\System32\svchost.exe
[05-SERVICE]**EBcds -/- 사용자 프로그램 업데이트 -/- C:\WINDOWS\System32\svchost.exe
[05-SERVICE]**gongmoja -/- TechShop Company -/- C:\Documents and Settings\Administrator\Application Data\gongmoja\gongmojas.exe
[05-SERVICE]**HwRunS -/- HowCodec Service -/- C:\WINDOWS\System32\svchost.exe
[05-SERVICE]**napagent -/- Network Access Protection Agent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**npggsvc -/- nProtect GameGuard Service -/- C:\WINDOWS\system32\GameMon.des -service
[05-SERVICE]**NWCWorkstation -/- Client Service for NetWare -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\nwwks.dll
[05-SERVICE]**odserv -/- Microsoft Office Diagnostics Service -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**RunS -/- MultidownLoad Service -/- C:\WINDOWS\system32\rsvp.exe
[05-SERVICE]**TCCheckAgent -/- TCCheckAgent -/- C:\WINDOWS\System32\svchost.exe
[05-SERVICE]**V3 Service -/- V3 Lite Service -/- C:\Program Files\AhnLab\V3Lite30\ASDSvc.exe
[05-SERVICE]**winausrv -/- Windows Update Service -/- C:\Program Files\Windows Update Service\winausrv.exe
[05-SERVICE]**WinRM -/- Windows Remote Management (WS-Management) -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\WsmSvc.dll
[05-SERVICE]**WPFFontCache_v0400 -/- Windows Presentation Foundation Font Cache 4.0.0.0 -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe