Code : qqW7hOEmq4CiZj4vfL45sX/ih8vu3HMuYhBoiNlP2CJhHeTMnEaQRg==

프로그램분석

Code : qqW7hOEmq4CiZj4vfL45sX/ih8vu3HMuYhBoiNlP2CJhHeTMnEaQRg==

프로세스 천국 2013. 6. 29. 01:03

[00-PROCESS]**atbhelper -/- C:\Program Files\ESTsoft\ALToolbar\atbhelper.exe
[00-PROCESS]**chrome -/- C:\Program Files\Google\Chrome\Application\chrome.exe
[00-PROCESS]**CTAELicensing -/- C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
[00-PROCESS]**CTAudSvc -/- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
[00-PROCESS]**CTRegRun -/- C:\WINDOWS\CTRegRun.EXE
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**DLLML -/- C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe
[00-PROCESS]**DrvIcon -/- C:\Program Files\Vista Drive Icon\DrvIcon.exe
[00-PROCESS]**Everything -/- C:\Program Files\Everything\Everything.exe
[00-PROCESS]**FGSVC32 -/- C:\Program Files\freegu\FGSVC32.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**GoogleUpdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[00-PROCESS]**IMJPMIG -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
[00-PROCESS]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe
[00-PROCESS]**NotiMan -/- C:\Program Files\Creative\ShareDLL\CADI\NotiMan.exe
[00-PROCESS]**nvsvc32 -/- C:\WINDOWS\system32\nvsvc32.exe
[00-PROCESS]**nvtmru -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe
[00-PROCESS]**nwiz -/- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe
[00-PROCESS]**RunDll32 -/- C:\WINDOWS\system32\RunDll32.exe
[00-PROCESS]**RunDLL32 -/- C:\WINDOWS\system32\RunDLL32.exe
[00-PROCESS]**SMSvcHost -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
[00-PROCESS]**tamguard -/- C:\Documents and Settings\Administrator\Application Data\theam\common\bin\tamguard.exe
[00-PROCESS]**TAMUpdate -/- C:\Documents and Settings\Administrator\Application Data\theam\common\bin\TAMUpdate.exe
[00-PROCESS]**TheAm -/- C:\Documents and Settings\Administrator\Application Data\theam\common\bin\TheAm.exe
[00-PROCESS]**TINTSETP -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
[00-PROCESS]**VolPanlu -/- C:\Program Files\Creative\Sound Blaster X-Fi Surround 5.1\Volume Panel\VolPanlu.exe
[00-PROCESS]**winampa -/- C:\Program Files\Winamp\winampa.exe
[00-PROCESS]**WMPNetwk -/- C:\Program Files\Windows Media Player\WMPNetwk.exe
[00-PROCESS]**wscntfy -/- C:\WINDOWS\system32\wscntfy.exe
[01-HKCUREG]**ALToolBar -/- C:\Program Files\ESTsoft\ALToolbar\atbhelper.exe -boot
[01-HKCUREG]**Creative KSRun Persistence Module -/- RunDll32 KSRun.dllRunDLLEntry
[01-HKCUREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**CTRegRun -/- C:\WINDOWS\CTRegRun.EXE
[01-HKCUREG]**DrvIcon -/- C:\Program Files\Vista Drive Icon\DrvIcon.exe
[01-HKCUREG]**Everything -/- C:\Program Files\Everything\Everything.exe -startup
[01-HKCUREG]**guardtam -/- C:\Documents and Settings\Administrator\Application Data\theam\common\bin\tamguard.exe
[01-HKCUREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[01-HKCUREG]**Module Loader -/- C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe -StartUpRun
[01-HKCUREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[01-HKCUREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dllNvStartup
[01-HKCUREG]**NvMediaCenter -/- RunDLL32.exe NvMCTray.dllNvTaskbarInit -login
[01-HKCUREG]**Nvtmru -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe
[01-HKCUREG]**nwiz -/- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
[01-HKCUREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[01-HKCUREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[01-HKCUREG]**RTHDCPL -/- RTHDCPL.EXE
[01-HKCUREG]**tamgrd -/- C:\Documents and Settings\Administrator\Application Data\theam\common\bin\TheAm.exe
[01-HKCUREG]**TheAM -/- C:\Documents and Settings\Administrator\Application Data\theam\common\bin\TAMUpdate.exe
[01-HKCUREG]**VolPanel -/- C:\Program Files\Creative\Sound Blaster X-Fi Surround 5.1\Volume Panel\VolPanlu.exe /r
[01-HKCUREG]**WinampAgent -/- C:\Program Files\Winamp\winampa.exe
[02-HKLMREG]**ALToolBar -/- C:\Program Files\ESTsoft\ALToolbar\atbhelper.exe -boot
[02-HKLMREG]**Creative KSRun Persistence Module -/- RunDll32 KSRun.dllRunDLLEntry
[02-HKLMREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**CTRegRun -/- C:\WINDOWS\CTRegRun.EXE
[02-HKLMREG]**DrvIcon -/- C:\Program Files\Vista Drive Icon\DrvIcon.exe
[02-HKLMREG]**Everything -/- C:\Program Files\Everything\Everything.exe -startup
[02-HKLMREG]**guardtam -/- C:\Documents and Settings\Administrator\Application Data\theam\common\bin\tamguard.exe
[02-HKLMREG]**IMJPMIG8.1 -/- C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
[02-HKLMREG]**Module Loader -/- C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe -StartUpRun
[02-HKLMREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[02-HKLMREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dllNvStartup
[02-HKLMREG]**NvMediaCenter -/- RunDLL32.exe NvMCTray.dllNvTaskbarInit -login
[02-HKLMREG]**Nvtmru -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe
[02-HKLMREG]**nwiz -/- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
[02-HKLMREG]**PHIME2002A -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
[02-HKLMREG]**PHIME2002ASync -/- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
[02-HKLMREG]**RTHDCPL -/- RTHDCPL.EXE
[02-HKLMREG]**tamgrd -/- C:\Documents and Settings\Administrator\Application Data\theam\common\bin\TheAm.exe
[02-HKLMREG]**TheAM -/- C:\Documents and Settings\Administrator\Application Data\theam\common\bin\TAMUpdate.exe
[02-HKLMREG]**VolPanel -/- C:\Program Files\Creative\Sound Blaster X-Fi Surround 5.1\Volume Panel\VolPanlu.exe /r
[02-HKLMREG]**WinampAgent -/- C:\Program Files\Winamp\winampa.exe
[03-BHOCLSD]**ALToolbarBho -/- C:\Program Files\ESTsoft\ALToolbar\ALToolBar_3200.dll -/- {7F1A79F9-78D1-4186-9F60-EE0B63DF042A}
[03-BHOCLSD]**네이버 세이프가드 -/- c:\program files\naver\navertoolbar\naversafeguard\nsafeguard_2013_6_10_1.dll -/- {000011A1-74C9-4c7e-9B4E-59B5765CF409}
[03-BHOCLSD]**네이버 툴바 도우미 -/- C:\Program Files\naver\NaverToolbar\NaverTB_4_0_19_254.dll -/- {67C41E9E-2EBF-4F2B-AF74-314F0D793172}
[04-TOOLBAR]**ALToolBar -/- C:\Program Files\ESTsoft\ALToolbar\ALToolBar_3200.dll -/- {38FBE93D-4CA1-4414-AF6A-94920C5BD8DA}
[04-TOOLBAR]**네이버 툴바 -/- C:\Program Files\naver\NaverToolbar\NaverTB_4_0_19_254.dll -/- {D09CFF09-A42A-4EDC-9804-E61224F59CA1}
[04-TOOLBAR]**스펠러 -/- -/- {41ED1FD7-8C37-4806-AF9E-D5238A30E56F}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**Creative Audio Engine Licensing Service -/- Creative Audio Engine Licensing Service -/- C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
[05-SERVICE]**CTAudSvcService -/- Creative Audio Service -/- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
[05-SERVICE]**FGSVC32 -/- freeguService32 -/- C:\Program Files\freegu\FGSVC32.exe
[05-SERVICE]**gupdate -/- Google 업데이트 서비스 (gupdate) -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**gupdatem -/- Google 업데이트 서비스 (gupdatem) -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**Irmon -/- Infrared Monitor -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\System32\irmon.dll
[05-SERVICE]**napagent -/- Network Access Protection Agent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**NVSvc -/- NVIDIA Driver Helper Service -/- C:\WINDOWS\system32\nvsvc32.exe
[05-SERVICE]**nvUpdatusService -/- NVIDIA Update Service Daemon -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**WinRM -/- Windows Remote Management (WS-Management) -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\WsmSvc.dll
[05-SERVICE]**WPFFontCache_v0400 -/- Windows Presentation Foundation Font Cache 4.0.0.0 -/- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe