Code : zCPOg+UtyXGlo5eZQLunn1kCqRJXr6Xkas0p/WTE/p8=

프로그램분석

Code : zCPOg+UtyXGlo5eZQLunn1kCqRJXr6Xkas0p/WTE/p8=

프로세스 천국 2013. 7. 3. 17:22

[00-PROCESS]**appis -/- C:\Users\Administrator\AppData\Local\AppIs\appis.exe
[00-PROCESS]**armsvc -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[00-PROCESS]**catroot -/- C:\WINDOWS\system32\AppCompat\catroot\catroot.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**fsssvc -/- C:\Program Files\Windows Live\Family Safety\fsssvc.exe
[00-PROCESS]**GoogleUpdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[00-PROCESS]**hkcmd -/- C:\Windows\system32\hkcmd.exe
[00-PROCESS]**howcodecsrv -/- C:\Program Files\howcodec\howcodecsrv.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**igfxpers -/- C:\Windows\system32\igfxpers.exe
[00-PROCESS]**igfxpers -/- C:\Windows\System32\igfxpers.exe
[00-PROCESS]**igfxtray -/- C:\Windows\system32\igfxtray.exe
[00-PROCESS]**IMKRMIG -/- C:\Program Files\Common Files\Microsoft Shared\IME12\IMEKR\IMKRMIG.EXE
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**IProsetMonitor -/- C:\Windows\system32\IProsetMonitor.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
[00-PROCESS]**msfeedssync -/- C:\Windows\system32\msfeedssync.exe
[00-PROCESS]**MUpdate2 -/- C:\Program Files\AhnLab\V3Lite\MUpdate2\MUpdate2.exe
[00-PROCESS]**natsvc -/- C:\Program Files\NAT Service\natsvc.exe
[00-PROCESS]**NaverAdminAPISvc -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[00-PROCESS]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe
[00-PROCESS]**NBService -/- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
[00-PROCESS]**ncleaner -/- C:\Program Files\naver\NaverCleaner\ncleaner.exe
[00-PROCESS]**ncleaner -/- C:\Program Files\Naver\NaverCleaner\ncleaner.exe
[00-PROCESS]**NCleanService -/- C:\Program Files\naver\NaverCleaner\NCleanService.exe
[00-PROCESS]**NMIndexingService -/- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
[00-PROCESS]**npkfxsvc -/- C:\Windows\system32\npkfxsvc.exe
[00-PROCESS]**nvvsvc -/- C:\Windows\system32\nvvsvc.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**RAVCpl64 -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
[00-PROCESS]**TankDiskService -/- C:\Program Files\TankDisk\TankDiskService.exe
[00-PROCESS]**V3LRun -/- C:\Program Files\AhnLab\V3Lite\V3LRun.exe
[00-PROCESS]**V3LSvc -/- C:\Program Files\AhnLab\V3Lite\V3LSvc.exe
[00-PROCESS]**V3LTray -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe
[00-PROCESS]**WatAdminSvc -/- C:\Windows\system32\Wat\WatAdminSvc.exe
[00-PROCESS]**WindowServiceNT -/- C:\WINDOWS\system32\WindowServiceNT.exe
[00-PROCESS]**winzillsvc -/- C:\Windows\system32\winzillsvc.exe
[00-PROCESS]**wlcrasvc -/- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
[00-PROCESS]**WLIDSVC -/- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
[00-PROCESS]**WLIDSvcM -/- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
[01-HKCUREG]**AhnLab V3Lite Tray Process -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe /logon
[01-HKCUREG]**catroot -/- C:\WINDOWS\system32\AppCompat\catroot\catrootsz.exe
[01-HKCUREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[01-HKCUREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[01-HKCUREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[01-HKCUREG]**MicrowindowSearch -/- C:\WINDOWS\system32\MicrowindowSearch\MicrowindowSearch.exe
[01-HKCUREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[01-HKCUREG]**NCleaner -/- C:\Program Files\naver\NaverCleaner\ncleaner.exe /reboot
[01-HKCUREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[01-HKCUREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
[02-HKLMREG]**AhnLab V3Lite Tray Process -/- C:\Program Files\AhnLab\V3Lite\V3LTray.exe /logon
[02-HKLMREG]**catroot -/- C:\WINDOWS\system32\AppCompat\catroot\catrootsz.exe
[02-HKLMREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[02-HKLMREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[02-HKLMREG]**Korean IME Migration -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE
[02-HKLMREG]**MicrowindowSearch -/- C:\WINDOWS\system32\MicrowindowSearch\MicrowindowSearch.exe
[02-HKLMREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[02-HKLMREG]**NCleaner -/- C:\Program Files\naver\NaverCleaner\ncleaner.exe /reboot
[02-HKLMREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[02-HKLMREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
[03-BHOCLSD]**네이버 세이프가드 -/- c:\program files\naver\navertoolbar\naversafeguard\nsafeguard_2013_6_10_1.dll -/- {000011A1-74C9-4c7e-9B4E-59B5765CF409}
[03-BHOCLSD]**네이버 툴바 도우미 -/- C:\Program Files\Naver\NaverToolbar\NaverTB_4_0_19_254.dll -/- {67C41E9E-2EBF-4F2B-AF74-314F0D793172}
[04-TOOLBAR]**네이버 툴바 -/- C:\Program Files\Naver\NaverToolbar\NaverTB_4_0_19_254.dll -/- {D09CFF09-A42A-4EDC-9804-E61224F59CA1}
[05-SERVICE]**AdobeARMservice -/- Adobe Acrobat Update Service -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**AppCatroots -/- Application Catroots -/- C:\WINDOWS\system32\AppCompat\catroot\catroot.exe
[05-SERVICE]**ApplicationSpecialManagement -/- Application Special Management -/- C:\WINDOWS\system32\WindowServiceNT.exe
[05-SERVICE]**Bondisk Update Service -/- Bondisk Update Service -/- C:\Program Files\BonDisk.com\BonDisk(normal)\BonUpdate.exe
[05-SERVICE]**cardctrl -/- Windows Cards Manager -/- C:\Windows\system32\cardctrl.exe
[05-SERVICE]**EasyPop_Service -/- EasyPop_Service -/- C:\Users\Administrator\AppData\Roaming\EasyPop\EasyPop_S.exe iconmania1
[05-SERVICE]**FontCache -/- Windows Font Cache Service -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\FntCache.dll
[05-SERVICE]**fsssvc -/- Windows Live Family Safety Service -/- C:\Program Files\Windows Live\Family Safety\fsssvc.exe
[05-SERVICE]**gupdate -/- Google 업데이트 서비스 (gupdate) -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**gupdatem -/- Google 업데이트 서비스 (gupdatem) -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**howcodec -/- howcodec -/- C:\Program Files\howcodec\howcodecsrv.exe
[05-SERVICE]**Intel(R) PROSet Monitoring Service -/- Intel(R) PROSet Monitoring Service -/- C:\Windows\system32\IProsetMonitor.exe
[05-SERVICE]**Miconsoft_s -/- Miconsoft_s -/- C:\Program Files\Miconsoft\miconsoft_s.exe
[05-SERVICE]**NATService -/- NATService -/- C:\Program Files\NAT Service\natsvc.exe
[05-SERVICE]**Naver Updater -/- Naver Updater -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[05-SERVICE]**NCleanService -/- Naver Cleaner Admin Service -/- C:\Program Files\naver\NaverCleaner\NCleanService.exe
[05-SERVICE]**Nero BackItUp Scheduler 3 -/- Nero BackItUp Scheduler 3 -/- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**NMIndexingService -/- NMIndexingService -/- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
[05-SERVICE]**npggsvc -/- nProtect GameGuard Service -/- C:\Windows\system32\GameMon.des -service
[05-SERVICE]**npkfxsvc -/- npkfxsvc -/- C:\Windows\system32\npkfxsvc.exe
[05-SERVICE]**nvsvc -/- NVIDIA Display Driver Service -/- C:\Windows\system32\nvvsvc.exe
[05-SERVICE]**odserv -/- Microsoft Office Diagnostics Service -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**TankDiskService -/- TankDisk Service -/- C:\Program Files\TankDisk\TankDiskService.exe
[05-SERVICE]**V3 Lite Service -/- V3 Lite Service -/- C:\Program Files\AhnLab\V3Lite\V3LSvc.exe
[05-SERVICE]**Windows MineService Diagnostics Service -/- Windows MineService Diagnostics Service -/- C:\Windows\system32\winzillsvc.exe
[05-SERVICE]**wlcrasvc -/- Windows Live Mesh remote connections service -/- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
[05-SERVICE]**wlidsvc -/- Windows Live ID Sign-in Assistant -/- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE