Code : K/fkcyx2NvYD/HczUqoQ0fr3d3bF1WyedBXmx/Fn8zE=

프로그램분석

Code : K/fkcyx2NvYD/HczUqoQ0fr3d3bF1WyedBXmx/Fn8zE=

프로세스 천국 2013. 7. 8. 20:04

[00-PROCESS]**afwServ -/- C:\Program Files\AVAST Software\Avast\afwServ.exe
[00-PROCESS]**AnyUCC -/- C:\Users\Administrator\AppData\Local\AnyUCC\AnyUCC.exe
[00-PROCESS]**armsvc -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[00-PROCESS]**AvastEmUpdate -/- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
[00-PROCESS]**AvastSvc -/- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
[00-PROCESS]**avastUI -/- C:\Program Files\AVAST Software\Avast\avastUI.exe
[00-PROCESS]**AvastUI -/- C:\Program Files\AVAST Software\Avast\AvastUI.exe
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**E_S40RP7 -/- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
[00-PROCESS]**E_S40ST7 -/- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**FsUsbExService -/- C:\Windows\system32\FsUsbExService.Exe
[00-PROCESS]**GOMA -/- C:\Program Files\GRETECH\GomAudio\GOMA.exe
[00-PROCESS]**GoogleUpdate -/- C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe
[00-PROCESS]**GROOVE -/- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
[00-PROCESS]**GSetup64 -/- C:\Windows\GSetup64.exe
[00-PROCESS]**GuardConvert -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**IMEDICTUPDATE -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[00-PROCESS]**IMEKLMG -/- C:\Program Files\Common Files\microsoft shared\IME14\SHARED\IMEKLMG.EXE
[00-PROCESS]**ispex -/- C:\Program Files\ISPSvc\ispex.exe
[00-PROCESS]**ispmgr -/- C:\Program Files\ISPSvc\ispmgr.exe
[00-PROCESS]**ispnk -/- C:\Program Files\ISPSvc\ispnk.exe
[00-PROCESS]**ispsrv -/- C:\Program Files\ISPSvc\ispsrv.exe
[00-PROCESS]**KMService -/- C:\Windows\KMService.exe
[00-PROCESS]**LogoutCleaner -/- C:\Program Files\LogoutCleaner\LogoutCleaner.exe
[00-PROCESS]**MemTurbo -/- C:\Program Files\Memturbo 4\MemTurbo.exe
[00-PROCESS]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe
[00-PROCESS]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe
[00-PROCESS]**mqsvc -/- C:\Windows\system32\mqsvc.exe
[00-PROCESS]**napctr -/- C:\Program Files\ISPSvc\napctr.exe
[00-PROCESS]**npkcmsvc -/- C:\Windows\system32\npkcmsvc.exe
[00-PROCESS]**npkfxsvc -/- C:\Windows\system32\npkfxsvc.exe
[00-PROCESS]**npnj5Agent -/- C:\Windows\system32\npnj5Agent.exe
[00-PROCESS]**nPStarterSVC -/- C:\Windows\system32\nPStarterSVC.exe
[00-PROCESS]**nvSCPAPISvr -/- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
[00-PROCESS]**nvtray -/- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
[00-PROCESS]**nvvsvc -/- C:\Windows\system32\nvvsvc.exe
[00-PROCESS]**nvxdsync -/- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**OSPPSVC -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[00-PROCESS]**PangUpdate -/- C:\Users\Administrator\AppData\Roaming\Pang\PangUpdate.exe
[00-PROCESS]**PingPang -/- C:\Users\Administrator\AppData\Roaming\Pang\PingPang\PingPang.exe
[00-PROCESS]**PingPangSpu -/- C:\Users\Administrator\AppData\Roaming\Pang\PingPang\PingPangSpu.exe
[00-PROCESS]**RegistryWinner -/- C:\Program Files\Registry Winner\RegistryWinner.exe
[00-PROCESS]**srvany -/- C:\Windows\system32\srvany.exe
[00-PROCESS]**tamguard -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\tamguard.exe
[00-PROCESS]**TAMUpdate -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TAMUpdate.exe
[00-PROCESS]**TheAm -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TheAm.exe
[00-PROCESS]**TheAM -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TheAM.exe
[00-PROCESS]**vmnat -/- C:\Windows\system32\vmnat.exe
[00-PROCESS]**vmnetdhcp -/- C:\Windows\system32\vmnetdhcp.exe
[00-PROCESS]**vmware-authd -/- C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
[00-PROCESS]**vmware-hostd -/- C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe
[00-PROCESS]**vmware-usbarbitrator -/- C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
[00-PROCESS]**WerFault -/- C:\Windows\system32\WerFault.exe
[00-PROCESS]**windowstab -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab.exe
[00-PROCESS]**windowstab_mon -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[00-PROCESS]**windowstab_uc -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe
[01-HKCUREG]**ANYUCC -/- C:\Users\Administrator\AppData\Local\AnyUCC\AnyUCC.exe /start
[01-HKCUREG]**avast -/- C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui
[01-HKCUREG]**Google Update -/- C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe /c
[01-HKCUREG]**GSetup64 -/- C:\Windows\GSetup64.exe
[01-HKCUREG]**GuardSupport -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe -jtccPBdzM
[01-HKCUREG]**guardtam -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\tamguard.exe
[01-HKCUREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[01-HKCUREG]**ISPSvcStart -/- C:\Program Files\ISPSvc\ispmgr.exe
[01-HKCUREG]**LogoutCleaner -/- C:\Program Files\LogoutCleaner\LogoutCleaner.exe startup
[01-HKCUREG]**MicroLabProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -mHxoCM
[01-HKCUREG]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -VVUZK
[01-HKCUREG]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -VVUZK
[01-HKCUREG]**PangUpdate -/- C:\Users\Administrator\AppData\Roaming\Pang\PangUpdate.exe Run
[01-HKCUREG]**PingPang -/- C:\Users\Administrator\AppData\Roaming\Pang\PingPang\PingPang.exe Run
[01-HKCUREG]**PingPangSpu -/- C:\Users\Administrator\AppData\Roaming\Pang\PingPang\PingPangSpu.exe
[01-HKCUREG]**tamgrd -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TheAm.exe
[01-HKCUREG]**TheAM -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TAMUpdate.exe
[01-HKCUREG]**WINDOWSTAB_UC -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe /run
[02-HKLMREG]**ANYUCC -/- C:\Users\Administrator\AppData\Local\AnyUCC\AnyUCC.exe /start
[02-HKLMREG]**avast -/- C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui
[02-HKLMREG]**Google Update -/- C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe /c
[02-HKLMREG]**GSetup64 -/- C:\Windows\GSetup64.exe
[02-HKLMREG]**GuardSupport -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe -jtccPBdzM
[02-HKLMREG]**guardtam -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\tamguard.exe
[02-HKLMREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[02-HKLMREG]**ISPSvcStart -/- C:\Program Files\ISPSvc\ispmgr.exe
[02-HKLMREG]**LogoutCleaner -/- C:\Program Files\LogoutCleaner\LogoutCleaner.exe startup
[02-HKLMREG]**MicroLabProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -mHxoCM
[02-HKLMREG]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -VVUZK
[02-HKLMREG]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -VVUZK
[02-HKLMREG]**PangUpdate -/- C:\Users\Administrator\AppData\Roaming\Pang\PangUpdate.exe Run
[02-HKLMREG]**PingPang -/- C:\Users\Administrator\AppData\Roaming\Pang\PingPang\PingPang.exe Run
[02-HKLMREG]**PingPangSpu -/- C:\Users\Administrator\AppData\Roaming\Pang\PingPang\PingPangSpu.exe
[02-HKLMREG]**tamgrd -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TheAm.exe
[02-HKLMREG]**TheAM -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TAMUpdate.exe
[02-HKLMREG]**WINDOWSTAB_UC -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe /run
[03-BHOCLSD]**avast! WebRep -/- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll -/- {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
[03-BHOCLSD]**Groove GFS Browser Helper -/- C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL -/- {72853161-30C5-4D22-B7F9-0BBC1D38A37E}
[03-BHOCLSD]**Office Document Cache Handler -/- C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL -/- {B4F3A835-0E21-4959-BA22-42B3008E02FF}
[04-TOOLBAR]**avast! WebRep -/- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll -/- {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
[04-TOOLBAR]**스펠러 -/- -/- {41ED1FD7-8C37-4806-AF9E-D5238A30E56F}
[04-TOOLBAR]**잠김영역복사 -/- -/- {BCE04A5B-2B7D-4F4B-BB8E-2A59611733DD}
[05-SERVICE]**AdobeARMservice -/- Adobe Acrobat Update Service -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**avast! Antivirus -/- avast! Antivirus -/- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
[05-SERVICE]**avast! Firewall -/- avast! Firewall -/- C:\Program Files\AVAST Software\Avast\afwServ.exe
[05-SERVICE]**EPSON_EB_RPCV4_01 -/- EPSON V5 Service4(01) -/- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE
[05-SERVICE]**EPSON_PM_RPCV4_01 -/- EPSON V3 Service4(01) -/- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
[05-SERVICE]**FGSVC32 -/- freeguService32 -/- C:\Windows\system32\svchost.exe
[05-SERVICE]**FontCache -/- Windows Font Cache Service -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\FntCache.dll
[05-SERVICE]**FsUsbExService -/- FsUsbExService -/- C:\Windows\system32\FsUsbExService.Exe
[05-SERVICE]**ImeDictUpdateService -/- Microsoft IME Dictionary Update -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[05-SERVICE]**Internet Security ISPsvrAuthService -/- Internet Security ISPSvr Authorization Service -/- C:\Program Files\ISPSvc\ispsrv.exe
[05-SERVICE]**KMService -/- KMService -/- C:\Windows\system32\srvany.exe
[05-SERVICE]**Microsoft SharePoint Workspace Audit Service -/- Microsoft SharePoint Workspace Audit Service -/- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
[05-SERVICE]**MSMQ -/- Message Queuing -/- C:\Windows\system32\mqsvc.exe
[05-SERVICE]**npggsvc -/- nProtect GameGuard Service -/- C:\Windows\system32\GameMon.des -service
[05-SERVICE]**npkcmsvc -/- npkcmsvc -/- C:\Windows\system32\npkcmsvc.exe
[05-SERVICE]**npkfxsvc -/- npkfxsvc -/- C:\Windows\system32\npkfxsvc.exe
[05-SERVICE]**nPStarterSVC -/- nProtect Starter -/- C:\Windows\system32\nPStarterSVC.exe
[05-SERVICE]**nvsvc -/- NVIDIA Display Driver Service -/- C:\Windows\system32\nvvsvc.exe
[05-SERVICE]**nvUpdatusService -/- NVIDIA Update Service Daemon -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**osppsvc -/- Office Software Protection Platform -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[05-SERVICE]**pcreporter Update Service -/- pcreporter Support Service -/- C:\Windows\system32\svchost.exe
[05-SERVICE]**pcreporterService -/- pcreporter service -/- C:\Windows\system32\svchost.exe
[05-SERVICE]**Stereo Service -/- NVIDIA Stereoscopic 3D Driver Service -/- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
[05-SERVICE]**VMAuthdService -/- VMware Authorization Service -/- C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
[05-SERVICE]**VMnetDHCP -/- VMware DHCP Service -/- C:\Windows\system32\vmnetdhcp.exe
[05-SERVICE]**VMUSBArbService -/- VMware USB Arbitration Service -/- C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
[05-SERVICE]**VMware NAT Service -/- VMware NAT Service -/- C:\Windows\system32\vmnat.exe
[05-SERVICE]**VMwareHostd -/- VMware Workstation Server -/- C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe -u C:\ProgramData\VMware\hostd\config.xml
[05-SERVICE]**windowstab_mon -/- Windows Tab Manager -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[05-SERVICE]**xsherlock -/- xsherlock -/- C:\Windows\system32\xsherlock.xem