Code : bp8BtqS/QA52QnrXLueNndHJFJYjun37IqcQZ1qv9rU=

프로그램분석

Code : bp8BtqS/QA52QnrXLueNndHJFJYjun37IqcQZ1qv9rU=

프로세스 천국 2013. 7. 10. 20:25

[00-PROCESS]**atieclxx -/- C:\Windows\system32\atieclxx.exe
[00-PROCESS]**atiesrxx -/- C:\Windows\system32\atiesrxx.exe
[00-PROCESS]**AutoStarter -/- C:\Program Files\PicaClient\AutoStarter.exe
[00-PROCESS]**AvastEmUpdate -/- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
[00-PROCESS]**AvastSvc -/- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
[00-PROCESS]**AvastUI -/- C:\Program Files\AVAST Software\Avast\AvastUI.exe
[00-PROCESS]**AYLaunch -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe
[00-PROCESS]**cfp -/- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
[00-PROCESS]**clgsve -/- C:\Program Files\Windows CloudGet v1.4\clgsve.exe
[00-PROCESS]**clgsvr -/- C:\Program Files\Windows CloudGet v1.4\clgsvr.exe
[00-PROCESS]**cmdagent -/- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
[00-PROCESS]**CtrlVer -/- C:\Program Files\GameDoctor\CtrlVer.exe
[00-PROCESS]**DMSAgent -/- C:\Program Files\GameDoctor\DMSAgent.exe
[00-PROCESS]**DMSNTSrv -/- C:\Program Files\GameDoctor\DMSNTSrv.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**GExplorer -/- C:\Program Files\GameDoctor\GExplorer.exe
[00-PROCESS]**goodadmgr -/- C:\Program Files\goodad\goodadmgr.exe
[00-PROCESS]**goodadsvc -/- C:\Program Files\goodad\goodadsvc.exe
[00-PROCESS]**Grid_Switch_v2.2.1p -/- C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0RV9F2CO\Grid_Switch_v2.2.1p.exe
[00-PROCESS]**Habib -/- C:\Users\Administrator\AppData\Roaming\Habib\Habib.exe
[00-PROCESS]**HabibSvr -/- C:\Users\Administrator\AppData\Roaming\Habib\HabibSvr.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**iGreensys -/- C:\Program Files\picaigreenclient\iGreensys.exe
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**IRPro -/- C:\Program Files\IZEX\ComBack 7 IR Pro\IRPro.exe
[00-PROCESS]**istartmanagersvc -/- C:\Program Files\Internet Start Manager\istartmanagersvc.exe
[00-PROCESS]**mqsvc -/- C:\Windows\system32\mqsvc.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
[00-PROCESS]**NaverAdminAPISvc -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[00-PROCESS]**Nmdeputy -/- C:\Program Files\IZEX\ComBack 7 IR Pro\Nmdeputy.exe
[00-PROCESS]**npnj5Agent -/- C:\Windows\system32\npnj5Agent.exe
[00-PROCESS]**nPStarterSVC -/- C:\Windows\system32\nPStarterSVC.exe
[00-PROCESS]**picaigreenClient64 -/- C:\Program Files\picaigreenclient\picaigreenClient64.exe
[00-PROCESS]**pmclient -/- C:\Program Files\PicaClient\pmclient.exe
[00-PROCESS]**pmclpush -/- C:\Program Files\PicaClient\pmclpush.exe
[00-PROCESS]**pmjsf -/- C:\Program Files\PicaClient\pmjsf.exe
[00-PROCESS]**pmlc -/- C:\Program Files\PicaClient\pmlc.exe
[00-PROCESS]**pmsys -/- C:\Program Files\PicaClient\pmsys.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**Reins -/- C:\Program Files\PicaClient\Reins.exe
[00-PROCESS]**RollingPop_E -/- C:\Users\Administrator\AppData\Roaming\RollingPop\RollingPop_E.exe
[00-PROCESS]**RollingPop_S -/- C:\Users\Administrator\AppData\Roaming\RollingPop\RollingPop_S.exe
[00-PROCESS]**SmartDefrag -/- C:\Program Files\IObit\Smart Defrag 2\SmartDefrag.exe
[00-PROCESS]**SmartSwitch -/- C:\Program Files\Grid Switch\SmartSwitch.exe
[00-PROCESS]**SpStart -/- C:\Program Files\IZEX\ComBack 7 IR Pro\SpStart.exe
[00-PROCESS]**updater -/- C:\Users\Administrator\AppData\Local\Bandizip\updater.exe
[00-PROCESS]**WatAdminSvc -/- C:\Windows\system32\Wat\WatAdminSvc.exe
[00-PROCESS]**WindowNetworkManager -/- C:\Program Files\Window Network Manager\WindowNetworkManager.exe
[00-PROCESS]**windowstab_mon -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[00-PROCESS]**winspep -/- C:\Program Files\Windows Winerspop 2.0\winspep.exe
[00-PROCESS]**winspop -/- C:\Program Files\Windows Winerspop 2.0\winspop.exe
[00-PROCESS]**winspst -/- C:\Program Files\Windows Winerspop 2.0\winspst.exe
[00-PROCESS]**winspsv -/- C:\Program Files\Windows Winerspop 2.0\winspsv.exe
[00-PROCESS]**WinxpendUP_s2lif -/- C:\Program Files\WinExpand_s2lif\WinxpendUP_s2lif.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[01-HKCUREG]**AutoRun -/- C:\Program Files\PicaClient\AutoStarter.exe
[01-HKCUREG]**Avast -/- C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui
[01-HKCUREG]**Comodo -/- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe -h
[01-HKCUREG]**DMSAgent -/- C:\Program Files\GameDoctor\DMSAgent.exe
[01-HKCUREG]**GDLauncher -/- C:\Program Files\GameDoctor\GExplorer.exe
[01-HKCUREG]**picaigreen -/- C:\Program Files\picaigreenclient\picaigreenRun.exe
[01-HKCUREG]**poptv -/- C:\Program Files\poptv\POPTV_START.exe
[02-HKLMREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[02-HKLMREG]**AutoRun -/- C:\Program Files\PicaClient\AutoStarter.exe
[02-HKLMREG]**Avast -/- C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui
[02-HKLMREG]**Comodo -/- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe -h
[02-HKLMREG]**DMSAgent -/- C:\Program Files\GameDoctor\DMSAgent.exe
[02-HKLMREG]**GDLauncher -/- C:\Program Files\GameDoctor\GExplorer.exe
[02-HKLMREG]**picaigreen -/- C:\Program Files\picaigreenclient\picaigreenRun.exe
[02-HKLMREG]**poptv -/- C:\Program Files\poptv\POPTV_START.exe
[03-BHOCLSD]**avast! WebRep -/- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll -/- {318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
[03-BHOCLSD]**igreenBho Class -/- C:\Program Files\picaigreenclient\picaigreen.dll -/- {B07664AE-2AB4-4D4B-82E9-89FDBAB89E16}
[03-BHOCLSD]**igreenBho Class -/- C:\Program Files\picaigreenclient\picaigreen64.dll -/- {B07664AE-2AB4-4D4B-82E9-89FDBAB89E16}
[03-BHOCLSD]**PMEPObj Class -/- C:\Program Files\PicaClient\pmep.dll -/- {2DFE5FD7-F7B3-47F0-93EC-A8FF6703B4AE}
[03-BHOCLSD]**PMEPObj Class -/- C:\Program Files\PicaClient\pmep64.dll -/- {2DFE5FD7-F7B3-47F0-93EC-A8FF6703B4AE}
[03-BHOCLSD]**TabbarHelper Class -/- C:\Program Files\mediaweb\picatabbar\picatabbara.dll -/- {ABAFAB62-3B4C-4908-8C43-8D43F9EAA4F5}
[04-TOOLBAR]**avast! WebRep -/- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll -/- {318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**ALYac_RTSrv -/- ALYac RealTime Service -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- ALYac Update Service -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**AMD External Events Utility -/- AMD External Events Utility -/- C:\Windows\system32\atiesrxx.exe
[05-SERVICE]**avast! Antivirus -/- avast! Antivirus -/- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
[05-SERVICE]**clgsvr32 -/- Windows CloudGet Service -/- C:\Program Files\Windows CloudGet v1.4\clgsvr.exe
[05-SERVICE]**cmdAgent -/- COMODO Internet Security Helper Service -/- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
[05-SERVICE]**ComBack IR Pro Nmdeputy -/- ComBack IR Pro Nmdeputy -/- C:\Program Files\IZEX\ComBack 7 IR Pro\Nmdeputy.exe
[05-SERVICE]**ComBack IR Pro Service -/- ComBack IR Pro Service -/- C:\Program Files\IZEX\ComBack 7 IR Pro\SpStart.exe
[05-SERVICE]**GDTime_Service -/- GameDoctor Time Sync -/- C:\GDServer\GDTimeSync.exe
[05-SERVICE]**goodadsvc -/- goodad -/- C:\Program Files\goodad\goodadsvc.exe
[05-SERVICE]**HabibSvr -/- SubShop -/- C:\Users\Administrator\AppData\Roaming\Habib\HabibSvr.exe
[05-SERVICE]**igreensys -/- igreensys Service -/- C:\Program Files\picaigreenclient\iGreensys.exe
[05-SERVICE]**ismsvc32 -/- INSAFE Client 1.0 -/- C:\Program Files\insafeclient v1.1\ismsvc.exe
[05-SERVICE]**istartmanagersvc -/- Internet Start Manager -/- C:\Program Files\Internet Start Manager\istartmanagersvc.exe
[05-SERVICE]**MSMQ -/- Message Queuing -/- C:\Windows\system32\mqsvc.exe
[05-SERVICE]**Naver Updater -/- Naver Updater -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[05-SERVICE]**Net Driver HPZ12 -/- Net Driver HPZ12 -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\HPZinw12.dll
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**npggsvc -/- nProtect GameGuard Service -/- C:\Windows\system32\GameMon.des -service
[05-SERVICE]**nPStarterSVC -/- nProtect Starter -/- C:\Windows\system32\nPStarterSVC.exe
[05-SERVICE]**NS_Service -/- NSAgent -/- C:\Program Files\GameDoctor\DMSNTSrv.exe
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**Pml Driver HPZ12 -/- Pml Driver HPZ12 -/- C:\Windows\System32\svchost.exe -/- C:\Windows\system32\HPZipm12.dll
[05-SERVICE]**pmsys -/- pmsys NT Service -/- C:\Program Files\PicaClient\pmsys.exe
[05-SERVICE]**RollingPop_Service -/- RollingPop_Service -/- C:\Users\Administrator\AppData\Roaming\RollingPop\RollingPop_S.exe ROLL01
[05-SERVICE]**Smart Switch -/- Smart Grid Switch -/- C:\Program Files\Grid Switch\SmartSwitch.exe
[05-SERVICE]**windowstab_mon -/- Windows Tab Manager -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[05-SERVICE]**winspsv32 -/- Windows Winerspop Service -/- C:\Program Files\Windows Winerspop 2.0\winspsv.exe