Code : 40FpUyYYWgMtMHiGQWzV8ahrTTPL5vuEwNUynJKBYUM=

프로그램분석

Code : 40FpUyYYWgMtMHiGQWzV8ahrTTPL5vuEwNUynJKBYUM=

프로세스 천국 2013. 8. 3. 17:41

[00-PROCESS]**AdobeARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[00-PROCESS]**alg -/- C:\Windows\System32\alg.exe
[00-PROCESS]**armsvc -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[00-PROCESS]**ASDSvc -/- C:\Program Files\AhnLab\V3Lite30\ASDSvc.exe
[00-PROCESS]**AUDIODG -/- C:\Windows\system32\AUDIODG.EXE
[00-PROCESS]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe
[00-PROCESS]**chrome -/- C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
[00-PROCESS]**conhost -/- C:\Windows\system32\conhost.exe
[00-PROCESS]**csrss -/- C:\Windows\system32\csrss.exe
[00-PROCESS]**dllhost -/- C:\Windows\system32\dllhost.exe
[00-PROCESS]**Dwm -/- C:\Windows\system32\Dwm.exe
[00-PROCESS]**ehRecvr -/- C:\Windows\ehome\ehRecvr.exe
[00-PROCESS]**ehsched -/- C:\Windows\ehome\ehsched.exe
[00-PROCESS]**explorer -/- C:\Windows\explorer.exe
[00-PROCESS]**ezMsnCli -/- C:\Program Files\KTmessenger\ezMsnCli.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**fxssvc -/- C:\Windows\system32\fxssvc.exe
[00-PROCESS]**GenericMountHelper -/- C:\Program Files\Norton Ghost\Shared\Drivers\GenericMountHelper.exe
[00-PROCESS]**goodadmgr -/- C:\Program Files\goodad\goodadmgr.exe
[00-PROCESS]**goodadsvc -/- C:\Program Files\goodad\goodadsvc.exe
[00-PROCESS]**GoogleToolbarNotifier -/- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[00-PROCESS]**GoogleUpdate -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[00-PROCESS]**GoogleUpdate -/- C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe
[00-PROCESS]**GoogleUpdaterService -/- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
[00-PROCESS]**GROOVE -/- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
[00-PROCESS]**GuardConvert -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe
[00-PROCESS]**hkcmd -/- C:\Windows\system32\hkcmd.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**igfxpers -/- C:\Windows\system32\igfxpers.exe
[00-PROCESS]**igfxtray -/- C:\Windows\system32\igfxtray.exe
[00-PROCESS]**IMEDICTUPDATE -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[00-PROCESS]**IMEKLMG -/- C:\Program Files\Common Files\microsoft shared\IME14\SHARED\IMEKLMG.EXE
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**InstHelper -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe
[00-PROCESS]**istartmanagersvc -/- C:\Program Files\Internet Start Manager\istartmanagersvc.exe
[00-PROCESS]**jucheck -/- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
[00-PROCESS]**jusched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[00-PROCESS]**KakaoTalk -/- C:\Program Files\Kakao\KakaoTalk\KakaoTalk.exe
[00-PROCESS]**KMService -/- C:\Windows\KMService.exe
[00-PROCESS]**locator -/- C:\Windows\system32\locator.exe
[00-PROCESS]**lsass -/- C:\Windows\system32\lsass.exe
[00-PROCESS]**lsm -/- C:\Windows\system32\lsm.exe
[00-PROCESS]**LUCOMS~1 -/- C:\Program Files\Symantec\LiveUpdate\LUCOMS~1.EXE
[00-PROCESS]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe
[00-PROCESS]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
[00-PROCESS]**msdtc -/- C:\Windows\System32\msdtc.exe
[00-PROCESS]**msiexec -/- C:\Windows\system32\msiexec.exe
[00-PROCESS]**MuzetPud -/- C:\Program Files\Muzet Player\MuzetPud.exe
[00-PROCESS]**NaverAdminAPISvc -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[00-PROCESS]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe
[00-PROCESS]**npkcmsvc -/- C:\Windows\system32\npkcmsvc.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**OSPPSVC -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
[00-PROCESS]**SearchIndexer -/- C:\Windows\system32\SearchIndexer.exe
[00-PROCESS]**services -/- C:\Windows\system32\services.exe
[00-PROCESS]**snmptrap -/- C:\Windows\System32\snmptrap.exe
[00-PROCESS]**spoolsv -/- C:\Windows\System32\spoolsv.exe
[00-PROCESS]**sppsvc -/- C:\Windows\system32\sppsvc.exe
[00-PROCESS]**srvany -/- C:\Windows\system32\srvany.exe
[00-PROCESS]**svchost -/- C:\Windows\system32\svchost.exe
[00-PROCESS]**SymSnapService -/- C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe
[00-PROCESS]**tamguard -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\tamguard.exe
[00-PROCESS]**TAMUpdate -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TAMUpdate.exe
[00-PROCESS]**taskeng -/- C:\Windows\system32\taskeng.exe
[00-PROCESS]**taskhost -/- C:\Windows\system32\taskhost.exe
[00-PROCESS]**Thatskill -/- C:\Users\Administrator\AppData\Roaming\Thatskill\Thatskill.exe
[00-PROCESS]**ThatskillSvr -/- C:\Users\Administrator\AppData\Roaming\Thatskill\ThatskillSvr.exe
[00-PROCESS]**TheAm -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TheAm.exe
[00-PROCESS]**Tomcat7 -/- C:\Program Files\Apache Software Foundation\Tomcat 7.0\bin\Tomcat7.exe
[00-PROCESS]**TrustedInstaller -/- C:\Windows\servicing\TrustedInstaller.exe
[00-PROCESS]**UI0Detect -/- C:\Windows\system32\UI0Detect.exe
[00-PROCESS]**V3Lite -/- C:\Program Files\AhnLab\V3Lite30\V3Lite.exe
[00-PROCESS]**vds -/- C:\Windows\System32\vds.exe
[00-PROCESS]**vmnat -/- C:\Windows\system32\vmnat.exe
[00-PROCESS]**vmnetdhcp -/- C:\Windows\system32\vmnetdhcp.exe
[00-PROCESS]**vmware-authd -/- C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
[00-PROCESS]**vmware-hostd -/- C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe
[00-PROCESS]**vmware-tray -/- C:\Program Files\VMware\VMware Workstation\vmware-tray.exe
[00-PROCESS]**vmware-usbarbitrator -/- C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
[00-PROCESS]**VProSvc -/- C:\Program Files\Norton Ghost\Agent\VProSvc.exe
[00-PROCESS]**vssvc -/- C:\Windows\system32\vssvc.exe
[00-PROCESS]**WatAdminSvc -/- C:\Windows\system32\Wat\WatAdminSvc.exe
[00-PROCESS]**wbengine -/- C:\Windows\system32\wbengine.exe
[00-PROCESS]**wininit -/- C:\Windows\system32\wininit.exe
[00-PROCESS]**winlogon -/- C:\Windows\system32\winlogon.exe
[00-PROCESS]**winpop -/- C:\Users\Administrator\AppData\Roaming\Thatskill\winpop.exe
[00-PROCESS]**WmiApSrv -/- C:\Windows\system32\wbem\WmiApSrv.exe
[00-PROCESS]**wmiprvse -/- C:\Windows\system32\wbem\wmiprvse.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[01-HKCUREG]**AtbOptimize -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe -preload
[01-HKCUREG]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices
[01-HKCUREG]**ezMessenger -/- C:\Program Files\KTmessenger\ezMsnCli.exe
[01-HKCUREG]**Google Update -/- C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe /c
[01-HKCUREG]**GuardSupport -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe -uPFwKUDC
[01-HKCUREG]**guardtam -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\tamguard.exe
[01-HKCUREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[01-HKCUREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[01-HKCUREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[01-HKCUREG]**KakaoTalk -/- C:\Program Files\Kakao\KakaoTalk\KakaoTalk.exe
[01-HKCUREG]**MicroLabCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -xRIyMXF
[01-HKCUREG]**MicroLabProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -xRIyMXF
[01-HKCUREG]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -uPFwKUDC
[01-HKCUREG]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -uPFwKUDC
[01-HKCUREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[01-HKCUREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[01-HKCUREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
[01-HKCUREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[01-HKCUREG]**swg -/- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[01-HKCUREG]**tamgrd -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TheAm.exe
[01-HKCUREG]**TheAM -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TAMUpdate.exe
[01-HKCUREG]**V3 Application -/- C:\Program Files\AhnLab\V3Lite30\V3Lite.exe /tray
[01-HKCUREG]**vmware-tray.exe -/- C:\Program Files\VMware\VMware Workstation\vmware-tray.exe
[02-HKLMREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[02-HKLMREG]**AtbOptimize -/- C:\Program Files\ESTsoft\ALToolBar\InstHelper.exe -preload
[02-HKLMREG]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices
[02-HKLMREG]**ezMessenger -/- C:\Program Files\KTmessenger\ezMsnCli.exe
[02-HKLMREG]**Google Update -/- C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe /c
[02-HKLMREG]**GuardSupport -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe -uPFwKUDC
[02-HKLMREG]**guardtam -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\tamguard.exe
[02-HKLMREG]**HotKeysCmds -/- C:\Windows\system32\hkcmd.exe
[02-HKLMREG]**IgfxTray -/- C:\Windows\system32\igfxtray.exe
[02-HKLMREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[02-HKLMREG]**KakaoTalk -/- C:\Program Files\Kakao\KakaoTalk\KakaoTalk.exe
[02-HKLMREG]**MicroLabCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -xRIyMXF
[02-HKLMREG]**MicroLabProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -xRIyMXF
[02-HKLMREG]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -uPFwKUDC
[02-HKLMREG]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -uPFwKUDC
[02-HKLMREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[02-HKLMREG]**Persistence -/- C:\Windows\system32\igfxpers.exe
[02-HKLMREG]**RtHDVCpl -/- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
[02-HKLMREG]**SunJavaUpdateSched -/- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[02-HKLMREG]**swg -/- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[02-HKLMREG]**tamgrd -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TheAm.exe
[02-HKLMREG]**TheAM -/- C:\Users\Administrator\AppData\Roaming\theam\common\bin\TAMUpdate.exe
[02-HKLMREG]**V3 Application -/- C:\Program Files\AhnLab\V3Lite30\V3Lite.exe /tray
[02-HKLMREG]**vmware-tray.exe -/- C:\Program Files\VMware\VMware Workstation\vmware-tray.exe
[03-BHOCLSD]**N.A -/- N.A -/- {32D75746-5A7C-486C-938A-67260B2E3982}
[05-SERVICE]**AdobeARMservice -/- Adobe Acrobat Update Service -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**FontCache -/- Windows Font Cache Service -/- C:\Windows\system32\svchost.exe -/- C:\Windows\system32\FntCache.dll
[05-SERVICE]**GenericMount Helper Service -/- GenericMount Helper Service -/- C:\Program Files\Norton Ghost\Shared\Drivers\GenericMountHelper.exe
[05-SERVICE]**goodadsvc -/- goodad -/- C:\Program Files\goodad\goodadsvc.exe
[05-SERVICE]**gpsvc -/- Group Policy Client -/- C:\Windows\system32\svchost.exe -/- C:\Windows\System32\gpsvc.dll
[05-SERVICE]**gupdate -/- Google 업데이트 서비스 (gupdate) -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**gupdatem -/- Google 업데이트 서비스 (gupdatem) -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**gusvc -/- Google Software Updater -/- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
[05-SERVICE]**ImeDictUpdateService -/- Microsoft IME Dictionary Update -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[05-SERVICE]**istartmanagersvc -/- Internet Start Manager -/- C:\Program Files\Internet Start Manager\istartmanagersvc.exe
[05-SERVICE]**KMService -/- KMService -/- C:\Windows\system32\srvany.exe
[05-SERVICE]**LiveUpdate -/- LiveUpdate -/- C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
[05-SERVICE]**maxboan -/- maxboan svc -/- C:\Program Files\maxboan\maxboansvc.exe
[05-SERVICE]**Microsoft SharePoint Workspace Audit Service -/- Microsoft SharePoint Workspace Audit Service -/- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
[05-SERVICE]**MySQL55 -/- MySQL55 -/- C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld --defaults-file=C:\ProgramData\MySQL\MySQL Server 5.5\my.ini MySQL55
[05-SERVICE]**Naver Updater -/- Naver Updater -/- C:\Program Files\Naver\NaverCommon\NaverAdminAPISvc.exe
[05-SERVICE]**Norton Ghost -/- Norton Ghost -/- C:\Program Files\Norton Ghost\Agent\VProSvc.exe
[05-SERVICE]**npkcmsvc -/- npkcmsvc -/- C:\Windows\system32\npkcmsvc.exe
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**osppsvc -/- Office Software Protection Platform -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[05-SERVICE]**Symantec SymSnap VSS Provider -/- Symantec SymSnap VSS Provider -/- C:\Windows\system32\dllhost.exe
[05-SERVICE]**SymSnapService -/- SymSnapService -/- C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe
[05-SERVICE]**ThatskillSvr -/- SubShop -/- C:\Users\Administrator\AppData\Roaming\Thatskill\ThatskillSvr.exe
[05-SERVICE]**Tomcat7 -/- Apache Tomcat 7.0 Tomcat7 -/- C:\Program Files\Apache Software Foundation\Tomcat 7.0\bin\Tomcat7.exe
[05-SERVICE]**V3 Service -/- V3 Lite Service -/- C:\Program Files\AhnLab\V3Lite30\ASDSvc.exe
[05-SERVICE]**VMAuthdService -/- VMware Authorization Service -/- C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
[05-SERVICE]**VMnetDHCP -/- VMware DHCP Service -/- C:\Windows\system32\vmnetdhcp.exe
[05-SERVICE]**VMUSBArbService -/- VMware USB Arbitration Service -/- C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
[05-SERVICE]**VMware NAT Service -/- VMware NAT Service -/- C:\Windows\system32\vmnat.exe
[05-SERVICE]**VMwareHostd -/- VMware Workstation Server -/- C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe -u C:\ProgramData\VMware\hostd\config.xml