시스템분석용 로그출력 - WindowexeSystemLog
업데이트를 하지 않는 관계로 이 프로그램은 더이상 배포하지 않습니다.
올킬러나 올뷰어를 이용해주세요.
프로세스, 시작프로그램, 브라우저확장모듈, 툴바, 시스템 서비스등, 시스템과 직접적인 관련이 있는 데이타들을 출력하는 프로그램입니다.
svchost.exe 프로세스에 종속되어 사용되는 dll 파일도 모두 확인할 수 있습니다.
실제출력한 내용입니다.
서비스에 등록된 dll 파일도 모두 확인할 수 있습니다.
설치되어 있는 프로그램이 많으면 로딩하는데 시간이 좀 걸릴 수 있습니다.
----------------------------------------------------------------------
Created by Windowexe.com , Logfile of WindowexeSystemLog
----------------------------------------------------------------------
Microsoft Windows XP
x86 Family 6 Model 9 Stepping 5
8.0.6001.18702
Service Pack 3(5.1.2600.196608)
2011-04-24 오전 12:00:00
----------------------------------------------------------------------
CR000 C:\WINDOWS\system32\csrss.exe
CR001 C:\Program Files\Internet Explorer\iexplore.exe
CR002 C:\WINDOWS\system32\svchost.exe
CR003 C:\WINDOWS\system32\lsass.exe
CR004 C:\WINDOWS\system32\svchost.exe
CR005 C:\WINDOWS\System32\alg.exe
CR006 D:\KatMouse\KatMouse.exe
CR007 C:\Program Files\Synergy\synergyc.exe
CR024 C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
CR026 C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\devenv.exe
CR027 C:\Program Files\Internet Explorer\iexplore.exe
CR028 C:\WINDOWS\system32\svchost.exe
----------------------------------------------------------------------
US029 Sensiva - D:\Systemutil\Symbol Commander Pro\Sensiva.exe
----------------------------------------------------------------------
LS030 avgnt - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe /min
----------------------------------------------------------------------
GS031 C:\Documents and Settings\Administrator\시작 메뉴\프로그램\시작프로그램\KatMouse의 바로 가기.lnk
----------------------------------------------------------------------
EY091 Windows Media Player -/- C:\Windows\SysWOW64\wmpdxm.dll -/- {22D6F312-B0F6-11D0-94AB-0080C74C7E95}
EY092 HTML Document -/- C:\Windows\SysWOW64\mshtml.dll -/- {25336920-03F9-11CF-8FD0-00AA00686F13}
EY093 XML DOM Document -/- C:\Windows\System32\msxml3.dll -/- {2933BF90-7B36-11D2-B20E-00C04F983E60}
EY094 XML Document -/- C:\Windows\System32\msxml3.dll -/- {48123BC4-99D9-11D1-A6B3-00C04FD91555}
EY095 Windows Media Player -/- C:\Windows\system32\wmp.dll -/- {6BF52A52-394A-11D3-B153-00C04F79FAA6}
EY096 Microsoft Web Browser -/- C:\Windows\SysWOW64\ieframe.dll -/- {8856F961-340A-11D0-A96B-00C04FD705A2}
EY097 XML DOM Document 6.0 -/- C:\Windows\System32\msxml6.dll -/- {88D96A05-F192-11D4-A65F-0040963251E5}
EY098 Windows Live ID Sign-in Helper -/- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll -/- {9030D464-4C02-4ABF-8ECC-5164760863C6}
EY099 AUDIO__WAV Moniker Class -/- C:\Windows\system32\wmp.dll -/- {CD3AFA7B-B84F-48F0-9393-7EDC34128127}
EY100 AUDIO__X_MS_WMA Moniker Class -/- C:\Windows\system32\wmp.dll -/- {CD3AFA84-B84F-48F0-9393-7EDC34128127}
EY101 VIDEO__X_MS_ASF Moniker Class -/- C:\Windows\system32\wmp.dll -/- {CD3AFA8F-B84F-48F0-9393-7EDC34128127}
EY102 VIDEO__X_MS_WMV Moniker Class -/- C:\Windows\system32\wmp.dll -/- {CD3AFA94-B84F-48F0-9393-7EDC34128127}
EY103 Microsoft Url Search Hook -/- C:\Windows\SysWOW64\ieframe.dll -/- {CFBFAE00-17A6-11D0-99CB-00C04FD64497}
EY104 Shockwave Flash Object -/- C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_2_202_233.ocx -/- {D27CDB6E-AE6D-11CF-96B8-444553540000}
EY105 XML HTTP Request -/- C:\Windows\System32\msxml3.dll -/- {ED8C108E-4349-11D2-91A4-00C04F7969E8}
EY106 XML HTTP 3.0 -/- C:\Windows\System32\msxml3.dll -/- {F5078F35-C551-11D3-89B9-0000F81FE221}
EY107 XML HTTP -/- C:\Windows\System32\msxml3.dll -/- {F6D90F16-9C73-11D3-B32E-00C04F990BB4}
----------------------------------------------------------------------
WN032 Shell = Explorer.exe - Userinit = C:\WINDOWS\system32\userinit.exe,
----------------------------------------------------------------------
AX034 {2022EE84-1E1F-45B0-8D35-FF9DA75366BC} - ExpressViewer Class - http://download.softforum.co.kr/Published/XecureExpressI/v2.6.0.9/xei_install2.cab
AX035 {24F6E6A8-852C-45A8-ADD3-C4AB0D6FD231} - INIwallet61 Control - https://plugin.inicis.com/wallet61/INIwallet61.cab
AX036 {2E215D23-8D32-4141-BB8F-6254C84FBC9E} - DaumLiveLauncher Control - http://get.daum.net/PotPlayer/launcher/PotPlayerLauncher.cab
AX037 {37D91428-0E1B-4154-9771-D977CE193864} - W_CertManCtrl_Load Class - http://download.softforum.com/Published/KSCertRlayW/v1.0.0.8/KSCertRelayW.cab
AX038 {39461460-2552-4D51-A062-3AB6A7B902E9} - INISAFE Updater Control - http://banking.nonghyup.com/shttp/install/down/INIS70.cab
AX047 {A4508A45-F1C4-40F3-99B4-0CA08AC77E3B} - Kdfense8 Control - https://cert.vno.co.kr/common/keyprotect/kdfense8.cab
AX053 {DC4207CE-C03E-4449-ACB1-032CA4137053} - Npz Control - http://update.nprotect.net/nprotect2007/kiup/ie80/npz_0907201.cab
AX054 {E78928A6-3D2A-4BF7-A100-F3FBAA351B49} - KvpIspCtlD Control - https://www.vpay.co.kr/kvpfiles/KVPISPCTLD.cab
AX055 {F0320816-41D9-49DD-B2F3-8E7B0AE32796} - AFCStarter Control - http://live.afreeca.com:8057/AFCStarter.cab
----------------------------------------------------------------------
SP056 {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - N.A - http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
----------------------------------------------------------------------
TR057 microsoft.com
TR057 *.update - 2
----------------------------------------------------------------------
PP058 *.lgdacom.net
PP059 *.dacom.net
----------------------------------------------------------------------
SC060 Service Name : Alerter
SC060 Display Name : Alerter
SC060 Start Type : Disabled / Stopped
SC060 DLL path : C:\WINDOWS\system32\alrsvc.dll
SC060 EXE path : C:\WINDOWS\system32\svchost.exe -k LocalService
----------------------------------------------------------------------
SC061 Service Name : ALG
SC061 Display Name : Application Layer Gateway Service
SC061 Start Type : Manual / Running
SC061 DLL path : N.A
SC061 EXE path : C:\WINDOWS\System32\alg.exe
----------------------------------------------------------------------
SC062 Service Name : AntiVirSchedulerService
SC062 Display Name : Avira AntiVir Scheduler
SC062 Start Type : Auto / Running
SC062 DLL path : N.A
SC062 EXE path : "C:\Program Files\Avira\AntiVir Desktop\sched.exe"
----------------------------------------------------------------------
SC063 Service Name : AntiVirService
SC063 Display Name : Avira AntiVir Guard
SC063 Start Type : Auto / Running
SC063 DLL path : N.A
SC063 EXE path : "C:\Program Files\Avira\AntiVir Desktop\avguard.exe"
----------------------------------------------------------------------
SC064 Service Name : Apple Mobile Device
SC064 Display Name : Apple 모바일 장비
SC064 Start Type : Auto / Running
SC064 DLL path :
SC064 EXE path : "C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
----------------------------------------------------------------------
SC068 Service Name : BITS
SC068 Display Name : Background Intelligent Transfer Service
SC068 Start Type : Manual / Stopped
SC068 DLL path : C:\WINDOWS\system32\qmgr.dll
SC068 EXE path : C:\WINDOWS\system32\svchost.exe -k netsvcs
----------------------------------------------------------------------
SC069 Service Name : Bonjour Service
SC069 Display Name : Bonjour 서비스
SC069 Start Type : Disabled / Stopped
SC069 DLL path :
SC069 EXE path : "C:\Program Files\Bonjour\mDNSResponder.exe"
----------------------------------------------------------------------
SC070 Service Name : Browser
SC070 Display Name : Computer Browser
SC070 Start Type : Auto / Running
SC070 DLL path : C:\WINDOWS\System32\browser.dll
SC070 EXE path : C:\WINDOWS\system32\svchost.exe -k netsvcs
----------------------------------------------------------------------
SC143 Service Name : WebClient
SC143 Display Name : WebClient
SC143 Start Type : Auto / Running
SC143 DLL path : C:\WINDOWS\System32\webclnt.dll
SC143 EXE path : C:\WINDOWS\system32\svchost.exe -k LocalService
----------------------------------------------------------------------
SC144 Service Name : winmgmt
SC144 Display Name : Windows Management Instrumentation
SC144 Start Type : Auto / Running
SC144 DLL path : C:\WINDOWS\system32\wbem\WMIsvc.dll
SC144 EXE path : C:\WINDOWS\system32\svchost.exe -k netsvcs
----------------------------------------------------------------------
SC151 Service Name : xmlprov
SC151 Display Name : Network Provisioning Service
SC151 Start Type : Manual / Stopped
SC151 DLL path : C:\WINDOWS\System32\xmlprov.dll
SC151 EXE path : C:\WINDOWS\System32\svchost.exe -k netsvcs
----------------------------------------------------------------------