Code : zx4MVGIFVPhnlc9OGiVI9Xlnj9s9GTYYN76/+IUbhI4=

프로그램분석

Code : zx4MVGIFVPhnlc9OGiVI9Xlnj9s9GTYYN76/+IUbhI4=

프로세스 천국 2013. 11. 5. 00:40

[00-PROCESS]**alg -/- C:\WINDOWS\System32\alg.exe
[00-PROCESS]**ALZip -/- C:\Program Files\ESTsoft\ALZip\ALZip.exe
[00-PROCESS]**aspnet_state -/- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
[00-PROCESS]**aveexgqv -/- C:\WINDOWS\system32\aveexgqv.exe
[00-PROCESS]**cisvc -/- C:\WINDOWS\system32\cisvc.exe
[00-PROCESS]**clipsrv -/- C:\WINDOWS\system32\clipsrv.exe
[00-PROCESS]**csrss -/- C:\WINDOWS\system32\csrss.exe
[00-PROCESS]**ctfmon -/- C:\WINDOWS\system32\ctfmon.exe
[00-PROCESS]**dllhost -/- C:\WINDOWS\system32\dllhost.exe
[00-PROCESS]**Explorer -/- C:\WINDOWS\Explorer.EXE
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**FsUsbExService -/- C:\WINDOWS\system32\FsUsbExService.Exe
[00-PROCESS]**goodadsvc -/- C:\Program Files\goodad\goodadsvc.exe
[00-PROCESS]**gwaksk -/- C:\WINDOWS\system32\gwaksk.exe
[00-PROCESS]**hopvki -/- C:\WINDOWS\system32\hopvki.exe
[00-PROCESS]**hujzuk -/- C:\WINDOWS\system32\hujzuk.exe
[00-PROCESS]**icyoym -/- C:\WINDOWS\system32\icyoym.exe
[00-PROCESS]**IEXPLORE -/- C:\Program Files\Internet Explorer\IEXPLORE.EXE
[00-PROCESS]**imapi -/- C:\WINDOWS\system32\imapi.exe
[00-PROCESS]**infocard -/- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**istartmanagersvc -/- C:\Program Files\Internet Start Manager\istartmanagersvc.exe
[00-PROCESS]**kqzluowf -/- C:\WINDOWS\system32\kqzluowf.exe
[00-PROCESS]**locator -/- C:\WINDOWS\system32\locator.exe
[00-PROCESS]**lsass -/- C:\WINDOWS\system32\lsass.exe
[00-PROCESS]**mnmsrvc -/- C:\WINDOWS\system32\mnmsrvc.exe
[00-PROCESS]**mscorsvw -/- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
[00-PROCESS]**msdtc -/- C:\WINDOWS\system32\msdtc.exe
[00-PROCESS]**msiexec -/- C:\WINDOWS\system32\msiexec.exe
[00-PROCESS]**netdde -/- C:\WINDOWS\system32\netdde.exe
[00-PROCESS]**njheilgm -/- C:\WINDOWS\system32\njheilgm.exe
[00-PROCESS]**npkfxsvc -/- C:\WINDOWS\system32\npkfxsvc.exe
[00-PROCESS]**nvsvc32 -/- C:\WINDOWS\system32\nvsvc32.exe
[00-PROCESS]**obevxy -/- C:\WINDOWS\system32\obevxy.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**Presentation64 -/- C:\WINDOWS\system32\Presentation64.exe
[00-PROCESS]**PresentationFontCache -/- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**qsyejofz -/- C:\WINDOWS\system32\qsyejofz.exe
[00-PROCESS]**reflectioninfos -/- C:\Program Files\Information Reflection\reflectioninfos.exe
[00-PROCESS]**rimirtrqvn -/- C:\WINDOWS\rimirtrqvn.exe
[00-PROCESS]**rinvqrtri -/- C:\WINDOWS\rinvqrtri.exe
[00-PROCESS]**rsvp -/- C:\WINDOWS\system32\rsvp.exe
[00-PROCESS]**SCardSvr -/- C:\WINDOWS\System32\SCardSvr.exe
[00-PROCESS]**services -/- C:\WINDOWS\system32\services.exe
[00-PROCESS]**sessmgr -/- C:\WINDOWS\system32\sessmgr.exe
[00-PROCESS]**smlogsvc -/- C:\WINDOWS\system32\smlogsvc.exe
[00-PROCESS]**smss -/- C:\WINDOWS\System32\smss.exe
[00-PROCESS]**spoolsv -/- C:\WINDOWS\system32\spoolsv.exe
[00-PROCESS]**svchost -/- C:\WINDOWS\system32\svchost.exe
[00-PROCESS]**taskmgr -/- C:\WINDOWS\system32\taskmgr.exe
[00-PROCESS]**tlntsvr -/- C:\WINDOWS\system32\tlntsvr.exe
[00-PROCESS]**ufuzxl -/- C:\WINDOWS\system32\ufuzxl.exe
[00-PROCESS]**ups -/- C:\WINDOWS\System32\ups.exe
[00-PROCESS]**userinit -/- C:\WINDOWS\system32\userinit.exe
[00-PROCESS]**vssvc -/- C:\WINDOWS\System32\vssvc.exe
[00-PROCESS]**win_applussvc -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Windows applus\win_applussvc.exe
[00-PROCESS]**windowupdateresetconfig -/- C:\WINDOWS\windowupdateresetconfig.exe
[00-PROCESS]**winlogon -/- C:\WINDOWS\system32\winlogon.exe
[00-PROCESS]**wmiapsrv -/- C:\WINDOWS\system32\wbem\wmiapsrv.exe
[00-PROCESS]**wmiprvse -/- C:\WINDOWS\system32\wbem\wmiprvse.exe
[00-PROCESS]**wwusijbf -/- C:\WINDOWS\system32\wwusijbf.exe
[00-PROCESS]**xxx -/- C:\Program Files\Canon\Quick Menu\AppInfo\Apps\xxx.exe
[01-HKCUREG]**2juiw43 -/- C:\WINDOWS\system32\aveexgqv.exe
[01-HKCUREG]**db12dn2hasmhalm9a2ozk7ec92vv -/- C:\WINDOWS\system32\njheilgm.exe
[01-HKCUREG]**fcvqt5g -/- C:\WINDOWS\system32\wwusijbf.exe
[01-HKCUREG]**l6evizt -/- C:\WINDOWS\system32\kqzluowf.exe
[01-HKCUREG]**Presentation64 -/- C:\WINDOWS\system32\Presentation64.exe
[01-HKCUREG]**vu5oxi0 -/- C:\WINDOWS\system32\qsyejofz.exe
[02-HKLMREG]**2juiw43 -/- C:\WINDOWS\system32\aveexgqv.exe
[02-HKLMREG]**db12dn2hasmhalm9a2ozk7ec92vv -/- C:\WINDOWS\system32\njheilgm.exe
[02-HKLMREG]**fcvqt5g -/- C:\WINDOWS\system32\wwusijbf.exe
[02-HKLMREG]**l6evizt -/- C:\WINDOWS\system32\kqzluowf.exe
[02-HKLMREG]**Presentation64 -/- C:\WINDOWS\system32\Presentation64.exe
[02-HKLMREG]**vu5oxi0 -/- C:\WINDOWS\system32\qsyejofz.exe
[04-TOOLBAR]**N.A -/- N.A -/- 10
[05-SERVICE]**ALYac_RTSrv -/- ALYac RealTime Service -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- ALYac Update Service -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**aspnet_states -/- ASP.NET State Services -/- C:\WINDOWS\system32\hujzuk.exe
[05-SERVICE]**aszjh -/- people Command Service -/- C:\WINDOWS\system32\ufuzxl.exe
[05-SERVICE]**autocleaner Update Service -/- autocleaner Support Service -/- C:\WINDOWS\windowupdateresetconfig.exe
[05-SERVICE]**FsUsbExService -/- FsUsbExService -/- C:\WINDOWS\system32\FsUsbExService.Exe
[05-SERVICE]**goodadsvc -/- goodad -/- C:\Program Files\goodad\goodadsvc.exe
[05-SERVICE]**gupdate -/- Google 업데이트 서비스 (gupdate) -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**gupdatem -/- Google 업데이트 서비스 (gupdatem) -/- C:\Program Files\Google\Update\GoogleUpdate.exe
[05-SERVICE]**hfikexsfrue -/- hfikexsfrue -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\hfikexsfrue\hfikexsfrue.dll
[05-SERVICE]**hpqcxs08 -/- hpqcxs08 -/- C:\WINDOWS\system32\svchost.exe -/- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
[05-SERVICE]**hpqddsvc -/- HP CUE DeviceDiscovery 서비스 -/- C:\WINDOWS\system32\svchost.exe -/- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
[05-SERVICE]**igmyavy -/- igmyavy -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\igmyavy\igmyavy.dll
[05-SERVICE]**ismsvc32 -/- INSAFE Client 1.0 -/- C:\Program Files\insafeclient v1.1\ismsvc.exe
[05-SERVICE]**istartmanagersvc -/- Internet Start Manager -/- C:\Program Files\Internet Start Manager\istartmanagersvc.exe
[05-SERVICE]**JavaQuickStarterService -/- Java Quick Starter -/- C:\Program Files\Java\jre7\bin\jqs.exe -service -config C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf
[05-SERVICE]**kohwpxrl -/- kohwpxrl -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\kohwpxrl\kohwpxrl.dll
[05-SERVICE]**maxboan -/- maxboan svc -/- C:\Program Files\maxboan\maxboansvc.exe
[05-SERVICE]**napagent -/- Network Access Protection Agent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**Nationalafe -/- Nationalfey Instruments Domain Service -/- C:\WINDOWS\system32\icyoym.exe
[05-SERVICE]**Nationalgxc -/- Nationalyui Instruments Domain Service -/- C:\WINDOWS\system32\hopvki.exe
[05-SERVICE]**Nationallxk -/- Nationalgtb Instruments Domain Service -/- C:\WINDOWS\system32\gwaksk.exe
[05-SERVICE]**NCleanService -/- Naver Cleaner Admin Service -/- C:\Program Files\Naver\NaverCleaner\NCleanService.exe
[05-SERVICE]**Net Driver HPZ12 -/- Net Driver HPZ12 -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\system32\HPZinw12.dll
[05-SERVICE]**npkfxsvc -/- npkfxsvc -/- C:\WINDOWS\system32\npkfxsvc.exe
[05-SERVICE]**nvsvc -/- NVIDIA Display Driver Service -/- C:\WINDOWS\system32\nvsvc32.exe
[05-SERVICE]**odserv -/- Microsoft Office Diagnostics Service -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ompclsyaleh -/- ompclsyaleh -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\ompclsyaleh\ompclsyaleh.dll
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**ozmwhiqga -/- ozmwhiqga -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\ozmwhiqga\ozmwhiqga.dll
[05-SERVICE]**Pml Driver HPZ12 -/- Pml Driver HPZ12 -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\system32\HPZipm12.dll
[05-SERVICE]**rcmdsvc -/- Remote Command Service -/- C:\WINDOWS\system32\obevxy.exe
[05-SERVICE]**rimirtrqvn -/- Reflect Service Client -/- C:\WINDOWS\rimirtrqvn.exe
[05-SERVICE]**rinvqrtri -/- User Configure for Windows -/- C:\WINDOWS\rinvqrtri.exe
[05-SERVICE]**RollingPop_Service -/- RollingPop_Service -/- C:\Documents and Settings\Administrator\Application Data\RollingPop\RollingPop_S.exe ROLL09
[05-SERVICE]**sakckqmsao -/- sakckqmsao -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\sakckqmsao\sakckqmsao.dll
[05-SERVICE]**smjuajjnpa -/- smjuajjnpa -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\smjuajjnpa\smjuajjnpa.dll
[05-SERVICE]**V3 Lite Service -/- V3 Lite Service -/- C:\Program Files\AhnLab\V3Lite\V3LSvc.exe
[05-SERVICE]**Windows applus -/- Windows applus -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Windows applus\win_applussvc.exe
[05-SERVICE]**Windows Network -/- Windows Network_KB984530 -/- C:\Program Files\Canon\Quick Menu\AppInfo\Apps\\xxx.exe
[05-SERVICE]**WindowsDriver -/- WindowsDriver -/- C:\WINDOWS\system32\svchost.exe -/- C:\WINDOWS\system32\WindowsDriver.dll
[05-SERVICE]**xcvxcvcxv -/- xcvxcvcxv Help System -/- C:\WINDOWS\system32\javaupd1te.exe
[05-SERVICE]**ymlhkoqru -/- ymlhkoqru -/- C:\WINDOWS\System32\svchost.exe -/- C:\Program Files\ymlhkoqru\ymlhkoqru.dll