Code : tNFfmmyYoVIeudS9BuOEe6Vy3StCMzU7

프로그램분석

Code : tNFfmmyYoVIeudS9BuOEe6Vy3StCMzU7

프로세스 천국 2013. 12. 17. 16:57

[00-PROCESS]**AdobeARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[00-PROCESS]**alg -/- C:\Windows\System32\alg.exe
[00-PROCESS]**ALZip -/- C:\Program Files\ESTsoft\ALZip\ALZip.exe
[00-PROCESS]**armsvc -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[00-PROCESS]**aspnet_state -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
[00-PROCESS]**atbhelper -/- C:\Program Files\ESTsoft\ALToolBar\atbhelper.exe
[00-PROCESS]**atbsvc -/- C:\Program Files\ESTsoft\ALToolBar\atbsvc.exe
[00-PROCESS]**AUDIODG -/- C:\Windows\system32\AUDIODG.EXE
[00-PROCESS]**AYLaunch -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe
[00-PROCESS]**conhost -/- C:\Windows\system32\conhost.exe
[00-PROCESS]**csrss -/- C:\Windows\system32\csrss.exe
[00-PROCESS]**daemonu -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[00-PROCESS]**dllhost -/- C:\Windows\system32\dllhost.exe
[00-PROCESS]**DTUpdate -/- C:\Users\Administrator\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
[00-PROCESS]**Dwm -/- C:\Windows\system32\Dwm.exe
[00-PROCESS]**ehRecvr -/- C:\Windows\ehome\ehRecvr.exe
[00-PROCESS]**ehsched -/- C:\Windows\ehome\ehsched.exe
[00-PROCESS]**Explorer -/- C:\Windows\Explorer.EXE
[00-PROCESS]**FlashUtil32_11_7_700_202_ActiveX -/- C:\Windows\system32\Macromed\Flash\FlashUtil32_11_7_700_202_ActiveX.exe
[00-PROCESS]**Fuel.Service -/- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
[00-PROCESS]**fxssvc -/- C:\Windows\system32\fxssvc.exe
[00-PROCESS]**GuardConvert -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe
[00-PROCESS]**HncChecker -/- C:\Program Files\Hnc\HncUtils\HncChecker.exe
[00-PROCESS]**HSGPSvc -/- C:\Hangame\KOREAN\HShield\HSGPSvc.exe
[00-PROCESS]**iexplore -/- C:\Program Files\internet explorer\iexplore.exe
[00-PROCESS]**ImageSAFERSvc -/- C:\Windows\ImageSAFERSvc.exe
[00-PROCESS]**IMEDICTUPDATE -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**internetservicemgr -/- C:\Program Files\Windows Internet Service Manager\internetservicemgr.exe
[00-PROCESS]**internetservicemgrs -/- C:\Program Files\Windows Internet Service Manager\internetservicemgrs.exe
[00-PROCESS]**internetservicemgru -/- C:\Program Files\Windows Internet Service Manager\internetservicemgru.exe
[00-PROCESS]**ismprqpnohr -/- C:\Windows\ismprqpnohr.exe
[00-PROCESS]**KMService -/- C:\Windows\KMService.exe
[00-PROCESS]**locator -/- C:\Windows\system32\locator.exe
[00-PROCESS]**lsass -/- C:\Windows\system32\lsass.exe
[00-PROCESS]**lsm -/- C:\Windows\system32\lsm.exe
[00-PROCESS]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe
[00-PROCESS]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
[00-PROCESS]**msdtc -/- C:\Windows\System32\msdtc.exe
[00-PROCESS]**msiexec -/- C:\Windows\system32\msiexec.exe
[00-PROCESS]**natsvc -/- C:\Program Files\NAT Service\natsvc.exe
[00-PROCESS]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe
[00-PROCESS]**nvSCPAPISvr -/- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
[00-PROCESS]**nvtray -/- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
[00-PROCESS]**nvvsvc -/- C:\Windows\system32\nvvsvc.exe
[00-PROCESS]**nvxdsync -/- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**OSPPSVC -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[00-PROCESS]**perfhost -/- C:\Windows\system32\perfhost.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**rioqpomnri -/- C:\Windows\rioqpomnri.exe
[00-PROCESS]**SearchIndexer -/- C:\Windows\system32\SearchIndexer.exe
[00-PROCESS]**services -/- C:\Windows\system32\services.exe
[00-PROCESS]**snmptrap -/- C:\Windows\System32\snmptrap.exe
[00-PROCESS]**spoolsv -/- C:\Windows\System32\spoolsv.exe
[00-PROCESS]**sppsvc -/- C:\Windows\system32\sppsvc.exe
[00-PROCESS]**srvany -/- C:\Windows\system32\srvany.exe
[00-PROCESS]**svchost -/- C:\Windows\system32\svchost.exe
[00-PROCESS]**taskeng -/- C:\Windows\system32\taskeng.exe
[00-PROCESS]**taskhost -/- C:\Windows\system32\taskhost.exe
[00-PROCESS]**TrustedInstaller -/- C:\Windows\servicing\TrustedInstaller.exe
[00-PROCESS]**UI0Detect -/- C:\Windows\system32\UI0Detect.exe
[00-PROCESS]**uoqpomnpds -/- C:\Windows\uoqpomnpds.exe
[00-PROCESS]**vds -/- C:\Windows\System32\vds.exe
[00-PROCESS]**vssvc -/- C:\Windows\system32\vssvc.exe
[00-PROCESS]**wbengine -/- C:\Windows\system32\wbengine.exe
[00-PROCESS]**wininit -/- C:\Windows\system32\wininit.exe
[00-PROCESS]**winlogon -/- C:\Windows\system32\winlogon.exe
[00-PROCESS]**WinxpendUP_s6fic -/- C:\Program Files\WinExpand_s6fic\WinxpendUP_s6fic.exe
[00-PROCESS]**WmiApSrv -/- C:\Windows\system32\wbem\WmiApSrv.exe
[00-PROCESS]**wmiprvse -/- C:\Windows\system32\wbem\wmiprvse.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[00-PROCESS]**WUDFHost -/- C:\Windows\system32\WUDFHost.exe
[01-HKCUREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[01-HKCUREG]**ALToolBar -/- C:\Program Files\ESTsoft\ALToolBar\atbhelper.exe -boot
[01-HKCUREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[01-HKCUREG]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices
[01-HKCUREG]**GuardSupport -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe -nHyoCNv
[01-HKCUREG]**HncUpdate -/- C:\Program Files\Hnc\HncUtils\HncChecker.exe
[01-HKCUREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[01-HKCUREG]**InbTool -/- C:\Program Files\InbTool\InbTool.exe
[01-HKCUREG]**ISERVICEMANAGER -/- C:\Program Files\Windows Internet Service Manager\internetservicemgru.exe /run
[01-HKCUREG]**MicroLabCon -/- %ApplicationDataFolder%\MicroLab\MyEngin\Common\MicroProCon.exe
[01-HKCUREG]**MicroLabProc -/- %ApplicationDataFolder%\MicroLab\MyEngin\Common\MicroProProc.exe
[01-HKCUREG]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -nHyoCNv
[01-HKCUREG]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -pKArFPy
[01-HKCUREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[01-HKCUREG]**RTHDVCPL -/- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
[01-HKCUREG]**StartCCC -/- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun
[02-HKLMREG]**Adobe ARM -/- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[02-HKLMREG]**ALToolBar -/- C:\Program Files\ESTsoft\ALToolBar\atbhelper.exe -boot
[02-HKLMREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[02-HKLMREG]**BCSSync -/- C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices
[02-HKLMREG]**GuardSupport -/- C:\Users\Administrator\AppData\Roaming\GuardSupport\GuardConvert.exe -nHyoCNv
[02-HKLMREG]**HncUpdate -/- C:\Program Files\Hnc\HncUtils\HncChecker.exe
[02-HKLMREG]**IME14 KOR Setup -/- C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log
[02-HKLMREG]**InbTool -/- C:\Program Files\InbTool\InbTool.exe
[02-HKLMREG]**ISERVICEMANAGER -/- C:\Program Files\Windows Internet Service Manager\internetservicemgru.exe /run
[02-HKLMREG]**MicroLabCon -/- %ApplicationDataFolder%\MicroLab\MyEngin\Common\MicroProCon.exe
[02-HKLMREG]**MicroLabProc -/- %ApplicationDataFolder%\MicroLab\MyEngin\Common\MicroProProc.exe
[02-HKLMREG]**MicroProCon -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProCon.exe -nHyoCNv
[02-HKLMREG]**MicroProProc -/- C:\Users\Administrator\AppData\Roaming\MicroLab\MyEngin\Common\MicroProProc.exe -pKArFPy
[02-HKLMREG]**NaverAgent -/- C:\Program Files\naver\NaverAgent\NaverAgent.exe /autorun
[02-HKLMREG]**RTHDVCPL -/- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
[02-HKLMREG]**StartCCC -/- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun
[03-BHOCLSD]**ALToolbarBho -/- C:\Program Files\ESTsoft\ALToolBar\ALToolBar_3220.dll -/- {7F1A79F9-78D1-4186-9F60-EE0B63DF042A}
[03-BHOCLSD]**InbTool -/- C:\Program Files\InbTool\InbTool.dll -/- {9EA3EA78-A0A4-45DA-B17F-0C8B06E5D3F1}
[03-BHOCLSD]**Office Document Cache Handler -/- C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL -/- {B4F3A835-0E21-4959-BA22-42B3008E02FF}
[03-BHOCLSD]**WinExpandB Class -/- C:\Program Files\WinExpand_s6fic\WinExpand_s6fic.dll -/- {00000699-1D70-462B-9EF2-6E8EE7684595}
[04-TOOLBAR]**ALToolBar -/- C:\Program Files\ESTsoft\ALToolBar\ALToolBar_3220.dll -/- {38FBE93D-4CA1-4414-AF6A-94920C5BD8DA}
[05-SERVICE]**AdobeARMservice -/- Adobe Acrobat Update Service -/- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
[05-SERVICE]**ALYac_RTSrv -/- ALYac RealTime Service -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- ALYac Update Service -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**AMD FUEL Service -/- AMD FUEL Service -/- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
[05-SERVICE]**BrowserDefendert -/- BrowserDefendert -/- C:\ProgramData\BrowserDefender\2.6.1519.190\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe
[05-SERVICE]**DefaultTabUpdate -/- DefaultTabUpdate -/- C:\Users\Administrator\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
[05-SERVICE]**hsgpsvc -/- HSU Service -/- C:\Hangame\KOREAN\HShield\HSGPSvc.exe
[05-SERVICE]**Image Protection -/- Image Protect Service -/- C:\Windows\ImageSAFERSvc.exe
[05-SERVICE]**ImeDictUpdateService -/- Microsoft IME Dictionary Update -/- C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
[05-SERVICE]**ismprqpnohr -/- Internet Service Manager -/- C:\Windows\ismprqpnohr.exe
[05-SERVICE]**KMService -/- KMService -/- C:\Windows\system32\srvany.exe
[05-SERVICE]**NATService -/- NATService -/- C:\Program Files\NAT Service\natsvc.exe
[05-SERVICE]**NetMsmqActivator -/- Net.Msmq Listener Adapter -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe -NetMsmqActivator
[05-SERVICE]**NetPipeActivator -/- Net.Pipe Listener Adapter -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**NetTcpActivator -/- Net.Tcp Listener Adapter -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[05-SERVICE]**npggsvc -/- nProtect GameGuard Service -/- C:\Windows\system32\GameMon.des -service
[05-SERVICE]**nvoqpomnnv -/- Windows AutoFix -/- C:\Windows\nvoqpomnnv.exe
[05-SERVICE]**nvsvc -/- NVIDIA Display Driver Service -/- C:\Windows\system32\nvvsvc.exe
[05-SERVICE]**nvUpdatusService -/- NVIDIA Update Service Daemon -/- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[05-SERVICE]**osppsvc -/- Office Software Protection Platform -/- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**rioqpomnri -/- User Configure for Windows -/- C:\Windows\rioqpomnri.exe
[05-SERVICE]**Stereo Service -/- NVIDIA Stereoscopic 3D Driver Service -/- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
[05-SERVICE]**uoqpomnpds -/- PC Cleaner Center -/- C:\Windows\uoqpomnpds.exe
[05-SERVICE]**WebCakeUpdater -/- WebCakeUpdater -/- C:\Program Files\Movdap\WBDesktop.Updater.exe
[06-TASKLST]**0 -/- C:\Program Files\internet explorer\iexplore.exe
[06-TASKLST]**4628 -/- wscript.exe
[06-TASKLST]**ESTsoft RunAsStdUser 313281Task -/- C:\Program Files\ESTsoft\ALZip\ALZip.exe
[06-TASKLST]**Express FilesUpdate -/- C:\Program Files\ExpressFiles\EFUpdater.exe
[06-TASKLST]**issprqpnohr -/- C:\Program Files\Windows Internet Service Manager\internetservicemgrs.exe
[06-TASKLST]**mcssutsqrmc -/- C:\Program Files\MouseControl\mousectrl_sch.exe
[06-TASKLST]**RecoverATB -/- C:\Program Files\ESTsoft\ALToolBar\AtbHelper.exe
[06-TASKLST]**WinExpandUpdate_s6fic -/- C:\Program Files\WinExpand_s6fic\WinxpendUP_s6fic.exe