Code : cDS177zaQ/Z3x15Qzri1D0M8oijlfk0UYCaSzVELARQ=

프로그램분석

Code : cDS177zaQ/Z3x15Qzri1D0M8oijlfk0UYCaSzVELARQ=

프로세스 천국 2013. 12. 24. 12:24

[00-PROCESS]**alg -/- C:\WINDOWS\System32\alg.exe
[00-PROCESS]**aspnet_state -/- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
[00-PROCESS]**AYLaunch -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe
[00-PROCESS]**cisvc -/- C:\WINDOWS\system32\cisvc.exe
[00-PROCESS]**clipsrv -/- C:\WINDOWS\system32\clipsrv.exe
[00-PROCESS]**conime -/- C:\WINDOWS\system32\conime.exe
[00-PROCESS]**ctfmon -/- C:\WINDOWS\system32\ctfmon.exe
[00-PROCESS]**dllhost -/- C:\WINDOWS\system32\dllhost.exe
[00-PROCESS]**Explorer -/- C:\WINDOWS\Explorer.EXE
[00-PROCESS]**FlashPlayerUpdateService -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**GrooveAuditService -/- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
[00-PROCESS]**iexplore -/- C:\Program Files\Internet Explorer\iexplore.exe
[00-PROCESS]**imapi -/- C:\WINDOWS\system32\imapi.exe
[00-PROCESS]**isvex -/- C:\Program Files\ISafesvc\isvex.exe
[00-PROCESS]**isvmgr -/- C:\Program Files\ISafesvc\isvmgr.exe
[00-PROCESS]**isvnk -/- C:\Program Files\ISafesvc\isvnk.exe
[00-PROCESS]**locator -/- C:\WINDOWS\system32\locator.exe
[00-PROCESS]**lsass -/- C:\WINDOWS\system32\lsass.exe
[00-PROCESS]**mcsctr -/- C:\Program Files\MC Program\mcsctr.exe
[00-PROCESS]**mcse -/- C:\Program Files\MC Program\mcse.exe
[00-PROCESS]**mcsopt -/- C:\Program Files\MC Program\mcsopt.exe
[00-PROCESS]**mcsvr -/- C:\Program Files\MC Program\mcsvr.exe
[00-PROCESS]**mcsync -/- C:\Program Files\MC Program\mcsync.exe
[00-PROCESS]**MilkconStart -/- C:\HSNET\Milkcon\Release\MilkconStart.exe
[00-PROCESS]**mnmsrvc -/- C:\WINDOWS\system32\mnmsrvc.exe
[00-PROCESS]**mscorsvw -/- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
[00-PROCESS]**msdtc -/- C:\WINDOWS\system32\msdtc.exe
[00-PROCESS]**msiexec -/- C:\WINDOWS\system32\msiexec.exe
[00-PROCESS]**napctr -/- C:\Program Files\ISafesvc\napctr.exe
[00-PROCESS]**natsvc -/- C:\Program Files\NAT Service\natsvc.exe
[00-PROCESS]**netdde -/- C:\WINDOWS\system32\netdde.exe
[00-PROCESS]**nSvcAppFlt -/- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
[00-PROCESS]**nSvcIp -/- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
[00-PROCESS]**nvsvc32 -/- C:\WINDOWS\system32\nvsvc32.exe
[00-PROCESS]**ODSERV -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[00-PROCESS]**OSE -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[00-PROCESS]**PatchOnUnder -/- C:\Documents and Settings\Administrator\Application Data\PatchOnUnder\PatchOnUnder.exe
[00-PROCESS]**PatchOnUpdateUnder -/- C:\Documents and Settings\Administrator\Application Data\PatchOnUnder\PatchOnUpdateUnder.exe
[00-PROCESS]**PopupClean -/- C:\Program Files\PopupClean\PopupClean.exe
[00-PROCESS]**rsvp -/- C:\WINDOWS\system32\rsvp.exe
[00-PROCESS]**SCardSvr -/- C:\WINDOWS\System32\SCardSvr.exe
[00-PROCESS]**services -/- C:\WINDOWS\system32\services.exe
[00-PROCESS]**sessmgr -/- C:\WINDOWS\system32\sessmgr.exe
[00-PROCESS]**smartup -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\SmartUp\smartup.exe
[00-PROCESS]**smartupdate -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\SmartUp\smartupdate.exe
[00-PROCESS]**smlogsvc -/- C:\WINDOWS\system32\smlogsvc.exe
[00-PROCESS]**smss -/- C:\WINDOWS\System32\smss.exe
[00-PROCESS]**spoolsv -/- C:\WINDOWS\system32\spoolsv.exe
[00-PROCESS]**svchost -/- C:\WINDOWS\system32\svchost.exe
[00-PROCESS]**tlntsvr -/- C:\WINDOWS\system32\tlntsvr.exe
[00-PROCESS]**UpdateModule -/- C:\Program Files\PopupClean\UpdateModule.exe
[00-PROCESS]**ups -/- C:\WINDOWS\System32\ups.exe
[00-PROCESS]**vssvc -/- C:\WINDOWS\System32\vssvc.exe
[00-PROCESS]**winlogon -/- C:\WINDOWS\system32\winlogon.exe
[00-PROCESS]**wmiapsrv -/- C:\WINDOWS\system32\wbem\wmiapsrv.exe
[01-HKCUREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[01-HKCUREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[01-HKCUREG]**iSafePlus -/- C:\Program Files\ISafesvc\isvmgr.exe
[01-HKCUREG]**isvex -/- C:\Program Files\ISafesvc\isvex.exe
[01-HKCUREG]**MC Program Manager -/- C:\Program Files\MC Program\mcse.exe
[01-HKCUREG]**Milkcon -/- C:\HSNET\Milkcon\Release\MilkconStart.exe
[01-HKCUREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
[01-HKCUREG]**PatchOnUpdateUnder.exe -/- C:\Documents and Settings\Administrator\Application Data\PatchOnUnder\PatchOnUpdateUnder.exe
[01-HKCUREG]**PopupClean -/- C:\Program Files\PopupClean\UpdateModule.exe S AUTORUN_TRAY
[01-HKCUREG]**smartup -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\SmartUp\smartup.exe
[01-HKCUREG]**smartupdate -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\SmartUp\smartupdate.exe
[02-HKLMREG]**ALYac -/- C:\Program Files\ESTsoft\ALYac\AYLaunch.exe /run
[02-HKLMREG]**ctfmon.exe -/- C:\WINDOWS\system32\ctfmon.exe
[02-HKLMREG]**iSafePlus -/- C:\Program Files\ISafesvc\isvmgr.exe
[02-HKLMREG]**isvex -/- C:\Program Files\ISafesvc\isvex.exe
[02-HKLMREG]**MC Program Manager -/- C:\Program Files\MC Program\mcse.exe
[02-HKLMREG]**Milkcon -/- C:\HSNET\Milkcon\Release\MilkconStart.exe
[02-HKLMREG]**NvCplDaemon -/- RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
[02-HKLMREG]**PatchOnUpdateUnder.exe -/- C:\Documents and Settings\Administrator\Application Data\PatchOnUnder\PatchOnUpdateUnder.exe
[02-HKLMREG]**PopupClean -/- C:\Program Files\PopupClean\UpdateModule.exe S AUTORUN_TRAY
[02-HKLMREG]**smartup -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\SmartUp\smartup.exe
[02-HKLMREG]**smartupdate -/- C:\Documents and Settings\Administrator\Local Settings\Application Data\SmartUp\smartupdate.exe
[03-BHOCLSD]**PatchOn Class -/- C:\Documents and Settings\Administrator\Application Data\PatchOnUnder\PatchOnUnder.dll -/- {0E4A1BB5-5E7C-4572-B90E-BB0DD74B9FA3}
[03-BHOCLSD]**SmartBarPOR Class -/- C:\Documents and Settings\Administrator\Application Data\PatchOnUnder\SmartBarPOUnder.dll -/- {000001CA-F249-497c-818D-2845E5774E23}
[03-BHOCLSD]**SSP Media Control Library -/- C:\Documents and Settings\Administrator\APPLIC~1\MACROM~1\smcl.dll -/- {FEC9FE9D-7417-4371-98FA-6DAA9E3A1C62}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**ALYac_RTSrv -/- ALYac RealTime Service -/- C:\Program Files\ESTsoft\ALYac\AYRTSrv.aye
[05-SERVICE]**ALYac_UpdSrv -/- ALYac Update Service -/- C:\Program Files\ESTsoft\ALYac\AYUpdSrv.aye
[05-SERVICE]**ForceWare Intelligent Application Manager (IAM) -/- ForceWare Intelligent Application Manager (IAM) -/- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
[05-SERVICE]**MC Program(Version 3.0) -/- MC Program(Version 3.0) -/- C:\Program Files\MC Program\mcsvr.exe
[05-SERVICE]**Microsoft Office Groove Audit Service -/- Microsoft Office Groove Audit Service -/- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
[05-SERVICE]**napagent -/- Network Access Protection Agent -/- C:\WINDOWS\System32\svchost.exe -/- C:\WINDOWS\System32\qagentrt.dll
[05-SERVICE]**NATService -/- NATService -/- C:\Program Files\NAT Service\natsvc.exe
[05-SERVICE]**nSvcIp -/- ForceWare IP service -/- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
[05-SERVICE]**NVSvc -/- NVIDIA Display Driver Service -/- C:\WINDOWS\system32\nvsvc32.exe
[05-SERVICE]**odserv -/- Microsoft Office Diagnostics Service -/- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
[05-SERVICE]**ose -/- Office Source Engine -/- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE