Code : adkY4OtfJ5GwOF2Kfj+2NsAH5bu8SBmBBlKrVo8d4Vc=

프로그램분석

Code : adkY4OtfJ5GwOF2Kfj+2NsAH5bu8SBmBBlKrVo8d4Vc=

프로세스 천국 2014. 1. 21. 00:31

[00-PROCESS]**adInstall_ssi016 -/- C:\Windows\adInstall_ssi016.exe
[00-PROCESS]**alg -/- C:\Windows\System32\alg.exe
[00-PROCESS]**autocleaner -/- C:\Program Files\autocleaner\autocleaner.exe
[00-PROCESS]**autocleanerse -/- C:\Program Files\autocleaner\autocleanerse.exe
[00-PROCESS]**autocleanersetup_fastrealm -/- C:\Windows\autocleanersetup_fastrealm.exe
[00-PROCESS]**autocleanerU -/- C:\Program Files\autocleaner\autocleanerU.exe
[00-PROCESS]**csrss -/- C:\Windows\system32\csrss.exe
[00-PROCESS]**dllhost -/- C:\Windows\system32\dllhost.exe
[00-PROCESS]**Dwm -/- C:\Windows\system32\Dwm.exe
[00-PROCESS]**ehRecvr -/- C:\Windows\ehome\ehRecvr.exe
[00-PROCESS]**ehsched -/- C:\Windows\ehome\ehsched.exe
[00-PROCESS]**fgo -/- C:\Users\Administrator\AppData\Roaming\KeyPang\fgo.exe
[00-PROCESS]**FlashPlayerUpdateService -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[00-PROCESS]**fxssvc -/- C:\Windows\system32\fxssvc.exe
[00-PROCESS]**gongoo -/- C:\Windows\gongoo.exe
[00-PROCESS]**honorzone -/- C:\Users\Administrator\AppData\Roaming\honorzone\honorzone.exe
[00-PROCESS]**honorzone_hinst -/- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\honorzone_hinst.exe
[00-PROCESS]**ikeypang -/- C:\Windows\ikeypang.exe
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**ISZone -/- C:\Program Files\ISZone\ISZone.exe
[00-PROCESS]**ISZoneSetup_66_hide -/- C:\Windows\ISZoneSetup_66_hide.exe
[00-PROCESS]**ISZoneUpdate -/- C:\Program Files\ISZone\ISZoneUpdate.exe
[00-PROCESS]**keypang -/- C:\Users\Administrator\AppData\Roaming\KeyPang\keypang.exe
[00-PROCESS]**locator -/- C:\Windows\system32\locator.exe
[00-PROCESS]**lsass -/- C:\Windows\system32\lsass.exe
[00-PROCESS]**lsm -/- C:\Windows\system32\lsm.exe
[00-PROCESS]**move -/- C:\Users\Administrator\AppData\Roaming\KeyPang\move.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
[00-PROCESS]**mscorsvw -/- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
[00-PROCESS]**msdtc -/- C:\Windows\System32\msdtc.exe
[00-PROCESS]**msiexec -/- C:\Windows\system32\msiexec.exe
[00-PROCESS]**msprivs_uninst -/- C:\Users\Administrator\AppData\Local\Apps\msprivs_uninst.exe
[00-PROCESS]**NetworkWidget -/- C:\ProgramData\NetworkWidget\NetworkWidget.exe
[00-PROCESS]**NetworkWidgetService -/- C:\ProgramData\NetworkWidget\NetworkWidgetService.exe
[00-PROCESS]**NetworkWidgetSetup_k10000 -/- C:\Windows\NetworkWidgetSetup_k10000.exe
[00-PROCESS]**perfhost -/- C:\Windows\system32\perfhost.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**revealer -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe
[00-PROCESS]**revealert -/- C:\Users\Administrator\AppData\Roaming\revealer\revealert.exe
[00-PROCESS]**revealerul -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[00-PROCESS]**rkp -/- C:\Users\Administrator\AppData\Roaming\KeyPang\rkp.exe
[00-PROCESS]**SearchIndexer -/- C:\Windows\system32\SearchIndexer.exe
[00-PROCESS]**searchlinedc -/- C:\Program Files\Searchline_nc\searchlinedc.exe
[00-PROCESS]**searchlineu_nc -/- C:\Program Files\Searchline_nc\searchlineu_nc.exe
[00-PROCESS]**services -/- C:\Windows\system32\services.exe
[00-PROCESS]**setup_nid006_silent -/- C:\Windows\setup_nid006_silent.exe
[00-PROCESS]**skeypang -/- C:\\skeypang.exe
[00-PROCESS]**snmptrap -/- C:\Windows\System32\snmptrap.exe
[00-PROCESS]**spoolsv -/- C:\Windows\System32\spoolsv.exe
[00-PROCESS]**sppsvc -/- C:\Windows\system32\sppsvc.exe
[00-PROCESS]**SSI -/- C:\Users\Administrator\AppData\Local\SSI\SSI.exe
[00-PROCESS]**SSIagent -/- C:\Users\Administrator\AppData\Local\SSI\SSIagent.exe
[00-PROCESS]**ssub -/- C:\Users\Administrator\AppData\Local\SSI\ssub.exe
[00-PROCESS]**svchost -/- C:\Windows\system32\svchost.exe
[00-PROCESS]**taskeng -/- C:\Windows\system32\taskeng.exe
[00-PROCESS]**taskhost -/- C:\Windows\system32\taskhost.exe
[00-PROCESS]**TPAutoConnSvc -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[00-PROCESS]**TPVCGateway -/- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe
[00-PROCESS]**TrustedInstaller -/- C:\Windows\servicing\TrustedInstaller.exe
[00-PROCESS]**UI0Detect -/- C:\Windows\system32\UI0Detect.exe
[00-PROCESS]**vds -/- C:\Windows\System32\vds.exe
[00-PROCESS]**vmtoolsd -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe
[00-PROCESS]**vssvc -/- C:\Windows\system32\vssvc.exe
[00-PROCESS]**wbengine -/- C:\Windows\system32\wbengine.exe
[00-PROCESS]**WEUninstall_s2dwm -/- C:\Program Files\WinExpand_s2dwm\WEUninstall_s2dwm.EXE
[00-PROCESS]**windowforsmartinstall -/- C:\Users\Administrator\AppData\Roaming\windowforsmartinstall.exe
[00-PROCESS]**windowstab -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab.exe
[00-PROCESS]**windowstab_mon -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[00-PROCESS]**windowstab_uc -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe
[00-PROCESS]**windowstab_unins -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_unins.exe
[00-PROCESS]**WindowsTabSetup_downrealm -/- C:\Windows\WindowsTabSetup_downrealm.exe
[00-PROCESS]**windowupdateresetconfig -/- C:\Windows\windowupdateresetconfig.exe
[00-PROCESS]**windviewer -/- C:\Program Files\windviewer\windviewer.exe
[00-PROCESS]**windvieweragent -/- C:\Program Files\windviewer\windvieweragent.exe
[00-PROCESS]**windviewerdesk -/- C:\Program Files\windviewer\windviewerdesk.exe
[00-PROCESS]**WinExpandSetup_downrealm -/- C:\Windows\WinExpandSetup_downrealm.exe
[00-PROCESS]**wininit -/- C:\Windows\system32\wininit.exe
[00-PROCESS]**WinxpendUP_s2dwm -/- C:\Program Files\WinExpand_s2dwm\WinxpendUP_s2dwm.exe
[00-PROCESS]**WmiApSrv -/- C:\Windows\system32\wbem\WmiApSrv.exe
[00-PROCESS]**wmiprvse -/- C:\Windows\system32\wbem\wmiprvse.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**honorzone -/- C:\Users\Administrator\AppData\Roaming\honorzone\honorzone.exe subcmd
[01-HKCUREG]**kp -/- C:\Users\Administrator\AppData\Roaming\KeyPang\keypang.exe
[01-HKCUREG]**msprivs -/- C:\Users\Administrator\AppData\Roaming\windowforsmartinstall.exe
[01-HKCUREG]**NetworkWidget -/- C:\ProgramData\NetworkWidget\NetworkWidget.exe
[01-HKCUREG]**revealerApp -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe Runcmd
[01-HKCUREG]**revealerApps -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[01-HKCUREG]**Searchline_nc -/- C:\Program Files\Searchline_nc\searchlineu_nc.exe subcmd
[01-HKCUREG]**Searchline_ncupdate -/- C:\Program Files\Searchline_nc\searchlinedc.exe
[01-HKCUREG]**SSI -/- C:\Users\Administrator\AppData\Local\SSI\SSI.exe /byboot
[01-HKCUREG]**SSIagent -/- C:\Users\Administrator\AppData\Local\SSI\SSIagent.exe
[01-HKCUREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -n vmusr
[01-HKCUREG]**WINDOWSTAB_UC -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe /run
[01-HKCUREG]**windviewer -/- C:\Program Files\windviewer\windviewer.exe
[01-HKCUREG]**windvieweragent -/- C:\Program Files\windviewer\windvieweragent.exe
[01-HKCUREG]**windviewerdesk -/- C:\Program Files\windviewer\windviewerdesk.exe
[02-HKLMREG]**honorzone -/- C:\Users\Administrator\AppData\Roaming\honorzone\honorzone.exe subcmd
[02-HKLMREG]**kp -/- C:\Users\Administrator\AppData\Roaming\KeyPang\keypang.exe
[02-HKLMREG]**msprivs -/- C:\Users\Administrator\AppData\Roaming\windowforsmartinstall.exe
[02-HKLMREG]**NetworkWidget -/- C:\ProgramData\NetworkWidget\NetworkWidget.exe
[02-HKLMREG]**revealerApp -/- C:\Users\Administrator\AppData\Roaming\revealer\revealer.exe Runcmd
[02-HKLMREG]**revealerApps -/- C:\Users\Administrator\AppData\Roaming\revealer\revealerul.exe
[02-HKLMREG]**Searchline_nc -/- C:\Program Files\Searchline_nc\searchlineu_nc.exe subcmd
[02-HKLMREG]**Searchline_ncupdate -/- C:\Program Files\Searchline_nc\searchlinedc.exe
[02-HKLMREG]**SSI -/- C:\Users\Administrator\AppData\Local\SSI\SSI.exe /byboot
[02-HKLMREG]**SSIagent -/- C:\Users\Administrator\AppData\Local\SSI\SSIagent.exe
[02-HKLMREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -n vmusr
[02-HKLMREG]**WINDOWSTAB_UC -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_uc.exe /run
[02-HKLMREG]**windviewer -/- C:\Program Files\windviewer\windviewer.exe
[02-HKLMREG]**windvieweragent -/- C:\Program Files\windviewer\windvieweragent.exe
[02-HKLMREG]**windviewerdesk -/- C:\Program Files\windviewer\windviewerdesk.exe
[03-BHOCLSD]**Honorzone SubTap -/- C:\Users\Administrator\AppData\Roaming\honorzone\honorzone.dll -/- {A599A91D-88AE-4561-939B-EEE293665C75}
[03-BHOCLSD]**Revealing Top Search App -/- C:\Users\Administrator\AppData\Roaming\revealer\revealertop.dll -/- {169C9EC3-415E-4344-85E1-BCBC2356B4E6}
[03-BHOCLSD]**searchline_nc -/- C:\Program Files\Searchline_nc\searchline_nc.dll -/- {5F930A63-011A-4796-A0FB-3A7C8F78E7CF}
[03-BHOCLSD]**windviewer Class -/- C:\Program Files\windviewer\windviewer.dll -/- {CC34B3C3-3904-4D0E-8035-536715B28BBA}
[03-BHOCLSD]**WinExpandB Class -/- C:\Program Files\WinExpand_s2dwm\WinExpand_s2dwm.dll -/- {00000A52-5AC6-4CD4-85A1-20DE8B013366}
[05-SERVICE]**AdobeFlashPlayerUpdateSvc -/- Adobe Flash Player Update Service -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[05-SERVICE]**autocleaner Update Service -/- autocleaner Support Service -/- C:\Windows\windowupdateresetconfig.exe
[05-SERVICE]**autocleanerService -/- autocleaner Service -/- C:\Program Files\autocleaner\autocleanerse.exe
[05-SERVICE]**NetTcpPortSharing -/- Net.Tcp Port Sharing Service -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**NetworkWidgetService -/- NetworkWidgetService -/- C:\ProgramData\NetworkWidget\NetworkWidgetService.exe
[05-SERVICE]**PerfHost -/- Performance Counter DLL Host -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**TPAutoConnSvc -/- TP AutoConnect Service -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[05-SERVICE]**TPVCGateway -/- TP VC Gateway Service -/- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe
[05-SERVICE]**VMTools -/- VMware Tools -/- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe
[05-SERVICE]**vmvss -/- VMware Snapshot Provider -/- C:\Windows\system32\dllhost.exe
[05-SERVICE]**windowstab_mon -/- Windows Tab Manager -/- C:\Users\Administrator\AppData\Local\windowstab\windowstab_mon.exe
[06-TASKLST]**Adobe Flash Player Updater -/- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[06-TASKLST]**ISZone -/- C:\Program Files\ISZone\ISZoneUpdate.exe
[06-TASKLST]**Revealert -/- C:\Users\Administrator\AppData\Roaming\revealer\revealert.exe
[06-TASKLST]**Searchlinenc -/- C:\Program Files\Searchline_nc\searchlineu_nc.exe
[06-TASKLST]**Windowshonorzone -/- C:\Users\Administrator\AppData\Roaming\honorzone\honorzone.exe
[06-TASKLST]**WinExpandUpdate_s2dwm -/- C:\Program Files\WinExpand_s2dwm\WinxpendUP_s2dwm.exe