애드웨어, 허위백신, 팝업광고, 쇼핑몰 바로가기, 악성툴바, 각종 개쓰레기 프로그램 삭제 요청하기
이용약관을 안내하며 컴퓨터에 설치하는 개쓰레기 프로그램들은 백신으로 백날 돌려봐야 검색이 안됩니다.
개쓰레기 프로그램들은 아주 지능적이라서 전문가가 아니고서는 찾아내기가 어렵습니다.


----------------------------------------------------------------------
Created by Windowexe.com , Logfile of WindowexeAllkiller
----------------------------------------------------------------------
Windows 7 Ultimate Service Pack 1(6.1.7601.65536)
Intel(R) Core(TM) i3 CPU       M 380  @ 2.53GHz / 1,023.55 MB
Intel64 Family 6 Model 37 Stepping 5
Date : 2013-03-25
----------------------------------------------------------------------
DF000 C:\Program Files (x86)\barocn\barocn.exe
DF001 C:\Program Files (x86)\barocn\barosvc.exe
DF002 C:\Program Files (x86)\barocn\uninst.exe
DF003 C:\Program Files (x86)\boosting\boosting.exe
DF004 C:\Program Files (x86)\boosting\pidadd.dll
DF005 C:\Program Files (x86)\KongGa\KGAChkSvc.exe
DF006 C:\Program Files (x86)\KongGa\kgaprot.exe
DF007 C:\Program Files (x86)\KongGa\KGAUninst.exe
DF008 C:\Program Files (x86)\KongGa\KGAUpdate.exe
DF009 C:\Program Files (x86)\KongGa\KongGaAx.dll
DF010 C:\Program Files (x86)\KongGa\KongGaCtrl.dll
DF011 C:\Program Files (x86)\KongGa\KongGaSvcApp.exe
DF012 C:\Program Files (x86)\NetMWin\NetMWin.exe
DF013 C:\Program Files (x86)\NetMWin\NMHelper.dll
DF014 C:\Program Files (x86)\NetMWin\NMUnins.exe
DF015 C:\Program Files (x86)\Racl\RaclSvc.exe
DF016 C:\Program Files (x86)\Racl\RaclTb.dll
DF017 C:\Program Files (x86)\Racl\RaclUninst.exe
DF018 C:\Program Files (x86)\topopc\showupex.exe
DF019 C:\Program Files (x86)\topopc\topopc.exe
DF020 C:\Program Files (x86)\topopc\uninst.exe
DF021 C:\Program Files (x86)\updatevaccine\EGutil.dll
DF022 C:\Program Files (x86)\updatevaccine\uninst_updatevaccine.exe
DF023 C:\Program Files (x86)\updatevaccine\updatevaccine.exe
DF024 C:\Program Files (x86)\updatevaccine\updatevaccinestart.exe
DF025 C:\Program Files (x86)\updatevaccine\updatevaccineu.exe
DF026 C:\Program Files (x86)\updatevaccine\vcncmndb.dll
DF027 C:\Program Files (x86)\windowfaster\uninst_windowfaster.exe
DF028 C:\Program Files (x86)\windowfaster\windowfaster.exe
DF029 C:\Program Files (x86)\windowfaster\windowfasterEngine.exe
DF030 C:\Program Files (x86)\windowfaster\windowfasterse.exe
DF031 C:\Program Files (x86)\windowfaster\windowfasterU.exe
DF032 C:\ProgramData\DirectKeyword2\DirectKeyword2.exe
DF033 C:\ProgramData\DirectKeyword2\DirectKeywordUpdateService.exe
DF034 C:\ProgramData\Microsoft\Windows\Templates\53-11912_jre-7u7-windows-x64[1]_.exe
DF035 C:\Users\Administrator\AppData\Local\MetablogNewIssues\metablogagent.exe
DF036 C:\Users\Administrator\AppData\Local\MetablogNewIssues\MetablogNewIssues.exe
DF037 C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\updatevaccine\updatevaccine 삭제.lnk
DF038 C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\updatevaccine\updatevaccine.lnk
DF039 C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\updatevaccine\홈페이지.url
DF040 C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\windowfaster\Homepage.url
DF041 C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\windowfaster\windowfaster 삭제.lnk
DF042 C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\windowfaster\windowfaster.lnk
DF043 C:\Users\Administrator\AppData\Roaming\WingGo\winggo.dll
DF044 C:\Users\Administrator\AppData\Roaming\WingGo\winggom.exe
DF045 C:\Users\Administrator\AppData\Roaming\WingGo\winggou.exe
DF046 C:\Users\Administrator\Favorites\Links\11번가.url
DF047 C:\Users\Administrator\Favorites\Links\옥션.url
DF048 C:\Users\Administrator\Favorites\Links\지마켓.url
DF049 C:\Users\Administrator\Favorites\메타블로그 최신이슈.lnk
DF050 C:\Windows\SysWOW64\WindowsDriver.dll
----------------------------------------------------------------------
SC051 DirectKeywordUpdateService -/- DirectKeywordUpdateService -/- - -/-  -/- C:\ProgramData\DirectKeyword2\DirectKeywordUpdateService.exe
SC052 KongGa -/- 무료만화(KongGa) -/- - -/-  -/- C:\Program Files (x86)\KongGa\KGAChkSvc.exe
SC053 barocn -/- barocn svc -/- - -/-  -/- C:\Program Files (x86)\barocn\barosvc.exe
SC054 WindowsDriver -/- WindowsDriver -/- - -/- C:\Windows\system32\WindowsDriver.dll -/- C:\Windows\system32\svchost.exe -k WindowsDriver
SC055 windowfasterService -/- windowfaster Service -/- - -/-  -/- C:\Program Files (x86)\windowfaster\windowfasterse.exe
----------------------------------------------------------------------
UN056 boosting -/- - -/- boosting -/- - -/- -
UN057 ctdata  -/- ctdata. -/- ctdata -/- - -/- -
UN058 Micro Softwear Viewer Actx 1.0.0.1 -/- - -/- KongGa -/- - -/- -
UN059 network manager win -/- NMWin -/- nmwin -/- - -/- hxxp://www.topclick.kr
UN060 Windows RightClick Copy -/- - -/- Racl -/- - -/- -
UN061 updatevaccine -/- UCF -/- updatevaccine -/- hxxp://www.updatevaccine.co.kr -/- hxxp://www.updatevaccine.co.kr
UN062 windowfaster -/- UCF -/- windowfaster -/- hxxp://www.windowfaster.co.kr -/- hxxp://www.windowfaster.co.kr
UN063 Windows barocon  -/- Baro, Inc. -/- Windows barocon -/- - -/- -
UN064 windows ctpop (remove only)  -/- system co -/- windows ctpop (remove only) -/- - -/- -
UN065 DirectKeyword2 -/- 검색닷컴 -/- DirectKeyword2 -/- - -/- -
UN066 WingGo -/- - -/- WingGo -/- - -/- -
UN067 Metablog New Issues -/- Korea Contents Network, Inc. -/- {51632293-CBB6-47bc-9244-73C44C8516A6}_is1 -/- hxxp://www.blogdanawa.co.kr/ -/- hxxp://www.blogdanawa.co.kr/
----------------------------------------------------------------------
US068 MetablogNewIssues -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\MetablogNewIssues.exe /byboot
US069 metablogagent -/- C:\Users\Administrator\AppData\Local\MetablogNewIssues\metablogagent.exe
US070 DirectKeyword2 -/- C:\ProgramData\DirectKeyword2\DirectKeyword2.exe
US071 boosting -/- C:\Program Files (x86)\boosting\boosting.exe
US072 WingGo -/- C:\Users\Administrator\AppData\Roaming\WingGo\winggou.exe UPDATE
LS073 updatevaccine main -/- C:\Program Files (x86)\updatevaccine\updatevaccineu.exe /8L
LS074 updatevaccinestart.exe -/- C:\Program Files (x86)\updatevaccine\updatevaccinestart.exe
LS075 KongGa -/- C:\Program Files (x86)\KongGa\KGAUpdate.exe
LS076 kgaprot -/- C:\Program Files (x86)\KongGa\kgaprot.exe
LS077 topopc -/- C:\Program Files (x86)\topopc\topopc.exe
LS078 ctdata -/- C:\Users\ADMINI~1\AppData\Local\Temp\data.exe
LS079 Racl -/- C:\Program Files (x86)\Racl\RaclSvc.exe
LS080 DirectKeyword2 -/- C:\ProgramData\DirectKeyword2\DirectKeyword2.exe
----------------------------------------------------------------------
BH081 WingGo -/- C:\Users\Administrator\AppData\Roaming\WingGo\winggo.dll -/- {002B9765-AB24-47E6-8DB6-6A1A0CE11BC9}
BH082 KongGaObj Class -/- C:\Program Files (x86)\KongGa\KongGaCtrl.dll -/- {432339F4-9FDC-43BA-99C2-FEE0D9EA7C74}
BH083 NetMCtrl Class -/- C:\Program Files (x86)\NetMWin\NMHelper.dll -/- {7760E6D4-CC93-4495-981B-5E23919D602A}
EXADD WingGo -/- C:\Users\Administrator\AppData\Roaming\WingGo\winggo.dll -/- {002B9765-AB24-47E6-8DB6-6A1A0CE11BC9}
EXADD WingGo -/- C:\Users\Administrator\AppData\Roaming\WingGo\winggo.dll -/- {003B9765-AB24-47E6-8DB6-6A1A0CE11BC9}
EXADD KongGaObj Class -/- C:\Program Files (x86)\KongGa\KongGaCtrl.dll -/- {432339F4-9FDC-43BA-99C2-FEE0D9EA7C74}
EXADD NetMCtrl Class -/- C:\Program Files (x86)\NetMWin\NMHelper.dll -/- {7760E6D4-CC93-4495-981B-5E23919D602A}
EXADD 잠김영역복사 -/- C:\Program Files (x86)\Racl\RaclTB.dll -/- {BCE04A5B-2B7D-4F4B-BB8E-2A59611733DD}
----------------------------------------------------------------------
----------------------------------------------------------------------
TB084 잠김영역복사 -/- C:\Program Files (x86)\Racl\RaclTB.dll -/- {BCE04A5B-2B7D-4F4B-BB8E-2A59611733DD}
TB085 WingGo -/- C:\Users\Administrator\AppData\Roaming\WingGo\winggo.dll -/- {003B9765-AB24-47E6-8DB6-6A1A0CE11BC9}
----------------------------------------------------------------------
NA001 adkongga.co.kr/_app/app_action.php?pi=aeeto&gu=212F6A75157AEA22**.***
NA002 api.admatching.co.kr/admatching/info.php?pid=ad036&cid=000c293e**.***
NA003 api.admatching.co.kr/admatching/matchsitelist.php?pid=ad036&cid**.***
NA004 api.admatching.co.kr/admatching/ovt_log.php?pid=ad036&cid=000c2**.***
NA005 api.admatching.co.kr/admatching/update_mb.php?pid=ad036&cid=000**.***
NA006 api.admatching.co.kr/admatching/urlmatchlist.php?pid=ad036&cid=**.***
NA007 api.admatching.co.kr/admatching/urlmatchlist_coworker.php?pid=a**.***
NA008 api.admatching.co.kr/admatching/urlmatchlist_merchant.php?pid=a**.***
NA009 boosting.co.kr/request_update/request.php?action=install&mac=:0**.***
NA010 cnt.baroicon.com/log/?modeAct=install&iMAC=000c293ecd7f&iPID=br**.***
NA011 cnt.baroicon.com/log/?modeAct=run&iMAC=000c293ecd7f&iPID=*.***
NA012 cnt.baroicon.com/xml.php?xcode=brcp&iMAC=000c293e*.***
NA013 crl.microsoft.com/pki/crl/products/CodeSignPCA*.***
NA014 crl.microsoft.com/pki/crl/products/CodeSignPCA2*.***
NA015 crl.microsoft.com/pki/crl/products/microsoftrootcert*.***
NA016 crl.microsoft.com/pki/crl/products/MicrosoftTimeStampPCA*.***
NA017 crl.microsoft.com/pki/crl/products/WinPCA*.***
NA018 directkeyword.co.kr/daemon/ServiceReport.php?m=000C293ECD7F&t=B**.***
NA019 directkeyword.co.kr/daemon/ServiceReport.php?m=000C293ECD7F&t=I**.***
NA020 directkeyword.co.kr/daemon/SetActiveCount_new.php?companyID=a10**.***
NA021 directkeyword.co.kr/update/install2.php?companyID=a1030&mac=000**.***
NA022 down.baroicon.com/Setup_brcp_h*.***
NA023 down.blogdanawa.com/down/adInstall_ad036*.***
NA024 down.utilbada.com/pds/2012/09/24/jre-7u7-windows-x64.exe.d13af1**.***
NA025 emang.co.kr/app/1123/DKSetup21_a1030*.***
NA026 emang.co.kr/app/1207/boosting_share*.***
NA027 k.winggo.co.kr/log/ad-ClicksTab.php?midx=176&method=1&iCode=01&**.***
NA028 k.winggo.co.kr/log/ad-ClicksTab.php?midx=176&method=3&iCode=01&**.***
NA029 k.winggo.co.kr/log/liveCheck*.***
NA030 kanmay.cafe24.com/data*.***
NA031 kanmay.cafe24.com/part10*.***
NA032 kanmay.cafe24.com/xxx*.***
NA033 kongga.co.kr/da/aeeto*.***
NA034 mscrl.microsoft.com/pki/mscorp/crl/mswww(5)*.***
NA035 mscrl.microsoft.com/pki/mscorp/crl/mswww(6)*.***
NA036 rank.search.naver.net/nexearch_utf8_v2.js?sm=tab_lve&callcntdum**.***
NA037 rightclick.co.kr/check_counter.php?pi=son011&gu=212F6A75157AEA2**.***
NA038 s.winggo.co.kr/SM3/utiljjangSetup*.***
NA039 stylegroup.kr/SM3/sm12042*.***
NA040 stylegroup.kr/SM3/smlist*.***
NA041 stylegroup.kr/SM3/winggo*.***
NA042 stylegroup.kr/SM3/winggom*.***
NA043 stylegroup.kr/SM3/winggou*.***
NA044 svc.winsmanager.com/apps/act.php?_pi=bacde0aa060b233b484f6f758e**.***
NA045 u.winsmanager.com/luncher/inst_launcher_wmg011*.***
NA046 u.winsmanager.com/setup/check_wsm*.***
NA047 undersite.kr/config/set*.***
NA048 undersite.kr/daemon/search.php?companyID=a1030&domain=naver.com**.***
NA049 up.winerset.com/130116/barocn/IETab__IE105*.***
NA050 up.winerset.com/130116/barocn/UtilZone__UZ82*.***
NA051 up.winerset.com/130116/barocn/WinPro__WP82*.***
NA052 up.winerset.com/130116/barocn/winspop_baro*.***
NA053 up.winerset.com/130313/ashop/baba/deskvaccine*.***
NA054 up.winerset.com/130313/ashop/baba/Setup-baB*.***
NA055 up.winerset.com/130313/ashop/baba/Setwepop*.***
NA056 update.nkdb.co.kr/version/except/excp*.***
NA057 update.ucfdb.co.kr/version/except/excp*.***
NA058 update.updatevaccine.co.kr/setupa/updatevaccinesetup_divide.exe**.***
NA059 update.updatevaccine.co.kr/version/bina/EGutil*.***
NA060 update.updatevaccine.co.kr/version/bina/uninst_updatevaccine.ex**.***
NA061 update.updatevaccine.co.kr/version/bina/updatevaccine*.***
NA062 update.updatevaccine.co.kr/version/bina/updatevaccinestart*.***
NA063 update.updatevaccine.co.kr/version/bina/updatevaccineu*.***
NA064 update.updatevaccine.co.kr/version/bina/vcncmndb*.***
NA065 update.updatevaccine.co.kr/version/ver*.***
NA066 update.windowfaster.co.kr/bin/bootflash*.***
NA067 update.windowfaster.co.kr/bin/pcspeedflash*.***
NA068 update.windowfaster.co.kr/bin/uninst_windowfaster*.***
NA069 update.windowfaster.co.kr/bin/windowfaster*.***
NA070 update.windowfaster.co.kr/bin/windowfasterEngine*.***
NA071 update.windowfaster.co.kr/bin/windowfasterse*.***
NA072 update.windowfaster.co.kr/bin/windowfasterU*.***
NA073 update.windowfaster.co.kr/set/windowfastersetup_raon*.***
NA074 update.windowfaster.co.kr*.***
NA075 updatevaccine.co.kr/app_ctr.php?strID=divide&strPC=00:0C:29:3E:**.***
NA076 updatevaccine.co.kr/dbk*.***
NA077 updatevaccine.co.kr/mbk.php?v1=divide&v2=00:0C:29:3E:C*.***
NA078 updatevaccine.co.kr/settle.php?strID=divide&strPC=00:0C:29:3E:C**.***
NA079 updatevaccine.co.kr/value.php?strID=divide&strPC=00:0C:29:3E:CD**.***
NA080 upstat.updatevaccine.co.kr/APP/ck_setup.php?m=00:0C:29:3E:CD:7F**.***
NA081 upstat.windowfaster.co.krAPP/ck_setup.php?m=00:0C:29:3E:CD:7F**.***
NA082 utilshare.com/down2/ad/banner/ad*.***
NA083 utilshare.com/down2/ad/banner/lottofriend*.***
NA084 utilshare.com/down2/dnfile_101216.ini*.***
NA085 utilshare.com/down2/find_dnfile.php?u=53-11912_jre-7u7-windows-**.***
NA086 werpingad.com/_app/tc_action4.php?pi=code13&gu=00-0C-29-3E-CD-7**.***
NA087 windowfaster.co.kr/dbk*.***
NA088 windowfaster.co.kr/etc/yak_app*.***
NA089 windowfaster.co.kr/mbk.php?v1=raon&v2=00:0C:29:3E:C*.***
NA090 windowfaster.co.kr/settle.php?strID=raon&strPC=00:0C:29:3E:CD:7**.***
NA091 windowfaster.co.kr/value.php?strMode=run&strID=raon&strPC=00:0C**.***
NA092 windowfaster.co.kr/value.php?strMode=setup&strID=raon&strPC=00:**.***
NA093 winggo.co.kr/MIN/log/LogProc.php?pCode=176&mode=EL2&mac=212f6a7**.***
NA094 winggo.co.kr/MIN/log/LogProc.php?pCode=176&mode=IL2&mac=212f6a7**.***
NA095 winggo.co.kr/MIN/log/LogProc.php?pCode=176&mode=UL2&mac=212f6a7**.***
NA096 winggo.co.kr/MIN/log/LogProc3.php?pCode=176&mode=ELG2&mac=212f6**.***
NA097 ww*.adkongga.co.kr/_app/adtab.php?gu=212F6A75157AEA22CC763CC77C**.***
NA098 ww*.adkongga.co.kr/_app/kgainfo.php?gu=212F6A75157AEA22CC763CC7**.***
NA099 ww*.clearboan.com/clearboan*.***
NA100 ww*.kongga.co.kr/_app/data/ominfo*.***
NA101 ww*.microsoft.com/pkiops/crl/MicSecSerCA2011_2011-10-18*.***
NA102 ww*.naver.*.***
NA103 ww*.optimaspeed.com/optimaspeed*.***
NA104 ww*.rightclick.co.kr/down/RaclSetup_son011*.***
NA105 ww*.topclick.kr/down/NM_code13*.***
NA106 ww*.updatevaccine.co.kr/APP/pf_ck.php?v1=di*.***
NA107 ww*.updatevaccine.co.kr/APP/stat.php?v1=1&v2=divide&v3=PTs1OTlB**.***
NA108 ww*.utilshare.com/app_linkage/app_download.php?p=53&u=1*.***
NA109 ww*.werpingad.com/_app/tc_appctrl4.php?gu=00-0C-29-3E-CD-7F&pi=**.***
NA110 ww*.werpingad.com/_app/tc_iectrl4.php?gu=00-0C-29-3E-CD-7F&pi=c**.***
NA111 ww*.werpingad.com/_app/tcsvrctl4.php?gu=00-0C-29-3E-CD-7F&pi=co**.***
NA112 ww*.windowfaster.co.kr/APP/pf_ck.php?v1=*.***
NA113 ww*.windowfaster.co.kr/APP/stat.php?v1=1&v2=raon&v3=PTs1OTlBOTp**.***
NA114 youn1104.cafe24.com/log/?modeAct=INSTALL&iMAC=000c293ecd7f&iPID**.***
NA115 youn1104.cafe24.com/log/ctpep*.***
----------------------------------------------------------------------
Deleted Files : 51
Remove Service : 5
Remove Uninstall Entry : 12
Remove Startup Entry : 13
Remove Browser Helper Object : 3
Remove Toolbar : 2
----------------------------------------------------------------------
Remove these Entry in a WindowexeAllkiller.txt file. Save and Run.
WindowexeAllkiller Remove Database 2013-03-25
[01-HKCUREG]**MetablogNewIssues
[01-HKCUREG]**metablogagent
[01-HKCUREG]**DirectKeyword2
[01-HKCUREG]**boosting
[01-HKCUREG]**WingGo
[02-HKLMREG]**updatevaccine main
[02-HKLMREG]**updatevaccinestart.exe
[02-HKLMREG]**KongGa
[02-HKLMREG]**kgaprot
[02-HKLMREG]**topopc
[02-HKLMREG]**ctdata
[02-HKLMREG]**Racl
[02-HKLMREG]**DirectKeyword2
[03-BHOCLSD]**{002B9765-AB24-47E6-8DB6-6A1A0CE11BC9}
[03-BHOCLSD]**{432339F4-9FDC-43BA-99C2-FEE0D9EA7C74}
[03-BHOCLSD]**{7760E6D4-CC93-4495-981B-5E23919D602A}
[04-TOOLBAR]**{BCE04A5B-2B7D-4F4B-BB8E-2A59611733DD}
[04-TOOLBAR]**{003B9765-AB24-47E6-8DB6-6A1A0CE11BC9}
[05-SERVICE]**DirectKeywordUpdateService
[05-SERVICE]**KongGa
[05-SERVICE]**barocn
[05-SERVICE]**WindowsDriver
[05-SERVICE]**windowfasterService
----------------------------------------------------------------------
Total Processing Time : 57ms
----------------------------------------------------------------------

신고



요즘 휴대폰 소액결제(월정액 자동결제)를 이용한 사기사이트 및 사기프로그램이 판을 치고 있습니다.
무료백신 프로그램, 무료개인정보삭제 프로그램, 무료 유해사이트차단 프로그램, 무료파일다운, 무료문자, 무료운세, 무료로또, 무료게임, 무료MP3등의 사이트에서 휴대폰 및 일반전화로 절대 인증 하지마세요.

인증하는 즉시 결제되며, 서비스를 해지하지 않는 이상 매월 자동결제됩니다. (인증번호 = 결제번호)
업체마다 결제되는 기간은 다르지만 짧게는 2년, 길게는 20년, 최대 50년짜리도 있습니다.
서비스 업체의 이용약관 및 결제내용에 대해 확실히 알고 인증/사용하시기 바랍니다.
안드로이드계열 스마트폰에서 출처가 없는 설치파일도 다운받지말고 실행하지도 마세요.
해당 통신사에 전화해서 소액결제 안되게끔 차단시키세요. (스마트폰에 무지한 아이들/노인분들 주의)

*악덕업체의 요청으로 인하여 블로그의 게시글이 이유없이 삭제되는 경우 구글 블로그에 재게시 합니다.
[ 2013.03.25 06:32 ] Posted by windowexe.com , 프로그램분석

댓글을 달아 주세요