Code : WxFvPkyBG0xSZRIvexbRRQe6+J0UZyeR7P+QMl7JzSw=

프로그램분석

Code : WxFvPkyBG0xSZRIvexbRRQe6+J0UZyeR7P+QMl7JzSw=

프로세스 천국 2013. 3. 19. 20:12

Code : PlDdD2wHeG4=
NA000 ======================================================================
NA001 echo Created by Windowexe.com / do not delete this label.
NA002 ======================================================================
NA003 echo Start
NA004 echo windowexe.com & tskill "natsvc" & echo windowdel.com
NA005 echo windowexe.com & tskill "GomHelperSvc" & echo windowdel.com
NA006 echo windowexe.com & tskill "bbodiskService" & echo windowdel.com
NA007 echo windowexe.com & tskill "MultiDownloadUpdate" & echo windowdel.com
NA008 echo windowexe.com & tskill "MultiDownLoad" & echo windowdel.com
NA009 echo windowexe.com & tskill "conzstart" & echo windowdel.com
NA010 echo windowexe.com & tskill "conz" & echo windowdel.com
NA011 echo windowexe.com & tskill "MultiDownLoadSvc" & echo windowdel.com
NA012 echo windowexe.com & tskill "STARUpdate" & echo windowdel.com
NA013 echo windowexe.com & tskill "starpdfup" & echo windowdel.com
NA014 echo windowexe.com & tskill "btniaoa" & echo windowdel.com
NA015 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "AhnLab V3Lite Update Process" /f
NA016 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "AhnLab V3Lite Update Process" /f
NA017 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "StarPDFMain" /f
NA018 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "StarPDFMain" /f
NA019 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "startoolsup" /f
NA020 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "startoolsup" /f
NA021 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "conz" /f
NA022 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "conz" /f
NA023 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "itor6" /f
NA024 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "itor6" /f
NA025 echo HKEY_LOCAL_MACHINE BHO Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A14EAA16-CA35-4666-845A-DC084DCDF356}" /f
NA026 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A14EAA16-CA35-4666-845A-DC084DCDF356}" /f
NA027 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A14EAA16-CA35-4666-845A-DC084DCDF356}" /f
NA028 echo HKEY_CLASSES_ROOT.CLSID Delete & reg.exe delete "HKCR\CLSID\{A14EAA16-CA35-4666-845A-DC084DCDF356}" /f
NA029 echo Created by Windowexe.com
NA030 echo HKEY_LOCAL_MACHINE BHO Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{375A6AB2-FEEC-445D-B853-2139FB561F80}" /f
NA031 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{375A6AB2-FEEC-445D-B853-2139FB561F80}" /f
NA032 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{375A6AB2-FEEC-445D-B853-2139FB561F80}" /f
NA033 echo HKEY_CLASSES_ROOT.CLSID Delete & reg.exe delete "HKCR\CLSID\{375A6AB2-FEEC-445D-B853-2139FB561F80}" /f
NA034 echo Created by Windowexe.com
NA035 echo HKEY_LOCAL_MACHINE BHO Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00BBAE73-ED37-450F-BD6B-C6C9CBAC91BD}" /f
NA036 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00BBAE73-ED37-450F-BD6B-C6C9CBAC91BD}" /f
NA037 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{00BBAE73-ED37-450F-BD6B-C6C9CBAC91BD}" /f
NA038 echo HKEY_CLASSES_ROOT.CLSID Delete & reg.exe delete "HKCR\CLSID\{00BBAE73-ED37-450F-BD6B-C6C9CBAC91BD}" /f
NA039 echo Created by Windowexe.com
NA040 sc stop "RunS"
NA041 echo Service Disable & sc config "RunS" start= disabled & echo Windowexe.com
NA042 sc stop "NATService"
NA043 echo Service Disable & sc config "NATService" start= disabled & echo Windowexe.com
NA044 sc stop "GomHelper Update Services"
NA045 echo Service Disable & sc config "GomHelper Update Services" start= disabled & echo Windowexe.com
NA046 sc stop "bbodiskService"
NA047 echo Service Disable & sc config "bbodiskService" start= disabled & echo Windowexe.com
NA048 echo HKEY_LOCAL_MACHINE EB Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F37C59DB-A6DA-4682-AE30-4E05CD288308}" /f
NA049 echo HKCU EB Delete & reg.exe delete "HKCU\Software\Microsoft\Internet Explorer\Extensions\{F37C59DB-A6DA-4682-AE30-4E05CD288308}" /f
NA050 echo Created by Windowexe.com
NA051 echo HKEY_LOCAL_MACHINE EB Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{71DF21B0-8C69-4923-8C7B-B195F8DDB5CD}" /f
NA052 echo HKCU EB Delete & reg.exe delete "HKCU\Software\Microsoft\Internet Explorer\Extensions\{71DF21B0-8C69-4923-8C7B-B195F8DDB5CD}" /f
NA053 echo Created by Windowexe.com
NA054 echo HKEY_LOCAL_MACHINE EB Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{55F094D6-B484-48D1-AAE0-7D48F16FB3EE}" /f
NA055 echo HKCU EB Delete & reg.exe delete "HKCU\Software\Microsoft\Internet Explorer\Extensions\{55F094D6-B484-48D1-AAE0-7D48F16FB3EE}" /f
NA056 echo Created by Windowexe.com
NA057 echo HKEY_LOCAL_MACHINE EB Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{013BCEA5-8309-448b-8604-85F23D7861A5}" /f
NA058 echo HKCU EB Delete & reg.exe delete "HKCU\Software\Microsoft\Internet Explorer\Extensions\{013BCEA5-8309-448b-8604-85F23D7861A5}" /f
NA059 echo Created by Windowexe.com
NA060 echo 000 & reg.exe delete "HKCR\CLSID\{AB565455-38B6-47EC-AE13-DC0A456B0550}" /f & echo windowdel.com
NA061 echo Created by Windowexe.com
NA062 echo End
NA063 ======================================================================
NA064 echo Created by Windowexe.com / do not delete this label.
NA065 ======================================================================