애드웨어, 허위백신, 팝업광고, 쇼핑몰 바로가기, 악성툴바, 각종 개쓰레기 프로그램 삭제 요청하기
이용약관을 안내하며 컴퓨터에 설치하는 개쓰레기 프로그램들은 백신으로 백날 돌려봐야 검색이 안됩니다.
개쓰레기 프로그램들은 아주 지능적이라서 전문가가 아니고서는 찾아내기가 어렵습니다.
요 며칠사이 이상한 놈이 계속 굴러들어온다.
sysctrl.exe 하고 ieAdvMgr.exe 요놈.
SysControl -/- System Control -/- Auto/Stopped -/- -/- C:\Windows\sysctrl.exe
ieAdvanceManager -/- Internet Advance Manager -/- Auto/Stopped -/- -/- C:\Program Files\Internet Explorer\ieAdvMgr.exe
ieAdvMgr 얘는 광고프로그램같고 sysctrl 얘는 뭔지 모르겠다.
이 프로그램도 NetCtrlMgr.exe 프로그램을 배포하는 사이트와 동일하다.
Code : J96EqBmHY9OBmpKGoy938fC24Oj6ZthkKOZDSXAlJNhD7JkNrwQtdfobykvWzvIdJUKtKXujECW1kHrum+JBXGyGnipwtql1
[00-PROCESS]**DaumCleaner -/- C:\Program Files\Daum\Cleaner\DaumCleaner.exe
[00-PROCESS]**DaumCleaner -/- C:\Program Files\Daum\Cleaner\DaumCleaner.exe
[00-PROCESS]**DaumCleanerAdmin -/- C:\Program Files\Daum\Cleaner\DaumCleanerAdmin.exe
[00-PROCESS]**DaumCleanerAdmin32 -/- C:\Program Files\Daum\Cleaner\DaumCleanerAdmin32.exe
[00-PROCESS]**DaumCleanerService -/- C:\Program Files\Daum\Cleaner\DaumCleanerService.exe
[00-PROCESS]**DaumCleanerService -/- C:\Program Files\Daum\Cleaner\DaumCleanerService.exe
[00-PROCESS]**ieAdvMgr -/- C:\Program Files\Internet Explorer\ieAdvMgr.exe
[00-PROCESS]**ieAdvMgr -/- C:\Program Files\Internet Explorer\ieAdvMgr.exe
[00-PROCESS]**IEXPLORE -/- C:\Program Files\Internet Explorer\IEXPLORE.EXE
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**sysctrl -/- C:\Windows\sysctrl.exe
[00-PROCESS]**sysctrl -/- C:\Windows\sysctrl.exe
[00-PROCESS]**TPAutoConnSvc -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[00-PROCESS]**UnInExplorer -/- C:\Program Files\FileCity\Explorer\UnInExplorer.exe
[00-PROCESS]**upsvc -/- C:\Program Files\NAT Service\upsvc.exe
[00-PROCESS]**VMwareService -/- C:\Program Files\VMware\VMware Tools\VMwareService.exe
[00-PROCESS]**VMwareTray -/- C:\Program Files\VMware\VMware Tools\VMwareTray.exe
[00-PROCESS]**VMwareUser -/- C:\Program Files\VMware\VMware Tools\VMwareUser.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**DaumCleaner -/- C:\Program Files\Daum\Cleaner\DaumCleaner.exe /T
[01-HKCUREG]**VMware Tools -/- C:\Program Files\VMware\VMware Tools\VMwareTray.exe
[01-HKCUREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\VMwareUser.exe
[02-HKLMREG]**DaumCleaner -/- C:\Program Files\Daum\Cleaner\DaumCleaner.exe /T
[02-HKLMREG]**VMware Tools -/- C:\Program Files\VMware\VMware Tools\VMwareTray.exe
[02-HKLMREG]**VMware User Process -/- C:\Program Files\VMware\VMware Tools\VMwareUser.exe
[03-BHOCLSD]**{BDDB5A00-D1EB-49D5-B197-72A06DF78AA1} -/- C:\Program Files\Daum\Cleaner\DaumStart.1.5.0.118.dll
[05-SERVICE]**DaumCleanerService -/- C:\Program Files\Daum\Cleaner\DaumCleanerService.exe
[05-SERVICE]**ieAdvanceManager -/- C:\Program Files\Internet Explorer\ieAdvMgr.exe
[05-SERVICE]**NetTcpPortSharing -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**PerfHost -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**SysControl -/- C:\Windows\sysctrl.exe
[05-SERVICE]**TPAutoConnSvc -/- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
[05-SERVICE]**VMTools -/- C:\Program Files\VMware\VMware Tools\VMwareService.exe
[05-SERVICE]**vmvss -/- C:\Windows\system32\dllhost.exe
======================================================================
echo Created by Windowexe.com / do not delete this label.
======================================================================
echo Start
echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "DaumCleaner" /f
echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "DaumCleaner" /f
echo HKEY_LOCAL_MACHINE BHO Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDDB5A00-D1EB-49D5-B197-72A06DF78AA1}" /f
echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BDDB5A00-D1EB-49D5-B197-72A06DF78AA1}" /f
echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BDDB5A00-D1EB-49D5-B197-72A06DF78AA1}" /f
echo HKEY_CLASSES_ROOT.CLSID Delete & reg.exe delete "HKCR\CLSID\{BDDB5A00-D1EB-49D5-B197-72A06DF78AA1}" /f
echo Created by Windowexe.com
sc stop "DaumCleanerService"
echo Service Disable & sc config "DaumCleanerService" start= disabled & echo Windowexe.com
sc stop "ieAdvanceManager"
echo Service Disable & sc config "ieAdvanceManager" start= disabled & echo Windowexe.com
sc stop "SysControl"
echo Service Disable & sc config "SysControl" start= disabled & echo Windowexe.com
echo change dir for x64
cd %windir%
cd syswow64
echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "DaumCleaner" /f
echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "DaumCleaner" /f
echo HKEY_LOCAL_MACHINE BHO Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDDB5A00-D1EB-49D5-B197-72A06DF78AA1}" /f
echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BDDB5A00-D1EB-49D5-B197-72A06DF78AA1}" /f
echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BDDB5A00-D1EB-49D5-B197-72A06DF78AA1}" /f
echo HKEY_CLASSES_ROOT.CLSID Delete & reg.exe delete "HKCR\CLSID\{BDDB5A00-D1EB-49D5-B197-72A06DF78AA1}" /f
echo Created by Windowexe.com
sc stop "DaumCleanerService"
echo Service Disable & sc config "DaumCleanerService" start= disabled & echo Windowexe.com
sc stop "ieAdvanceManager"
echo Service Disable & sc config "ieAdvanceManager" start= disabled & echo Windowexe.com
sc stop "SysControl"
echo Service Disable & sc config "SysControl" start= disabled & echo Windowexe.com
echo End
======================================================================
echo Created by Windowexe.com / do not delete this label.
======================================================================
요즘 휴대폰 소액결제(월정액 자동결제)를 이용한 사기사이트 및 사기프로그램이 판을 치고 있습니다.
무료백신 프로그램, 무료개인정보삭제 프로그램, 무료 유해사이트차단 프로그램, 무료파일다운, 무료문자, 무료운세, 무료로또, 무료게임, 무료MP3등의 사이트에서 휴대폰 및 일반전화로 절대 인증 하지마세요.
인증하는 즉시 결제되며, 서비스를 해지하지 않는 이상 매월 자동결제됩니다. (인증번호 = 결제번호)
업체마다 결제되는 기간은 다르지만 짧게는 2년, 길게는 20년, 최대 50년짜리도 있습니다.
서비스 업체의 이용약관 및 결제내용에 대해 확실히 알고 인증/사용하시기 바랍니다.
안드로이드계열 스마트폰에서 출처가 없는 설치파일도 다운받지말고 실행하지도 마세요.
해당 통신사에 전화해서 소액결제 안되게끔 차단시키세요. (스마트폰에 무지한 아이들/노인분들 주의)
*악덕업체의 요청으로 인하여 블로그의 게시글이 이유없이 삭제되는 경우 구글 블로그에 재게시 합니다.
