Code : fFGMt4HNWY7HsivsAvcn9SA+KgRzyPHrHkhYtPYVZJg=

프로그램분석

Code : fFGMt4HNWY7HsivsAvcn9SA+KgRzyPHrHkhYtPYVZJg=

프로세스 천국 2013. 3. 3. 06:34

System Analyzer Report 2013, 03, 03

NA001 ======================================================================
NA002 echo Created by Windowexe.com / do not delete this label.
NA003 ======================================================================
NA004 echo Start
NA005 echo windowexe.com & tskill "DirectKeyword2" & echo windowdel.com
NA006 echo windowexe.com & tskill "appcon" & echo windowdel.com
NA007 echo windowexe.com & tskill "barosvc" & echo windowdel.com
NA008 echo windowexe.com & tskill "ctpopsvc" & echo windowdel.com
NA009 echo windowexe.com & tskill "Microsource_se" & echo windowdel.com
NA010 echo windowexe.com & tskill "nsearchx" & echo windowdel.com
NA011 echo windowexe.com & tskill "nxsub" & echo windowdel.com
NA012 echo windowexe.com & tskill "WHelp" & echo windowdel.com
NA013 echo windowexe.com & tskill "WinSuggestionsU" & echo windowdel.com
NA014 echo windowexe.com & tskill "DirectKeywordUpdateService" & echo windowdel.com
NA015 echo windowexe.com & tskill "Updater" & echo windowdel.com
NA016 echo windowexe.com & tskill "pinomate" & echo windowdel.com
NA017 echo windowexe.com & tskill "GuardConvert" & echo windowdel.com
NA018 echo windowexe.com & tskill "MicroProCon" & echo windowdel.com
NA019 echo windowexe.com & tskill "MicroProProc" & echo windowdel.com
NA020 echo windowexe.com & tskill "rpgchk" & echo windowdel.com
NA021 echo windowexe.com & tskill "RPGManager" & echo windowdel.com
NA022 echo windowexe.com & tskill "RPGSvcMan" & echo windowdel.com
NA023 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "WHelp\"" /f
NA024 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "WHelp\"" /f
NA025 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "Windowns Suggestions" /f
NA026 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "Windowns Suggestions" /f
NA027 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "pinomate" /f
NA028 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "pinomate" /f
NA029 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "DirectKeyword2" /f
NA030 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "DirectKeyword2" /f
NA031 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "DragSearch" /f
NA032 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "DragSearch" /f
NA033 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "RapidGet" /f
NA034 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "RapidGet" /f
NA035 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "rpga" /f
NA036 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "rpga" /f
NA037 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "WHelp" /f
NA038 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "WHelp" /f
NA039 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "MultiAddress.exe" /f
NA040 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "MultiAddress.exe" /f
NA041 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "DirectKeyword2" /f
NA042 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "DirectKeyword2" /f
NA043 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "appcon" /f
NA044 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "appcon" /f
NA045 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "GuardSupport" /f
NA046 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "GuardSupport" /f
NA047 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "MicroProCon" /f
NA048 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "MicroProCon" /f
NA049 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "MicroLabCon" /f
NA050 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "MicroLabCon" /f
NA051 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "MicroLabProc" /f
NA052 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "MicroLabProc" /f
NA053 echo HKCU Startup Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "MicroProProc" /f
NA054 echo HKLM Startup Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "MicroProProc" /f
NA055 echo HKEY_LOCAL_MACHINE BHO Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{09A1A7FF-47CF-4b75-9449-AC292F4CCAF7}" /f
NA056 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{09A1A7FF-47CF-4b75-9449-AC292F4CCAF7}" /f
NA057 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{09A1A7FF-47CF-4b75-9449-AC292F4CCAF7}" /f
NA058 echo HKEY_CLASSES_ROOT.CLSID Delete & reg.exe delete "HKCR\CLSID\{09A1A7FF-47CF-4b75-9449-AC292F4CCAF7}" /f
NA059 echo Created by Windowexe.com
NA060 echo HKEY_LOCAL_MACHINE BHO Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F2CF04D-300B-49A2-A23B-407D27FB9BFB}" /f
NA061 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2F2CF04D-300B-49A2-A23B-407D27FB9BFB}" /f
NA062 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2F2CF04D-300B-49A2-A23B-407D27FB9BFB}" /f
NA063 echo HKEY_CLASSES_ROOT.CLSID Delete & reg.exe delete "HKCR\CLSID\{2F2CF04D-300B-49A2-A23B-407D27FB9BFB}" /f
NA064 echo Created by Windowexe.com
NA065 echo HKEY_LOCAL_MACHINE BHO Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}" /f
NA066 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}" /f
NA067 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}" /f
NA068 echo HKEY_CLASSES_ROOT.CLSID Delete & reg.exe delete "HKCR\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}" /f
NA069 echo Created by Windowexe.com
NA070 echo HKEY_LOCAL_MACHINE BHO Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{375A6AB2-FEEC-445D-B853-2139FB561F80}" /f
NA071 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{375A6AB2-FEEC-445D-B853-2139FB561F80}" /f
NA072 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{375A6AB2-FEEC-445D-B853-2139FB561F80}" /f
NA073 echo HKEY_CLASSES_ROOT.CLSID Delete & reg.exe delete "HKCR\CLSID\{375A6AB2-FEEC-445D-B853-2139FB561F80}" /f
NA074 echo Created by Windowexe.com
NA075 echo HKEY_LOCAL_MACHINE BHO Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3E5EF872-03E2-4CE0-94DF-CA8A5004ECFD}" /f
NA076 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3E5EF872-03E2-4CE0-94DF-CA8A5004ECFD}" /f
NA077 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3E5EF872-03E2-4CE0-94DF-CA8A5004ECFD}" /f
NA078 echo HKEY_CLASSES_ROOT.CLSID Delete & reg.exe delete "HKCR\CLSID\{3E5EF872-03E2-4CE0-94DF-CA8A5004ECFD}" /f
NA079 echo Created by Windowexe.com
NA080 echo HKEY_LOCAL_MACHINE BHO Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDF73E69-1E86-4496-B004-884CE4FAA8F3}" /f
NA081 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BDF73E69-1E86-4496-B004-884CE4FAA8F3}" /f
NA082 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BDF73E69-1E86-4496-B004-884CE4FAA8F3}" /f
NA083 echo HKEY_CLASSES_ROOT.CLSID Delete & reg.exe delete "HKCR\CLSID\{BDF73E69-1E86-4496-B004-884CE4FAA8F3}" /f
NA084 echo Created by Windowexe.com
NA085 echo HKEY_LOCAL_MACHINE BHO Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C8B79474-B0E1-4265-B076-F35129969D8F}" /f
NA086 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C8B79474-B0E1-4265-B076-F35129969D8F}" /f
NA087 echo HKEY_CURRENT_USER.BHO.Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C8B79474-B0E1-4265-B076-F35129969D8F}" /f
NA088 echo HKEY_CLASSES_ROOT.CLSID Delete & reg.exe delete "HKCR\CLSID\{C8B79474-B0E1-4265-B076-F35129969D8F}" /f
NA089 echo Created by Windowexe.com
NA090 echo HKEY_LOCAL_MACHINE Toolbar Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar" /v "{30F9B915-B755-4826-820B-08FBA6BD249D}" /f
NA091 echo HKEY_CURRENT_USER Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser" /v "{30F9B915-B755-4826-820B-08FBA6BD249D}" /f
NA092 echo HKCU Search Hook Delete & reg.exe delete "HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks" /v "{30F9B915-B755-4826-820B-08FBA6BD249D}" /f
NA093 echo HKEY_LOCAL_MACHINE Ext PreApproved Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{30F9B915-B755-4826-820B-08FBA6BD249D}" /f
NA094 echo HKEY_CURRENT_USER Ext Stats Delete & reg.exe delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}" /f
NA095 echo HKEY_CLASSES_ROOT CLSID Delete & reg.exe delete "HKCR\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}" /f
NA096 echo Created by Windowexe.com
NA097 sc stop "autokwds"
NA098 echo Service Disable & sc config "autokwds" start= disabled & echo Windowexe.com
NA099 sc stop "barocn"
NA100 echo Service Disable & sc config "barocn" start= disabled & echo Windowexe.com
NA101 sc stop "ctwopop"
NA102 echo Service Disable & sc config "ctwopop" start= disabled & echo Windowexe.com
NA103 sc stop "DirectKeywordUpdateService"
NA104 echo Service Disable & sc config "DirectKeywordUpdateService" start= disabled & echo Windowexe.com
NA105 sc stop "Microsource Update Service"
NA106 echo Service Disable & sc config "Microsource Update Service" start= disabled & echo Windowexe.com
NA107 sc stop "nsearchx"
NA108 echo Service Disable & sc config "nsearchx" start= disabled & echo Windowexe.com
NA109 sc stop "RPGSvcman"
NA110 echo Service Disable & sc config "RPGSvcman" start= disabled & echo Windowexe.com
NA111 sc stop "WindowsDriver"
NA112 echo Service Disable & sc config "WindowsDriver" start= disabled & echo Windowexe.com
NA113 echo HKEY_LOCAL_MACHINE EB Delete & reg.exe delete "HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{013BCEA5-8309-448b-8604-85F23D7861A5}" /f
NA114 echo HKCU EB Delete & reg.exe delete "HKCU\Software\Microsoft\Internet Explorer\Extensions\{013BCEA5-8309-448b-8604-85F23D7861A5}" /f
NA115 echo Created by Windowexe.com
NA116 echo schtasks Delete & schtasks /delete /tn "MicroWebAD Installer 1.1" /f
NA117 echo Created by Windowexe.com
NA118 echo schtasks Delete & schtasks /delete /tn "Uninstall Windows Address Search Package" /f
NA119 echo Created by Windowexe.com
NA120 echo 000 & reg.exe delete "HKCR\CLSID\{CE70F673-E2D3-4711-B329-4ADE0E524C6B}" /f & echo windowdel.com
NA121 echo 000 & reg.exe delete "HKCR\TypeLib\{FEAB3553-F7EC-4685-90E0-C24720015386}" /f & echo windowdel.com
NA122 echo Created by Windowexe.com
NA123 echo End
NA124 ======================================================================
NA125 echo Created by Windowexe.com / do not delete this label.
NA126 ======================================================================