[AD79] Processing Time(Remove All) : 56ms

hxxp://114.200.199.251/b3aliveins.php?mac=111111111&ip=192.168.1.54&pid=taurus&app=
hxxp://114.200.199.251/b3aliveins.php?mac=111111111&ip=192.168.1.54&pid=taurus&app=somnusy.exe%3B
hxxp://114.200.199.251/b4ains.php?mac=111111111&ip=192.168.1.54&pid=taurus&setup=1
hxxp://114.200.199.251/b4aliveins.php?mac=111111111&ip=192.168.1.54&pid=taurus&app=dis.exe%3Biau.exe%3B
hxxp://114.200.199.251/b4aliveins.php?mac=111111111&ip=192.168.1.54&pid=taurus&app=dis.exe%3Biau.exe%3Biningal.exe%3Bitoast.exe%3Bvanir.exe%3B
hxxp://114.200.199.251/b4aliveins.php?mac=111111111&ip=192.168.1.54&pid=taurus&app=usasy.exe%3B
hxxp://114.200.199.251/b7ins.php?mac=111111111&ip=192.168.1.54&pid=vanir&setup=1
hxxp://114.200.199.251/b7liveins.php?mac=111111111&ip=192.168.1.54&pid=vanir&app=
hxxp://114.200.199.251/fie/liveins.php?mac=111111111&ip=192.168.1.54&pid=
hxxp://114.200.199.251/fie/statins.php?mac=111111111&compare=111111111&ip=192.168.1.54&pid=&install=1
hxxp://114.200.199.251/liveins.php?mac=111111111&ip=192.168.1.54&pid=taurus
hxxp://114.200.199.251/prex/toast/liveins.php?mac=111111111&ip=192.168.1.54&pid=toast
hxxp://114.200.199.251/prex/toast/statins.php?mac=111111111&compare=111111111&ip=192.168.1.54&pid=toast&install=1
hxxp://114.200.199.251/prex/toast/toschk.php?pid=toast
hxxp://114.200.199.251/prex/toast/version_toast.php
hxxp://114.200.199.251/somnuse.php
hxxp://114.200.199.251/somnusy.php
hxxp://114.200.199.251/statins.php?mac=111111111&compare=111111111&ip=192.168.1.54&pid=taurus&install=1
hxxp://114.200.199.251/usase.php
hxxp://114.200.199.251/usasy.php
hxxp://114.200.199.251/vanir.php
hxxp://114.200.199.251/version2.php
hxxp://ad79.co.kr/dico/dis.exe
hxxp://ad79.co.kr/download.htm
hxxp://ad79.co.kr/favicon.ico
hxxp://ad79.co.kr/fie/iningal.exe
hxxp://ad79.co.kr/fie/sningal.exe
hxxp://ad79.co.kr/prex/newb/somnusy.exe
hxxp://ad79.co.kr/prex/newb/usasy.exe
hxxp://ad79.co.kr/prex/newb/vanir.exe
hxxp://ad79.co.kr/prex/taurus/staurus2.exe
hxxp://ad79.co.kr/setup.exe
hxxp://ad79.co.kr/sysh/iau.exe
hxxp://ad79.co.kr/test/ad79_activeX.js
hxxp://ad79.co.kr/toast/toast/itoast.exe
hxxp://ad79.co.kr/toast/toast/stoast.exe
hxxp://ad79.co.kr/prex/taurus/taurus2.exe
hxxp://ad79.co.kr/stip/ris/stir.ini
hxxp://ad79.co.kr/stip/stpp.ini
hxxp://iring4u.co.kr/bcklist.php
hxxp://iring4u.co.kr/favdel.php
hxxp://iring4u.co.kr/favorbutton.php
hxxp://iring4u.co.kr/fie/ico/11market.ico
hxxp://iring4u.co.kr/fie/ico/auctionicon.ico
hxxp://iring4u.co.kr/fie/ico/gmarket.ico
hxxp://iring4u.co.kr/prex/toast/statins.php?mac=111111111&ip=192.168.1.54&pid=toast&install=3

----------------------------------------------------------------------
Created by Windowexe.com , Logfile of WindowexeAllkiller
----------------------------------------------------------------------
Microsoft Windows XP Service Pack 3(5.1.2600.196608)
Intel(R) Core(TM) i3 CPU       M 380  @ 2.53GHz / 767.48 MB
x86 Family 6 Model 37 Stepping 5
Date : 2011-06-04
----------------------------------------------------------------------
DF000 C:\Documents and Settings\All Users\Documents\usase.exe
DF001 C:\Documents and Settings\All Users\Documents\usasy.exe
DF002 C:\Documents and Settings\Default User\Application Data\Microsoft\dis.exe
DF003 C:\Documents and Settings\Default User\Application Data\vanir.exe
DF004 C:\Documents and Settings\iau.exe
DF005 C:\Documents and Settings\staurus.exe
DF006 C:\iningal.exe
DF007 C:\itoast.exe
DF008 C:\Program Files\Common Files\somnuse.exe
DF009 C:\Program Files\Common Files\somnusy.exe
DF010 C:\Program Files\Ningal\fgo.exe
DF011 C:\Program Files\Ningal\ningal.exe
DF012 C:\Program Files\Ningal\nrp.exe
DF013 C:\Program Files\Ningal\unins000.exe
DF014 C:\Program Files\prex\fgo.exe
DF015 C:\Program Files\prex\prex.exe
DF016 C:\Program Files\prex\unins000.exe
DF017 C:\Program Files\prex\urp.exe
DF018 C:\Program Files\stip\rmip.exe
DF019 C:\Program Files\stip\stip.exe
DF020 C:\Program Files\stip\stpp.exe
DF021 C:\Program Files\stip\temp\taurus2.exe
DF022 C:\Program Files\stip\unins000.exe
DF023 C:\Program Files\toast\fgo.exe
DF024 C:\Program Files\toast\toast.exe
DF025 C:\Program Files\toast\trp.exe
DF026 C:\Program Files\toast\unins000.exe
DF027 C:\sningal.exe
DF028 C:\stoast.exe
DF029 C:\taurus2.exe
----------------------------------------------------------------------
UN033 prex version 1.0.0 -/- AD79 -/- {06A93486-8070-4750-A0BF-122CFC458B94}_is1 -/- hxxp://ad79.co.kr -/- hxxp://ad79.co.kr
UN034 toast version 1.0.0 -/- ad79 -/- {1AE70B7C-8EF9-4DF1-92FB-3F1B968FC0AF}_is1 -/- - -/- -
UN035 Ningal version 1.0.0 -/- ad79 -/- {D5DD046C-21DE-438B-8450-CF23F4B50748}_is1 -/- - -/- -
----------------------------------------------------------------------
LS036 stpp -/-
LS037 prex -/- C:\Documents and Settings\All Users\Documents\usase.exe
LS038 Usasy -/- C:\Documents and Settings\All Users\Documents\usasy.exe
LS039 Vanir -/- C:\Documents and Settings\Default User\Application Data\vanir.exe
LS040 Ningal -/- C:\Program Files\Ningal\ningal.exe
LS041 Somnusy -/- C:\Program Files\Common Files\somnusy.exe
----------------------------------------------------------------------
Deleted Files : 33
Remove Uninstall Entry : 3
Remove Startup Entry : 6
----------------------------------------------------------------------
Remove these Entry in a WindowexeAllkiller.txt file. Save and Run.
[02-HKLMREG]**stpp
[02-HKLMREG]**prex
[02-HKLMREG]**Usasy
[02-HKLMREG]**Vanir
[02-HKLMREG]**Ningal
[02-HKLMREG]**Somnusy
----------------------------------------------------------------------
Total Processing Time : 56ms
----------------------------------------------------------------------