2021.01.12 09:03

PUP.DealPly, MinerGate

조회 수 87 추천 수 0 댓글 0
?

단축키

Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄 첨부
?

단축키

Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄 첨부

PUP. DealPly

 

*file
C:\windows\tasks\dealplyliveupdatetaskmachinecore.job
C:\program files\dealplylive\update\1.3.23.0\psuser.dll
C:\program files\dealplylive\update\1.3.23.0\psmachine.dll
C:\program files\dealplylive\update\1.3.23.0\npgoogleupdate3.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_zh-tw.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_zh-cn.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_vi.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_ur.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_uk.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_tr.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_th.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_te.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_ta.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_sw.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_sv.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_sr.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_sl.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_sk.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_ru.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_ro.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_pt-pt.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_pt-br.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_pl.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_no.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_nl.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_ms.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_mr.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_ml.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_lv.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_lt.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_ko.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_kn.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_ja.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_iw.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_it.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_is.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_id.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_hu.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_hr.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_hi.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_gu.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_fr.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_fil.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_fi.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_fa.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_et.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_es.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_es-419.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_en.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_en-gb.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_el.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_de.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_da.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_cs.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_ca.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_bn.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_bg.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_ar.dll
C:\program files\dealplylive\update\1.3.23.0\goopdateres_am.dll
C:\program files\dealplylive\update\1.3.23.0\goopdate.dll
C:\program files\dealplylive\update\1.3.23.0\dealplyliveondemand.exe
C:\program files\dealplylive\update\1.3.23.0\dealplylivebroker.exe
C:\program files\dealplylive\update\dealplylive.exe

*reg_keys
HKCU\software\dealplylive
HKLM\software\classes\appid\{80fabb17-63af-4655-9f07-b6509ee37af2}
HKLM\software\classes\appid\{f48fc5b2-094a-44c7-b48c-289738c9582d}
HKLM\software\classes\appid\dealplylive.exe
HKLM\software\classes\clsid\{0d89de71-3d99-4288-84dc-f18f1047a7d8}
HKLM\software\classes\clsid\{1e0c9b2a-6447-452c-b012-2314a0c29412}
HKLM\software\classes\clsid\{34a8ceb6-89bb-49f1-b5e4-0d0d6c21f3b1}
HKLM\software\classes\clsid\{3a4dbd3a-98cc-41ce-ad21-352d42b6f754}
HKLM\software\classes\clsid\{4f8a50f6-69de-4be3-a33a-a1079b9ac0db}
HKLM\software\classes\clsid\{501cb57a-d4e2-4855-96ad-edb0a9083395}
HKLM\software\classes\clsid\{6ff2c4dd-77a4-4bb5-ba4c-b42defbf9137}
HKLM\software\classes\clsid\{7f1796b2-bec6-427b-b734-f9c75ed94a80}
HKLM\software\classes\clsid\{80fabb17-63af-4655-9f07-b6509ee37af2}
HKLM\software\classes\clsid\{83aba270-8390-4ca6-ae48-fc089f55629e}
HKLM\software\classes\clsid\{8b218a5f-1a3d-4347-94ef-a79575eb8094}
HKLM\software\classes\clsid\{8c338ddb-19fc-4c1f-b74d-6931ee55f7a1}
HKLM\software\classes\clsid\{9bdb5e09-4bba-4422-8c2b-529b281c32b8}
HKLM\software\classes\clsid\{c536f080-57b7-46d6-8894-c647553f2889}
HKLM\software\classes\clsid\{ca5d945f-e738-4d0b-a0b5-25ac51c64659}
HKLM\software\classes\clsid\{f48fc5b2-094a-44c7-b48c-289738c9582d}
HKLM\software\classes\clsid\{f7698761-4aba-45c2-a5bb-d2163922c725}
HKLM\software\classes\clsid\{ffcc53e6-2655-47fc-a89b-54e8d7f305d1}
HKLM\software\classes\dealplylive.oneclickctrl.9
HKLM\software\classes\dealplylive.oneclickprocesslaunchermachine
HKLM\software\classes\dealplylive.oneclickprocesslaunchermachine.1.0
HKLM\software\classes\dealplylive.update3webcontrol.3
HKLM\software\classes\dealplyliveupdate.cocreateasync
HKLM\software\classes\dealplyliveupdate.cocreateasync.1.0
HKLM\software\classes\dealplyliveupdate.coreclass
HKLM\software\classes\dealplyliveupdate.coreclass.1
HKLM\software\classes\dealplyliveupdate.coremachineclass
HKLM\software\classes\dealplyliveupdate.coremachineclass.1
HKLM\software\classes\dealplyliveupdate.credentialdialogmachine
HKLM\software\classes\dealplyliveupdate.credentialdialogmachine.1.0
HKLM\software\classes\dealplyliveupdate.ondemandcomclassmachine
HKLM\software\classes\dealplyliveupdate.ondemandcomclassmachine.1.0
HKLM\software\classes\dealplyliveupdate.ondemandcomclassmachinefallback
HKLM\software\classes\dealplyliveupdate.ondemandcomclassmachinefallback.1.0
HKLM\software\classes\dealplyliveupdate.ondemandcomclasssvc
HKLM\software\classes\dealplyliveupdate.ondemandcomclasssvc.1.0
HKLM\software\classes\dealplyliveupdate.processlauncher
HKLM\software\classes\dealplyliveupdate.processlauncher.1.0
HKLM\software\classes\dealplyliveupdate.update3comclassservice
HKLM\software\classes\dealplyliveupdate.update3comclassservice.1.0
HKLM\software\classes\dealplyliveupdate.update3webmachine
HKLM\software\classes\dealplyliveupdate.update3webmachine.1.0
HKLM\software\classes\dealplyliveupdate.update3webmachinefallback
HKLM\software\classes\dealplyliveupdate.update3webmachinefallback.1.0
HKLM\software\classes\dealplyliveupdate.update3websvc
HKLM\software\classes\dealplyliveupdate.update3websvc.1.0
HKLM\software\classes\interface\{066d89e6-b457-4a57-888a-b0aeb11d5bf1}
HKLM\software\classes\interface\{0e8990f4-2fc9-403c-883b-535d6271e740}
HKLM\software\classes\interface\{1644e2e1-e15e-4e9e-9b25-5668536dd6a7}
HKLM\software\classes\interface\{2ba83048-8b7c-4186-843b-d97fc1a6ae95}
HKLM\software\classes\interface\{469960f8-8172-4386-bbb1-df3590027d58}
HKLM\software\classes\interface\{753c5ed0-b9ab-4f1e-8dac-668e701ca569}
HKLM\software\classes\interface\{80995911-5cf2-483f-a260-c736e8d0c691}
HKLM\software\classes\interface\{821ed2b3-866e-4177-870e-52d995d123d0}
HKLM\software\classes\interface\{9b4e4bf6-9346-4969-8428-c3cb81cd7a30}
HKLM\software\classes\interface\{9bac5a3b-33fd-4db9-a4f1-b749498d4017}
HKLM\software\classes\interface\{a6670033-7a4b-4f59-b8a9-a7cebf3ce960}
HKLM\software\classes\interface\{b1285825-f24f-4651-9f8a-2012460ad2fc}
HKLM\software\classes\interface\{b3d38ae9-c808-4811-8417-f114839d6392}
HKLM\software\classes\interface\{b8e64931-27ef-42bc-af3b-0e2b25d17567}
HKLM\software\classes\interface\{be952bdf-6fdf-4a62-b318-e15d4487a2ef}
HKLM\software\classes\interface\{c0233f6c-3110-4aea-a798-c81da43ced9e}
HKLM\software\classes\interface\{cc5b7648-aaf8-4642-b53d-b7b5e4ae7241}
HKLM\software\classes\interface\{d325b617-d6f9-4c72-90b2-a38e6d15c16e}
HKLM\software\classes\interface\{df51ad29-5239-441a-b921-e655c8162060}
HKLM\software\classes\interface\{e515494b-7548-462a-b7e7-a3e6f8c4899c}
HKLM\software\classes\interface\{e9ecfff9-2011-439f-92eb-be145acd87da}
HKLM\software\classes\interface\{fbb92627-0daa-4b69-97cc-9879236fe039}
HKLM\software\classes\installer\products\93bad29ac2e44034a96bcb446eb8552e
HKLM\software\dealplylive
HKLM\software\microsoft\internet explorer\low rights\elevationpolicy\{7f1796b2-bec6-427b-b734-f9c75ed94a80}
HKLM\software\microsoft\internet explorer\low rights\elevationpolicy\{8c338ddb-19fc-4c1f-b74d-6931ee55f7a1}
HKLM\software\microsoft\internet explorer\low rights\elevationpolicy\{c536f080-57b7-46d6-8894-c647553f2889}
HKLM\software\microsoft\windows\currentversion\ext\preapproved\{7f1796b2-bec6-427b-b734-f9c75ed94a80}
HKLM\software\microsoft\windows\currentversion\ext\preapproved\{8c338ddb-19fc-4c1f-b74d-6931ee55f7a1}
HKLM\software\microsoft\windows\currentversion\ext\stats\{7f1796b2-bec6-427b-b734-f9c75ed94a80}
HKLM\software\microsoft\windows\currentversion\ext\stats\{8c338ddb-19fc-4c1f-b74d-6931ee55f7a1}
HKLM\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\products\93bad29ac2e44034a96bcb446eb8552e
HKLM\software\microsoft\windows\currentversion\uninstall\{a92dab39-4e2c-4304-9ab6-bc44e68b55e2}
HKLM\software\microsoft\windows nt\currentversion\image file execution options\dealplylive.exe
HKLM\software\mozillaplugins\@tools.dpliveupdate.com/dealplylive update;version=3
HKLM\software\mozillaplugins\@tools.dpliveupdate.com/dealplylive update;version=9
HKLM\system\currentcontrolset\services\dealplylive
HKLM\system\currentcontrolset\services\dealplylivem
HKLM\software\classes\mime\database\content type\application/x-vnd.dpliveupdate.oneclickctrl.9
HKLM\software\classes\mime\database\content type\application/x-vnd.dpliveupdate.update3webcontrol.3

 

 

PUP.MinerGate


*file
C:\users\public\Desktop\minergate.lnk
C:\programdata\microsoft\windows\start menu\programs\minergate\uninstall.lnk
C:\programdata\microsoft\windows\start menu\programs\minergate\minergate.lnk
C:\program files\minergate\uninstall.exe
C:\program files\minergate\minergate.exe
C:\programdata\microsoft\windows\start menu\programs\minergate
C:\program files\minergate

*reg_key
HKLM\software\microsoft\windows\currentversion\uninstall\minergate
HKLM\software\minergate inc

 

11111.png

 


  1. PUP.DownTango

    PUP.DownTango *file C:\Users\Ad\AppData\Roaming\downtangofttoolbar\downtangofttoolbar.dll C:\ProgramData\Microsoft\Windows\Start Menu\Programs\downtango\uninstall.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\downtango\downtango.l...
    Date2021.03.16 Byezclean Reply0 Views51 file
    Read More
  2. PUP.DriverXYZ, LiveSupport

    PUP.DriverXYZ *file c:\users\public\desktop\driverxyz.lnk c:\programdata\microsoft\windows\start menu\programs\driverxyz\driverxyz.lnk c:\programdata\microsoft\windows\start menu\programs\driverxyz\register driverxyz.lnk c:\programdata\micro...
    Date2020.12.02 Byezclean Reply0 Views52 file
    Read More
  3. PUP. Guffins, PriceLess

    PUP. Guffins *file C:\Program Files\Guffins\bar\1.bin\chrome\u4ffxtbr.jar C:\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\CONFIG.XML C:\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\ASSIST.EXE C:\Pr...
    Date2021.01.22 Byezclean Reply0 Views53 file
    Read More
  4. Adware.SpywareRemover, CloudGuard

    Adware.SpywareRemover *file C:\Users\{USERNAME}\Desktop\Malware Sweeper.lnk C:\ProrogramData\Microsoft\Windows\Start Menu\Programs\MalwareSweeper.com\Malware Sweeper\Uninstall.lnk C:\ProrogramData\Microsoft\Windows\Start Menu\Programs\Malwar...
    Date2021.02.03 Byezclean Reply0 Views58 file
    Read More
  5. Trojan.DMA, PCBooster

    Trojan.DMA C:\Users\{USERNAME}\AppData\Roaming\Desktop Management Agent\9giyumuw.exe C:\ProgramData\desktop management Agent\135cc5sig.exe C:\ProgramData\Desktop Management Agent\1u15919i3ye.exe C:\ProgramData\Desktop Management Agent\3ag117...
    Date2020.12.10 Byezclean Reply0 Views61 file
    Read More
  6. PUP.modinhalls

    PUP.modinhalls *file c:\program files\modinhalls\windihalls_uins.dat c:\program files\modinhalls\uninst.exe c:\program files\modinhalls\mdihallsupsvc.exe c:\program files\modinhalls\mdihallsupnad.dll c:\program files\modinhalls\mdihallsup.dl...
    Date2021.03.12 Byezclean Reply0 Views66 file
    Read More
  7. PUP.UCalendar, WebInternet

    PUP.UCalendar *file C:\Users\{USERNAME}\AppData\Local\ucalendar\desktopcalendar.dll C:\Users\{USERNAME}\AppData\Local\ucalendar\huangli.xml C:\Users\{USERNAME}\AppData\Local\ucalendar\icolog C:\Users\{USERNAME}\AppData\Local\ucalendar\niaoji...
    Date2021.01.25 Byezclean Reply0 Views67 file
    Read More
  8. Trojan.TechAgent, Ghapoly

    Trojan.TechAgent *file C:\Windows\System32\Tasks\TechAgentTask C:\Windows\System32\Tasks\TechAgent Task C:\Users\Public\Desktop\TechAgent.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechAgent\TechAgent.lnk C:\ProgramData\Microso...
    Date2021.01.08 Byezclean Reply0 Views68 file
    Read More
  9. PUP.Mallapp, professional cleaning Software

    PUP.Mallapp C:\Prorogram files\mallapp\joamom\imgs\woman_app_check.jpg C:\Prorogram files\mallapp\joamom\imgs\menu_tray_ov.bmp C:\Prorogram files\mallapp\joamom\imgs\menu_tray.bmp C:\Prorogram files\mallapp\joamom\imgs\menu_qna_ov.bmp C:\Pro...
    Date2021.02.08 Byezclean Reply0 Views71 file
    Read More
  10. PUP.AdvancePCProtector, AdvancedSP

    PUP.AdvancePCProtector *file c:\program files\akick\advance pc protector\savapi\aecore.dll c:\program files\akick\advance pc protector\savapi\aehelp.dll c:\program files\akick\advance pc protector\savapi\aerdl.dll c:\program files\akick\adva...
    Date2020.12.16 Byezclean Reply0 Views73 file
    Read More
  11. PUP.SpaceSondPro

    PUP.SpaceSondPro *file C:\Users\{USERNAME}\Desktop\SpaceSoundPro.lnk C:\Users\{USERNAME}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpaceSoundPro 1.0\Uninstall.lnk C:\Users\{USERNAME}\AppData\Roaming\Microsoft\Windows\Start Menu\P...
    Date2021.03.25 Byezclean Reply0 Views77 file
    Read More
  12. trojan.ASRF, DTeroVDTeroV

    trojan.ASRF *file C:\Program Files\ASRF\ASRFree.exe C:\Program Files\ASRF\build.exe C:\Program Files\ASRF\config.exe C:\Program Files\ASRF\save.exe C:\Program Files\ASRF\uninstall.exe Trojan.DTeroVDTeroV *file C:\DTeroVDTeroV\DTeroV.exe C:\U...
    Date2020.11.10 Byezclean Reply0 Views78 file
    Read More
  13. PUP.dll-files.com fixer, Registry Cure Pro

    PUP.dll-files.com fixer *file c:\program files\dll-files.com fixer\chinese_rcp.ini c:\program files\dll-files.com fixer\cleanschedule.exe c:\program files\dll-files.com fixer\danish_rcp.ini c:\program files\dll-files.com fixer\dllfixer.exe c...
    Date2020.12.01 Byezclean Reply0 Views79 file
    Read More
  14. Adware.BlueMoon, FileSubmit

    Adware.Agent *file C:\Program Files\ZPA7NKFZ6Y\uninstaller.exe C:\Program Files\ZPA7NKFZ6Y\ZPA7NKFZ6.exe C:\Program Files\1CW6G366CO\E13LO2C7B.exe C:\Program Files\1CW6G366CO\uninstaller.exe *reg_key HKLM\SOFTWARE\Microsoft\Tracing\E13LO2C7B...
    Date2021.01.07 Byezclean Reply0 Views79 file
    Read More
  15. Trojan. RegistryTool, AdwareAlert

    Trojan. RegistryTool * File path C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegistryTool\Uninstall RegistryTool.lnk C:\Program Files\Downloaded Installers\{954FB8FF-7FCF-46F2-869F-1B61D1212904}\setup.msi C:\Users\Public\Desktop\Reg...
    Date2021.01.26 Byezclean Reply0 Views80 file
    Read More
  16. PUP.BestYouTube

    PUP.BestYouTube *file C:\Windows\Temp\pMvQJe726B_1\uninstall.exe C:\Windows\Temp\pMvQJe726B_1\sqlite3.dll C:\Windows\Temp\pMvQJe726B_1\softokn3.dll C:\Windows\Temp\pMvQJe726B_1\plds4.dll C:\Windows\Temp\pMvQJe726B_1\plc4.dll C:\Windows\Temp\...
    Date2021.03.15 Byezclean Reply0 Views83 file
    Read More
  17. PUP.Carambis, PUP.AppMaster

    PUP.Carambis *file c:\users\{USERNAME}\appdata\local\carambis\cleaner.ini c:\users\{USERNAME}\desktop\cleaner.lnk c:\program files\carambis\cleaner\imageformats\qico.dll c:\program files\carambis\cleaner\imageformats\qjpeg.dll c:\program fil...
    Date2020.12.11 Byezclean Reply0 Views84 file
    Read More
  18. PUP.RemoteAdmin

    RemoteAdmin *file C\Program Files\AIMP4\rfusclient.exe C\Program Files\AIMP4\rutserv.exe C\Program Files\AIMP4\vp8decoder.dll C\Program Files\AIMP4\vp8encoder.dll *reg HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RManService
    Date2020.11.09 Byezclean Reply0 Views87 file
    Read More
  19. PUP.DealPly, MinerGate

    PUP. DealPly *file C:\windows\tasks\dealplyliveupdatetaskmachinecore.job C:\program files\dealplylive\update\1.3.23.0\psuser.dll C:\program files\dealplylive\update\1.3.23.0\psmachine.dll C:\program files\dealplylive\update\1.3.23.0\npgoogle...
    Date2021.01.12 Byezclean Reply0 Views87 file
    Read More
  20. PUP.SweetIM

    PUP.SweetIM *file C:\Program Files\sweetimC:\Program Files\SweetIM\Toolbars\Internet Explorer\ClearHist.exe C:\Program Files\SweetIMC:\Program Files\SweetIM\Toolbars\Internet Explorer\conf\logger.xml C:\Program Files\SweetIMC:\Program Files\...
    Date2021.04.08 Byezclean Reply0 Views88 file
    Read More
Board Pagination Prev 1 2 3 4 5 ... 8 Next
/ 8
XE Login