Home 악성코드 해결
뷰어로 보기
2021.02.10 10:20

PUP.YouTubeAdBlock, Grakat

ezclean
조회 수 21726 추천 수 0 댓글 0
?

단축키

Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄 첨부
?

단축키

Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄 첨부

PUP.YouTubeAdBlock

 

*file
C:\windows\Tasks\Update Service for Youtube AdBlock2.job
C:\windows\Tasks\Update Service for Youtube AdBlock.job
C:\windows\System32\Tasks\Update Service for Youtube AdBlock2
C:\windows\System32\Tasks\Update Service for Youtube AdBlock
C:\Users\{USERNAME}\AppData\LocalLow\Youtube AdBlock\Storage.db
C:\Prorogram Files\Youtube AdBlock\IEEF\files\files\proxy.js
C:\Prorogram Files\Youtube AdBlock\IEEF\files\files\main.css
C:\Prorogram Files\Youtube AdBlock\IEEF\files\files\foreground.js
C:\Prorogram Files\Youtube AdBlock\IEEF\files\files\background.js
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\zh_TW\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\zh_CN\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\vi\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\uk\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\tr\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\th\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\te\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ta\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\sw\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\sv\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\sr\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\sq\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\sl\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\sk\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ru\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ro\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\pt_PT\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\pt_BR\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\pt\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\pl\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\no\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\nl\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ms\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\mr\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ml\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\mk\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\lv\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\lt\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ko\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\kn\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ja\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\it\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\id\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\hu\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\hr\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\hi\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\he\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\gu\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\fr\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\fil\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\fi\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\fa\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\et\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\es_419\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\es\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\en_US\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\en_GB\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\en\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\el\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\de\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\da\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\cs\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ca\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\bn\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\bg\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\be\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ar\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\am\messages.json
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\zh_TW
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\zh_CN
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\vi
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\uk
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\tr
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\th
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\te
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ta
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\sw
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\sv
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\sr
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\sq
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\sl
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\sk
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ru
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ro
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\pt_PT
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\pt_BR
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\pt
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\pl
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\no
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\nl
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ms
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\mr
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ml
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\mk
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\lv
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\lt
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ko
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\kn
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ja
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\it
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\id
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\hu
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\hr
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\hi
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\he
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\gu
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\fr
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\fil
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\fi
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\fa
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\et
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\es_419
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\es
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\en_US
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\en_GB
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\en
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\el
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\de
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\da
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\cs
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ca
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\bn
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\bg
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\be
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\ar
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales\am
C:\Prorogram Files\Youtube AdBlock\IEEF\files\Kernel.js
C:\Prorogram Files\Youtube AdBlock\IEEF\files\background.html
C:\Prorogram Files\Youtube AdBlock\IEEF\files\files
C:\Prorogram Files\Youtube AdBlock\IEEF\files\_locales
C:\Prorogram Files\Youtube AdBlock\IEEF\sqlite3.dll
C:\Prorogram Files\Youtube AdBlock\IEEF\icon16.ico
C:\Prorogram Files\Youtube AdBlock\IEEF\DKeF3_S29o.exe
C:\Prorogram Files\Youtube AdBlock\IEEF\files
C:\Prorogram Files\Youtube AdBlock\uninstall.exe
C:\Prorogram Files\Youtube AdBlock\IEEF
C:\Users\{USERNAME}\AppData\LocalLow\Youtube AdBlock
C:\Users\{USERNAME}\AppData\Local\Google\Chrome\User Data\Default\Extensions

*reg_key
HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D42C3A49-ABAF-464B-BBCE-991C3DD395E8}
HKLM\SOFTWARE\Classes\CLSID\{D42C3A49-ABAF-464B-BBCE-991C3DD395E8}
HKLM\SOFTWARE\Classes\TypeLib\{38DD0B4A-E4E0-4A57-99EE-DCCB185B4728}
HKLM\SOFTWARE\Classes\TypeLib\{45965C76-4C88-4512-9358-368483E1C3B1}
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D42C3A49-ABAF-464B-BBCE-991C3DD395E8}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Youtube AdBlock
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3147A561-318E-416E-89AD-F7AEAE04A0CB}
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AA61CFC6-7A1E-4B74-9D56-18A1C1D52D00}
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Update Service for Youtube AdBlock
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Update Service for Youtube AdBlock2
HKLM\SOFTWARE\Classes\Interface\{BF8946CD-EEBE-436B-8282-B19A021C9EFE}
HKLM\SOFTWARE\Classes\Interface\{D8CB24E3-DDA3-4B7F-8BA3-871DB7D3D986}
HKLM\SOFTWARE\Classes\Interface\{F6DF4318-A699-4E88-BE1D-84F4A009B08A}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95E84BD3-3604-4AAC-B2CA-D9AC3E55B64B}

*reg_val
HKCU\Software\Microsoft\Internet Explorer\Approved Extensions | {95E84BD3-3604-4AAC-B2CA-D9AC3E55B64B}
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures | Update Service for Youtube AdBlock.job
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures | Update Service for Youtube AdBlock.job.fp
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures | Update Service for Youtube AdBlock2.job
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures | Update Service for Youtube AdBlock.job.fp
 

PUP.Grakat


*file
c:\windows\system32\tasks\kelerlyreataing helper
c:\program files\grakat\kelerlyreatainghelperphlaied.exe
c:\program files\grakat\kelerlyreatainghelpercltain.exe
c:\program files\grakat\coermekvrf.dll

*reg_key
HKLM\Software\Microsoft\Windows\CurrentVersion\uninstall\{29cba944-6679-4654-8898-f1a16a5b277e}
HKLM\system\currentcontrolset\services\kelerlyreatainghelperphlaied.exe
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\tasks\{39422821-f3b9-4b92-9b9a-1263c7f3dd74}
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\tree\kelerlyreataing helper
 

11111.png

 

TAG •
Atachment
첨부 '1'
Facebook Twitter Google Pinterest
위로 아래로 댓글로 가기 인쇄 첨부
에디터 선택하기
?
List of Articles
번호 제목 글쓴이 날짜 조회 수
79 PUP.MarvelSound, CalendarTool file ezclean 2021.01.06 2259
78 Trojan.Ghapoly, BestCleaner file ezclean 2021.01.05 872
77 Adware.Ebuyer, SmartCloud file ezclean 2021.01.04 663
76 Trojan.TCClock, PDFCracker file ezclean 2020.12.29 2436
75 PUP.GrassValley, Heinote file ezclean 2020.12.28 215
74 PUP.YoutubeMusic, DealPly file ezclean 2020.12.24 98
73 PUP.WinZipDiskTool file ezclean 2020.12.23 747
72 Trojan.HaoTuKanKan, HPMonkey file ezclean 2020.12.23 112
71 PUP.ChromeEX, Homply file ezclean 2020.12.22 120
70 Adware.ReimageRepair, Searchestoy, Netfilter file ezclean 2020.12.21 7841
69 PUP.AdvanceSystem, MineApp file ezclean 2020.12.17 1034
68 PUP.AdvancePCProtector, AdvancedSP file ezclean 2020.12.16 73
67 PUP.Catalina, BrowseFox file ezclean 2020.12.14 1373
66 PUP.Carambis, PUP.AppMaster file ezclean 2020.12.11 84
65 Trojan.DMA, PCBooster file ezclean 2020.12.10 61
64 PUP.SAntivirus, Spigot file ezclean 2020.12.09 18886
63 PUP.MaxUnInstaller, Monterix file ezclean 2020.12.08 482
62 Adware.AnySend, Linkury file ezclean 2020.12.07 109
61 Trojan. CalculatemPro, KGBKeyLogger file ezclean 2020.12.04 285
60 PUP.DriverXYZ, LiveSupport file ezclean 2020.12.02 52
쓰기
Board Pagination Prev 1 ... 3 4 5 6 7 8 Next
/ 8

(C) EzClean

XE Login

  1. 회원가입
  2. 아이디,비밀번호 찾기
  3. 인증 메일 재발송