PUP.wxDfast

by ezclean posted Apr 07, 2021
?

단축키

Prev이전 문서

Next다음 문서

ESC닫기

크게 작게 위로 아래로 댓글로 가기 인쇄

PUP.wxDfast

 

*file
C:\Users\{USERNAME}\AppData\LocalLow\wxDfast\scode_docstart
C:\Users\{USERNAME}\AppData\LocalLow\wxDfast\products
C:\Users\{USERNAME}\AppData\LocalLow\wxDfast\jsondb.js
C:\Users\{USERNAME}\AppData\LocalLow\wxDfast\content.js
C:\Users\{USERNAME}\AppData\LocalLow\wxDfast\0_i
C:\Users\{USERNAME}\AppData\Local\Google\Chrome\User Data\DefaultC:\Program Files\Updater By SweetPacks\Extensions\kblnegkpokomfkjimodbanooejalebha\1.0_0\worker.js
C:\Users\{USERNAME}\AppData\Local\Google\Chrome\User Data\DefaultC:\Program Files\Updater By SweetPacks\Extensions\kblnegkpokomfkjimodbanooejalebha\1.0_0\sqlite.js
C:\Users\{USERNAME}\AppData\Local\Google\Chrome\User Data\DefaultC:\Program Files\Updater By SweetPacks\Extensions\kblnegkpokomfkjimodbanooejalebha\1.0_0\manifest.json
C:\Users\{USERNAME}\AppData\Local\Google\Chrome\User Data\DefaultC:\Program Files\Updater By SweetPacks\Extensions\kblnegkpokomfkjimodbanooejalebha\1.0_0\lsdb.js
C:\Users\{USERNAME}\AppData\Local\Google\Chrome\User Data\DefaultC:\Program Files\Updater By SweetPacks\Extensions\kblnegkpokomfkjimodbanooejalebha\1.0_0\jquery.js
C:\Users\{USERNAME}\AppData\Local\Google\Chrome\User Data\DefaultC:\Program Files\Updater By SweetPacks\Extensions\kblnegkpokomfkjimodbanooejalebha\1.0_0\indexeddb.js
C:\Users\{USERNAME}\AppData\Local\Google\Chrome\User Data\DefaultC:\Program Files\Updater By SweetPacks\Extensions\kblnegkpokomfkjimodbanooejalebha\1.0_0\background.html
C:\ProgramData\wxdfast\uninstall.exe
C:\ProgramData\wxDfast\settings.ini
C:\ProgramData\wxDfast\kblnegkpokomfkjimodbanooejalebha.crx
C:\ProgramData\wxDfast\content.js
C:\ProgramData\wxDfast\bhoclass.dll
C:\ProgramData\wxDfast\background.html
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\wxDfast\wxDfast.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\wxDfast\Uninstall.lnk

 

*reg_key
HKCU\Software\Microsoft\Windows\CurrentVersionC:\Program Files\Updater By SweetPacks\Ext\Settings\{6FFE0A76-36FA-1D5D-50E9-40863A2D141E}
HKCU\Software\Microsoft\Windows\CurrentVersionC:\Program Files\Updater By SweetPacks\Ext\Stats\{6FFE0A76-36FA-1D5D-50E9-40863A2D141E}
HKLM\SOFTWARE\Classes\CLSID\{6FFE0A76-36FA-1D5D-50E9-40863A2D141E}
HKLM\SOFTWARE\Classes\TypeLib\{C2CF0D01-7657-48AA-98C9-AE5E64757FCC}
HKLM\SOFTWARE\Classes\Interface\{BBA74401-6D6F-4BBD-9F65-E8623814F3BB}
HKLM\SOFTWARE\Classes\Interface\{D2F39980-399F-492E-8D88-5FF7CCB3B47F}
HKLM\SOFTWARE\Classes\bhoclass.bho.bhoclass.bho
HKLM\SOFTWARE\Classes\bhoclass.bho.bhoclass.bho.1.0
HKLM\SOFTWARE\Google\ChromeC:\Program Files\Updater By SweetPacks\Extensions\kblnegkpokomfkjimodbanooejalebha
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4F4C5E11-0612-48D2-8055-987992AAC432}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6FFE0A76-36FA-1D5D-50E9-40863A2D141E}

 
*reg_val
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies  C:\Program Files\Updater By SweetPacks\Ext\CLSID | {6FFE0A76-36FA-1D5D-50E9-40863A2D141E}
 

11111.jpg

 

 

TAG •
위로 아래로 댓글로 가기 인쇄