Home 악성코드 해결
뷰어로 보기
2020.12.24 13:44

PUP.YoutubeMusic, DealPly

ezclean
조회 수 96 추천 수 0 댓글 0
?

단축키

Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄 첨부
?

단축키

Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄 첨부

PUP.YoutubeMusic


*file
C\Users\{USERNAME}\Desktop\Youtube Music Downlo{USERNAME}er.lnk
C\Users\{USERNAME}\AppData\Local\Temp\is-AP0D1.tmp\Youtube_Music_Downlo{USERNAME}er_Setup.exe
C\ProgramData\Microsoft\Windows\Start Menu\Programs\youtube music downlo{USERNAME}er\Youtube Music Downlo{USERNAME}er.lnk
C\ProgramData\Microsoft\Windows\Start Menu\Programs\Youtube Music Downlo{USERNAME}er\Youtube Music Downlo{USERNAME}er on the Web.lnk
C\ProgramData\Microsoft\Windows\Start Menu\Programs\Youtube Music Downlo{USERNAME}er\Uninstall Youtube Music Downlo{USERNAME}er.lnk

*reg_key
HKCU\Software\YoutubeMusicDownlo{USERNAME}er.us
HKCU\YoutubeMusicDownlo{USERNAME}er.us
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{00AA23A3-F4F7-4805-AA6B-4C2A74F3AB2B}_is1

 

PUP.DealPly

*file
C\Windows\System32\Tasks\DealPlyLiveUpdateTaskMachineUA
C\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job
C\Program Files\dealply\dealply.crx
C\Program Files\dealply\dealply.xpi
C\Program Files\dealply\dealplyie.dll
C\Program Files\dealply\dealplyie64.dll
C\Program Files\dealply\dealplyupdate.exe
C\Program Files\dealply\dealplyupdaterun.exe
C\Program Files\dealply\dealplyupdatever.exe
C\Program Files\dealply\icon.ico
C\Program Files\dealply\uninst.exe
C\Users\{USERNAME}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dealply\dealply.url
C\Users\{USERNAME}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dealply\dealply help.url
C\Users\{USERNAME}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dealply\uninstall dealply.lnk
C\Program Files\dealplylive\update\1.3.23.0\psuser.dll
C\Program Files\dealplylive\update\1.3.23.0\psmachine.dll
C\Program Files\dealplylive\update\1.3.23.0\npgoogleupdate3.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_zh-tw.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_zh-cn.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_vi.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_ur.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_uk.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_tr.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_th.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_te.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_ta.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_sw.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_sv.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_sr.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_sl.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_sk.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_ru.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_ro.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_pt-pt.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_pt-br.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_pl.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_no.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_nl.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_ms.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_mr.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_ml.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_lv.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_lt.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_ko.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_kn.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_ja.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_iw.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_it.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_is.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_id.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_hu.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_hr.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_hi.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_gu.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_fr.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_fil.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_fi.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_fa.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_et.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_es.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_es-419.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_en.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_en-gb.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_el.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_de.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_da.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_cs.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_ca.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_bn.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_bg.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_ar.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdateres_am.dll
C\Program Files\dealplylive\update\1.3.23.0\goopdate.dll
C\Program Files\dealplylive\update\1.3.23.0\dealplyliveondemand.exe
C\Program Files\dealplylive\update\1.3.23.0\dealplylivebroker.exe
C\Program Files\dealplylive\update\dealplylive.exe

*reg_key
HKLM\SOFTWARE\Classes\AppID\{80fabb17-63AF-4655-9F07-B6509EE37AF2}
HKLM\SOFTWARE\Classes\Installer\Features\93B{USERNAME}29AC2E44034A96BCB446EB8552E
HKLM\SOFTWARE\Classes\Installer\Products\93B{USERNAME}29AC2E44034A96BCB446EB8552E
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\93B{USERNAME}29AC2E44034A96BCB446EB8552E
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{092A642B-141A-4422-9A56-FFC008181735}
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B9850733-08C1-4CB6-AF33-14C7F0757B90}
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPlyLiveUpdateTaskMachineUA
HKLM\SOFTWARE\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=3
HKLM\SOFTWARE\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=9
HKLM\SOFTWARE\Google\Chrome\Extensions\ejnmnhkgiphcaeefbaooconkceehicfi
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\Compatibility{USERNAME}apter\Signatures | DealPlyLiveUpdateTaskMachineUA.job
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\Compatibility{USERNAME}apter\Signatures | DealPlyLiveUpdateTaskMachineUA.job.fp
HKLM\SOFTWARE\Classes\Installer\Upgr{USERNAME}eCodes\DBFF5159BA0409649B38F48A1EE47E5F | 93B{USERNAME}29AC2E44034A96BCB446EB8552E
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9507B717889AF294FAB1CD7FB08E90BA | 93B{USERNAME}29AC2E44034A96BCB446EB8552E
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Upgr{USERNAME}eCodes\DBFF5159BA0409649B38F48A1EE47E5F | 93B{USERNAME}29AC2E44034A96BCB446EB8552E
 

11111.png

 

TAG •
Atachment
첨부 '1'
Facebook Twitter Google Pinterest
위로 아래로 댓글로 가기 인쇄 첨부
에디터 선택하기
?

  1. PUP.MarvelSound, CalendarTool

    PUP.MarvelSound *reg_key HKLM\SOFTWARE\Classes\MarvelSound.Media.1 HKLM\SOFTWARE\Classes\SystemFileAssociations\audio\OpenWithList\marvelsound.exe HKLM\SOFTWARE\Classes\SystemFileAssociations\video\OpenWithList\marvelsound.exe *reg_val HKLM\...
    Date2021.01.06 Byezclean Reply0 Views2259 file
    Read More

  2. Trojan.Ghapoly, BestCleaner

    Trojan.Ghapoly *file C:\Program Files\ghapoly\Release_21.dll C:\Program Files\Ghapoly\Proxy32.dll C:\Program Files\Ghapoly\libvlc.dll C:\Program Files\Ghapoly\launcher_2.dll C:\Program Files\Ghapoly\drizutainshupkCld.dll2428453 C:\Program Fi...
    Date2021.01.05 Byezclean Reply0 Views872 file
    Read More

  3. Adware.Ebuyer, SmartCloud

    Adware.Ebuyer *file C\Windows\System32\Tasks\e-Buyer Updater C\Users\{USERNAME}\AppData\Local\ebuyer\ebuyer\1.4.4.4\res.dll C\Users\{USERNAME}\AppData\Local\ebuyer\ebuyer\1.4.4.4\fobkbCag.dll C\Users\{USERNAME}\AppData\Local\ebuyer\ebuyer\1....
    Date2021.01.04 Byezclean Reply0 Views662 file
    Read More

  4. Trojan.TCClock, PDFCracker

    Trojan.TCClock *file C:\Users\{USERNAME}\AppData\Roaming\RAF\coffeeclock\TCC-ClockFace.exe C:\Users\{USERNAME}\AppData\Roaming\RAF\coffeeclock\TCCalEvents.exe C:\Users\{USERNAME}\AppData\Roaming\RAF\coffeeclock\TCClock.exe C:\Users\{USERNAME...
    Date2020.12.29 Byezclean Reply0 Views2434 file
    Read More

  5. PUP.GrassValley, Heinote

    PUP.GrassValley *file C\Users\{USERNAME}\Desktop\EDIUS7_LO{USERNAME}ER.lnk C\Users\{USERNAME}\Desktop\EDIUS6_5_LO{USERNAME}ER.lnk C\Program Files\Grass Valley\EDIUS 7\Uninstall.exe C\Program Files\Grass Valley\EDIUS 7\LO{USERNAME}ER_7.40 488...
    Date2020.12.28 Byezclean Reply0 Views213 file
    Read More

  6. PUP.YoutubeMusic, DealPly

    PUP.YoutubeMusic *file C\Users\{USERNAME}\Desktop\Youtube Music Downlo{USERNAME}er.lnk C\Users\{USERNAME}\AppData\Local\Temp\is-AP0D1.tmp\Youtube_Music_Downlo{USERNAME}er_Setup.exe C\ProgramData\Microsoft\Windows\Start Menu\Programs\youtube ...
    Date2020.12.24 Byezclean Reply0 Views96 file
    Read More

  7. PUP.WinZipDiskTool

    PUP.WinZipDiskTool *files %appdata%\wzdt\lci.lci %appdata%\wzdt\uid.txt %programfiles%\winzip disk tools\wzdthelper.dll %programfiles%\winzip disk tools\asores.dll %programfiles%\winzip disk tools\wzdtdefragsrv64.exe %programfiles%\winzip di...
    Date2020.12.23 Byezclean Reply0 Views725 file
    Read More

  8. Trojan.HaoTuKanKan, HPMonkey

    Trojan.HaoTuKanKan *file C\Users\{USERNAME}\AppData\Local\HaoTuKanKan\HaoTuKanKan.exe C\Users\{USERNAME}\AppData\Local\HaoTuKanKan\haotu_update.dll C\Users\{USERNAME}\AppData\Local\HaoTuKanKan\uninstall.exe *reg_key HKCU\Software\HaoTuKanKan...
    Date2020.12.23 Byezclean Reply0 Views112 file
    Read More

  9. PUP.ChromeEX, Homply

    PUP.ChromeEX *file %localappdata%\Google\Chrome\User Data\Default\Extensions\hmnbcmfnnpbhiljneemgbickgiakmclj\12.303.10.20796_0\native\libs %localappdata%\Google\Chrome\User Data\Default\Extensions\hmnbcmfnnpbhiljneemgbickgiakmclj\12.303.10....
    Date2020.12.22 Byezclean Reply0 Views116 file
    Read More

  10. Adware.ReimageRepair, Searchestoy, Netfilter

    Adware.ReimageRepair *file C:\programdata\reimage protector\av\avupdate.exe C:\programdata\reimage protector\av\savapi3_restart.exe C:\programdata\reimage protector\av\savapi3_start.exe C:\programdata\reimage protector\av\savapi3_stop.exe C:...
    Date2020.12.21 Byezclean Reply0 Views7840 file
    Read More

  11. PUP.AdvanceSystem, MineApp

    PUP.AdvanceSystem *file C:\Windows\System32\tasks\advance-system care_logon C:\ProgramData\Microsoft\Windows\Start Menu\Programs\advance-system care\uninstall advance-system care.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\advan...
    Date2020.12.17 Byezclean Reply0 Views1034 file
    Read More

  12. PUP.AdvancePCProtector, AdvancedSP

    PUP.AdvancePCProtector *file c:\program files\akick\advance pc protector\savapi\aecore.dll c:\program files\akick\advance pc protector\savapi\aehelp.dll c:\program files\akick\advance pc protector\savapi\aerdl.dll c:\program files\akick\adva...
    Date2020.12.16 Byezclean Reply0 Views73 file
    Read More

  13. PUP.Catalina, BrowseFox

    PUP.Catalina *file c:\users\{USERNAME}\appdata\local\catalinagroup\update\1.3.25.225\goopdate.dll c:\users\{USERNAME}\appdata\local\catalinagroup\update\1.3.25.225\catalinacrashhandler.exe c:\users\{USERNAME}\appdata\local\catalinagroup\upda...
    Date2020.12.14 Byezclean Reply0 Views1372 file
    Read More

  14. PUP.Carambis, PUP.AppMaster

    PUP.Carambis *file c:\users\{USERNAME}\appdata\local\carambis\cleaner.ini c:\users\{USERNAME}\desktop\cleaner.lnk c:\program files\carambis\cleaner\imageformats\qico.dll c:\program files\carambis\cleaner\imageformats\qjpeg.dll c:\program fil...
    Date2020.12.11 Byezclean Reply0 Views84 file
    Read More

  15. Trojan.DMA, PCBooster

    Trojan.DMA C:\Users\{USERNAME}\AppData\Roaming\Desktop Management Agent\9giyumuw.exe C:\ProgramData\desktop management Agent\135cc5sig.exe C:\ProgramData\Desktop Management Agent\1u15919i3ye.exe C:\ProgramData\Desktop Management Agent\3ag117...
    Date2020.12.10 Byezclean Reply0 Views60 file
    Read More

  16. PUP.SAntivirus, Spigot

    PUP.SAntivirus *file c:\program files\santivirus\santivirusic.exe c:\program files\santivirus\santiviruskd.sys c:\program files\santivirus\santivirusservice.exe c:\programdata\microsoft\windows\start menu\programs\santivirus\santivirus produ...
    Date2020.12.09 Byezclean Reply0 Views18861 file
    Read More

  17. PUP.MaxUnInstaller, Monterix

    PUP.MaxUnInstaller *file c:\program files\max uninstaller\almu.exe c:\program files\max uninstaller\installedsoftware.txt c:\program files\max uninstaller\j_fixcs.dll c:\program files\max uninstaller\license.txt c:\program files\max uninstal...
    Date2020.12.08 Byezclean Reply0 Views482 file
    Read More

  18. Adware.AnySend, Linkury

    Adware.AnySend *file C:\Users\{USERNAME}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnySend\AnySend.lnk C:\Users\{USERNAME}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnySend\AnySend Show Tutorial.lnk C:\Users\{USERNAME...
    Date2020.12.07 Byezclean Reply0 Views109 file
    Read More

  19. Trojan. CalculatemPro, KGBKeyLogger

    Trojan. CalculatemPro *file C:\Program Files\CalculatemPro\affil.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Calculatem Pro\Calculatem Pro.lnk C:\Users\{USERNAME}\Desktop\Calculatem Pro.lnk C:\Program Files\CalculatemPro\Calcula...
    Date2020.12.04 Byezclean Reply0 Views283 file
    Read More

  20. PUP.DriverXYZ, LiveSupport

    PUP.DriverXYZ *file c:\users\public\desktop\driverxyz.lnk c:\programdata\microsoft\windows\start menu\programs\driverxyz\driverxyz.lnk c:\programdata\microsoft\windows\start menu\programs\driverxyz\register driverxyz.lnk c:\programdata\micro...
    Date2020.12.02 Byezclean Reply0 Views52 file
    Read More
쓰기
Board Pagination Prev 1 ... 3 4 5 6 7 8 Next
/ 8

(C) EzClean

XE Login

  1. 회원가입
  2. 아이디,비밀번호 찾기
  3. 인증 메일 재발송