2021.01.22 10:45

PUP. Guffins, PriceLess

조회 수 1 추천 수 0 댓글 0
?

단축키

Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄 첨부
?

단축키

Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄 첨부

PUP. Guffins

 


*file
C:\Program Files\Guffins\bar\1.bin\chrome\u4ffxtbr.jar
C:\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\CONFIG.XML
C:\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\ASSIST.EXE
C:\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\ARBITER64.DLL
C:\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\ARBITER.DLL
C:\Program Files\Guffins\bar\1.bin\VERIFY.DLL
C:\Program Files\Guffins\bar\1.bin\UNIFIEDLOGGING.DLL
C:\Program Files\Guffins\bar\1.bin\u4srchmr.dll
C:\Program Files\Guffins\bar\1.bin\u4skplay.exe
C:\Program Files\Guffins\bar\1.bin\u4regiet.dll
C:\Program Files\Guffins\bar\1.bin\u4reghk.dll
C:\Program Files\Guffins\bar\1.bin\u4regfft.dll
C:\Program Files\Guffins\bar\1.bin\u4Plugin.dll
C:\Program Files\Guffins\bar\1.bin\u4ieovr.dll
C:\Program Files\Guffins\bar\1.bin\u4idle.dll
C:\Program Files\Guffins\bar\1.bin\u4hkstub.dll
C:\Program Files\Guffins\bar\1.bin\u4dlghk64.dll
C:\Program Files\Guffins\bar\1.bin\u4brstub64.dll
C:\Program Files\Guffins\bar\1.bin\u4brmon64.exe
C:\Program Files\Guffins\bar\1.bin\u4barsvc.exe
C:\Program Files\Guffins\bar\1.bin\u4auxstb64.dll
C:\Program Files\Guffins\bar\1.bin\u4auxstb.dll
C:\Program Files\Guffins\bar\1.bin\TPIMANAGERCONSOLE.EXE
C:\Program Files\Guffins\bar\1.bin\T8TICKER.DLL
C:\Program Files\Guffins\bar\1.bin\T8EXTPEX.DLL
C:\Program Files\Guffins\bar\1.bin\T8EXTEX.DLL
C:\Program Files\Guffins\bar\1.bin\T8EPMSUP.DLL
C:\Program Files\Guffins\bar\1.bin\NPu4Stub.dll
C:\Program Files\Guffins\bar\1.bin\LOGO.BMP
C:\Program Files\Guffins\bar\1.bin\installKeys.js
C:\Program Files\Guffins\bar\1.bin\INSTALL.RDF
C:\Program Files\Guffins\bar\1.bin\Hpg64.dll
C:\Program Files\Guffins\bar\1.bin\FF-NativeMessagingDispatcher.dll
C:\Program Files\Guffins\bar\1.bin\EXEMANAGER.DLL
C:\Program Files\Guffins\bar\1.bin\DPNMNGR.DLL
C:\Program Files\Guffins\bar\1.bin\CrExtPu4.exe
C:\Program Files\Guffins\bar\1.bin\CREXT.DLL
C:\Program Files\Guffins\bar\1.bin\CHROME.MANIFEST
C:\Program Files\Guffins\bar\1.bin\BOOTSTRAP.JS
C:\Program Files\Guffins\bar\1.bin\ASSISTMONITOR64.DLL
C:\Program Files\Guffins\bar\1.bin\ASSISTMONITOR.DLL
C:\Program Files\Guffins\bar\1.bin\AppIntegratorStub64.dll
C:\Program Files\Guffins\bar\1.bin\AppIntegrator64.exe

*reg_key
HKCU\Software\AppDataLow\Software\Guffins
HKCU\Software\Guffins
HKCU\Software\Classes\CLSID\{c3d3840c-12ea-4461-a61d-190555fecc82}
HKLM\SOFTWARE\Classes\CLSID\{006bff73-d6b8-4cc0-a982-1e041d625b08}
HKLM\SOFTWARE\Classes\CLSID\{1b3f043d-1afc-4bc1-8c5e-6dc54ead3ae1}
HKLM\SOFTWARE\Classes\CLSID\{1D69E858-32D5-4888-A395-579C8124112B}
HKLM\SOFTWARE\Classes\CLSID\{1f28c606-9536-4078-b89f-143b5c01571c}
HKLM\SOFTWARE\Classes\CLSID\{442d3d85-b938-4ff8-9c15-027405dea3ec}
HKLM\SOFTWARE\Classes\CLSID\{47b3f06e-cec0-4670-ae2f-033f46ea5177}
HKLM\SOFTWARE\Classes\CLSID\{49a32f81-0ba1-4b43-856c-9a61425e5bf1}
HKLM\SOFTWARE\Classes\CLSID\{54d836b9-1df3-4f0c-b502-e9e9d27b7f9a}
HKLM\SOFTWARE\Classes\CLSID\{71a84035-08ad-4964-b6e9-9ffc06390057}
HKLM\SOFTWARE\Classes\CLSID\{8013018c-73f4-4642-b2d1-9d83c2aafbc2}
HKLM\SOFTWARE\Classes\CLSID\{956e5a3f-b1c2-4e81-9f30-84349ce7baf0}
HKLM\SOFTWARE\Classes\CLSID\{9a04e19d-aaf5-4d2b-87c6-2f01b7e205b4}
HKLM\SOFTWARE\Classes\CLSID\{a6405ec8-0e8a-49af-978e-f7fac946950b}
HKLM\SOFTWARE\Classes\CLSID\{ae71ca5e-f67d-4507-8ee3-2c64c79131fe}
HKLM\SOFTWARE\Classes\CLSID\{de2fdf7c-2637-4ba3-b427-3fce2d331db5}
HKLM\SOFTWARE\Classes\CLSID\{f8e548a0-ad49-456c-a72c-977d06415c68}
HKLM\SOFTWARE\Classes\CLSID\{f8f03266-dec7-4f5c-a6d3-d88533ee9070}
HKLM\SOFTWARE\Classes\TypeLib\{0B070B7B-5574-4735-B4AA-0543DF03FDFA}
HKLM\SOFTWARE\Classes\TypeLib\{10281CC0-D529-4C37-86F9-13A91366200E}
HKLM\SOFTWARE\Classes\TypeLib\{18E5FE5F-481D-4991-B833-CA21803D5E7D}
HKLM\SOFTWARE\Classes\TypeLib\{1D00DBBA-73F1-4784-88D3-2EEC61B2E99B}
HKLM\SOFTWARE\Classes\TypeLib\{71A63FCB-02F9-4632-B7CE-2D136BF2EAC8}
HKLM\SOFTWARE\Classes\TypeLib\{7832DE29-0904-406C-AD68-E0D5C3C3A4EA}
HKLM\SOFTWARE\Classes\TypeLib\{7C75F6AB-5FB4-4AB2-AC5C-8A9AE211553E}
HKLM\SOFTWARE\Classes\TypeLib\{8EF6E3A3-2C8D-4CD3-8FA3-8E901D8EFA90}
HKLM\SOFTWARE\Classes\TypeLib\{A7AE7537-9C87-4F9C-A494-84FA5AD092F0}
HKLM\SOFTWARE\Classes\TypeLib\{AC480FBE-24AB-4372-9A32-02AB0BAE8B6B}
HKLM\SOFTWARE\Classes\TypeLib\{F379BD31-1B3D-41F7-9349-35004298B4C6}
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.FeedManager
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.FeedManager.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.HTMLMenu
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.HTMLMenu.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.HTMLPanel
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.HTMLPanel.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.MultipleButton
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.MultipleButton.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.PseudoTransparentPlugin
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.PseudoTransparentPlugin.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.Radio
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.Radio.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.RadioSettings
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.RadioSettings.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.ScriptButton
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.ScriptButton.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.SettingsPlugin
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.SettingsPlugin.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.ThirdPartyInstaller
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.ThirdPartyInstaller.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.ToolbarProtector
HKLM\SOFTWARE\SOFTWARE\Classes\guffins.ToolbarProtector.1
HKLM\SOFTWARE\SOFTWARE\Guffins
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1d2aa885-2c50-4758-a262-17254662a5d5}
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49a32f81-0ba1-4b43-856c-9a61425e5bf1}
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4a8aa6e6-54c5-4a40-89f3-62acd51a2069}
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59567752-5ff2-4df5-aada-e9c6f114c00a}
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c277597d-c02b-4c09-9778-671530d2700f}
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ff777bf5-d424-4519-a61e-2b5bb204894d}
HKLM\SOFTWARE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Guffinsbar Uninstall Firefox
HKLM\SOFTWARE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Guffinsbar Uninstall Internet Explorer
HKLM\SOFTWARE\SOFTWARE\MozillaPlugins\@Guffins.com/Plugin
HKLM\SOFTWARE\SYSTEM\CurrentControlSet\Services\GuffinsService

*reg_val
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run | Guffins EPM Support

 


PUP. PriceLess

 


*file
C:\Program Files\PricceiLess\BuPLHTdkD0iL90.dll
C:\Program Files\PricceiLess\BuPLHTdkD0iL90.x64.dll
C:\Program Files\PricceiLess

*reg_key
HKLM\SOFTWARE\Classes\CLSID\{e3530a22-9bd6-4e86-a8db-abafc1571a1f}
HKLM\software\microsoft\windows\currentversion\Ext\PreApproved\{e3530a22-9bd6-4e86-a8db-abafc1571a1f}
HKCU\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration\{e3530a22-9bd6-4e86-a8db-abafc1571a1f}

*reg_val
HKLM\software\microsoft\windows\currentversion\Policies\Ext\CLSID | {e3530a22-9bd6-4e86-a8db-abafc1571a1f}
HKLM\SOFTWARE\Classes\.\CLSID | ##{e3530a22-9bd6-4e86-a8db-abafc1571a1f}<-
HKLM\SOFTWARE\Classes\..9\CLSID | ##{e3530a22-9bd6-4e86-a8db-abafc1571a1f}<-


11111.png

 


  1. PUP.HohoSearch, Popfreeka

    PUP.HohoSearch *file C:\windows\System32\tasks\coacuiedclernege module C:\Prorogram files\ckotersequzight\vercolystecuyconfiguration.dll C:\Prorogram files\ckotersequzight\coacuiedclernegemodulejedeentsherwusy.exe C:\Prorogram files\ckoterse...
    Date2021.01.28 Byezclean Reply0 Views1 file
    Read More
  2. Adware.Linkury, Netfilter

    Adware.Linkury *reg_key HKCU\software\microsoft\internet explorer\main\featurecontrol\feature_browser_emulation:linkury.exe HKLM\software\microsoft\windows\currentversion\run:linkury chrome smartbar HKLM\software\microsoft\tracing\linkury_ra...
    Date2021.01.27 Byezclean Reply0 Views6 file
    Read More
  3. Trojan. RegistryTool, AdwareAlert

    Trojan. RegistryTool * File path C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegistryTool\Uninstall RegistryTool.lnk C:\Program Files\Downloaded Installers\{954FB8FF-7FCF-46F2-869F-1B61D1212904}\setup.msi C:\Users\Public\Desktop\Reg...
    Date2021.01.26 Byezclean Reply0 Views6 file
    Read More
  4. PUP.UCalendar, WebInternet

    PUP.UCalendar *file C:\Users\{USERNAME}\AppData\Local\ucalendar\desktopcalendar.dll C:\Users\{USERNAME}\AppData\Local\ucalendar\huangli.xml C:\Users\{USERNAME}\AppData\Local\ucalendar\icolog C:\Users\{USERNAME}\AppData\Local\ucalendar\niaoji...
    Date2021.01.25 Byezclean Reply0 Views1 file
    Read More
  5. PUP. Guffins, PriceLess

    PUP. Guffins *file C:\Program Files\Guffins\bar\1.bin\chrome\u4ffxtbr.jar C:\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\CONFIG.XML C:\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\ASSIST.EXE C:\Pr...
    Date2021.01.22 Byezclean Reply0 Views1 file
    Read More
  6. Adware.DVDVideoSoft, FileRubber

    Adware.DVDVideoSoft *file C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\DVDVideoSoft Free Studio.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Log Report.lnk C:\ProgramData\Microsoft\Windows\Start ...
    Date2021.01.21 Byezclean Reply0 Views3 file
    Read More
  7. Adware.CoolVerte, Grape

    Adware.CoolVerte *file C:\users\public\Desktop\coolverter.lnk C:\programdata\microsoft\windows\start menu\programs\coolverter\coolverter.lnk C:\program files\coolverter\updater.exe C:\program files\coolverter\coolverter.exe *reg_key HKLM\sof...
    Date2021.01.20 Byezclean Reply0 Views11 file
    Read More
  8. Adware.dvdvideosoft, UniversalDriver

    Adware.dvdvideosoft *file C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dvdvideosoft free studio.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\log report.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\premium memb...
    Date2021.01.19 Byezclean Reply0 Views4 file
    Read More
  9. Trojan.winrule, BitCoinMiner

    Trojan.winrule *file C:\Program Files\winrule\Uninstall.exe C:\Program Files\winrule\WinRule.exe C:\Program Files\winrule\WinRuleSync.exe C:\Program Files\winrule\WinRuleSync_.exe C:\Program Files\winrule\winruletask.exe C:\Program Files\win...
    Date2021.01.15 Byezclean Reply0 Views14 file
    Read More
  10. PUP.DealPly, MinerGate

    PUP. DealPly *file C:\windows\tasks\dealplyliveupdatetaskmachinecore.job C:\program files\dealplylive\update\1.3.23.0\psuser.dll C:\program files\dealplylive\update\1.3.23.0\psmachine.dll C:\program files\dealplylive\update\1.3.23.0\npgoogle...
    Date2021.01.12 Byezclean Reply0 Views16 file
    Read More
  11. Trojan.TechAgent, Ghapoly

    Trojan.TechAgent *file C:\Windows\System32\Tasks\TechAgentTask C:\Windows\System32\Tasks\TechAgent Task C:\Users\Public\Desktop\TechAgent.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechAgent\TechAgent.lnk C:\ProgramData\Microso...
    Date2021.01.08 Byezclean Reply0 Views7 file
    Read More
  12. Adware.BlueMoon, FileSubmit

    Adware.Agent *file C:\Program Files\ZPA7NKFZ6Y\uninstaller.exe C:\Program Files\ZPA7NKFZ6Y\ZPA7NKFZ6.exe C:\Program Files\1CW6G366CO\E13LO2C7B.exe C:\Program Files\1CW6G366CO\uninstaller.exe *reg_key HKLM\SOFTWARE\Microsoft\Tracing\E13LO2C7B...
    Date2021.01.07 Byezclean Reply0 Views3 file
    Read More
  13. PUP.MarvelSound, CalendarTool

    PUP.MarvelSound *reg_key HKLM\SOFTWARE\Classes\MarvelSound.Media.1 HKLM\SOFTWARE\Classes\SystemFileAssociations\audio\OpenWithList\marvelsound.exe HKLM\SOFTWARE\Classes\SystemFileAssociations\video\OpenWithList\marvelsound.exe *reg_val HKLM\...
    Date2021.01.06 Byezclean Reply0 Views7 file
    Read More
  14. Trojan.Ghapoly, BestCleaner

    Trojan.Ghapoly *file C:\Program Files\ghapoly\Release_21.dll C:\Program Files\Ghapoly\Proxy32.dll C:\Program Files\Ghapoly\libvlc.dll C:\Program Files\Ghapoly\launcher_2.dll C:\Program Files\Ghapoly\drizutainshupkCld.dll2428453 C:\Program Fi...
    Date2021.01.05 Byezclean Reply0 Views7 file
    Read More
  15. Adware.Ebuyer, SmartCloud

    Adware.Ebuyer *file C\Windows\System32\Tasks\e-Buyer Updater C\Users\{USERNAME}\AppData\Local\ebuyer\ebuyer\1.4.4.4\res.dll C\Users\{USERNAME}\AppData\Local\ebuyer\ebuyer\1.4.4.4\fobkbCag.dll C\Users\{USERNAME}\AppData\Local\ebuyer\ebuyer\1....
    Date2021.01.04 Byezclean Reply0 Views6 file
    Read More
  16. Trojan.TCClock, PDFCracker

    Trojan.TCClock *file C:\Users\{USERNAME}\AppData\Roaming\RAF\coffeeclock\TCC-ClockFace.exe C:\Users\{USERNAME}\AppData\Roaming\RAF\coffeeclock\TCCalEvents.exe C:\Users\{USERNAME}\AppData\Roaming\RAF\coffeeclock\TCClock.exe C:\Users\{USERNAME...
    Date2020.12.29 Byezclean Reply0 Views15 file
    Read More
  17. PUP.GrassValley, Heinote

    PUP.GrassValley *file C\Users\{USERNAME}\Desktop\EDIUS7_LO{USERNAME}ER.lnk C\Users\{USERNAME}\Desktop\EDIUS6_5_LO{USERNAME}ER.lnk C\Program Files\Grass Valley\EDIUS 7\Uninstall.exe C\Program Files\Grass Valley\EDIUS 7\LO{USERNAME}ER_7.40 488...
    Date2020.12.28 Byezclean Reply0 Views4 file
    Read More
  18. PUP.YoutubeMusic, DealPly

    PUP.YoutubeMusic *file C\Users\{USERNAME}\Desktop\Youtube Music Downlo{USERNAME}er.lnk C\Users\{USERNAME}\AppData\Local\Temp\is-AP0D1.tmp\Youtube_Music_Downlo{USERNAME}er_Setup.exe C\ProgramData\Microsoft\Windows\Start Menu\Programs\youtube ...
    Date2020.12.24 Byezclean Reply0 Views9 file
    Read More
  19. PUP.WinZipDiskTool

    PUP.WinZipDiskTool *files %appdata%\wzdt\lci.lci %appdata%\wzdt\uid.txt %programfiles%\winzip disk tools\wzdthelper.dll %programfiles%\winzip disk tools\asores.dll %programfiles%\winzip disk tools\wzdtdefragsrv64.exe %programfiles%\winzip di...
    Date2020.12.23 Byezclean Reply0 Views10 file
    Read More
  20. Trojan.HaoTuKanKan, HPMonkey

    Trojan.HaoTuKanKan *file C\Users\{USERNAME}\AppData\Local\HaoTuKanKan\HaoTuKanKan.exe C\Users\{USERNAME}\AppData\Local\HaoTuKanKan\haotu_update.dll C\Users\{USERNAME}\AppData\Local\HaoTuKanKan\uninstall.exe *reg_key HKCU\Software\HaoTuKanKan...
    Date2020.12.23 Byezclean Reply0 Views2 file
    Read More
Board Pagination Prev 1 2 3 4 5 6 Next
/ 6
XE Login