윈도우 팁/악성코드 정보

2016.06.01 16:53

[Trojan] remote manipulator system

gratolab https://www.gratolabv2.com/3329
조회 수 81964 추천 수 0 댓글 0
?

단축키

Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄

 

Trojan. remote manipulator system

 

* registry path

HKEY_LOCAL_MACHINE\SOFTWARE\RMSPrinter
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\13A941B963765914F811F4CD6F8DD41E
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1abe421e8cfc34144AACB9676F71902E
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2A013281E9DC1714CA1DA3DE2D061AF5
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6364F69515D55F943B4B3F3C669ECD32
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6EDC4423414699340B5D245426472701
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E45BAE6295648E74689FC47BF4E730EB
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E5052F47A02BDEA469F8EAB572D83BA8
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\13A941B963765914F811F4CD6F8DD41E
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{9B149A31-6736-4195-8F11-4FDCF6D84DE1}
HKEY_LOCAL_MACHINE\SYSTEM\Remote Manipulator System

 

 

* files path

 

c:\ProgramData^Microsoft^Windows^Start Menu^Programs\Remote Manipulator System - Host\Остановить Host.lnk
c:\ProgramData^Microsoft^Windows^Start Menu^Programs\Remote Manipulator System - Host\Настройка Host.lnk
c:\ProgramData^Microsoft^Windows^Start Menu^Programs\Remote Manipulator System - Host\Запустить Host.lnk
c:\ProgramData^Microsoft^Windows^Start Menu^Programs\Remote Manipulator System - Host\Деинсталлировать Remote Manipulator System - Host.lnk
c:\ProgramData^Microsoft^Windows^Start Menu^Programs\Remote Manipulator System - Host

c:\log\install.bat
c:\log\log.txt
c:\log\regedit.reg
c:\log\rfusclient.exe
c:\log\rutserv.exe
c:\log\start.vbs
c:\log\vp8decoder.dll
c:\log\vp8encoder.dll
c:\program files\radmin\help.cnt
c:\program files\radmin\help.hlp
c:\program files\radmin\license.txt
c:\program files\radmin\r_server.exe
c:\program files\radmin\raddrv.dll
c:\program files\radmin\radmin.exe
c:\program files\radmin\readme.txt
c:\program files\radmin\uninstal.exe
c:\program files\radmin\uninstal.ini
c:\program files\remote manipulator system - host\printer\x64\fwproc.exe
c:\program files\remote manipulator system - host\printer\x64\install.cmd
c:\program files\remote manipulator system - host\printer\x64\ntprint.inf
c:\program files\remote manipulator system - host\printer\x64\progress.exe
c:\program files\remote manipulator system - host\printer\x64\rms.gpd
c:\program files\remote manipulator system - host\printer\x64\rms.ini
c:\program files\remote manipulator system - host\printer\x64\rms.lng
c:\program files\remote manipulator system - host\printer\x64\rms_s.lng
c:\program files\remote manipulator system - host\printer\x64\rmspm.dll
c:\program files\remote manipulator system - host\printer\x64\rmsui.dll
c:\program files\remote manipulator system - host\printer\x64\rmsui2.exe
c:\program files\remote manipulator system - host\printer\x64\setupdrv.exe
c:\program files\remote manipulator system - host\printer\x64\srvinst_x64.exe
c:\program files\remote manipulator system - host\printer\x64\stdnames_vpd.gpd
c:\program files\remote manipulator system - host\printer\x64\unidrv_rms.dll
c:\program files\remote manipulator system - host\printer\x64\unidrv_rms.hlp
c:\program files\remote manipulator system - host\printer\x64\unidrv_rms.hlp
c:\program files\remote manipulator system - host\printer\x64\uninstall.cmd
c:\program files\remote manipulator system - host\printer\x64\unires_vpd.dll
c:\program files\remote manipulator system - host\printer\x64\vpdagent_x64.exe
c:\program files\remote manipulator system - host\printer\x86\fwproc.exe
c:\program files\remote manipulator system - host\printer\x86\install.cmd
c:\program files\remote manipulator system - host\printer\x86\ntprint.inf
c:\program files\remote manipulator system - host\printer\x86\progress.exe
c:\program files\remote manipulator system - host\printer\x86\rms.gpd
c:\program files\remote manipulator system - host\printer\x86\rms.ini
c:\program files\remote manipulator system - host\printer\x86\rms.lng
c:\program files\remote manipulator system - host\printer\x86\rms_s.lng
c:\program files\remote manipulator system - host\printer\x86\rmspm.dll
c:\program files\remote manipulator system - host\printer\x86\rmsui.dll
c:\program files\remote manipulator system - host\printer\x86\rmsui2.exe
c:\program files\remote manipulator system - host\printer\x86\setupdrv.exe
c:\program files\remote manipulator system - host\printer\x86\srvinst.exe
c:\program files\remote manipulator system - host\printer\x86\stdnames_vpd.gpd
c:\program files\remote manipulator system - host\printer\x86\unidrv_rms.dll
c:\program files\remote manipulator system - host\printer\x86\unidrv_rms.hlp
c:\program files\remote manipulator system - host\printer\x86\unidrv_rms.hlp
c:\program files\remote manipulator system - host\printer\x86\uninstall.cmd
c:\program files\remote manipulator system - host\printer\x86\unires_vpd.dll
c:\program files\remote manipulator system - host\printer\x86\vpdagent.exe
c:\program files\remote manipulator system - host\rfusclient.exe
c:\program files\remote manipulator system - host\ripcserver.dll
c:\program files\remote manipulator system - host\rutserv.exe
c:\program files\remote manipulator system - host\rwln.dll
c:\program files\remote manipulator system - host\vp8decoder.dll
c:\program files\remote manipulator system - host\vp8encoder.dll
c:\program files\remote manipulator system - host\webmmux.dll
c:\program files\remote manipulator system - host\webmvorbisdecoder.dll
c:\program files\remote manipulator system - host\webmvorbisencoder.dll
c:\program files\remote utilities - host\printer\x64\fwproc_x64.exe
c:\program files\remote utilities - host\printer\x64\install.cmd
c:\program files\remote utilities - host\printer\x64\ntprint.inf
c:\program files\remote utilities - host\printer\x64\progress.exe
c:\program files\remote utilities - host\printer\x64\rup.gpd
c:\program files\remote utilities - host\printer\x64\rup.ini
c:\program files\remote utilities - host\printer\x64\rup.lng
c:\program files\remote utilities - host\printer\x64\rup_s.lng
c:\program files\remote utilities - host\printer\x64\ruppm.dll
c:\program files\remote utilities - host\printer\x64\rupui.dll
c:\program files\remote utilities - host\printer\x64\rupui2.exe
c:\program files\remote utilities - host\printer\x64\setupdrv.exe
c:\program files\remote utilities - host\printer\x64\srvinst_x64.exe
c:\program files\remote utilities - host\printer\x64\stdnames_vpd.gpd
c:\program files\remote utilities - host\printer\x64\unidrv_rup.dll
c:\program files\remote utilities - host\printer\x64\unidrv_rup.hlp
c:\program files\remote utilities - host\printer\x64\unidrvui_rup.dll
c:\program files\remote utilities - host\printer\x64\uninstall.cmd
c:\program files\remote utilities - host\printer\x64\unires_vpd.dll
c:\program files\remote utilities - host\printer\x64\vpdagent_x64.exe
c:\program files\remote utilities - host\printer\x86\fwproc.exe
c:\program files\remote utilities - host\printer\x86\install.cmd
c:\program files\remote utilities - host\printer\x86\ntprint.inf
c:\program files\remote utilities - host\printer\x86\progress.exe
c:\program files\remote utilities - host\printer\x86\rup.gpd
c:\program files\assistance futurcom\unins000.exe
c:\program files\assistance futurcom\unins000.dat
TAG •
Facebook Twitter Google Pinterest
위로 아래로 댓글로 가기 인쇄
에디터 선택하기
?
List of Articles
번호 제목 글쓴이 조회 수
공지 샘플 업로드 방법.(How to upload a sample.) gratolab 3014
323 [PUP] VideoDownloader gratolab 364562
322 [Adware] WarThunder gratolab 189637
» [Trojan] remote manipulator system gratolab 81964
320 [PUP] DriverDoc gratolab 78061
319 [Downloader] Scrappy Binder gratolab 19996
318 컴퓨터 속도 향상을 위한 윈도우10 백그라운드 정리 방법 gratolab 13782
317 [PUP] SpaceSondPro gratolab 7069
316 [Trojan] Cain gratolab 6511
315 [PUP] GetMyDrivers gratolab 5675
314 네트워크 어댑터 - ip 프로토콜 스택을 자동으로 바인딩할 수 없습니다(nProtect Firewall Core Driver) file gratolab 3645
313 [PUP] Sweetim Tooolbar gratolab 3555
312 [PUP] AdvancePCProtector gratolab 2829
311 [Trojan] DVD Region+CSS Free gratolab 2080
310 한글프로그램 : 빈 문서 1.asv 파일을 저장할 수 없습니다. file gratolab 1903
309 MS 엣지(Edge) 알림 광고 삭제하는 방법 file gratolab 1770
308 [PUP] BestYouTube gratolab 1657
307 [Adware] SmartService gratolab 1589
306 [Hacktool] TeraBIT Virus Maker gratolab 1534
305 [Adware] SogouDownLoad gratolab 1347
쓰기
Board Pagination Prev 1 2 3 4 5 6 7 8 9 10 ... 17 Next
/ 17