윈도우 팁/악성코드 정보

2016.12.19 15:54

[PUP] Guffins

gratolab https://www.gratolabv2.com/8184
조회 수 141 추천 수 0 댓글 0
?

단축키

Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄

[PUP] Guffins

 

 

* Registry path

 

HKCU\Software\AppDataLow\Software\Guffins
HKCU\Software\Guffins
HKEY_CURRENT_USER\Software\Classes\CLSID\{c3d3840c-12ea-4461-a61d-190555fecc82}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{006bff73-d6b8-4cc0-a982-1e041d625b08}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1b3f043d-1afc-4bc1-8c5e-6dc54ead3ae1}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1D69E858-32D5-4888-A395-579C8124112B}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1f28c606-9536-4078-b89f-143b5c01571c}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{442d3d85-b938-4ff8-9c15-027405dea3ec}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{47b3f06e-cec0-4670-ae2f-033f46ea5177}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{49a32f81-0ba1-4b43-856c-9a61425e5bf1}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{54d836b9-1df3-4f0c-b502-e9e9d27b7f9a}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{71a84035-08ad-4964-b6e9-9ffc06390057}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8013018c-73f4-4642-b2d1-9d83c2aafbc2}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{956e5a3f-b1c2-4e81-9f30-84349ce7baf0}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a04e19d-aaf5-4d2b-87c6-2f01b7e205b4}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a6405ec8-0e8a-49af-978e-f7fac946950b}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ae71ca5e-f67d-4507-8ee3-2c64c79131fe}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de2fdf7c-2637-4ba3-b427-3fce2d331db5}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f8e548a0-ad49-456c-a72c-977d06415c68}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f8f03266-dec7-4f5c-a6d3-d88533ee9070}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0B070B7B-5574-4735-B4AA-0543DF03FDFA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{10281CC0-D529-4C37-86F9-13A91366200E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{18E5FE5F-481D-4991-B833-CA21803D5E7D}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{1D00DBBA-73F1-4784-88D3-2EEC61B2E99B}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{71A63FCB-02F9-4632-B7CE-2D136BF2EAC8}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{7832DE29-0904-406C-AD68-E0D5C3C3A4EA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{7C75F6AB-5FB4-4AB2-AC5C-8A9AE211553E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8EF6E3A3-2C8D-4CD3-8FA3-8E901D8EFA90}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A7AE7537-9C87-4F9C-A494-84FA5AD092F0}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AC480FBE-24AB-4372-9A32-02AB0BAE8B6B}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{F379BD31-1B3D-41F7-9349-35004298B4C6}
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.FeedManager
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.FeedManager.1
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.HTMLMenu
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.HTMLMenu.1
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.HTMLPanel
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.HTMLPanel.1
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.MultipleButton
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.MultipleButton.1
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.PseudoTransparentPlugin
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.PseudoTransparentPlugin.1
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.Radio
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.Radio.1
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.RadioSettings
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.RadioSettings.1
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.ScriptButton
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.ScriptButton.1
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.SettingsPlugin
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.SettingsPlugin.1
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.ThirdPartyInstaller
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.ThirdPartyInstaller.1
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\Guffins.ToolbarProtector
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Classes\guffins.ToolbarProtector.1
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Guffins
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1d2aa885-2c50-4758-a262-17254662a5d5}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49a32f81-0ba1-4b43-856c-9a61425e5bf1}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4a8aa6e6-54c5-4a40-89f3-62acd51a2069}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59567752-5ff2-4df5-aada-e9c6f114c00a}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c277597d-c02b-4c09-9778-671530d2700f}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ff777bf5-d424-4519-a61e-2b5bb204894d}
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Guffinsbar Uninstall Firefox
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Guffinsbar Uninstall Internet Explorer
HKEY_LOCAL_MACHINE\SOFTWARE\SOFTWARE\MozillaPlugins\@Guffins.com/Plugin
HKEY_LOCAL_MACHINE\SOFTWARE\SYSTEM\CurrentControlSet\Services\GuffinsService

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run | Guffins EPM Support

 

 

* Files path

 

C\Program Files\Guffins\bar\1.bin\chrome\u4ffxtbr.jar
C\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\CONFIG.XML
C\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\ASSIST.EXE
C\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\ARBITER64.DLL
C\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\ARBITER.DLL
C\Program Files\Guffins\bar\1.bin\VERIFY.DLL
C\Program Files\Guffins\bar\1.bin\UNIFIEDLOGGING.DLL
C\Program Files\Guffins\bar\1.bin\u4srchmr.dll
C\Program Files\Guffins\bar\1.bin\u4skplay.exe
C\Program Files\Guffins\bar\1.bin\u4regiet.dll
C\Program Files\Guffins\bar\1.bin\u4reghk.dll
C\Program Files\Guffins\bar\1.bin\u4regfft.dll
C\Program Files\Guffins\bar\1.bin\u4Plugin.dll
C\Program Files\Guffins\bar\1.bin\u4ieovr.dll
C\Program Files\Guffins\bar\1.bin\u4idle.dll
C\Program Files\Guffins\bar\1.bin\u4hkstub.dll
C\Program Files\Guffins\bar\1.bin\u4dlghk64.dll
C\Program Files\Guffins\bar\1.bin\u4brstub64.dll
C\Program Files\Guffins\bar\1.bin\u4brmon64.exe
C\Program Files\Guffins\bar\1.bin\u4barsvc.exe
C\Program Files\Guffins\bar\1.bin\u4auxstb64.dll
C\Program Files\Guffins\bar\1.bin\u4auxstb.dll
C\Program Files\Guffins\bar\1.bin\TPIMANAGERCONSOLE.EXE
C\Program Files\Guffins\bar\1.bin\T8TICKER.DLL
C\Program Files\Guffins\bar\1.bin\T8EXTPEX.DLL
C\Program Files\Guffins\bar\1.bin\T8EXTEX.DLL
C\Program Files\Guffins\bar\1.bin\T8EPMSUP.DLL
C\Program Files\Guffins\bar\1.bin\NPu4Stub.dll
C\Program Files\Guffins\bar\1.bin\LOGO.BMP
C\Program Files\Guffins\bar\1.bin\installKeys.js
C\Program Files\Guffins\bar\1.bin\INSTALL.RDF
C\Program Files\Guffins\bar\1.bin\Hpg64.dll
C\Program Files\Guffins\bar\1.bin\FF-NativeMessagingDispatcher.dll
C\Program Files\Guffins\bar\1.bin\EXEMANAGER.DLL
C\Program Files\Guffins\bar\1.bin\DPNMNGR.DLL
C\Program Files\Guffins\bar\1.bin\CrExtPu4.exe
C\Program Files\Guffins\bar\1.bin\CREXT.DLL
C\Program Files\Guffins\bar\1.bin\CHROME.MANIFEST
C\Program Files\Guffins\bar\1.bin\BOOTSTRAP.JS
C\Program Files\Guffins\bar\1.bin\ASSISTMONITOR64.DLL
C\Program Files\Guffins\bar\1.bin\ASSISTMONITOR.DLL
C\Program Files\Guffins\bar\1.bin\AppIntegratorStub64.dll
C\Program Files\Guffins\bar\1.bin\AppIntegrator64.exe
TAG •
Facebook Twitter Google Pinterest
위로 아래로 댓글로 가기 인쇄
에디터 선택하기
?
List of Articles
번호 제목 글쓴이 조회 수
공지 샘플 업로드 방법.(How to upload a sample.) gratolab 3015
144 [PUP] MarvelSound gratolab 367
143 [PUP]CalendarTool 맥도널드 160
142 [PUP] DealPly gratolab 435
» [PUP] Guffins gratolab 141
140 [PUP] SimpleMalware gratolab 155
139 [Adware] Grape gratolab 405
138 [Adware] DVDVideoSoft gratolab 181
137 [Trojan] Ghapoly gratolab 148
136 [Adware] FileSubmit gratolab 280
135 [Trojan] winrule gratolab 158
134 [Trojan] Agent gratolab 174
133 [PUP] PriceLess gratolab 128
132 [Adware] Express 맥도널드 141
131 [Adware] dvdvideosoft 맥도널드 189
130 [PUP] MinerGate 맥도널드 853
129 [Adware] UniversalDriver gratolab 615
128 [Adware] CoolVerte gratolab 163
127 [PUP] UCalendar gratolab 262
126 [Adware] CloudGuard gratolab 183
125 [Adware] SmartService gratolab 1589
쓰기
Board Pagination Prev 1 ... 5 6 7 8 9 10 11 12 13 14 ... 17 Next
/ 17