PUP.DriverXYZ
*file
c:\users\public\desktop\driverxyz.lnk
c:\programdata\microsoft\windows\start menu\programs\driverxyz\driverxyz.lnk
c:\programdata\microsoft\windows\start menu\programs\driverxyz\register driverxyz.lnk
c:\programdata\microsoft\windows\start menu\programs\driverxyz\uninstall driverxyz.lnk
c:\users\public\desktop\driverxyz.lnk
c:\windows\tasks\driverxyz_nagafterscan.job
c:\windows\tasks\driverxyz_silentresults.job
c:\windows\tasks\driverxyz_updates.job
c:\windows\system32\tasks\driverxyz_nagafterscan
c:\windows\system32\tasks\driverxyz_silentresults
c:\windows\system32\tasks\driverxyz_updates
c:\windows\system32\tasks\driverxyzrunatstartup
c:\program files\driverxyz\driverxyz.exe
c:\program files\driverxyz\unrar.dll
c:\program files\driverxyz\isxdl.dll
c:\program files\driverxyz\chinese_rcp.ini
c:\program files\driverxyz\danish_rcp.ini
c:\program files\driverxyz\difxapi.dll
c:\program files\driverxyz\difxapi64.dll
c:\program files\driverxyz\install_left_image.bmp
c:\program files\driverxyz\Japanese_rcp.ini
c:\program files\driverxyz\unins000.dat
c:\program files\driverxyz\unins000.exe
C:\Program Files\DriverXYZ\updater\amd64Helper\difxapi.dll
C:\Program Files\DriverXYZ\updater\amd64Helper\DriverUpdateHelper64.exe
C:\Program Files\DriverXYZ\updater\amd64Helper\DriverUpdateHelper64.manifest
C:\Program Files\DriverXYZ\updater\extract\7z.dll
C:\Program Files\DriverXYZ\updater\extract\7z.exe
C:\Program Files\DriverXYZ\updater\extract\license.txt
C:\Program Files\DriverXYZ\updater\extract\readme.txt
C:\Program Files\DriverXYZ\updater\extract\copying.txt
c:\users\{USERNAME}\appdata\roaming\fixila\driverxyz\Download.dat
c:\users\{USERNAME}\appdata\roaming\fixila\driverxyz\exc.xml
c:\users\{USERNAME}\appdata\roaming\fixila\driverxyz\ininotfound0.ini
*reg_key
HKCU\software\fixila\driverxyz
HKLM\software\fixila\driverxyz
HKLM\software\microsoft\windows\currentversion\uninstall\driverxyz_is1
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\tree\driverxyz_nagafterscan
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\tasks\{ff4663f4-548b-4f19-8e82-87a8272f7707}
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\plain\{ff4663f4-548b-4f19-8e82-87a8272f7707}
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\tree\driverxyz_silentresults
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\tasks\{050daa30-2be5-478b-9cb7-0c00dae5d3ec}
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\plain\{050daa30-2be5-478b-9cb7-0c00dae5d3ec}
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\tree\driverxyz_updates
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\tasks\{3e982115-1794-44b0-a0e2-13cf476663da}
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\plain\{3e982115-1794-44b0-a0e2-13cf476663da}
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\tree\driverxyzrunatstartup
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\tasks\{0e9a904e-8b28-48f7-9a35-47c859693479}
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\logon\{0e9a904e-8b28-48f7-9a35-47c859693479}
Adware.LiveSupport
*file
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LiveSupport\Uninstall LiveSupport.lnk
C:\Program Files\LiveSupport\unins000.msg
C:\Program Files\LiveSupport\unins000.exe
C:\Program Files\LiveSupport\unins000.dat
C:\Program Files\LiveSupport\LiveSupport_deskband_x64.dll
C:\Users\Ad\Desktop\LiveSupport.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LiveSupport\LiveSupport.lnk
*reg_key
HKCU\Software\LiveSupport
HKLM\SOFTWARE\Classes\CLSID\{ebfcf40e-a87b-463f-A782-55BDD4160B5E}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LiveSupport_is1
Trojan. CalculatemPro, KGBKeyLogger
