PUP.AdvanceSystem, MineApp

PUP.AdvanceSystem

 

*file
C:\Windows\System32\tasks\advance-system care_logon
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\advance-system care\uninstall advance-system care.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\advance-system care\buy advance-system care.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\advance-system care\advance-system care.lnk
c:\program files\advance-system care\x86\sqlite.interop.dll
c:\program files\advance-system care\x64\sqlite.interop.dll
c:\program files\advance-system care\unins000.msg
c:\program files\advance-system care\unins000.exe
c:\program files\advance-system care\unins000.dat
c:\program files\advance-system care\taskscheduler.dll
c:\program files\advance-system care\tafactory.iconpack.dll
c:\program files\advance-system care\system.data.sqlite.dll
c:\program files\advance-system care\naudio.dll
c:\program files\advance-system care\microsoft.win32.taskscheduler.dll
c:\program files\advance-system care\langs.db
c:\program files\advance-system care\interop.iwshruntimelibrary.dll
c:\program files\advance-system care\htmlrenderer.winforms.dll
c:\program files\advance-system care\htmlrenderer.dll
c:\program files\advance-system care\asccontent.dll
c:\program files\advance-system care\asc.exe.config
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\advance-system care
c:\program files\advance-system care\x86
c:\program files\advance-system care\x64
c:\program files\advance-system care


*reg_key
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\tasks\{0a4ba1a7-512d-40c2-b864-ec119964607d}
HKLM\software\microsoft\windows nt\currentversion\schedule\taskcache\tree\advance-system care_logon
 

 

PUP.MineApp

 

*file
C:\Users\{USERNAME}\AppData\Roaming\MinesweeperApp\mineApplication.exe
C:\Users\{USERNAME}\AppData\Roaming\MinesweeperApp\uninstaller.exe


*reg_key
HKCU\Software\Microsoft\Windows\CurrentVersion\Run | mineApplication
HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MinesweeperApp