PUP.Catalina
*file
c:\users\{USERNAME}\appdata\local\catalinagroup\update\1.3.25.225\goopdate.dll
c:\users\{USERNAME}\appdata\local\catalinagroup\update\1.3.25.225\catalinacrashhandler.exe
c:\users\{USERNAME}\appdata\local\catalinagroup\update\1.3.25.225\catalinaupdate.exe
c:\users\{USERNAME}\appdata\local\catalinagroup\update\1.3.25.225\catalinaupdatebroker.exe
c:\users\{USERNAME}\appdata\local\catalinagroup\update\1.3.25.225\catalinaupdatehelper.msi
c:\users\{USERNAME}\appdata\local\catalinagroup\update\1.3.25.225\catalinaupdateondemand.exe
c:\users\{USERNAME}\appdata\local\catalinagroup\update\1.3.25.225\npcatalinaupdate3.dll
c:\users\{USERNAME}\appdata\local\catalinagroup\update\1.3.25.225\psmachine.dll
c:\users\{USERNAME}\appdata\local\catalinagroup\update\1.3.25.225\psuser.dll
c:\users\{USERNAME}\appdata\local\catalinagroup\update\catalinaupdate.exe
c:\users\{USERNAME}\appdata\roaming\microsoft\internet explorer\quick launch\citrio.lnk
c:\users\{USERNAME}\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\citrio.lnk
c:\users\{USERNAME}\appdata\local\catalinagroup\citrio\application\citrio.exe
c:\users\{USERNAME}\appdata\local\catalinagroup\citrio\application\chrome.visualelementsmanifest.xml
c:\users\{USERNAME}\appdata\local\catalinagroup\citrio\application\debug.log
c:\users\{USERNAME}\appdata\roaming\microsoft\windows\start menu\programs\citrio.lnk
c:\users\{USERNAME}\desktop\catalinaupdatesetup.exe
*reg_val
hkcu\software\microsoft\windows\currentversion\run|catalinagroup update
PUP.BrowseFox
*Files
c:\program files\browsefox\browsefoxbho.dll
c:\program files\browsefox\updatebrowsefox.exe
c:\program files\browsefox\browsefox.common.dll
c:\program files\browsefox\browsefox.ico
c:\program files\browsefox\browsefoxuninstall.exe
c:\program files\browsefox\microsoft.win32.taskscgeduler.dll
c:\program files\browsefox\sqlite3.exe
c:\program files\browsefox\updatebrowsefox.exe
c:\program files\browsefox\updatebrowsefox.installstate
* RegKey
HKLM\software\microsoft\windows\currentversion\explorer\browser helper objects\{b9507101-e464-4b3b-a4cb-291aaedd94f2}
HKLM\system\currentcontrolset\services\update browsefox
HKLM\software\microsoft\windows\currentversion\uninstall\browsefox
HKCU\software\browsefox\internet explorer
HKCU\software\browsefox\firefox
HKCU\software\browsefox\chrome
HKCU\software\browsefox
PUP.ChromeEX, Homply
PUP.Carambis, PUP.AppMaster
