PUP. Guffins, PriceLess

PUP. Guffins

 

*file
C:\Program Files\Guffins\bar\1.bin\chrome\u4ffxtbr.jar
C:\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\CONFIG.XML
C:\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\ASSIST.EXE
C:\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\ARBITER64.DLL
C:\Program Files\Guffins\bar\1.bin\assists\ie_default_search_provider\ARBITER.DLL
C:\Program Files\Guffins\bar\1.bin\VERIFY.DLL
C:\Program Files\Guffins\bar\1.bin\UNIFIEDLOGGING.DLL
C:\Program Files\Guffins\bar\1.bin\u4srchmr.dll
C:\Program Files\Guffins\bar\1.bin\u4skplay.exe
C:\Program Files\Guffins\bar\1.bin\u4regiet.dll
C:\Program Files\Guffins\bar\1.bin\u4reghk.dll
C:\Program Files\Guffins\bar\1.bin\u4regfft.dll
C:\Program Files\Guffins\bar\1.bin\u4Plugin.dll
C:\Program Files\Guffins\bar\1.bin\u4ieovr.dll
C:\Program Files\Guffins\bar\1.bin\u4idle.dll
C:\Program Files\Guffins\bar\1.bin\u4hkstub.dll
C:\Program Files\Guffins\bar\1.bin\u4dlghk64.dll
C:\Program Files\Guffins\bar\1.bin\u4brstub64.dll
C:\Program Files\Guffins\bar\1.bin\u4brmon64.exe
C:\Program Files\Guffins\bar\1.bin\u4barsvc.exe
C:\Program Files\Guffins\bar\1.bin\u4auxstb64.dll
C:\Program Files\Guffins\bar\1.bin\u4auxstb.dll
C:\Program Files\Guffins\bar\1.bin\TPIMANAGERCONSOLE.EXE
C:\Program Files\Guffins\bar\1.bin\T8TICKER.DLL
C:\Program Files\Guffins\bar\1.bin\T8EXTPEX.DLL
C:\Program Files\Guffins\bar\1.bin\T8EXTEX.DLL
C:\Program Files\Guffins\bar\1.bin\T8EPMSUP.DLL
C:\Program Files\Guffins\bar\1.bin\NPu4Stub.dll
C:\Program Files\Guffins\bar\1.bin\LOGO.BMP
C:\Program Files\Guffins\bar\1.bin\installKeys.js
C:\Program Files\Guffins\bar\1.bin\INSTALL.RDF
C:\Program Files\Guffins\bar\1.bin\Hpg64.dll
C:\Program Files\Guffins\bar\1.bin\FF-NativeMessagingDispatcher.dll
C:\Program Files\Guffins\bar\1.bin\EXEMANAGER.DLL
C:\Program Files\Guffins\bar\1.bin\DPNMNGR.DLL
C:\Program Files\Guffins\bar\1.bin\CrExtPu4.exe
C:\Program Files\Guffins\bar\1.bin\CREXT.DLL
C:\Program Files\Guffins\bar\1.bin\CHROME.MANIFEST
C:\Program Files\Guffins\bar\1.bin\BOOTSTRAP.JS
C:\Program Files\Guffins\bar\1.bin\ASSISTMONITOR64.DLL
C:\Program Files\Guffins\bar\1.bin\ASSISTMONITOR.DLL
C:\Program Files\Guffins\bar\1.bin\AppIntegratorStub64.dll
C:\Program Files\Guffins\bar\1.bin\AppIntegrator64.exe

*reg_key
HKCU\Software\AppDataLow\Software\Guffins
HKCU\Software\Guffins
HKCU\Software\Classes\CLSID\{c3d3840c-12ea-4461-a61d-190555fecc82}
HKLM\SOFTWARE\Classes\CLSID\{006bff73-d6b8-4cc0-a982-1e041d625b08}
HKLM\SOFTWARE\Classes\CLSID\{1b3f043d-1afc-4bc1-8c5e-6dc54ead3ae1}
HKLM\SOFTWARE\Classes\CLSID\{1D69E858-32D5-4888-A395-579C8124112B}
HKLM\SOFTWARE\Classes\CLSID\{1f28c606-9536-4078-b89f-143b5c01571c}
HKLM\SOFTWARE\Classes\CLSID\{442d3d85-b938-4ff8-9c15-027405dea3ec}
HKLM\SOFTWARE\Classes\CLSID\{47b3f06e-cec0-4670-ae2f-033f46ea5177}
HKLM\SOFTWARE\Classes\CLSID\{49a32f81-0ba1-4b43-856c-9a61425e5bf1}
HKLM\SOFTWARE\Classes\CLSID\{54d836b9-1df3-4f0c-b502-e9e9d27b7f9a}
HKLM\SOFTWARE\Classes\CLSID\{71a84035-08ad-4964-b6e9-9ffc06390057}
HKLM\SOFTWARE\Classes\CLSID\{8013018c-73f4-4642-b2d1-9d83c2aafbc2}
HKLM\SOFTWARE\Classes\CLSID\{956e5a3f-b1c2-4e81-9f30-84349ce7baf0}
HKLM\SOFTWARE\Classes\CLSID\{9a04e19d-aaf5-4d2b-87c6-2f01b7e205b4}
HKLM\SOFTWARE\Classes\CLSID\{a6405ec8-0e8a-49af-978e-f7fac946950b}
HKLM\SOFTWARE\Classes\CLSID\{ae71ca5e-f67d-4507-8ee3-2c64c79131fe}
HKLM\SOFTWARE\Classes\CLSID\{de2fdf7c-2637-4ba3-b427-3fce2d331db5}
HKLM\SOFTWARE\Classes\CLSID\{f8e548a0-ad49-456c-a72c-977d06415c68}
HKLM\SOFTWARE\Classes\CLSID\{f8f03266-dec7-4f5c-a6d3-d88533ee9070}
HKLM\SOFTWARE\Classes\TypeLib\{0B070B7B-5574-4735-B4AA-0543DF03FDFA}
HKLM\SOFTWARE\Classes\TypeLib\{10281CC0-D529-4C37-86F9-13A91366200E}
HKLM\SOFTWARE\Classes\TypeLib\{18E5FE5F-481D-4991-B833-CA21803D5E7D}
HKLM\SOFTWARE\Classes\TypeLib\{1D00DBBA-73F1-4784-88D3-2EEC61B2E99B}
HKLM\SOFTWARE\Classes\TypeLib\{71A63FCB-02F9-4632-B7CE-2D136BF2EAC8}
HKLM\SOFTWARE\Classes\TypeLib\{7832DE29-0904-406C-AD68-E0D5C3C3A4EA}
HKLM\SOFTWARE\Classes\TypeLib\{7C75F6AB-5FB4-4AB2-AC5C-8A9AE211553E}
HKLM\SOFTWARE\Classes\TypeLib\{8EF6E3A3-2C8D-4CD3-8FA3-8E901D8EFA90}
HKLM\SOFTWARE\Classes\TypeLib\{A7AE7537-9C87-4F9C-A494-84FA5AD092F0}
HKLM\SOFTWARE\Classes\TypeLib\{AC480FBE-24AB-4372-9A32-02AB0BAE8B6B}
HKLM\SOFTWARE\Classes\TypeLib\{F379BD31-1B3D-41F7-9349-35004298B4C6}
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.FeedManager
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.FeedManager.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.HTMLMenu
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.HTMLMenu.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.HTMLPanel
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.HTMLPanel.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.MultipleButton
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.MultipleButton.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.PseudoTransparentPlugin
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.PseudoTransparentPlugin.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.Radio
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.Radio.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.RadioSettings
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.RadioSettings.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.ScriptButton
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.ScriptButton.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.SettingsPlugin
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.SettingsPlugin.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.ThirdPartyInstaller
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.ThirdPartyInstaller.1
HKLM\SOFTWARE\SOFTWARE\Classes\Guffins.ToolbarProtector
HKLM\SOFTWARE\SOFTWARE\Classes\guffins.ToolbarProtector.1
HKLM\SOFTWARE\SOFTWARE\Guffins
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1d2aa885-2c50-4758-a262-17254662a5d5}
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49a32f81-0ba1-4b43-856c-9a61425e5bf1}
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4a8aa6e6-54c5-4a40-89f3-62acd51a2069}
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59567752-5ff2-4df5-aada-e9c6f114c00a}
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c277597d-c02b-4c09-9778-671530d2700f}
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ff777bf5-d424-4519-a61e-2b5bb204894d}
HKLM\SOFTWARE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Guffinsbar Uninstall Firefox
HKLM\SOFTWARE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Guffinsbar Uninstall Internet Explorer
HKLM\SOFTWARE\SOFTWARE\MozillaPlugins\@Guffins.com/Plugin
HKLM\SOFTWARE\SYSTEM\CurrentControlSet\Services\GuffinsService

*reg_val
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run | Guffins EPM Support

 

PUP. PriceLess

 

*file
C:\Program Files\PricceiLess\BuPLHTdkD0iL90.dll
C:\Program Files\PricceiLess\BuPLHTdkD0iL90.x64.dll
C:\Program Files\PricceiLess

*reg_key
HKLM\SOFTWARE\Classes\CLSID\{e3530a22-9bd6-4e86-a8db-abafc1571a1f}
HKLM\software\microsoft\windows\currentversion\Ext\PreApproved\{e3530a22-9bd6-4e86-a8db-abafc1571a1f}
HKCU\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration\{e3530a22-9bd6-4e86-a8db-abafc1571a1f}

*reg_val
HKLM\software\microsoft\windows\currentversion\Policies\Ext\CLSID | {e3530a22-9bd6-4e86-a8db-abafc1571a1f}
HKLM\SOFTWARE\Classes\.\CLSID | ##{e3530a22-9bd6-4e86-a8db-abafc1571a1f}<-
HKLM\SOFTWARE\Classes\..9\CLSID | ##{e3530a22-9bd6-4e86-a8db-abafc1571a1f}<-