5 / 5 - (2 votes)
.

Advanced System Repair Pro, Potentially Superfluous Software

Some legitimate programs like Advanced System Repair Pro can be classified as superfluous, they are not necessarily necessary for the functioning of the system and sometimes even unwanted.

More specifically, the Advanced System Repair Pro program falls into the category of software that can optimize your system.
It can be installed via downloading repackaged freeware. It displays alerts on the quality of the system and the presence of malware and offers the purchase of a paid version to resolve the problems.


This program is classified as Potentially Unnecessary Software (LPS). It installs as a program and/or as a browser extension. It can start automatically from the Registry via a "Run" key, a service or a scheduled task. It may launch when you start your browser after changing its settings. Sometimes the launch is done silently, that is to say it works in the background. The virus analysis of this software does not show any malware detection.


These are mostly legitimate programs that may not be necessary for your system to function properly. The multiplication of programs launched at system startup can cause delays in the execution of ordinary system tasks but also when browsing the Internet. Note that some programs come from downloads with repackaging, a technique which consists of offering other software during installation. These additional programs are obviously superfluous, they can even be installed without your knowledge. It is recommended to read the EULA before installing packaged software. Before clicking, check the relevance of the pre-checked boxes offered to you.

PRODUCT TESTING

Preliminaries

The tests were carried out on a station without any infection detected by the installed protection software (Antivirus & Internet Security), and additional anti-malware software (Malwarebytes, ZHPCleaner, ADWCleaner, etc.)

Detections

  • ZHPLite is wrongly identified as W32/Trojan.CoinMiner,
  • 419 Malware.Rotbrow type infections including my ZHP, ZHPcleaner, ZHPFix folders and everything they contain.
  • 036 SunnyDigits PUA type detections at the register level which cannot be verified due to the absence of its tree structure.
  • 018 Malware.Heur heuristic detections at the explorer level which it is impossible to verify due to the absence of its tree structure.
  • 012 PUA.Snap.Do type detections at the registry level which it is impossible to verify due to the absence of its tree structure.
  • 002 Variant.Graftor detections including HP solution support service.

Most

  • Advanced System Repair Pro has a user-friendly interface, is easy to use and provides lots of interesting information about the system.
  • The scan is rather quick and complete.
  • The possibility of reporting a false positive is well designed.
  • The uninstallation is complete.

The lessers

  • The analysis given in the “Malware Threats” tab shows a multitude of false positives.
  • The possibility of reporting a false positive is well designed, but the absence of a tree structure, Registry branch or full path in the Explorer makes it difficult, if not impossible, to implement for the user and even for an expert.
  • The 419 detections in Malware.Rotbrow are very exaggerated, Microsoft Windows Defender classifies this malware as a Trojan Horse (Trojan)  W32/Rotbrow and precise” This Trojan family installs a browser extension that claims to protect against other plugins. These extensions can make changes to your homepage and also install Win32/Sefnit."
  • Threat cleaning is dependent on purchasing a paid version.

Conclusions.

I class this software as superfluous for the part related to threat detection. Many free security solutions provide better results.

TECHNICAL ELEMENTS

Features

– Starts a process at system launch (RP),
- Created multiple application shortcuts, Desktop, QuickLaunch, Taskbar, Programs (O4GS),
- It is installed as a service to be launched each time the system starts (O23), (SS/SR),
- It starts a scheduled task automatically (O38),
-
It installs as a program (O42)
– Created multiple “Software” registry keys,
- Adds additional folders (O43),
- Registration in the Windows prefetcher folder (O45)
– Adds multiple user files (O61),

Preview in reports

Recorded on 27/08/2018
O23 – Service: tscmon (tscmon) . (.Advanced System Repair Inc. – Advanced System Repair Pro Service.) – C:\Program Files (x86)\Advanced System Repair Pro 1.8.0.4.0\tscmon.exe
SR – Auto [27/08/2018] [1638224] tscmon (tscmon). (.Advanced System Repair Inc..) – C:\Program Files (x86)\Advanced System Repair Pro 1.8.0.4.0\tscmon.exe
O38 – TASK: {2F96D89B-855C-4BF6-9908-3C4860FA57D3} [64Bits][\AdvancedSystemRepairPro-Maintenance-Autorun] – (.Advanced System Repair Inc. – Advanced System Repair Pro UI Launcher.) — C:\Program Files ( x86)\Advanced System Repair Pro 1.8.0.4.0\asrlauncher.exe [177488]
C:\WINDOWS\System32\Tasks\AdvancedSystemRepairPro-Maintenance-Autorun – (.Advanced System Repair Inc..) — C:\Program Files (x86)\Advanced System Repair Pro 1.8.0.4.0\asrlauncher.exe [/minimize ]
[MD5.29CADBC473F6CE5C89E3F84BB7ECCC2C] – (.Advanced System Repair Inc. – Advanced System Repair Pro Service.) — C:\Program Files (x86)\Advanced System Repair Pro 1.8.0.4.0\tscmon.exe [1638224] [PID. 6896]
[MD5.37B823C13EC32EB4E2CC67EAF26FDD1F] – (.Advanced System Repair Inc. – Advanced System Repair Pro UI.) — C:\Program Files (x86)\Advanced System Repair Pro 1.8.0.4.0\AdvancedSystemRepairPro.exe [18645840] [PID. 1736]
O4 – GS\CommonDesktop [Public]: Advanced System Repair Pro.lnk. (.Advanced System Repair Inc. – Advanced System Repair Pro UI Launcher.) C:\Program Files (x86)\Advanced System Repair Pro 1.8.0.4.0\asrlauncher.exe
O42 – Software: Advanced System Repair Pro – (.Advanced System Repair, Inc..) [HKCU][64Bits] — Advanced System Repair Pro
HKLM\SOFTWARE\AdvancedSystemRepairPro
HKLM\SOFTWARE\WOW6432Node\AdvancedSystemRepairPro
HKCU\SOFTWARE\AdvancedSystemRepairPro
HKU\S-1-5-21-[…]-1001\SOFTWARE\AdvancedSystemRepairPro
O43 – CFD: 27/08/2018 – [] D — C:\Program Files (x86)\Advanced System Repair Pro 1.8.0.4.0
O43 – CFD: 27/08/2018 – [] D — C:\ProgramData\TSRProSettings
O43 – CFD: 27/08/2018 – [] D — C:\Users\JML\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Advanced System Repair Pro
O45 – LFCP:[MD5.99BFA5CBA7879E19D76CA193BDD075EB] 27/08/2018 A — C:\WINDOWS\Prefetch\ADVANCEDSYSTEMREPAIRPRO.EXE-91DA8608.pf
O58 – SDL:2018/08/27 15:54:39 ​​A . (.Advanced System Repair Inc. – Advanced System Repair Pro Realtime Driver.) — C:\WINDOWS\System32\drivers\asrdmon.sys [19280]
C:\Program Files (x86)\Advanced System Repair Pro 1.8.0.4.0\asrlauncher.exe
C:\WINDOWS\System32\Tasks\AdvancedSystemRepairPro-Maintenance-Autorun
C:\ProgramData\TSRProSettings
C:\WINDOWS\Prefetch\ADVANCEDSYSTEMREPAIRPRO.EXE-91DA8608.pf

Alias

DrWeb Program.Unwanted.2481 20180827

Associate Editors

Advanced System Repair Inc.

Some products

Advanced System Repair Pro

MD5 encryption

29CADBC473F6CE5C89E3F84BB7ECCC2C
37B823C13EC32EB4E2CC67EAF26FDD1F

Serial number

How to Remove Advanced System Repair Pro?

Delete with Windows

Delete with ZHPCleaner

   Delete with ZHPSuite

Responsibility :   The principle of absence of responsibility of the original site, with regard to the contents of the targeted target sites, is recalled by the judgment of September 19, 2001 of the Paris Court of Appeal. The comments I make here reflect my opinion and are suggestions - the visitor is not obliged to follow them.

About the Author

Back to top