Jump to content

Welcome to Geeks to Go
Geeks to Go Welcome
Create Account Login to Account
Photo

Removal instructions for Driver Updater

- - - - -

  • Please log in to reply
No replies to this topic

#1
Metallica

Metallica

    Spyware Veteran

  • GeekU Moderator
  • 31,960 posts
Content is republished with permission from Malwarebytes.

What is Driver Updater?

The Malwarebytes research team has determined that Driver Updater is a "system optimizer". These so-called "system optimizers" use intentional false positives to convince users that their systems have problems. Then they try to sell you their software, claiming it will remove these problems.
More information can be found on our Malwarebytes Labs blog.

How do I know if I am infected with Driver Updater?

This is how the main screen of the sytem optimizer looks:

main.png

You will find these icons in your taskbar, your startmenu, and on your desktop:

icons.png

and see this warning during install:

warning1.png

and these screens during "operations":

warning2.png

and this site when you try to fix the "problems":

buyme.png

You may see this entry in your list of installed programs:

warning4.png

How did Driver Updater get on my computer?

These so-called system optimizers use different methods of getting installed. This particular one was promoted by a fake online scan:

trick.png

trick2.png

How do I remove Driver Updater?

Our program Malwarebytes can detect and remove this potentially unwanted application.
  • Please download Malwarebytes to your desktop.
  • Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
  • Then click Finish.
  • Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
  • If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
  • When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
  • Restart your computer when prompted to do so.
Is there anything else I need to do to get rid of Driver Updater?
  • No, Malwarebytes removes Driver Updater completely.
  • This PUP creates some scheduled tasks. You can read here how to check for and, if necessary, remove Scheduled Tasks.
How would the full version of Malwarebytes help protect me?

We hope our application and this guide have helped you eradicate this system optimizer.

As you can see below the full version of Malwarebytes would have protected you against the Driver Updater installer. It would have warned you before the application could install itself, giving you a chance to stop it before it became too late.

protection1.png


and we block access to their domain:

protection2.png


Technical details for experts

You may see these entries in FRST logs:

 (efixdrivers.com) C:\Program Files\Driver Updater\aptdu.exe
 C:\Windows\System32\Tasks\Driver Updater_Logon
 C:\Users\Public\Desktop\Driver Updater.lnk
 C:\Users\{username}\AppData\Roaming\efixdrivers.com
 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Updater
 C:\Program Files\Driver Updater

Driver Updater (HKLM\...\{ACE83A3B-6AE9-485B-B11A-293BA26BC725}_is1) (Version: 1.0.1000.36735 - efixdrivers.com)
Task: {CF70F24D-AE4A-40B7-A8E9-4CD1D519F728} - System32\Tasks\Driver Updater_Logon => C:\Program Files\Driver Updater\aptdu.exe [2017-09-20] (efixdrivers.com)
Significant changes made by the installer:

File system details [View: All details] (Selection)
---------------------------------------------------
    Adds the folder C:\Program Files\Driver Updater
       Adds the file aptdu.exe"="9/20/2017 6:07 PM, 2423616 bytes, A
       Adds the file aptdu.exe.config"="9/20/2017 6:06 PM, 3441 bytes, A
       Adds the file danish_iss.ini"="9/20/2017 4:43 PM, 2402 bytes, A
       Adds the file Delimon.Win32.IO.dll"="9/20/2017 4:43 PM, 950272 bytes, A
       Adds the file DUContent.dll"="9/20/2017 5:33 PM, 1875968 bytes, A
       Adds the file Dutch_iss.ini"="9/20/2017 4:43 PM, 2592 bytes, A
       Adds the file english_iss.ini"="9/20/2017 4:43 PM, 2256 bytes, A
       Adds the file finish_iss.ini"="9/20/2017 4:43 PM, 2368 bytes, A
       Adds the file French_iss.ini"="9/20/2017 4:43 PM, 2792 bytes, A
       Adds the file german_iss.ini"="9/20/2017 4:43 PM, 2658 bytes, A
       Adds the file Interop.IWshRuntimeLibrary.dll"="9/20/2017 4:44 PM, 49152 bytes, A
       Adds the file italian_iss.ini"="9/20/2017 4:43 PM, 2532 bytes, A
       Adds the file japanese_iss.ini"="9/20/2017 4:43 PM, 1844 bytes, A
       Adds the file Microsoft.Win32.TaskScheduler.dll"="9/20/2017 4:44 PM, 171008 bytes, A
       Adds the file NAudio.dll"="9/20/2017 4:43 PM, 471040 bytes, A
       Adds the file norwegian_iss.ini"="9/20/2017 4:43 PM, 2358 bytes, A
       Adds the file portuguese_iss.ini"="9/20/2017 4:43 PM, 2424 bytes, A
       Adds the file russian_iss.ini"="9/20/2017 4:43 PM, 2494 bytes, A
       Adds the file spanish_iss.ini"="9/20/2017 4:43 PM, 2548 bytes, A
       Adds the file swedish_iss.ini"="9/20/2017 4:43 PM, 2270 bytes, A
       Adds the file System.ServiceModel.dll"="7/3/2017 8:17 AM, 5992448 bytes, A
       Adds the file TAFactory.IconPack.dll"="9/20/2017 4:44 PM, 36864 bytes, A
       Adds the file TaskScheduler.dll"="9/20/2017 6:07 PM, 48448 bytes, A
       Adds the file unins000.dat"="9/22/2017 8:56 AM, 84335 bytes, A
       Adds the file unins000.exe"="9/22/2017 8:56 AM, 1216832 bytes, A
       Adds the file unins000.msg"="9/22/2017 8:56 AM, 22701 bytes, A
    Adds the folder C:\Program Files\Driver Updater\dp
       Adds the file 7z.dll"="9/20/2017 4:43 PM, 1073664 bytes, A
       Adds the file 7z.exe"="9/20/2017 4:43 PM, 265216 bytes, A
       Adds the file difxapi.dll"="9/20/2017 4:43 PM, 323464 bytes, A
       Adds the file difxapi64.dll"="9/20/2017 4:43 PM, 519048 bytes, A
       Adds the file DPInst32.exe"="9/20/2017 6:07 PM, 552768 bytes, A
       Adds the file DPInst64.exe"="9/20/2017 6:07 PM, 678208 bytes, A
       Adds the file DriversPath.exe"="9/20/2017 6:07 PM, 289088 bytes, A
       Adds the file FileValidator.exe"="9/20/2017 6:07 PM, 296768 bytes, A
    Adds the folder C:\Program Files\Driver Updater\Langs
       Adds the file danish_du_da.ini"="9/20/2017 4:50 PM, 57318 bytes, A
       Adds the file Dutch_du_nl.ini"="9/20/2017 4:50 PM, 59086 bytes, A
       Adds the file english_du_en.ini"="9/20/2017 4:50 PM, 53918 bytes, A
       Adds the file finish_du_fi.ini"="9/20/2017 4:50 PM, 57306 bytes, A
       Adds the file French_du_fr.ini"="9/20/2017 4:50 PM, 60520 bytes, A
       Adds the file german_du_de.ini"="9/20/2017 4:50 PM, 61118 bytes, A
       Adds the file italian_du_it.ini"="9/20/2017 4:50 PM, 58924 bytes, A
       Adds the file japanese_du_ja.ini"="9/20/2017 4:50 PM, 41836 bytes, A
       Adds the file norwegian_du_no.ini"="9/20/2017 4:50 PM, 55810 bytes, A
       Adds the file portuguese_du_ptbr.ini"="9/20/2017 4:50 PM, 58642 bytes, A
       Adds the file russian_du_ru.ini"="9/20/2017 4:50 PM, 60366 bytes, A
       Adds the file spanish_du_es.ini"="9/20/2017 4:50 PM, 65814 bytes, A
       Adds the file swedish_du_sv.ini"="9/20/2017 4:50 PM, 58228 bytes, A
    Adds the folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Updater
       Adds the file Buy Driver Updater.lnk"="9/22/2017 8:56 AM, 873 bytes, A
       Adds the file Driver Updater.lnk"="9/22/2017 8:56 AM, 853 bytes, A
       Adds the file Uninstall Driver Updater.lnk"="9/22/2017 8:56 AM, 888 bytes, A
    Adds the folder C:\Users\{username}\AppData\Roaming\efixdrivers.com\Driver Updater
       Adds the file Errorlog.txt"="9/22/2017 8:57 AM, 273490 bytes, A
       Adds the file param.ini"="9/22/2017 8:56 AM, 376 bytes, A
       Adds the file res.bin"="9/22/2017 8:57 AM, 33232 bytes, A
    Adds the folder C:\Users\{username}\AppData\Roaming\efixdrivers.com\Driver Updater\Backups
    Adds the folder C:\Users\{username}\AppData\Roaming\efixdrivers.com\Driver Updater\Download
    Adds the folder C:\Users\{username}\AppData\Roaming\efixdrivers.com\Driver Updater\smico
    Adds the folder C:\Users\{username}\AppData\Roaming\Microsoft\Speech\Files\UserLexicons
       Adds the file SP_FFF47D0DFB844CAAA991411DC41F130D.dat"="9/22/2017 8:57 AM, 940 bytes, A
    In the existing folder C:\Users\Public\Desktop
       Adds the file Driver Updater.lnk"="9/22/2017 8:56 AM, 835 bytes, A
    In the existing folder C:\Windows\System32\Tasks
       Adds the file Driver Updater_Logon"="9/22/2017 8:57 AM, 3040 bytes, A

Registry details [View: All details] (Selection)
------------------------------------------------
    [HKEY_LOCAL_MACHINE\SOFTWARE\duefx-pr]
       "affiliateid"="REG_SZ", ""
       "btnid"="REG_SZ", ""
       "country"="REG_SZ", "nl"
       "LangCode"="REG_SZ", "en"
       "lpid"="REG_SZ", ""
       "phone"="REG_SZ", ""
       "pxl"="REG_SZ", "WAD2233_WAD2187_RUNT"
       "utm_campaign"="REG_SZ", "wadsphere"
       "utm_medium"="REG_SZ", ""
       "utm_pubid"="REG_SZ", "1d92a736-cecd-4fbd-9f74-ef26d8616e82"
       "utm_source"="REG_SZ", "wadsphere"
       "x-at"="REG_SZ", "64787"
       "x-base"="REG_SZ", ""
       "x-context"="REG_SZ", "d0U39F4CTOANABD81SDMM65U"
    [HKEY_LOCAL_MACHINE\SOFTWARE\efixdrivers.com\Driver Updater]
       "affiliateid"="REG_SZ", ""
       "affired"="REG_DWORD", 0
       "afterInstallUrl"="REG_SZ", "http://www.ppacti.com/install/du/?"
       "cbkpoff"="REG_DWORD", 1
       "country"="REG_SZ", "nl"
       "delay"="REG_DWORD", 0
       "devicesscanned"="REG_DWORD", 55
       "EmailURL"="REG_SZ", "driverupdater"
       "expired"="REG_DWORD", 0
       "hdata"="REG_BINARY, .........................................................................................................................................................................................................................................................................................................................................................................................................
       "ignoreddrivercount"="REG_DWORD", 0
       "Installstring"="REG_SZ", "C:\Program Files\Driver Updater"
       "issilent"="REG_DWORD", 0
       "ISTELNO"="REG_DWORD", 1
       "LangCode"="REG_SZ", "en"
       "lastscandate"="REG_SZ", "9/22/2017 6:57:52 AM"
       "lastscanstatus"="REG_DWORD", 2
       "lastupdatedate"="REG_SZ", "1/1/0001 12:00:00 AM"
       "oldmissingdrivercount"="REG_DWORD", 6
       "prereg"="REG_DWORD", 0
       "PurchaseURL"="REG_SZ", "http://driverupdater.esecureshoppe.com/du/price?"
       "pxl"="REG_SZ", "WAD2233_WAD2187_RUNT"
       "reg"="REG_DWORD", 0
       "RenewURL"="REG_SZ", "http://driverupdater.esecureshoppe.com/du/renewal?"
       "rescan"="REG_DWORD", 0
       "runcam"="REG_DWORD", 1
       "runpixel"="REG_DWORD", 1
       "runsrc"="REG_DWORD", 1
       "showtn"="REG_DWORD", 0
       "showunins"="REG_DWORD", 1
       "showwfo"="REG_DWORD", 1
       "supporturl"="REG_SZ", "http://www.efixdrivers.com/help/"
       "TELNO"="REG_SZ", "+31-08-58882839"
       "TELNO_ar"="REG_SZ", "+54 11 5236 0324"
       "TELNO_at"="REG_SZ", "+43 (0)720 902 309"
       "TELNO_au"="REG_SZ", "(61)280-733403"
       "TELNO_br"="REG_SZ", "+55 21 2391 4319"
       "TELNO_ch"="REG_SZ", "+41 (0)44 508 70 37"
       "TELNO_de"="REG_SZ", "0800 1822 974"
       "TELNO_dk"="REG_SZ", "+45 78 73 09 26"
       "TELNO_es"="REG_SZ", "+34 951 203 537"
       "TELNO_fi"="REG_SZ", "+358 (0)9 4270 4911"
       "TELNO_fr"="REG_SZ", "05 82 84 04 06"
       "TELNO_gb"="REG_SZ", "0800-031-5066"
       "TELNO_it"="REG_SZ", "+39 069 4802886"
       "TELNO_ja"="REG_SZ", "0120-993-506"
       "TELNO_jp"="REG_SZ", "0120-993-506"
       "TELNO_lu"="REG_SZ", "0800 1822 974"
       "TELNO_nl"="REG_SZ", "+31-08-58882839"
       "TELNO_no"="REG_SZ", "+47 21 95 01 97"
       "TELNO_pt"="REG_SZ", "+351 70 750 2094"
       "TELNO_se"="REG_SZ", "+46-08124-10298"
       "TELNO_uk"="REG_SZ", "0800-031-5066"
       "TELNO_us"="REG_SZ", "801-447-5902"
       "uptodatedrivercount"="REG_DWORD", 49
       "utm_campaign"="REG_SZ", "wadsphere"
       "utm_medium"="REG_SZ", ""
       "utm_pubid"="REG_SZ", "1d92a736-cecd-4fbd-9f74-ef26d8616e82"
       "utm_source"="REG_SZ", "wadsphere"
       "vendorLogo"="REG_SZ", "common_logo.jpg"
       "vendorMachineAvi"="REG_SZ", "res://DUContent.dll/GIF/common_desktop.gif"
       "WebURL"="REG_SZ", "http://www.efixdrivers.com/"
       "wfoset"="REG_DWORD", 1
       "x-at"="REG_SZ", "64787"
       "x-base"="REG_SZ", ""
       "x-ccode"="REG_SZ", "nl"
       "x-context"="REG_SZ", "d0U39F4CTOANABD81SDMM65U"
       "x-datetime"="REG_SZ", "09-22-2017 06:56:45 AM"
       "x-fetch"="REG_SZ", "1"
       "x-ip"="REG_SZ", "90_145_230_242"
       "x-plt"="REG_SZ", ""
       "x-var1"="REG_SZ", ""
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ACE83A3B-6AE9-485B-B11A-293BA26BC725}_is1]
       "DisplayIcon"="REG_SZ", "C:\Program Files\Driver Updater\aptdu.exe"
       "DisplayName"="REG_SZ", "Driver Updater"
       "DisplayVersion"="REG_SZ", "1.0.1000.36735"
       "EstimatedSize"="REG_DWORD", 17595
       "HelpLink"="REG_SZ", "http://www.efixdrivers.com/help/"
       "Inno Setup: App Path"="REG_SZ", "C:\Program Files\Driver Updater"
       "Inno Setup: Icon Group"="REG_SZ", "Driver Updater"
       "Inno Setup: Language"="REG_SZ", "en"
       "Inno Setup: Setup Version"="REG_SZ", "5.5.9 (u)"
       "Inno Setup: User"="REG_SZ", "{username}"
       "InstallDate"="REG_SZ", "20170922"
       "InstallLocation"="REG_SZ", "C:\Program Files\Driver Updater\"
       "MajorVersion"="REG_DWORD", 1
       "MinorVersion"="REG_DWORD", 0
       "NoModify"="REG_DWORD", 1
       "NoRepair"="REG_DWORD", 1
       "Publisher"="REG_SZ", "efixdrivers.com"
       "QuietUninstallString"="REG_SZ", ""C:\Program Files\Driver Updater\unins000.exe" /SILENT"
       "UninstallString"="REG_SZ", ""C:\Program Files\Driver Updater\unins000.exe" /SILENT"
       "URLInfoAbout"="REG_SZ", "http://www.efixdrivers.com/"
       "VersionMajor"="REG_DWORD", 1
       "VersionMinor"="REG_DWORD", 0
    [HKEY_LOCAL_MACHINE\SOFTWARE\ZWZpeGRyaXZlcnMuY29t\RHJpdmVyIFVwZGF0ZXI=\ACT]
       "data"="REG_BINARY, ..........................................................................................................................................................................................................................................................................................................._.......................
    [HKEY_CURRENT_USER\Software\efixdrivers.com\Driver Updater]
       "affiliateid"="REG_SZ", ""
       "Installstring"="REG_SZ", "C:\Program Files\Driver Updater"
       "LangCode"="REG_SZ", "en"
       "pxl"="REG_SZ", "WAD2233_WAD2187_RUNT"
       "utm_campaign"="REG_SZ", "wadsphere"
       "utm_medium"="REG_SZ", ""
       "utm_pubid"="REG_SZ", "1d92a736-cecd-4fbd-9f74-ef26d8616e82"
       "utm_source"="REG_SZ", "wadsphere"
       "x-at"="REG_SZ", "64787"
       "x-base"="REG_SZ", ""
       "x-context"="REG_SZ", "d0U39F4CTOANABD81SDMM65U"
       "x-datetime"="REG_SZ", "09-22-2017 06:56:45 AM"
       "x-fetch"="REG_SZ", "1"
       "x-ip"="REG_SZ", "90_145_230_242"
       "x-plt"="REG_SZ", ""
       "x-var1"="REG_SZ", ""
    [HKEY_CURRENT_USER\Software\efixdrivers.com\Driver Updater\1.0.1000.36735]
    [HKEY_CURRENT_USER\Software\Microsoft\Speech\CurrentUserLexicon\{C9E37C15-DF92-4727-85D6-72E5EEB6995A}\Files]
       "Datafile"="REG_SZ", "%1a%\Microsoft\Speech\Files\UserLexicons\SP_FFF47D0DFB844CAAA991411DC41F130D.dat"
Malwarebytes log:

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 9/22/17
Scan Time: 9:08 AM
Log File: e2460ab3-9f64-11e7-9d99-080027750297.json
Administrator: Yes

-Software Information-
Version: 3.2.2.2018
Components Version: 1.0.188
Update Package Version: 1.0.2861
License: Premium

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: {computername}\{username}

-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 320776
Threats Detected: 72
Threats Quarantined: 72
Time Elapsed: 1 min, 55 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 1
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\aptdu.exe, Quarantined, [8849], [437562],1.0.2861

Module: 2
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\aptdu.exe, Quarantined, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Microsoft.Win32.TaskScheduler.dll, Quarantined, [8849], [437562],1.0.2861

Registry Key: 7
PUP.Optional.DriverUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{ACE83A3B-6AE9-485B-B11A-293BA26BC725}_is1, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.AdvancedPCCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CF70F24D-AE4A-40B7-A8E9-4CD1D519F728}, Delete-on-Reboot, [58], [412119],1.0.2861
PUP.Optional.AdvancedPCCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Driver Updater_Logon, Delete-on-Reboot, [58], [412118],1.0.2861
PUP.Optional.DriverUpdater, HKLM\SOFTWARE\duefx-pr, Delete-on-Reboot, [8849], [437563],1.0.2861
PUP.Optional.DriverUpdater, HKLM\SOFTWARE\efixdrivers.com, Delete-on-Reboot, [8849], [437564],1.0.2861
PUP.Optional.DriverUpdater, HKLM\SOFTWARE\ZWZpeGRyaXZlcnMuY29t, Delete-on-Reboot, [8849], [437570],1.0.2861
PUP.Optional.DriverUpdater, HKCU\SOFTWARE\efixdrivers.com, Delete-on-Reboot, [8849], [437565],1.0.2861

Registry Value: 1
PUP.Optional.AdvancedPCCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CF70F24D-AE4A-40B7-A8E9-4CD1D519F728}|PATH, Delete-on-Reboot, [58], [412119],1.0.2861

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 7
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.AdvancedPCCare, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\DRIVER UPDATER, Delete-on-Reboot, [58], [412123],1.0.2861
PUP.Optional.DriverUpdater, C:\Users\{username}\AppData\Roaming\efixdrivers.com\Driver Updater\Download, Delete-on-Reboot, [8849], [437561],1.0.2861
PUP.Optional.DriverUpdater, C:\Users\{username}\AppData\Roaming\efixdrivers.com\Driver Updater\Backups, Delete-on-Reboot, [8849], [437561],1.0.2861
PUP.Optional.DriverUpdater, C:\Users\{username}\AppData\Roaming\efixdrivers.com\Driver Updater\smico, Delete-on-Reboot, [8849], [437561],1.0.2861
PUP.Optional.DriverUpdater, C:\Users\{username}\AppData\Roaming\efixdrivers.com\Driver Updater, Delete-on-Reboot, [8849], [437561],1.0.2861
PUP.Optional.DriverUpdater, C:\USERS\{username}\APPDATA\ROAMING\EFIXDRIVERS.COM, Delete-on-Reboot, [8849], [437561],1.0.2861

File: 54
PUP.Optional.Carambis, C:\USERS\PUBLIC\DESKTOP\DRIVER UPDATER.LNK, Delete-on-Reboot, [1907], [351666],1.0.2861
PUP.Optional.AdvancedPCCare, C:\WINDOWS\SYSTEM32\TASKS\DRIVER UPDATER_LOGON, Delete-on-Reboot, [58], [412117],1.0.2861
PUP.Optional.DriverUpdater, C:\PROGRAM FILES\DRIVER UPDATER\APTDU.EXE.CONFIG, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\dp\7z.dll, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\dp\7z.exe, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\dp\DPInst32.exe, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\dp\DPInst64.exe, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\dp\DriversPath.exe, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\dp\FileValidator.exe, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\danish_du_da.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\Dutch_du_nl.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\english_du_en.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\finish_du_fi.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\French_du_fr.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\german_du_de.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\italian_du_it.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\japanese_du_ja.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\norwegian_du_no.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\portuguese_du_ptbr.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\russian_du_ru.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\spanish_du_es.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Langs\swedish_du_sv.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\aptdu.exe, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\danish_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Delimon.Win32.IO.dll, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\DUContent.dll, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Dutch_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\english_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\finish_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\French_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\german_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Interop.IWshRuntimeLibrary.dll, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\italian_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\japanese_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\Microsoft.Win32.TaskScheduler.dll, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\NAudio.dll, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\norwegian_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\portuguese_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\russian_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\spanish_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\swedish_iss.ini, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\System.ServiceModel.dll, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\TAFactory.IconPack.dll, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\TaskScheduler.dll, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\unins000.dat, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\unins000.exe, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.DriverUpdater, C:\Program Files\Driver Updater\unins000.msg, Delete-on-Reboot, [8849], [437562],1.0.2861
PUP.Optional.AdvancedPCCare, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\DRIVER UPDATER\BUY DRIVER UPDATER.LNK, Delete-on-Reboot, [58], [412123],1.0.2861
PUP.Optional.AdvancedPCCare, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Updater\Driver Updater.lnk, Delete-on-Reboot, [58], [412123],1.0.2861
PUP.Optional.AdvancedPCCare, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Updater\Uninstall Driver Updater.lnk, Delete-on-Reboot, [58], [412123],1.0.2861
PUP.Optional.DriverUpdater, C:\USERS\{username}\APPDATA\ROAMING\EFIXDRIVERS.COM\DRIVER UPDATER\ERRORLOG.TXT, Delete-on-Reboot, [8849], [437561],1.0.2861
PUP.Optional.DriverUpdater, C:\Users\{username}\AppData\Roaming\efixdrivers.com\Driver Updater\param.ini, Delete-on-Reboot, [8849], [437561],1.0.2861
PUP.Optional.DriverUpdater, C:\Users\{username}\AppData\Roaming\efixdrivers.com\Driver Updater\res.bin, Delete-on-Reboot, [8849], [437561],1.0.2861
PUP.Optional.DriverUpdater, C:\USERS\{username}\DESKTOP\DUEFIXSETUP.EXE, Delete-on-Reboot, [8849], [437560],1.0.2861

Physical Sector: 0
(No malicious items detected)


(end)
As mentioned before the full version of Malwarebytes could have protected your computer against this threat.
We use different ways of protecting your computer(s):
  • Dynamically Blocks Malware Sites & Servers
  • Malware Execution Prevention
Save yourself the hassle and get protected.
  • 0

Advertisements





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

featured
Malware Removal How to Guides Windows 7 System Building Download Files Register welcome

Never used a forum? Learn how.