PUP.Optional.DriverUpdate

Short bio

PUP.Optional.DriverUpdate is Malwarebytes’ detection name for a potentially unwanted program (PUP), specifically a system optimizer. It belongs to the Slimware Utilities family.

Type and source of infection

System optimizers and driver updaters depend on social engineering. The makes of these PUPs try to convince users their systems have problems, and their software is the solution for these problems. PUP.Optional.DriverUpdate is usually installed by the users themselves, who may be prompted by heavy online advertising.

Protection

Malwarebytes protects users from PUP.Optional.DriverUpdate by using real-time protection.

block PUP.Optional.DriverUpdate

Malwarebytes blocks PUP.Optional.DriverUpdate

Remediation

Malwarebytes can detect and remove PUP.Optional.DriverUpdate without further user interaction.

  1. Please download Malwarebytes to your desktop.
  2. Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
  3. Then click Finish.
  4. Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
  5. If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
  6. When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
  7. Restart your computer when prompted to do so.

Add an exclusion

Should users wish to keep this program and exclude it from being detected in future scans, they can add the program to the exclusions list. Here’s how to do it.

The Exclusions tab includes a list of items to be excluded from scans. The items may include files, folders, websites, or applications that connect to the Internet, as well as previously detected exploits.

To access the exclusions in Malwarebytes:

  • Click on the Settings tab in the left pane.
  • Click on the Exclusions tab.
  • Click the Add Exclusion button.
  • Select the exclusion type Exclude a File or Folder and use the Browse button to select the main folder for the software that you wish to keep.
  • Repeat this for any secondary folder(s) that belong to the software.
  • If you want to allow the program to connect to the Internet, for example to fetch updates, add an exclusion of the type Exclude an application that Connects to the Internet and use the Browse button to select the file you wish to grant access.

Malwarebytes removal log

A Malwarebytes log of removal will look similar to this:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 10/14/2016
Scan Time: 1:41 PM
Logfile: mbamSlimware.txt
Administrator: Yes

Version: 2.2.1.1043
Malware Database: v2016.10.14.03
Rootkit Database: v2016.09.26.02
License: Premium
Malware Protection: Disabled
Malicious Website Protection: Enabled
Self-protection: Enabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: {username}

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 324637
Time Elapsed: 9 min, 2 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 2
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimService\SlimServiceFactory.exe, 3588, Delete-on-Reboot, [3ae183167c1e2115b2c1887e06ffff01]
PUP.Optional.DriverUpdate, C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe, 3996, Delete-on-Reboot, [5cbf0c8de2b8989ee28c9571b45101ff]

Modules: 1
PUP.Optional.DriverUpdate, C:\Program Files (x86)\DriverUpdate\UnifiedLogger.dll, Delete-on-Reboot, [5cbf0c8de2b8989ee28c9571b45101ff], 

Registry Keys: 8
PUP.Optional.SlimCleanerPlus, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SlimService, Quarantined, [3ae183167c1e2115b2c1887e06ffff01], 
PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\SlimWare Utilities, Inc., Quarantined, [48d398011a80082e36c3b3586c99e41c], 
PUP.Optional.DriverUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\DriverUpdate Scan, Delete-on-Reboot, [1ffc0693fe9c1a1c17671beb18ed817f], 
PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\WOW6432NODE\SlimWare Utilities Inc, Quarantined, [17043465c4d677bf7586bc4f13f201ff], 
PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\WOW6432NODE\SlimWare Utilities, Inc., Quarantined, [a972a4f5f6a43204e118cd3e5baaf50b], 
PUP.Optional.SlimCleanerPlus, HKCU\SOFTWARE\SlimWare Utilities Inc, Quarantined, [b7641881aaf073c38e6a42c9fa0b7888], 
PUP.Optional.DriverUpdate, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\DriverUpdate, Quarantined, [5cbf0c8de2b8989ee28c9571b45101ff], 
PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SlimCleaner Plus, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 14
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimService, Delete-on-Reboot, [3ae183167c1e2115b2c1887e06ffff01], 
PUP.Optional.DriverUpdate, C:\Program Files (x86)\DriverUpdate, Delete-on-Reboot, [5cbf0c8de2b8989ee28c9571b45101ff], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimCleaner Plus, Quarantined, [f526efaa3466b28435442dd9fe07d729], 
PUP.Optional.DriverUpdate, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverUpdate, Quarantined, [14073465b9e1e45286f4c83e07fefb05], 
PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities Inc, Quarantined, [63b81a7faded261037440ff75baa9070], 
PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities Inc\Services, Quarantined, [63b81a7faded261037440ff75baa9070], 
PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities Inc\Services\SlimServiceFactory, Quarantined, [63b81a7faded261037440ff75baa9070], 
PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities Inc\Services\SlimServiceFactory\Logs, Quarantined, [63b81a7faded261037440ff75baa9070], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc, Delete-on-Reboot, [62b98e0b514994a238dd2ed965a03ac6], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate, Delete-on-Reboot, [62b98e0b514994a238dd2ed965a03ac6], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate\Images, Quarantined, [62b98e0b514994a238dd2ed965a03ac6], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate\Logs, Delete-on-Reboot, [62b98e0b514994a238dd2ed965a03ac6], 

Files: 91
PUP.Optional.DriverUpdate, C:\Users\{username}\Desktop\DriverUpdate-setup.exe, Quarantined, [ef2c66339dfd191d1359ec1a2cd9eb15], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe, Quarantined, [41dad9c001997cba0ec617efef16748c], 
PUP.Optional.SlimCleanerPlus, C:\Users\Public\Desktop\SlimCleaner Plus.lnk, Quarantined, [9b80ff9a4258fb3b175b7d89f411a060], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimService\cleaner.db, Quarantined, [3ae183167c1e2115b2c1887e06ffff01], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimService\Analyze.MyD, Quarantined, [3ae183167c1e2115b2c1887e06ffff01], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimService\Full.MyD, Quarantined, [3ae183167c1e2115b2c1887e06ffff01], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimService\icudt46l.dat, Quarantined, [3ae183167c1e2115b2c1887e06ffff01], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimService\MyDefragDll.dll, Quarantined, [3ae183167c1e2115b2c1887e06ffff01], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimService\Quick.MyD, Quarantined, [3ae183167c1e2115b2c1887e06ffff01], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimService\SlimService.exe, Quarantined, [3ae183167c1e2115b2c1887e06ffff01], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimService\SlimServiceFactory.exe, Delete-on-Reboot, [3ae183167c1e2115b2c1887e06ffff01], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimService\Ssd.MyD, Quarantined, [3ae183167c1e2115b2c1887e06ffff01], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimService\UnifiedLogger.dll, Quarantined, [3ae183167c1e2115b2c1887e06ffff01], 
PUP.Optional.DriverUpdate, C:\Users\Public\Desktop\DriverUpdate.lnk, Quarantined, [b06b0990cfcbf541e4919c6af51055ab], 
PUP.Optional.DriverUpdate, C:\Windows\Tasks\DriverUpdate Scan.job, Quarantined, [001bd4c50298dd59a2d424e265a031cf], 
PUP.Optional.DriverUpdate, C:\Windows\System32\Tasks\DriverUpdate Scan, Quarantined, [7aa15346dcbecc6aef8ede287c8935cb], 
PUP.Optional.DriverUpdate, C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe, Delete-on-Reboot, [5cbf0c8de2b8989ee28c9571b45101ff], 
PUP.Optional.DriverUpdate, C:\Program Files (x86)\DriverUpdate\Open-Source Licenses.txt, Quarantined, [5cbf0c8de2b8989ee28c9571b45101ff], 
PUP.Optional.DriverUpdate, C:\Program Files (x86)\DriverUpdate\UnifiedLogger.dll, Delete-on-Reboot, [5cbf0c8de2b8989ee28c9571b45101ff], 
PUP.Optional.DriverUpdate, C:\Program Files (x86)\DriverUpdate\UninstallStub.exe, Quarantined, [5cbf0c8de2b8989ee28c9571b45101ff], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\default.ui, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\main.ui, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\mdp.exe, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\Open-Source Licenses.txt, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\UninstallStub.exe, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\hi.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\am.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\ar.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\bg.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\bn.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\ca.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\cs.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\da.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\de.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\el.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\en-GB.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\en-US.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\es-419.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\es.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\et.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\fa.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\fi.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\fil.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\fr.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\gu.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\he.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\hr.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\hu.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\id.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\it.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\ja.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\kn.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\ko.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\lt.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\lv.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\ml.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\mr.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\ms.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\nb.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\nl.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\pl.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\pt-BR.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\pt-PT.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\ro.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\ru.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\sk.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\sl.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\sr.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\sv.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\sw.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\ta.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\te.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\th.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\tr.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\uk.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\vi.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\zh-CN.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\Program Files\SlimCleaner Plus\locales\zh-TW.pak, Quarantined, [c05ba0f9138768ce680f4db91fe6cb35], 
PUP.Optional.SlimCleanerPlus, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimCleaner Plus\SlimCleaner Plus.lnk, Quarantined, [f526efaa3466b28435442dd9fe07d729], 
PUP.Optional.DriverUpdate, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverUpdate\DriverUpdate Help.lnk, Quarantined, [14073465b9e1e45286f4c83e07fefb05], 
PUP.Optional.DriverUpdate, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverUpdate\DriverUpdate.lnk, Quarantined, [14073465b9e1e45286f4c83e07fefb05], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate\ignores.dat, Quarantined, [62b98e0b514994a238dd2ed965a03ac6], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate\rupdates.db, Quarantined, [62b98e0b514994a238dd2ed965a03ac6], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate\settings.db, Delete-on-Reboot, [62b98e0b514994a238dd2ed965a03ac6], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate\supdates.db, Delete-on-Reboot, [62b98e0b514994a238dd2ed965a03ac6], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate\SWDUMon.cat, Quarantined, [62b98e0b514994a238dd2ed965a03ac6], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate\SWDUMon.inf, Quarantined, [62b98e0b514994a238dd2ed965a03ac6], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate\SWDUMon.sys, Quarantined, [62b98e0b514994a238dd2ed965a03ac6], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate\Images\acer.png, Quarantined, [62b98e0b514994a238dd2ed965a03ac6], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate\Logs\2016-10-14  13-29-17 0.log, Delete-on-Reboot, [62b98e0b514994a238dd2ed965a03ac6], 
PUP.Optional.SlimCleanerPlus, C:\Users\{username}\AppData\Local\SlimWare Utilities Inc\DriverUpdate\Logs\2016-10-14  13-29-27 0.log, Quarantined, [62b98e0b514994a238dd2ed965a03ac6], 

Physical Sectors: 0
(No malicious items detected)


(end)

Traces/IOCs

You may see these entries in FRST logs:

 (SlimWare Utilities, Inc.) C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
 (SlimWare Utilities, Inc.) C:\Program Files\SlimService\SlimServiceFactory.exe
 HKLM-x32\...\RunOnce: [SlimCleaner Plus] => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe [26221248 2016-08-29] (Slimware Utilities Holdings, Inc.)
 R2 SlimService; C:\Program Files\SlimService\SlimServiceFactory.exe [252096 2016-08-29] (SlimWare Utilities, Inc.)
 S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13920 2016-10-14] ()
 C:\Windows\system32\Drivers\SWDUMon.sys
 C:\Windows\System32\Tasks\DriverUpdate Scan
 C:\Windows\System32\Tasks\DriverUpdate Startup
 C:\Users\Public\Desktop\DriverUpdate.lnk
 C:\Users\Public\Desktop\SlimCleaner Plus.lnk
 C:\Windows\Tasks\DriverUpdate Scan.job
 C:\Windows\Tasks\DriverUpdate Startup.job
 C:\Users\{username}\AppData\Local\SlimWare Utilities Inc
 C:\ProgramData\SlimWare Utilities Inc
 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimCleaner Plus
 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverUpdate
 C:\Program Files\SlimService
 C:\Program Files\SlimCleaner Plus
 C:\Program Files (x86)\DriverUpdate
 C:\Users\{username}\AppData\Local\Temp\scpFC.tmp.exe

DriverUpdate (HKLM-x32\...\DriverUpdate) (Version: 2.7.0 - Slimware Utilities Holdings, Inc.)
DriverUpdate (x32 Version: 2.7.0 - Slimware Utilities Holdings, Inc.) Hidden
SlimCleaner Plus (HKLM\...\SlimCleaner Plus) (Version: 2.5.9 - Slimware Utilities Holdings, Inc.)
SlimCleaner Plus (Version: 2.5.9 - Slimware Utilities Holdings, Inc.) Hidden
Task: {47BD5CA1-1067-4D0C-9FC4-F07387E8A57C} - System32\Tasks\DriverUpdate Startup => C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe [2016-09-12] (SlimWare Utilities, Inc.)
Task: {D956E2DE-540F-4E0C-B74C-DA4390EBEC14} - System32\Tasks\DriverUpdate Scan => C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe [2016-09-12] (SlimWare Utilities, Inc.)
Task: C:\Windows\Tasks\DriverUpdate Scan.job => C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
Task: C:\Windows\Tasks\DriverUpdate Startup.job => C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe

Screenshots

Cybersecurity info you can’t do without

Want to stay informed on the latest news in cybersecurity? Sign up for our newsletter and learn how to protect your computer from threats.

Select your language