Jump to content

Recommended Posts

  • Staff

What is Driver Tonic?

Driver Tonic is a system optimizer that triggers our PUP detection rules. By doing so we offer users a choice to consider whether they want to use this software. More information can be found on our Malwarebytes Labs blog.

How do I know if I am affected by Driver Tonic?

This is how the main screen of the computer cleaner looks:

main.png

You will find these icons in your taskbar, your startmenu, and on your desktop:

icons.png

and see these warnings during install:

warning1.png

warning2.png

and this type of screens during operations:

warning5.png

warning6.png

You may see this entry in your list of installed programs:

warning4.png

and this task in your list of Scheduled Tasks:

warning3.png

How did Driver Tonic get on my computer?

These so-called system optimizers use different methods of getting installed. This particular one was downloaded from their website.

website.png

How do I remove Driver Tonic?

Our program Malwarebytes can detect and remove this PUP. It is advisable to use the built-in uninstaller first for a more complete removal.

  • Please download Malwarebytes for Windows to your desktop.
  • Double-click MBSetup.exe and follow the prompts to install the program.
  • When your Malwarebytes for Windows installation completes, the program opens to the Welcome to Malwarebytes screen.
  • Click on the Get started button.
  • Click Scan to start a Threat Scan.
  • When the scan is finished click Quarantine to remove the found threats.
  • Reboot the system if prompted to complete the removal process.

Is there anything else I need to do to get rid of Driver Tonic?

  • No, Malwarebytes removes Driver Tonic completely.
  • This PUP creates a scheduled task. You can read here how to check for and, if necessary, remove Scheduled Tasks.

What if I want to keep Driver Tonic?

Should users wish to keep this program and exclude it from being detected in future scans, they can add the program to the exclusions list. Here’s how to do it.

  • Open Malwarebytes for Windows.
  • Click the Detection History
  • Click the Allow List
  • To add an item to the Allow List, click Add.
  • Select the exclusion type Allow a file or folder and use the Select a folder button to select the main folder for the software that you wish to keep.
  • Repeat this for any secondary files or folder(s) that belong to the software.

If you want to allow the program to connect to the Internet, for example to fetch updates, also add an exclusion of the type Allow an application to connect to the internet and use the Browse button to select the file you wish to grant access.

How would the full version of Malwarebytes help protect me?

We hope our application and this guide have helped you in dealing with this registry cleaner.

As you can see below the full version of Malwarebytes would have warned you against the Driver Tonic installer.
 

protection1.png

 

Technical details for experts

You may see these entries in FRST logs:


 

(DRIVER TONIC -> drivertonics.com) C:\Program Files\Driver Tonic\dtn.exe
Task: {902B98EC-E803-4C12-829D-387A478E9045} - System32\Tasks\Driver Tonic_Logon => C:\Program Files\Driver Tonic\dtn.exe [3917384 2019-06-15] (DRIVER TONIC -> drivertonics.com)
C:\Users\{username}\AppData\Roaming\PCTonics.com
C:\ProgramData\PCTonics.com
C:\Users\Public\Desktop\Driver Tonic.lnk
C:\ProgramData\Desktop\Driver Tonic.lnk
C:\Windows\system32\Tasks\Driver Tonic_Logon
C:\Users\{username}\AppData\Roaming\drivertonics.com
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic
C:\ProgramData\drivertonics.com
C:\Program Files\Driver Tonic

Driver Tonic (HKLM\...\{4C7CA6F1-4691-449D-B574-559726CDA825}_is1) (Version: 1.0.2.2 - drivertonics.com)

Alterations made by the installer:
 

File system details [View: All details] (Selection)
---------------------------------------------------
    Adds the folder C:\Program Files\Driver Tonic
       Adds the file Application_icon.png"="9/11/2018 1:07 PM, 3459 bytes, A
       Adds the file Delimon.Win32.IO.dll"="6/15/2019 1:32 PM, 963656 bytes, A
       Adds the file dtn.exe"="6/15/2019 1:32 PM, 3917384 bytes, A
       Adds the file dtn.exe.config"="6/1/2019 4:42 PM, 3729 bytes, A
       Adds the file dtonic.ttf"="3/28/2019 4:15 PM, 44296 bytes, A
       Adds the file HtmlRenderer.dll"="6/15/2019 1:32 PM, 235080 bytes, A
       Adds the file HtmlRenderer.WPF.dll"="6/15/2019 1:32 PM, 61512 bytes, A
       Adds the file Interop.IWshRuntimeLibrary.dll"="6/15/2019 1:32 PM, 62536 bytes, A
       Adds the file langs.db"="6/4/2019 8:00 PM, 1420288 bytes, A
       Adds the file Microsoft.Win32.TaskScheduler.dll"="6/15/2019 1:32 PM, 184392 bytes, A
       Adds the file Microsoft.WindowsAPICodePack.dll"="6/15/2019 1:32 PM, 111688 bytes, A
       Adds the file Microsoft.WindowsAPICodePack.Shell.dll"="6/15/2019 1:32 PM, 555592 bytes, A
       Adds the file Newtonsoft.Json.dll"="6/15/2019 1:32 PM, 474184 bytes, A
       Adds the file PresentationCore.dll"="6/15/2019 1:32 PM, 1426504 bytes, A
       Adds the file System.Data.SQLite.DLL"="6/15/2019 1:32 PM, 345160 bytes, A
       Adds the file System.Threading.dll"="9/11/2018 1:07 PM, 387408 bytes, A
       Adds the file TAFactory.IconPack.dll"="6/15/2019 1:32 PM, 50248 bytes, A
       Adds the file unins000.dat"="11/24/2020 9:12 AM, 70071 bytes, A
       Adds the file unins000.exe"="11/24/2020 9:12 AM, 1244744 bytes, A
       Adds the file unins000.msg"="11/24/2020 9:12 AM, 22715 bytes, A
       Adds the file WPFToolkit.dll"="9/11/2018 1:07 PM, 467288 bytes, A
    Adds the folder C:\Program Files\Driver Tonic\dp
       Adds the file 7z.dll"="6/15/2019 1:32 PM, 1087048 bytes, A
       Adds the file 7z.exe"="6/15/2019 1:32 PM, 278600 bytes, A
       Adds the file difxapi.dll"="9/11/2018 1:09 PM, 323464 bytes, A
       Adds the file difxapi64.dll"="9/11/2018 1:09 PM, 519048 bytes, A
       Adds the file DPInst32.exe"="6/15/2019 1:32 PM, 558664 bytes, A
       Adds the file DPInst64.exe"="6/15/2019 1:32 PM, 684104 bytes, A
       Adds the file DrvReposPath.exe"="6/15/2019 1:33 PM, 272456 bytes, A
       Adds the file DrvSignerVerifier.exe"="6/15/2019 1:33 PM, 280648 bytes, A
    Adds the folder C:\Program Files\Driver Tonic\websec
       Adds the file ICSharpCode.SharpZipLib.dll"="6/15/2019 1:32 PM, 205896 bytes, A
       Adds the file langs.db"="11/7/2017 11:09 AM, 65536 bytes, A
       Adds the file Microsoft.Win32.TaskScheduler.dll"="6/15/2019 1:32 PM, 184392 bytes, A
       Adds the file Newtonsoft.Json.dll"="6/15/2019 1:32 PM, 460872 bytes, A
       Adds the file System.Data.SQLite.DLL"="6/15/2019 1:32 PM, 345160 bytes, A
       Adds the file System.Data.SQLite.Linq.dll"="6/15/2019 1:32 PM, 209992 bytes, A
       Adds the file System.Threading.dll"="9/11/2018 1:07 PM, 387408 bytes, A
       Adds the file TAFactory.IconPack.dll"="6/15/2019 1:32 PM, 50248 bytes, A
       Adds the file WebExtNotifier.exe"="6/15/2019 1:32 PM, 1005128 bytes, A
       Adds the file WebExtNotifier.exe.config"="9/22/2017 5:16 PM, 1321 bytes, A
    Adds the folder C:\Program Files\Driver Tonic\websec\x64
       Adds the file SQLite.Interop.dll"="6/15/2019 1:32 PM, 1493576 bytes, A
    Adds the folder C:\Program Files\Driver Tonic\websec\x86
       Adds the file SQLite.Interop.dll"="6/15/2019 1:32 PM, 1060424 bytes, A
    Adds the folder C:\Program Files\Driver Tonic\x64
       Adds the file SQLite.Interop.dll"="6/15/2019 1:32 PM, 1493576 bytes, A
    Adds the folder C:\Program Files\Driver Tonic\x86
       Adds the file SQLite.Interop.dll"="6/15/2019 1:32 PM, 1060424 bytes, A
    Adds the folder C:\ProgramData\drivertonics.com\Driver Tonic
       Adds the file mdb.db"="2/20/2018 7:15 PM, 838656 bytes, A
    Adds the folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic
       Adds the file Buy Driver Tonic.lnk"="11/24/2020 9:12 AM, 837 bytes, A
       Adds the file Driver Tonic.lnk"="11/24/2020 9:12 AM, 827 bytes, A
       Adds the file Uninstall Driver Tonic.lnk"="11/24/2020 9:12 AM, 858 bytes, A
    Adds the folder C:\Users\{username}\AppData\Roaming\drivertonics.com\Ad-BlockerPro
       Adds the file langs.db"="11/7/2017 11:09 AM, 65536 bytes, A
    Adds the folder C:\Users\{username}\AppData\Roaming\drivertonics.com\Driver Tonic
       Adds the file bkp.xml"="11/24/2020 9:16 AM, 374 bytes, A
       Adds the file Errorlog.txt"="11/24/2020 9:19 AM, 96492 bytes, A
       Adds the file exlist.bin"="11/24/2020 9:12 AM, 275673 bytes, A
       Adds the file notifier.xml"="11/24/2020 9:13 AM, 428 bytes, A
       Adds the file res.bin"="11/24/2020 9:12 AM, 31256 bytes, A
       Adds the file Result.cb"="11/24/2020 9:19 AM, 38557 bytes, A
       Adds the file update.xml"="11/24/2020 9:12 AM, 1270 bytes, A
    Adds the folder C:\Users\{username}\AppData\Roaming\drivertonics.com\Driver Tonic\Backups
       Adds the file dtcbackup_24112020_091422.zip"="11/24/2020 9:16 AM, 18939532 bytes, A
    Adds the folder C:\Users\{username}\AppData\Roaming\drivertonics.com\Driver Tonic\DrvBackups
    Adds the folder C:\Users\{username}\AppData\Roaming\drivertonics.com\Driver Tonic\DrvDownload
    Adds the folder C:\Users\{username}\AppData\Roaming\drivertonics.com\Driver Tonic\icon
       Adds the file 091950.ico"="11/24/2020 9:19 AM, 62627 bytes, A
    In the existing folder C:\Users\Public\Desktop
       Adds the file Driver Tonic.lnk"="11/24/2020 9:19 AM, 1852 bytes, A
    In the existing folder C:\Windows\System32\Tasks
       Adds the file Driver Tonic_Logon"="11/24/2020 9:12 AM, 3028 bytes, A

Registry details [View: All details] (Selection)
------------------------------------------------
    [HKEY_LOCAL_MACHINE\SOFTWARE\drivertonics.com\Driver Tonic]
       "affired"="REG_DWORD", 0
       "afterInstallUrl"="REG_SZ", "https://ins.drivertonics.com/install/ndtn/?"
       "apst"="REG_DWORD", 0
       "bdInst"="REG_DWORD", 0
       "btnid"="REG_SZ", ""
       "cclst"="REG_SZ", ""
       "country"="REG_SZ", ""
       "cta"="REG_DWORD", 0
       "delay"="REG_DWORD", 0
       "expired"="REG_DWORD", 0
       "hdata"="REG_BINARY, ................................................................
       "hdinstpg"="REG_DWORD", 0
       "hdunistpg"="REG_DWORD", 0
       "InstallString"="REG_SZ", "C:\Program Files\Driver Tonic"
       "ipaddrurl"="REG_SZ", "http://ins.drivertonics.com/getip/"
       "isinstfont"="REG_DWORD", 1
       "isSchedule"="REG_DWORD", 0
       "issilent"="REG_DWORD", 0
       "ISTELNO"="REG_DWORD", 0
       "LangCode"="REG_SZ", "en"
       "lpid"="REG_SZ", ""
       "lstscnsett"="REG_BINARY, .............................................................
       "nointernetdrvrslt"="REG_DWORD", 1
       "ovoffdis"="REG_DWORD", 0
       "paramurl"="REG_SZ", "http://trkr.drivertonics.com/ipfiles/"
       "playsound"="REG_DWORD", 0
       "ppid"="REG_DWORD", 66
       "ppinag"="REG_DWORD", 0
       "prereg"="REG_DWORD", 0
       "PurchaseURL"="REG_SZ", "https://store.drivertonics.com/dtn/plan/"
       "pxl"="REG_SZ", "wtsite"
       "reg"="REG_DWORD", 0
       "RenewURL"="REG_SZ", "https://store.drivertonics.com/dtn/renewal/"
       "runcam"="REG_DWORD", 1
       "runpixel"="REG_DWORD", 1
       "runpub"="REG_DWORD", 1
       "runsrc"="REG_DWORD", 1
       "scntype"="REG_DWORD", 0
       "showpriceplan"="REG_DWORD", 4
       "showtn"="REG_DWORD", 0
       "showunins"="REG_DWORD", 0
       "showwfo"="REG_DWORD", 1
       "shwtutrl"="REG_DWORD", 0
       "stdismax"="REG_DWORD", -1
       "supporturl"="REG_SZ", "http://www.drivertonics.com/support/"
       "tcfl"="REG_DWORD", 0
       "TELNO"="REG_SZ", ""
       "utm_campaign"="REG_SZ", "site"
       "utm_medium"="REG_SZ", "default"
       "utm_source"="REG_SZ", "site"
       "vendorLogo"="REG_SZ", "common_logo.jpg"
       "WebURL"="REG_SZ", "http://www.drivertonics.com/"
       "wfoset"="REG_DWORD", 1
       "x-at"="REG_SZ", ""
       "x-base"="REG_SZ", ""
       "x-ccode"="REG_SZ", "nl"
       "x-context"="REG_SZ", ""
       "x-datetime"="REG_SZ", ""
       "x-fetch"="REG_SZ", "0"
       "x-ip"="REG_SZ", "90_145_230_242"
       "x-plt"="REG_SZ", ""
       "x-uid"="REG_SZ", ""
       "x-var1"="REG_SZ", ""
       "x-var2"="REG_SZ", ""
       "x-var3"="REG_SZ", ""
    [HKEY_LOCAL_MACHINE\SOFTWARE\dtc-pr]
       "affiliateid"="REG_SZ", ""
       "btnid"="REG_SZ", ""
       "country"="REG_SZ", ""
       "LangCode"="REG_SZ", "en"
       "lpid"="REG_SZ", ""
       "phone"="REG_SZ", ""
       "referurl"="REG_SZ", ""
       "utm_medium"="REG_SZ", "default"
       "utm_pubid"="REG_SZ", ""
       "x-at"="REG_SZ", ""
       "x-base"="REG_SZ", ""
       "x-context"="REG_SZ", ""
       "x-plt"="REG_SZ", ""
       "x-var1"="REG_SZ", ""
       "x-var2"="REG_SZ", ""
       "x-var3"="REG_SZ", ""
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4C7CA6F1-4691-449D-B574-559726CDA825}_is1]
       "DisplayIcon"="REG_SZ", "C:\Program Files\Driver Tonic\dtn.exe"
       "DisplayName"="REG_SZ", "Driver Tonic"
       "DisplayVersion"="REG_SZ", "1.0.2.2"
       "EstimatedSize"="REG_DWORD", 32233
       "HelpLink"="REG_SZ", "http://www.drivertonics.com/support/"
       "Inno Setup: App Path"="REG_SZ", "C:\Program Files\Driver Tonic"
       "Inno Setup: Icon Group"="REG_SZ", "Driver Tonic"
       "Inno Setup: Language"="REG_SZ", "en"
       "Inno Setup: Setup Version"="REG_SZ", "5.5.9 (u)"
       "Inno Setup: User"="REG_SZ", "{username}"
       "InstallDate"="REG_SZ", "20201124"
       "InstallLocation"="REG_SZ", "C:\Program Files\Driver Tonic\"
       "MajorVersion"="REG_DWORD", 1
       "MinorVersion"="REG_DWORD", 0
       "NoModify"="REG_DWORD", 1
       "NoRepair"="REG_DWORD", 1
       "Publisher"="REG_SZ", "drivertonics.com"
       "QuietUninstallString"="REG_SZ", ""C:\Program Files\Driver Tonic\unins000.exe" /SILENT"
       "UninstallString"="REG_SZ", ""C:\Program Files\Driver Tonic\unins000.exe" /SILENT"
       "URLInfoAbout"="REG_SZ", "http://www.drivertonics.com/"
       "VersionMajor"="REG_DWORD", 1
       "VersionMinor"="REG_DWORD", 0
    [HKEY_LOCAL_MACHINE\SOFTWARE\ZHJpdmVydG9uaWNzLmNvbQ==\RHJpdmVyIFRvbmlj\ACT]
       "data"="REG_BINARY, ....................................................................................
    [HKEY_CURRENT_USER\Software\drivertonics.com\Driver Tonic]
       "InstallString"="REG_SZ", "C:\Program Files\Driver Tonic"
       "LangCode"="REG_SZ", "en"
       "pxl"="REG_SZ", "wtsite"
       "utm_campaign"="REG_SZ", "site"
       "utm_medium"="REG_SZ", "default"
       "utm_source"="REG_SZ", "site"
       "x-base"="REG_SZ", ""
       "x-datetime"="REG_SZ", ""
       "x-fetch"="REG_SZ", "0"
       "x-ip"="REG_SZ", "90_145_230_242"
    [HKEY_CURRENT_USER\Software\drivertonics.com\Driver Tonic\1.0.2.2]

Malwarebytes log:
 

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 11/24/20
Scan Time: 9:31 AM
Log File: 77a11992-2e2f-11eb-929f-080027235d76.json

-Software Information-
Version: 4.2.3.96
Components Version: 1.0.1122
Update Package Version: 1.0.33340
License: Premium

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: {computername}\{username}

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 232095
Threats Detected: 37
Threats Quarantined: 36
Time Elapsed: 3 min, 8 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 1
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\DTN.EXE, Quarantined, 4474, 690348, , , , , 9913639A3353A14084B3EA5C4D04538A, 69ED4FA613890D9FA4FF0DB3F4B73EDBC9E2D5A5CD1B0A27FA340A2FDF70D6CC

Module: 8
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\MICROSOFT.WIN32.TASKSCHEDULER.DLL, Quarantined, 4474, 690348, , , , , 5BED8199F86CEAAC7E2C937D45533587, E3F25D36D20C1D243C7541382D6819BB42F587846955BF83A23278385D8DBB8A
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\DTN.EXE, Quarantined, 4474, 690348, , , , , 9913639A3353A14084B3EA5C4D04538A, 69ED4FA613890D9FA4FF0DB3F4B73EDBC9E2D5A5CD1B0A27FA340A2FDF70D6CC
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\SYSTEM.DATA.SQLITE.DLL, Quarantined, 4474, 833649, , , , , 4BABC3FACA305CE2718A463602FBF839, 91023DE7D13146ADD9E0F11E22F02933029BBE94B8BB6F361A9F979F49712524
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\INTEROP.IWSHRUNTIMELIBRARY.DLL, Quarantined, 4474, 690348, , , , , D0C36F2CE6E7052452CFA2A1B29CCE96, CF7A464EFC8FB2CAF7D293DBCE12E1639C0DA04CBC0390225E823FE2F3370C82
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\TAFACTORY.ICONPACK.DLL, Quarantined, 4474, 833649, , , , , 9A98FABEC41926888B1B5C47E8E9EB68, 7028205C645C7D2C58303E6C292B08B156B2A2FE8E7CD163392F40DE882685DD
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\X64\SQLITE.INTEROP.DLL, Quarantined, 4474, 833649, , , , , 6160A04F6E53D90D88148C888C58B348, 15C883254D3D77E056164C4D5355114EDA65CB58905060F50155388B12A00A47
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\HTMLRENDERER.WPF.DLL, Quarantined, 4474, 690348, , , , , 7C21BD745B22083BF366FB07FCBB1102, 384DB519F890F7148D39343FEB35729CE5777E396967D789D9620F2C127D675F
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\HTMLRENDERER.DLL, Quarantined, 4474, 690348, , , , , FF0086DFA77824F5746B84F0EBDC45AE, 8B062327764FF0178EFC1E13E456E89777EF70F18BF428AE5B9C79272D65A786

Registry Key: 8
PUP.Optional.DriverTonic, HKLM\SOFTWARE\drivertonics.com, Quarantined, 4474, 689703, 1.0.33340, , ame, , , 
PUP.Optional.DriverTonic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Driver Tonic_Logon, Quarantined, 4474, 582490, , , , , , 
PUP.Optional.DriverTonic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{902B98EC-E803-4C12-829D-387A478E9045}, Quarantined, 4474, 582490, , , , , , 
PUP.Optional.DriverTonic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{902B98EC-E803-4C12-829D-387A478E9045}, Quarantined, 4474, 582490, , , , , , 
PUP.Optional.PCVARK, HKLM\SOFTWARE\ZHJpdmVydG9uaWNzLmNvbQ==, Quarantined, 530, 706567, 1.0.33340, , ame, , , 
PUP.Optional.DriverTonic, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{4C7CA6F1-4691-449D-B574-559726CDA825}_IS1, Quarantined, 4474, 505864, 1.0.33340, , ame, , , 
PUP.Optional.DriverTonic, HKCU\SOFTWARE\drivertonics.com, Quarantined, 4474, 689704, 1.0.33340, , ame, , , 
PUP.Optional.Jawego, HKLM\SOFTWARE\DTC-PR, Quarantined, 709, 543113, 1.0.33340, , ame, , , 

Registry Value: 3
PUP.Optional.DriverTonic, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{4C7CA6F1-4691-449D-B574-559726CDA825}_IS1|DISPLAYNAME, Quarantined, 4474, 505864, 1.0.33340, , ame, , , 
PUP.Optional.DriverTonic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{902B98EC-E803-4C12-829D-387A478E9045}|PATH, Quarantined, 4474, 582488, 1.0.33340, , ame, , , 
PUP.Optional.Jawego, HKLM\SOFTWARE\DTC-PR|AFFILIATEID, Quarantined, 709, 543113, 1.0.33340, , ame, , , 

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 4
PUP.Optional.DriverTonic, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\DRIVER TONIC, Quarantined, 4474, 833648, 1.0.33340, , ame, , , 
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC, Delete-on-Reboot, 4474, 833649, 1.0.33340, , ame, , , 
PUP.Optional.DriverTonic, C:\PROGRAMDATA\DRIVERTONICS.COM, Delete-on-Reboot, 4474, 833655, 1.0.33340, , ame, , , 
PUP.Optional.DriverTonic, C:\USERS\{username}\APPDATA\ROAMING\DRIVERTONICS.COM, Delete-on-Reboot, 4474, 833655, 1.0.33340, , ame, , , 

File: 12
PUP.Optional.DriverTonic, C:\USERS\PUBLIC\DESKTOP\DRIVER TONIC.LNK, Quarantined, 4474, 505861, 1.0.33340, , ame, , E9D2DB8DC2792356379EFEBFC346AD3F, B84C29A29B938C3D58A32C3A7ADE42FF8AB6664A97A3009F50CAF6018D442340
PUP.Optional.DriverTonic, C:\WINDOWS\SYSTEM32\TASKS\Driver Tonic_Logon, Quarantined, 4474, 582490, 1.0.33340, , ame, , A1004018D49CF3ED9B99BD720A3471BA, 8676031E4905C304D6E46BB3976867D73F5FD974A2EFBA0E1C9667BB41CB2517
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\MICROSOFT.WIN32.TASKSCHEDULER.DLL, Delete-on-Reboot, 4474, 690348, 1.0.33340, , ame, , 5BED8199F86CEAAC7E2C937D45533587, E3F25D36D20C1D243C7541382D6819BB42F587846955BF83A23278385D8DBB8A
PUP.Optional.DriverTonic, C:\DOCUMENTS AND SETTINGS\PUBLIC\Desktop\Driver Tonic.lnk, Removal Failed, 4474, 690348, , , , , E9D2DB8DC2792356379EFEBFC346AD3F, B84C29A29B938C3D58A32C3A7ADE42FF8AB6664A97A3009F50CAF6018D442340
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\DTN.EXE, Delete-on-Reboot, 4474, 690348, 1.0.33340, , ame, , 9913639A3353A14084B3EA5C4D04538A, 69ED4FA613890D9FA4FF0DB3F4B73EDBC9E2D5A5CD1B0A27FA340A2FDF70D6CC
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\SYSTEM.DATA.SQLITE.DLL, Delete-on-Reboot, 4474, 833649, 1.0.33340, , ame, , 4BABC3FACA305CE2718A463602FBF839, 91023DE7D13146ADD9E0F11E22F02933029BBE94B8BB6F361A9F979F49712524
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\INTEROP.IWSHRUNTIMELIBRARY.DLL, Delete-on-Reboot, 4474, 690348, 1.0.33340, , ame, , D0C36F2CE6E7052452CFA2A1B29CCE96, CF7A464EFC8FB2CAF7D293DBCE12E1639C0DA04CBC0390225E823FE2F3370C82
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\TAFACTORY.ICONPACK.DLL, Delete-on-Reboot, 4474, 833649, 1.0.33340, , ame, , 9A98FABEC41926888B1B5C47E8E9EB68, 7028205C645C7D2C58303E6C292B08B156B2A2FE8E7CD163392F40DE882685DD
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\X64\SQLITE.INTEROP.DLL, Delete-on-Reboot, 4474, 833649, 1.0.33340, , ame, , 6160A04F6E53D90D88148C888C58B348, 15C883254D3D77E056164C4D5355114EDA65CB58905060F50155388B12A00A47
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\HTMLRENDERER.WPF.DLL, Delete-on-Reboot, 4474, 690348, 1.0.33340, , ame, , 7C21BD745B22083BF366FB07FCBB1102, 384DB519F890F7148D39343FEB35729CE5777E396967D789D9620F2C127D675F
PUP.Optional.DriverTonic, C:\PROGRAM FILES\DRIVER TONIC\HTMLRENDERER.DLL, Delete-on-Reboot, 4474, 690348, 1.0.33340, , ame, , FF0086DFA77824F5746B84F0EBDC45AE, 8B062327764FF0178EFC1E13E456E89777EF70F18BF428AE5B9C79272D65A786
PUP.Optional.DriverTonic, C:\USERS\{username}\DOWNLOADS\DRIVERTONIC.EXE, Quarantined, 4474, 690348, 1.0.33340, , ame, , 04BC872421E5762EC8BC898912BA1067, 2C21A020524D5561069A17B2679DD5DBDA90DCF48DA9B274A5E46A70E44EFAFF

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)

As mentioned before the full version of Malwarebytes could have protected your computer against this threat.
We use different ways of protecting your computer(s):

  • Dynamically Blocks Malware Sites & Servers
  • Malware Execution Prevention

Save yourself the hassle and get protected.

Link to post
Share on other sites

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.