Home / malware PUA:Win32/DriverRestore
First posted on 02 July 2016.
Source: MicrosoftAliases :
There are no other names known for PUA:Win32/DriverRestore.
Explanation :
Installation
We have seen this application use the following file names:
- DriverRestore.exe
- Driverwhiz.exe
- DriverRestore (1).exe
- Driverwhiz (1).exe
- DriverRestore(1).exe
- Driverwhiz(1).exe
- DriverRestore (2).exe
- Driverwhiz (2).exe
- DriverRestore(2).exe
It can be digitally signed by the following vendors:
- 1NSTALL (383 MEDIA, INC.)
We have seen this application using product names such as:
- SuperFastPC Helper
- DriverRestore
- Driver Restore
- Driver Whiz
- DriverWhiz
This application communicates with domains such as:
- systemoptimizerpro.com
- fbak.383media.com
- adserver.383media.net
- us2.driveragent.com
- download.driverwhiz.com
For example:
- systemoptimizerpro.com/getexedetails.php?
- fbak.383media.com/fbak/feedback?
- adserver.383media.net/www/delivery/afr.php?
This description was published using automated analysis.Last update 02 July 2016
