Hello Xplode, sorry for the insistance, i understand that some PUPs use this driver to capture information. However wouldn't it be possible that a legitimate program, as a Banking module might rely on this driver? Researching in the web, it seems that the signer " GAS INFORMATICA LTDA" makes some banking modules for security protection.
Furthermore, i have just scanned with OTL and found the f...
Hello,
It's related to some PUPs which are using this driver, so it's not a FP.
Regards,
Hello, it seems to be a WinDivert driver and developed by Basil Projects. Although i'm not sure which program it belongs.
In Virus total, nothing was detected.
https://virustotal.com/pt/file/2320e9c2e05e021512b4a9c6328caa9761187b10551859d591b6fcc16842fd0e/analysis/
# AdwCleaner v5.109 - Relatório criado 08/04/2016 às 03:15:27
# Atualizado 04/04/2016 por Xplode
# Banco de dados : 2016-04-0...I did not uncheck the "Reset Winsock Settings", and originally discovered this issue only happens when this is checked. I did a comparison of registry files before and after and saw that the major difference in the two was the deletion of the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2 registry folders and sub folders - literally everything in that was deleted.
Here is the c...
Hello Xplode,
Thanks for your time looking into this matter. I apologize I was away and not able to assist shortly after reporting this issue. I had noticed that you had released a couple of newer versions while I was away, so I downloaded and ran the newest one 5.109, but the issue persisted. Please note that I am not deleting any files or folders that your program detects (as there are so...
Bonjour,
J'ai posté 2 sujets: 1 pour ma carte sdxc et 1 pour locky, mais ils sont vérouillés,
Et pour continuer le depannage on me dit d'ouvrir un nouveau sujet, le voici,
Je suis en train de sauvegarder tout le contenu de la carte sdxc vers mon disque dur externe, par précaution,
J'ai aussi installé shadow explorer (pour convertir fichiers actuels "invisibles" en versions anciennes "vis...
Assuming a Windows 7 (or newer) OS, try running AWDCleaner as a different user by following these steps:
- From your domain user account, download 'adwcleaner_5.108.exe', and save it to the root of the C: drive
- While holding [Shift], right-click on that executable file and select ‘Run as a different user’
- Enter your local administrator credentials
.\administrator
[local admin...
Hello,
Unfortunately, UpdateStar Driver is tendancious. A recent analysis of the setup still shows that it bundles PUP. (for example : http://www.herdprotect.com/drivers.exe-9655a4ccf88f7cd59f6e4830087e40658c3604c6.aspx )
Regards,
AdwCleaner falsely reports several items related to the tools UpdateStar and UpdateStar Drivers. Here is an excerpt from a log file:
# AdwCleaner v5.108 - Logfile created 04/04/2016 at 11:01:27
# Updated 30/03/2016 by Xplode
# Database : 2016-04-03.2 [Server]
***** [ Folders ] *****
Folder Found : C:\Program Files (x86)\UpdateStar Drivers
Folder Found : C:\ProgramData\Microsoft\Windows\Star...Hello,
Sorry for the false positive, it has been removed (the change will be effective soon).
You can recover the files by using the quarantine manager : https://toolslib.net/forum/viewthread/182-en-adwcleaner-documentation/
Best regards,