DriverHive, Potentially Superfluous Software.

/ LPI, News, Creativity, PUP, Superfluous / Through / 3 minutes of reading
317
5/5 - (1 votes)

DriverHive, Potentially Superfluous Software.

Some legitimate programs like DriverHive can be classified as superfluous, they are not necessarily necessary for the functioning of the system and sometimes even unwanted.

More specifically, the DriverHive program falls into the category of software that can optimize your system. It automatically installs all the required drivers on your computer.

It can be installed via downloading repackaged freeware. It displays alerts on the quality of the system and the presence of malware and offers the purchase of a paid version to resolve the problems.

Some security solutions, such as Malwarebytes Antimalwares, classify this software as Potentially Unwanted Optional Software (PUP/LPI).


This program is classified as Potentially Unnecessary Software (LPS). It installs as a program and/or as a browser extension. It can start automatically from the Registry via a "Run" key, a service or a scheduled task. It may launch when you start your browser after changing its settings. Sometimes the launch is done silently, that is to say it works in the background. The virus analysis of this software does not show any malware detection.


These are mostly legitimate programs that may not be necessary for your system to function properly. The multiplication of programs launched at system startup can cause delays in the execution of ordinary system tasks but also when browsing the Internet. Note that some programs come from downloads with repackaging, a technique which consists of offering other software during installation. These additional programs are obviously superfluous, they can even be installed without your knowledge. It is recommended to read the EULA before installing packaged software. Before clicking, check the relevance of the pre-checked boxes offered to you.


Potentially unwanted software (LPI) or Potentialy Unwanted Programs (PUP) are the cause of many infections. The most common example is adware. InstallCore, Crossrider, Graftor ou Boxore which pollute the Registry and your data storage units. They are usually installed without your knowledge by downloading freeware. Indeed some sites use the repackaging method, an operation which consists of redoing the software installation module by adding download options. These options allow you to add other software such as browser toolbars, adware, potentially unwanted software, intrusive advertising software, or even browser hijackers.


Spyware (spyware) and adware (adwares) unwanted files, just like malware, can use the writing flaws of legitimate software or those of operating systems. It is therefore essential to have official software and that it has automatic updating. Likewise, your Windows operating system must be programmed in automatic update mode and activated, so that you can have the latest updates for critical security vulnerabilities.

TECHNICAL ELEMENTS

Features

- Created multiple application shortcuts, Desktop, QuickLaunch, Taskbar, Programs (O4GS),
- It is installed in the Registry Base in order to be launched each time the system starts (O4),
- It installs as a program (O42)
– Created multiple “Software” registry keys,
- Adds additional folders (O43),
- Registration in the Windows prefetcher folder (O45)
– Adds multiple user files (O61),

Preview in reports

Recorded on 30/01/2019
Serial number: 599220844329B551B497CF0422CA30BF
O4 – HKLM\..\Run: [DriverHiveTray] . (.Bootstrap Development, LLC. – DriverHive.) — C:\Program Files\DriverHive\DriverHiveTray.exe
[MD5.E5FF7D4A40A6FDC79EDE6538A2441C42] – (.Bootstrap Development, LLC. – DriverHive.) — C:\Program Files\DriverHive\DriverHiveTray.exe [2444328] [PID.1368]
O4 – GS\Desktop [Administrator]: DriverHive.lnk. (.Bootstrap Development, LLC. – DriverHive.) C:\Program Files\DriverHive\DriverHive.exe
O4 – GS\Quicklaunch [Administrator]: DriverHive.lnk. (.Bootstrap Development, LLC. – DriverHive.) C:\Program Files\DriverHive\DriverHive.exe
O4 – GS\Desktop [Coolman]: DriverHive.lnk. (.Bootstrap Development, LLC. – DriverHive.) C:\Program Files\DriverHive\DriverHive.exe
O4 – GS\Quicklaunch [Coolman]: DriverHive.lnk. (.Bootstrap Development, LLC. – DriverHive.) C:\Program Files\DriverHive\DriverHive.exe
O42 – Software: DriverHive – (.Bootstrap Development, LLC..) [HKLM] — DriverHive_is1
O43 – CFD: 30/01/2019 – [] D — C:\Program Files\DriverHive
O43 – CFD: 30/01/2019 – [] D — C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverHive
O61 – LFC: 2019/01/30 01:06:47 A . (.Bootstrap Development, LLC..) — C:\Users\Coolman\Downloads\driverhivetrialsetup.exe [6875640]
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\DriverHive_is1
C:\Program Files\DriverHive\DriverHiveTray.exe
C:\Program Files\DriverHive\DriverHive.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverHive
C:\Users\Coolman\Downloads\driverhivetrialsetup.exe

Alias

VirusTotal Analysis DriverHiveTray.exe :
Cyren W32/GenBl.E5FF7D4A!Olympus 20180724
DrWeb Program.Unwanted.1231 20180723
ESET-NOD32 a variant of Win32/UwS.DriverHive.A 20180724
Sophos ML heuristic 20180717
Malwarebytes PUP.Optional.DriverHive 20180724
Rising Malware.Undefined!8.C (CLOUD) 20180724
Sophos AV Mal/Generic-S 20180723
Tencent Win32.Risk.Deceptor.Amwd 20180724
TrendMicro-HouseCall Suspicious_GEN.F47V0723 20180723

VirusTotal Analysis driverhivetrialsetup.exe (Installer) :
Antiy-AVL GrayWare[AdWare]/Win32.OpenCandy.a 20190129
Avast Win32:OpenCandy-D [PUP] 20190129
AVG Win32:OpenCandy-D [PUP] 20190129
Avira (no cloud) PUA/DriverHive.EL.1 20190129
CAT-QuickHeal Webtoolbar.Asparnet 20190129
Comodo Malware@#32icg6yb4r0s7 20190129
Cyren W32/Adware.ECKM-3307 20190129
DrWeb Program.Unwanted.1231 20190129
Emsisoft Application.AdInstall (A) 20190129
ESET-NOD32 a variant of Win32/UwS.DriverHive.A 20190130
F-Prot W32/OpenCandy.B 20190129
Fortinet Adware/OpenCandy 20190129
GData Win32.Application.OpenCandy.O 20190129
Sophos ML heuristic 20181128
K7AntiVirus Unwanted-Program (004b92301) 20190129
K7GW Unwanted-Program (004b92301) 20190129
Kaspersky not-a-virus:Downloader.Win32.OpenCandy.lc 20190130
Malwarebytes PUP.Optional.DriverHive 20190129
MAX malware (ai score=98) 20190130
McAfee Artemis!A85D26429661 20190129
McAfee-GW-Edition Artemis!PUP 20190129
Microsoft PUA:Win32/CandyOpen 20190129
NANO-Antivirus Riskware.Win32.OpenCandy.dqxwev 20190129
Panda PUP/DriverHive 20190129
Qihoo-360 Script/Virus.WebToolbar.e9d 20190130
Rising PUF.OpenCandy!1.9DE5 (CLASSIC) 20190129
Sophos AV Troj/Decept-FA 20190129
Symantec PUA.OpenCandy 20190129
Tencent Win32.Risk.Uws.Lmkr 20190130
VBA32 AdWare.OpenCandy 20190129
ViRobot Adware.Opencandy.6875640 20190129
Yandex Riskware.OpenCandy! 20190129
Zillya Adware.OpenCandy.Win32.13 20190129
ZoneAlarm by Check Point not-a-virus:Downloader.Win32.OpenCandy.lc 20190129

Associate Editors

Bootstrap Development, LLC.

Some products

DriverHive

MD5 encryption

E5FF7D4A40A6FDC79EDE6538A2441C42

Serial number

599220844329B551B497CF0422CA30BF

How to Remove DriverHive?

Delete with Windows

Delete with ZHPCleaner

   Delete with ZHPSuite

Responsibility :   The principle of absence of responsibility of the original site, with regard to the contents of the targeted target sites, is recalled by the judgment of September 19, 2001 of the Paris Court of Appeal. The comments I make here reflect my opinion and are suggestions - the visitor is not obliged to follow them.
Share
Tweet
whatsapp
Share
Pin it

About the Author

Nicolas Coolman is a French IT and IT security expert with a degree in software engineering. It specializes in scanning and disinfecting malware, including adware, ransomware, Trojans and other types of unwanted software. Nicolas Coolman is also the creator of several computer security tools, such as "ZHPCleaner" and "ZHPDiag", which are widely used by users to scan and clean malware from their Windows operating systems. Nicolas Coolman is very active in the IT security community and regularly shares his knowledge and findings on his website and on security forums. His expertise is recognized by many users and IT professionals, and he is considered a reference in the field of combating malware.

Similar publications

Back to top