Jump to content

Search the Community

Showing results for tags 'realdefense'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 2 results

  1. What is MyCleanID? The Malwarebytes research team has determined that MyCleanID is a "privacy optimizer". These so-called "system optimizers" use exaggerated results or sometimes even intentional false positives to convince users that their systems have problems. Then they try to sell you their software, claiming it will remove these problems. This particular one also uses web push notifications. How do I know if I am infected with MyCleanID? This is how the main screen of the system optimizer looks: You will find these icons in your taskbar, your startmenu, and on your desktop: and see these warnings during install: and this type of screens during "operations": You may see this entry in your list of installed programs: and these tasks in your list of Scheduled Tasks: How did MyCleanID get on my computer? These so-called system optimizers use different methods of getting installed. This particular one was downloaded from their website: How do I remove MyCleanID? Our program Malwarebytes can detect and remove this potentially unwanted application. Please download Malwarebytes for Windows to your desktop. Double-click MBSetup.exe and follow the prompts to install the program. When your Malwarebytes for Windows installation completes, the program opens to the Welcome to Malwarebytes screen. Click on the Get started button. Click Scan to start a Threat Scan. When the scan is finished click Quarantine to remove the found threats. Reboot the system if prompted to complete the removal process. Is there anything else I need to do to get rid of MyCleanID? No, Malwarebytes removes MyCleanID completely. This PUP creates some scheduled tasks. You can read here how to check for and, if necessary, remove Scheduled Tasks. If you have allowed the notifications you can read here how to disable them. How would the full version of Malwarebytes help protect me? We hope our application and this guide have helped you eradicate this system optimizer. As you can see below the full version of Malwarebytes would have protected you against the MyCleanID installer. It would have warned you before the application could install itself, giving you a chance to stop it before it became too late. Technical details for experts You may see these entries in FRST logs: (RealDefense LLC -> RealDefense LLC) C:\Program Files (x86)\MyCleanID\MyCleanID.exe HKCU\...\Run: [MyCleanID] => C:\Program Files (x86)\MyCleanID\MyCleanID.exe [7591448 2019-12-13] (RealDefense LLC -> RealDefense LLC) Task: {101B4BED-02C0-443D-8E1F-5B39EA5DBCFA} - System32\Tasks\MyCleanID_PopupRenew => C:\Program Files (x86)\MyCleanID\MyCleanID.exe [7591448 2019-12-13] (RealDefense LLC -> RealDefense LLC) Task: {56D7824B-CAEB-44E5-B0D7-830E11A38FD7} - System32\Tasks\MyCleanID_PPO => C:\Program Files (x86)\MyCleanID\MyCleanID.exe [7591448 2019-12-13] (RealDefense LLC -> RealDefense LLC) Task: {78EFE2F8-DCEB-46E4-9465-F617C0FD236F} - System32\Tasks\MyCleanID-User_Account_Control => C:\Program Files (x86)\MyCleanID\TaskTools.exe [152600 2019-12-13] (RealDefense LLC -> RealDefense LLC) Task: {A4500ACD-78C9-4C6C-9D62-12FCEA9A92A4} - System32\Tasks\MyCleanID_Popup => C:\Program Files (x86)\MyCleanID\MyCleanID.exe [7591448 2019-12-13] (RealDefense LLC -> RealDefense LLC) C:\Users\{username}\AppData\Local\MyCleanID C:\Windows\system32\Tasks\MyCleanID_Popup C:\Windows\system32\Tasks\MyCleanID_PopupRenew C:\Windows\system32\Tasks\MyCleanID_PPO C:\Windows\system32\Tasks\MyCleanID-User_Account_Control C:\Users\Public\Desktop\MyCleanID.lnk C:\ProgramData\Desktop\MyCleanID.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyCleanID C:\Program Files (x86)\MyCleanID C:\Users\{username}\AppData\Roaming\MyCleanID MyCleanID (HKLM-x32\...\{964F4651-2C91-4E91-ACC4-3A47A732F6C5}) (Version: 4.0.9 - RealDefense LLC) FirewallRules: [{FFD9CC67-CCAF-42C3-A9E4-B3B0A183F831}] => (Allow) C:\Program Files (x86)\MyCleanID\MyCleanID.exe (RealDefense LLC -> RealDefense LLC) FirewallRules: [{A595CCF8-E07F-4D15-8D1D-C8F21CAEEE60}] => (Allow) C:\Program Files (x86)\MyCleanID\MyCleanID.exe (RealDefense LLC -> RealDefense LLC) Alterations made by the installer: File system details [View: All details] (Selection) --------------------------------------------------- Adds the folder C:\Program Files (x86)\MyCleanID Adds the file Armt.exe"="12/13/2019 9:31 AM, 67096 bytes Adds the file Armt.exe.config"="9/3/2019 12:12 PM, 183 bytes Adds the file CaByp.CA.dll"="12/13/2019 9:31 AM, 3275016 bytes Adds the file CaByp.dll"="12/13/2019 9:31 AM, 830488 bytes Adds the file DeployAppx.exe"="12/13/2019 9:31 AM, 21528 bytes Adds the file Esent.Interop.dll"="4/12/2019 10:52 AM, 413080 bytes Adds the file ExcelDataReader.dll"="4/12/2019 10:52 AM, 181272 bytes Adds the file geckodriver.exe"="10/12/2019 8:38 AM, 3566280 bytes Adds the file ICSharpCode.SharpZipLib.dll"="4/12/2019 10:52 AM, 207896 bytes Adds the file InstAct.exe"="12/13/2019 9:31 AM, 91160 bytes Adds the file InstAct.exe.config"="4/12/2019 10:52 AM, 232 bytes Adds the file Microsoft.Deployment.WindowsInstaller.dll"="11/18/2017 1:59 PM, 183320 bytes Adds the file Microsoft.Win32.TaskScheduler.dll"="4/12/2019 10:52 AM, 299032 bytes Adds the file MicrosoftWebDriver.exe"="3/18/2019 6:32 PM, 516648 bytes Adds the file msvcp100.dll"="7/16/2019 7:11 AM, 421200 bytes Adds the file msvcp120.dll"="7/16/2019 7:11 AM, 455488 bytes Adds the file msvcp140.dll"="7/17/2019 12:48 PM, 627440 bytes Adds the file msvcr100.dll"="7/16/2019 7:11 AM, 773968 bytes Adds the file msvcr120.dll"="7/16/2019 7:11 AM, 971584 bytes Adds the file MyCleanID.exe"="12/13/2019 9:31 AM, 7591448 bytes Adds the file MyCleanID.exe.config"="4/12/2019 10:52 AM, 306 bytes Adds the file Newtonsoft.Json.dll"="4/12/2019 10:52 AM, 529432 bytes Adds the file PdfReader.dll"="12/13/2019 9:31 AM, 541720 bytes Adds the file Perpetuum.dll"="12/13/2019 9:31 AM, 495128 bytes Adds the file Perpetuum.dll.config"="4/12/2019 10:52 AM, 229 bytes Adds the file README.txt"="9/22/2020 10:00 AM, 274 bytes, A Adds the file schedc10.exe"="12/13/2019 9:31 AM, 59416 bytes Adds the file schedc10.exe.config"="4/12/2019 10:52 AM, 232 bytes Adds the file Setup.dll"="12/13/2019 9:31 AM, 248344 bytes Adds the file Setup.dll.config"="4/12/2019 10:52 AM, 229 bytes Adds the file System.Data.SQLite.dll"="4/12/2019 10:52 AM, 1427480 bytes Adds the file TaskTools.exe"="12/13/2019 9:31 AM, 152600 bytes Adds the file TaskTools.exe.config"="4/12/2019 10:52 AM, 231 bytes Adds the file Tracking.dll"="12/13/2019 9:31 AM, 160280 bytes Adds the file trialnotification.exe"="12/13/2019 9:31 AM, 73752 bytes Adds the file trialnotification.exe.config"="4/12/2019 10:52 AM, 224 bytes Adds the file updater.exe"="4/12/2019 10:52 AM, 636952 bytes Adds the file updater.ini"="9/22/2020 10:00 AM, 362 bytes, A Adds the file Util.dll"="12/13/2019 9:31 AM, 705048 bytes Adds the file Util.dll.config"="4/12/2019 10:52 AM, 229 bytes Adds the file vcruntime140.dll"="7/17/2019 12:48 PM, 85040 bytes Adds the file WebDriver.dll"="10/31/2018 9:53 AM, 1791000 bytes Adds the folder C:\Program Files (x86)\MyCleanID\de Adds the file CaByp.resources.dll"="12/13/2019 9:31 AM, 11288 bytes Adds the file MyCleanID.resources.dll"="12/13/2019 9:31 AM, 74264 bytes Adds the folder C:\Program Files (x86)\MyCleanID\es Adds the file CaByp.resources.dll"="12/13/2019 9:31 AM, 11288 bytes Adds the file MyCleanID.resources.dll"="12/13/2019 9:31 AM, 73752 bytes Adds the folder C:\Program Files (x86)\MyCleanID\fr Adds the file CaByp.resources.dll"="12/13/2019 9:31 AM, 11288 bytes Adds the file MyCleanID.resources.dll"="12/13/2019 9:31 AM, 74776 bytes Adds the folder C:\Program Files (x86)\MyCleanID\ja Adds the file CaByp.resources.dll"="12/13/2019 9:31 AM, 11288 bytes Adds the file MyCleanID.resources.dll"="12/13/2019 9:31 AM, 77848 bytes Adds the folder C:\Program Files (x86)\MyCleanID\x64 Adds the file DecryptTool.exe"="12/13/2019 9:31 AM, 83992 bytes Adds the file DecryptTool.exe.config"="9/3/2019 12:12 PM, 163 bytes Adds the folder C:\Program Files (x86)\MyCleanID\x86 Adds the file DecryptTool.exe"="12/13/2019 9:31 AM, 85528 bytes Adds the file DecryptTool.exe.config"="9/3/2019 12:12 PM, 163 bytes Adds the folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyCleanID Adds the file MyCleanID.lnk"="9/22/2020 10:00 AM, 967 bytes, A Adds the file Uninstall MyCleanID.lnk"="9/22/2020 10:00 AM, 1820 bytes, A Adds the folder C:\Users\{username}\AppData\Local\MyCleanID Adds the file cnfg"="9/22/2020 10:00 AM, 304 bytes, A Adds the file compact.txt"="9/22/2020 10:01 AM, 26 bytes, A Adds the file debug.log"="9/22/2020 10:01 AM, 8599 bytes, A Adds the file debugdoc.log"="9/22/2020 10:01 AM, 955 bytes, A Adds the file log.rtf"="9/22/2020 10:01 AM, 378 bytes, A Adds the file MyCleanID.settings"="9/22/2020 10:01 AM, 2544 bytes, A Adds the file report.txt"="9/22/2020 10:01 AM, 72 bytes, A Adds the file track.xml"="9/22/2020 10:00 AM, 168 bytes, A Adds the file wndstate.tmp"="9/22/2020 10:01 AM, 5 bytes, A Adds the folder C:\Users\{username}\AppData\Local\MyCleanID\Files Vault\metadata Adds the file categories.bin"="9/22/2020 10:00 AM, 54 bytes, A Adds the folder C:\Users\{username}\AppData\Roaming\MyCleanID\MyCleanID 4.0.9\install Adds the file installlog.txt"="9/22/2020 10:00 AM, 346378 bytes, A Adds the folder C:\Users\{username}\AppData\Roaming\MyCleanID\MyCleanID 4.0.9\install\732F6C5 Adds the file MyCleanID.msi"="12/13/2019 9:39 AM, 3638784 bytes, A In the existing folder C:\Users\Public\Desktop Adds the file MyCleanID.lnk"="9/22/2020 10:00 AM, 949 bytes, A In the existing folder C:\Windows\System32\Tasks Adds the file MyCleanID_Popup"="9/22/2020 10:01 AM, 4192 bytes, A Adds the file MyCleanID_PopupRenew"="9/22/2020 10:01 AM, 3646 bytes, A Adds the file MyCleanID_PPO"="9/22/2020 10:01 AM, 3568 bytes, A Adds the file MyCleanID-User_Account_Control"="9/22/2020 10:00 AM, 3440 bytes, A Registry details [View: All details] (Selection) ------------------------------------------------ [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shell\MyCleanID] "(Default)"="REG_EXPAND_SZ, "Add to MyCleanID Vault" "Icon"="REG_EXPAND_SZ, "C:\Program Files (x86)\MyCleanID\MyCleanID.exe" "MultiSelectModel"="REG_EXPAND_SZ, "Player" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shell\MyCleanID\command] "(Default)"="REG_EXPAND_SZ, ""C:\Program Files (x86)\MyCleanID\Armt.exe" "addfile" "%1"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shell\MyCleanID] "(Default)"="REG_EXPAND_SZ, "Add to MyCleanID Vault" "Icon"="REG_EXPAND_SZ, "C:\Program Files (x86)\MyCleanID\MyCleanID.exe" "MultiSelectModel"="REG_EXPAND_SZ, "Player" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shell\MyCleanID\command] "(Default)"="REG_EXPAND_SZ, ""C:\Program Files (x86)\MyCleanID\Armt.exe" "addfolder" "%V"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\1564F46919C219E4CA4CA3747A236F5C] "AdvertiseFlags"="REG_DWORD", 388 "Assignment"="REG_DWORD", 1 "AuthorizedLUAApp"="REG_DWORD", 0 "Clients"="REG_MULTI_SZ, ": " "DeploymentFlags"="REG_DWORD", 3 "InstanceType"="REG_DWORD", 0 "Language"="REG_DWORD", 1033 "PackageCode"="REG_SZ", "ACE580F31D884AA4DA467EB3833EBCCF" "ProductIcon"="REG_SZ", "C:\Windows\Installer\{964F4651-2C91-4E91-ACC4-3A47A732F6C5}\icon_1.exe" "ProductName"="REG_SZ", "MyCleanID" "Version"="REG_DWORD", 67108873 [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Caphyon\Advanced Installer\Windows Firewall\{964F4651-2C91-4E91-ACC4-3A47A732F6C5}\Registered Applications] "PCPrivacyShield"="REG_SZ", "{FFD9CC67-CCAF-42C3-A9E4-B3B0A183F831}" "PCPrivacyShield_1"="REG_SZ", "{A595CCF8-E07F-4D15-8D1D-C8F21CAEEE60}" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{964F4651-2C91-4E91-ACC4-3A47A732F6C5}] "AuthorizedCDFPrefix"="REG_SZ", "" "Comments"="REG_SZ", "This installer database contains the logic and data required to install MyCleanID." "Contact"="REG_SZ", "" "DisplayName"="REG_SZ", "MyCleanID" "DisplayVersion"="REG_SZ", "4.0.9" "HelpLink"="REG_SZ", "" "HelpTelephone"="REG_SZ", "" "InstallDate"="REG_SZ", "20200922" "InstallLocation"="REG_SZ", "C:\Program Files (x86)\MyCleanID\" "Language"="REG_DWORD", 1033 "ModifyPath"="REG_EXPAND_SZ, "MsiExec.exe /X{964F4651-2C91-4E91-ACC4-3A47A732F6C5}" "NoModify"="REG_DWORD", 1 "NoRepair"="REG_DWORD", 1 "Publisher"="REG_SZ", "RealDefense LLC" "Readme"="REG_SZ", "" "Size"="REG_DWORD", 27420 "UninstallString"="REG_EXPAND_SZ, "MsiExec.exe /X{964F4651-2C91-4E91-ACC4-3A47A732F6C5}" "URLInfoAbout"="REG_SZ", "" "URLUpdateInfo"="REG_SZ", "" "Version"="REG_DWORD", 67108873 "VersionMajor"="REG_DWORD", 4 "VersionMinor"="REG_DWORD", 0 "WindowsInstaller"="REG_DWORD", 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\RealDefense LLC\MyCleanID] "Path"="REG_SZ", "C:\Program Files (x86)\MyCleanID\" "Version"="REG_SZ", "4.0.9" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "MyCleanID"="REG_SZ", ""C:\Program Files (x86)\MyCleanID\MyCleanID.exe" minimized" [HKEY_CURRENT_USER\Software\MyCleanIDValidity] "Base"="REG_SZ", "Oracle CorporationBase Board0" "Bios"="REG_SZ", "innotek GmbHVirtualBox020061201000000.000000+000VBOX - 1" "BuyLink"="REG_SZ", "https://www.mycleanid.com/app/carts/" "Cpu"="REG_SZ", "Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz2808" "Disk"="REG_SZ", "VBOX HARDDISK ATA Device(Standard disk drives)2064909821255" "lang"="REG_SZ", "en" "Mac"="REG_SZ", "EAAAAER9Mv0WB6/p5YCgIV/CrKaEbawDclwr08ITFJaEt8om" "NeedsRenewal"="REG_SZ", "False" "PhoneNum"="REG_SZ", "1 (801) 857-2379 * Additional offers may be made" "Reg"="REG_SZ", "EAAAAPilphY1qWhBN+Ce+gI0T16wnY2HnrzQ/MRe32QS0BBZ" "Rti"="REG_SZ", "0" "SplashTime"="REG_QWORD, .... "Support"="REG_SZ", "https://www.mycleanid.com/contact-us.html" [HKEY_CURRENT_USER\Software\RealDefense LLC\MyCleanID] "AI_SETUPEXEPATH"="REG_SZ", "C:\Users\{username}\Desktop\MyCleanIDSetup.exe" "Custom1"="REG_DWORD", 0 "Custom2"="REG_DWORD", 0 "Params"="REG_SZ", "arg1= arg2= arg3= arg4= arg5= arg6= arg7= arg8= arg9= setupexepath="C:\Users\{username}\Desktop\MyCleanIDSetup.exe"" "ProductCode"="REG_SZ", "{964F4651-2C91-4E91-ACC4-3A47A732F6C5}" "ResName"="REG_SZ", "Regular" "UpgradeCode"="REG_SZ", "{6D31FC71-3DF7-4906-AB9F-0745325E475A}" "Version"="REG_SZ", "4.0.9" Malwarebytes log: Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 9/22/20 Scan Time: 10:28 AM Log File: 987a9840-fcad-11ea-9281-00ffdcc6fdfc.json -Software Information- Version: 4.2.1.89 Components Version: 1.0.1045 Update Package Version: 1.0.30232 License: Premium -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: {computername}\{username} -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 231809 Threats Detected: 38 Threats Quarantined: 37 Time Elapsed: 6 min, 2 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 1 PUP.Optional.MyCleanID, C:\PROGRAM FILES (X86)\MYCLEANID\MYCLEANID.EXE, Quarantined, 3555, 518959, , , , , B82E4C37FF9292DD6C3FD46F68371AED, 9715DE365CCDFFA1638D98881FE1EFC313109C1A65DBC6FCF88350D45EE5837C Module: 1 PUP.Optional.MyCleanID, C:\PROGRAM FILES (X86)\MYCLEANID\MYCLEANID.EXE, Quarantined, 3555, 518959, , , , , B82E4C37FF9292DD6C3FD46F68371AED, 9715DE365CCDFFA1638D98881FE1EFC313109C1A65DBC6FCF88350D45EE5837C Registry Key: 19 PUP.Optional.MyCleanID, HKLM\SOFTWARE\CLASSES\*\SHELL\MyCleanID, Quarantined, 3555, 859064, 1.0.30232, , ame, , , PUP.Optional.MyCleanID, HKCU\SOFTWARE\MyCleanIDValidity, Quarantined, 3555, 518958, 1.0.30232, , ame, , , PUP.Optional.MyCleanID, HKCU\SOFTWARE\REALDEFENSE LLC\MyCleanID, Quarantined, 3555, 519119, 1.0.30232, , ame, , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{964F4651-2C91-4E91-ACC4-3A47A732F6C5}, Quarantined, 3555, 859069, 1.0.30232, , ame, , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\WOW6432NODE\REALDEFENSE LLC\MyCleanID, Quarantined, 3555, 518955, 1.0.30232, , ame, , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\MyCleanID_RASAPI32, Quarantined, 3555, 518952, 1.0.30232, , ame, , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\MyCleanID_RASMANCS, Quarantined, 3555, 518952, 1.0.30232, , ame, , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\MyCleanID_Popup, Quarantined, 3555, 518959, , , , , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{A4500ACD-78C9-4C6C-9D62-12FCEA9A92A4}, Quarantined, 3555, 518959, , , , , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{A4500ACD-78C9-4C6C-9D62-12FCEA9A92A4}, Quarantined, 3555, 518959, , , , , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\MyCleanID_PopupRenew, Quarantined, 3555, 518959, , , , , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{101B4BED-02C0-443D-8E1F-5B39EA5DBCFA}, Quarantined, 3555, 518959, , , , , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{101B4BED-02C0-443D-8E1F-5B39EA5DBCFA}, Quarantined, 3555, 518959, , , , , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\MyCleanID_PPO, Quarantined, 3555, 518959, , , , , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{56D7824B-CAEB-44E5-B0D7-830E11A38FD7}, Quarantined, 3555, 518959, , , , , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{56D7824B-CAEB-44E5-B0D7-830E11A38FD7}, Quarantined, 3555, 518959, , , , , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\MyCleanID-User_Account_Control, Quarantined, 3555, 518959, , , , , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{78EFE2F8-DCEB-46E4-9465-F617C0FD236F}, Quarantined, 3555, 518959, , , , , , PUP.Optional.MyCleanID, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{78EFE2F8-DCEB-46E4-9465-F617C0FD236F}, Quarantined, 3555, 518959, , , , , , Registry Value: 2 PUP.Optional.MyCleanID, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{964F4651-2C91-4E91-ACC4-3A47A732F6C5}|DISPLAYNAME, Quarantined, 3555, 859069, 1.0.30232, , ame, , , PUP.Optional.MyCleanID, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|MyCleanID, Quarantined, 3555, 518959, , , , , , Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 4 PUP.Optional.MyCleanID, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\MYCLEANID, Quarantined, 3555, 518947, 1.0.30232, , ame, , , PUP.Optional.MyCleanID, C:\PROGRAM FILES (X86)\MYCLEANID, Delete-on-Reboot, 3555, 858936, 1.0.30232, , ame, , , PUP.Optional.MyCleanID, C:\USERS\{username}\APPDATA\LOCAL\MYCLEANID, Delete-on-Reboot, 3555, 858938, 1.0.30232, , ame, , , PUP.Optional.MyCleanID, C:\USERS\{username}\APPDATA\ROAMING\MYCLEANID, Quarantined, 3555, 859062, 1.0.30232, , ame, , , File: 11 PUP.Optional.MyCleanID, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyCleanID\MyCleanID.lnk, Quarantined, 3555, 518947, , , , , 230F2FDBC9824D2DE451850CD2FA2236, D2849A9BB13707A3023B918E95B7F6DD0E91F77E5BC9D4E2AE1053A2683A3774 PUP.Optional.MyCleanID, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyCleanID\Uninstall MyCleanID.lnk, Quarantined, 3555, 518947, , , , , D930DDDB2C1E8CC35A32B2AE7AB3458D, C2DCB073E76CE2BE5265DA611485EC1BC21D5C1A61488228365B20513DD9D216 PUP.Optional.MyCleanID, C:\USERS\PUBLIC\DESKTOP\MYCLEANID.LNK, Quarantined, 3555, 518948, 1.0.30232, , ame, , C0A11BD85F0B4E7798240E3BE88BDF16, 5C58A8BB05EB4DE870358828C82A597F801DAFB2BFD9BD048EAD559605B5F3B7 PUP.Optional.MyCleanID, C:\WINDOWS\SYSTEM32\TASKS\MyCleanID_Popup, Quarantined, 3555, 518959, , , , , 95D4985C790D99D25C8969333C9EBD10, 851564EBFB2BD83E0FAFC3A7FFAE492783CC215010C733229D80479F98EE5D38 PUP.Optional.MyCleanID, C:\WINDOWS\SYSTEM32\TASKS\MyCleanID_PopupRenew, Quarantined, 3555, 518959, , , , , 2D4CE8137C599255EE0E89145F1B47D6, 2F50F724D5930008CB3A4A238B2A9214823FB0CBD07124F9224E8C6501A6876D PUP.Optional.MyCleanID, C:\WINDOWS\SYSTEM32\TASKS\MyCleanID_PPO, Quarantined, 3555, 518959, , , , , D7625B64ADE15355C891C46A6E93E9D0, 0AF59A1892BD2A2653603DA531586ABCF9BAA7687BFEDCBD6F4E0C7FA023F0D3 PUP.Optional.MyCleanID, C:\DOCUMENTS AND SETTINGS\PUBLIC\Desktop\MyCleanID.lnk, Removal Failed, 3555, 518959, , , , , C0A11BD85F0B4E7798240E3BE88BDF16, 5C58A8BB05EB4DE870358828C82A597F801DAFB2BFD9BD048EAD559605B5F3B7 PUP.Optional.MyCleanID, C:\PROGRAM FILES (X86)\MYCLEANID\MYCLEANID.EXE, Delete-on-Reboot, 3555, 518959, 1.0.30232, , ame, , B82E4C37FF9292DD6C3FD46F68371AED, 9715DE365CCDFFA1638D98881FE1EFC313109C1A65DBC6FCF88350D45EE5837C PUP.Optional.MyCleanID, C:\WINDOWS\SYSTEM32\TASKS\MyCleanID-User_Account_Control, Quarantined, 3555, 518959, , , , , 723FCB7B2AA1F16301D0D6FAB29E0EBD, FA13506BC7F607223A09C8A1BB9D6461D4202A2AFF3D44C970632183AD0ECC88 PUP.Optional.MyCleanID, C:\PROGRAM FILES (X86)\MYCLEANID\TASKTOOLS.EXE, Quarantined, 3555, 518959, 1.0.30232, , ame, , A1113D9BBDD6E9327C57AF64D2988961, 21C4C5C5F7BA8C967DE8561DFAA6DEFA6F41E467F861C97B26D6A94BC50E3DC9 PUP.Optional.MyCleanID, C:\USERS\{username}\DESKTOP\MYCLEANIDSETUP.EXE, Quarantined, 3555, 518959, 1.0.30232, , ame, , D1C30B3C0141078C691785BD3C959ACB, A4BE9CE5DFF40CC3F6A9081CF2BF0B43CE7C70F10CDD4AD0FDD55E275B6A8A3F Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) As mentioned before the full version of Malwarebytes could have protected your computer against this threat. We use different ways of protecting your computer(s): Dynamically Blocks Malware Sites & Servers Malware Execution Prevention Save yourself the hassle and get protected.
  2. What is GetMyDrivers? GetMyDrivers is a driver updater that triggers our PUP detection rules. By doing so we offer users a choice to consider whether they want to use this software. More information can be found on our Malwarebytes Labs blog. How do I know if I am affected by GetMyDrivers? This is how the main screen of the system optimizer looks: You will find these icons in your taskbar, your startmenu, and on your desktop: and see these windows during install: and this type of screens during operations: You may see this entry in your list of installed programs: and these tasks in your list of Scheduled Tasks: How did GetMyDrivers get on my computer? These so-called system optimizers use different methods of getting installed. This particular one was downloaded from their website: How do I remove GetMyDrivers? Our program Malwarebytes can detect and remove this PUP. Please download Malwarebytes for Windows to your desktop. Double-click MBSetup.exe and follow the prompts to install the program. When your Malwarebytes for Windows installation completes, the program opens to the Welcome to Malwarebytes screen. Click on the Get started button. Click Scan to start a Threat Scan. When the scan is finished click Quarantine to remove the found threats. Reboot the system if prompted to complete the removal process. Is there anything else I need to do to get rid of GetMyDrivers? No, Malwarebytes removes GetMyDrivers completely. What if I want to keep GetMyDrivers? Should users wish to keep this program and exclude it from being detected in future scans, they can add the program to the exclusions list. Here’s how to do it. Open Malwarebytes for Windows. Click the Detection History Click the Allow List To add an item to the Allow List, click Add. Select the exclusion type Allow a file or folder and use the Select a folder button to select the main folder for the software that you wish to keep. Repeat this for any secondary files or folder(s) that belong to the software. If you want to allow the program to connect to the Internet, for example to fetch updates, also add an exclusion of the type Allow an application to connect to the internet and use the Browse button to select the file you wish to grant access. How would the full version of Malwarebytes help protect me? We hope our application and this guide have helped you in dealing with this system optimizer. As you can see below the full version of Malwarebytes would have warned you against the GetMyDrivers installer. Technical details for experts You may see these entries in FRST logs: (RealDefense LLC -> RealDefense) C:\Program Files (x86)\GetMyDrivers\GetMyDrivers.exe Task: {41FD23FA-82DC-4742-9784-3639BA790B42} - System32\Tasks\GetMyDriversNotifier_startup => C:\Program Files (x86)\GetMyDrivers\GMDNotifier.exe [3102976 2020-03-13] (RealDefense LLC -> RealDefense) Task: {75176096-EF58-4F31-99D5-23A88D79C8E9} - System32\Tasks\GetMyDriversNotifier_trigger => C:\Program Files (x86)\GetMyDrivers\GMDNotifier.exe [3102976 2020-03-13] (RealDefense LLC -> RealDefense) Task: {CF190848-5F5C-4876-BA8A-C209354F9F96} - System32\Tasks\GetMyDriversNotifier => C:\Program Files (x86)\GetMyDrivers\GMDNotifier.exe [3102976 2020-03-13] (RealDefense LLC -> RealDefense) C:\Users\Public\Desktop\GetMyDrivers.lnk C:\ProgramData\Desktop\GetMyDrivers.lnk C:\Windows\system32\Tasks\GetMyDriversNotifier_startup C:\Windows\system32\Tasks\GetMyDriversNotifier_trigger C:\Windows\system32\Tasks\GetMyDriversNotifier C:\Program Files (x86)\GetMyDrivers C:\Users\{username}\AppData\Roaming\RealDefense C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GetMyDrivers C:\Users\{username}\AppData\Roaming\GetMyDrivers GetMyDrivers (HKLM-x32\...\GetMyDrivers_is1) (Version: 1.0.0.34925 - RealDefense LLC) () [File not signed] [File is in use] C:\Program Files (x86)\GetMyDrivers\System.Data.SQLite.dll (CodePlex Community) [File not signed] [File is in use] C:\Program Files (x86)\GetMyDrivers\Microsoft.Win32.TaskScheduler.dll (Thomas Levesque) [File not signed] [File is in use] C:\Program Files (x86)\GetMyDrivers\WpfAnimatedGif.dll Alterations made by the installer: File system details [View: All details] (Selection) --------------------------------------------------- Adds the folder C:\Program Files (x86)\GetMyDrivers Adds the file difxapi.dll"="8/20/2019 3:54 PM, 323464 bytes, A Adds the file eng_gmd_en.ini"="3/11/2020 4:42 PM, 98890 bytes, A Adds the file GetMyDrivers.exe"="3/13/2020 3:16 PM, 7764736 bytes, A Adds the file GetMyDrivers.exe.config"="3/11/2020 4:50 PM, 2758 bytes, A Adds the file GMDNotifier.exe"="3/13/2020 3:16 PM, 3102976 bytes, A Adds the file GMDNotifier_Corruptlog.txt"="8/31/2020 6:29 PM, 0 bytes, A Adds the file GMDNotifier_log.txt"="8/31/2020 6:29 PM, 0 bytes, A Adds the file GMDNotifier_OutOfMemorylog.txt"="8/31/2020 6:29 PM, 0 bytes, A Adds the file Microsoft.Win32.TaskScheduler.dll"="8/20/2019 3:55 PM, 115200 bytes, A Adds the file notifier.ini"="3/12/2020 12:18 PM, 472 bytes, A Adds the file Notifierlib.dll"="3/13/2020 3:16 PM, 413952 bytes, A Adds the file rdu.dll"="3/13/2020 3:16 PM, 1010944 bytes, A Adds the file System.Data.SQLite.dll"="8/20/2019 3:55 PM, 886272 bytes, A Adds the file System.Threading.dll"="8/20/2019 3:55 PM, 387408 bytes, A Adds the file unins000.dat"="8/31/2020 6:27 PM, 95871 bytes, A Adds the file unins000.exe"="8/31/2020 6:27 PM, 1384704 bytes, A Adds the file unins000.msg"="8/31/2020 6:27 PM, 22701 bytes, A Adds the file unrar.dll"="3/13/2020 3:16 PM, 183040 bytes, A Adds the file WpfAnimatedGif.dll"="8/20/2019 3:55 PM, 39936 bytes, A Adds the file WPFToolkit.dll"="8/20/2019 3:55 PM, 467288 bytes, A Adds the folder C:\Program Files (x86)\GetMyDrivers\icons Adds the folder C:\Program Files (x86)\GetMyDrivers\updater\amd64Helper Adds the file DriverUpdateHelper64.exe"="3/13/2020 3:17 PM, 292096 bytes, A Adds the file DriverUpdateHelper64.manifest"="8/20/2019 3:54 PM, 689 bytes, A Adds the folder C:\Program Files (x86)\GetMyDrivers\updater\extract Adds the file 7z.dll"="3/13/2020 3:16 PM, 740608 bytes, A Adds the file 7z.exe"="3/13/2020 3:16 PM, 164608 bytes, A Adds the file copying.txt"="8/20/2019 3:54 PM, 26948 bytes, A Adds the file History.txt"="8/20/2019 3:54 PM, 29037 bytes, A Adds the file license.txt"="8/20/2019 3:54 PM, 2049 bytes, A Adds the file readme.txt"="8/20/2019 3:54 PM, 1616 bytes, A Adds the folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GetMyDrivers Adds the file GetMyDrivers.lnk"="8/31/2020 6:27 PM, 1073 bytes, A Adds the file Uninstall GetMyDrivers.lnk"="8/31/2020 6:27 PM, 1053 bytes, A Adds the folder C:\Users\{username}\AppData\Roaming\GetMyDrivers\InstallerLogs Adds the file StatusLog2020_8_31_18_25.log"="8/31/2020 6:27 PM, 560 bytes, A Adds the file StatusLog2020_8_31_18_27.log"="8/31/2020 6:28 PM, 382 bytes, A Adds the folder C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers Adds the file DriverData.bin"="8/31/2020 6:29 PM, 49696 bytes, A Adds the file DriverDataBackup.bin"="8/31/2020 6:29 PM, 49696 bytes, A Adds the file DriverDataIcs.bin"="8/31/2020 6:29 PM, 616 bytes, A Adds the file freeDriver.ini"="8/31/2020 6:28 PM, 45 bytes, A Adds the file notifier.ini"="8/31/2020 6:28 PM, 393 bytes, A Adds the file Update.ini"="8/31/2020 6:28 PM, 460 bytes, A Adds the file UserUpdates.bin"="8/31/2020 6:29 PM, 2848 bytes, A Adds the folder C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\1.0.0.34925 Adds the folder C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\Backup Adds the folder C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\Download Adds the folder C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\Logs Adds the file Errorlog.txt"="8/31/2020 6:29 PM, 1205 bytes, A Adds the file GetMyDrivers.txt"="8/31/2020 6:29 PM, 10224 bytes, A Adds the folder C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\update In the existing folder C:\Users\Public\Desktop Adds the file GetMyDrivers.lnk"="8/31/2020 6:29 PM, 1867 bytes, A In the existing folder C:\Windows\System32\Tasks Adds the file GetMyDriversNotifier"="8/31/2020 6:28 PM, 3182 bytes, A Adds the file GetMyDriversNotifier_startup"="8/31/2020 6:28 PM, 3224 bytes, A Adds the file GetMyDriversNotifier_trigger"="8/31/2020 6:28 PM, 3198 bytes, A Registry details [View: All details] (Selection) ------------------------------------------------ [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\GetMyDrivers_is1] "DisplayIcon"="REG_SZ", "C:\Program Files (x86)\GetMyDrivers\GetMyDrivers.exe" "DisplayName"="REG_SZ", "GetMyDrivers" "DisplayVersion"="REG_SZ", "1.0.0.34925" "EstimatedSize"="REG_DWORD", 22382 "HelpLink"="REG_SZ", "https://www.getmydrivers.com/" "Inno Setup: App Path"="REG_SZ", "C:\Program Files (x86)\GetMyDrivers" "Inno Setup: Icon Group"="REG_SZ", "GetMyDrivers" "Inno Setup: Language"="REG_SZ", "en" "Inno Setup: Setup Version"="REG_SZ", "5.5.5 (u)" "Inno Setup: User"="REG_SZ", "{username}" "InstallDate"="REG_SZ", "20200831" "InstallLocation"="REG_SZ", "C:\Program Files (x86)\GetMyDrivers\" "MajorVersion"="REG_DWORD", 1 "MinorVersion"="REG_DWORD", 0 "NoModify"="REG_DWORD", 1 "NoRepair"="REG_DWORD", 1 "Publisher"="REG_SZ", "RealDefense LLC" "QuietUninstallString"="REG_SZ", ""C:\Program Files (x86)\GetMyDrivers\unins000.exe" /SILENT" "UninstallString"="REG_SZ", ""C:\Program Files (x86)\GetMyDrivers\unins000.exe" /silent" "URLInfoAbout"="REG_SZ", "https://www.getmydrivers.com/" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\RealDefense\GetMyDrivers] "affiliateid"="REG_SZ", "" "afterInstallUrl"="REG_SZ", "https://www.getmydrivers.com/app/carts/post-install?" "AFTINSTS"="REG_DWORD", 0 "auslnt"="REG_DWORD", 0 "budr"="REG_DWORD", 0 "BuyNowURL"="REG_SZ", "https://www.getmydrivers.com/app/carts/" "CplURL"="REG_SZ", "" "DepOnSPCDock"="REG_DWORD", 0 "escn"="REG_DWORD", 0 "finalparams"="REG_SZ", "" "first_install"="REG_SZ", "20200831" "GA"="REG_DWORD", 1 "InstalledPath"="REG_SZ", "C:\Program Files (x86)\GetMyDrivers" "isado"="REG_DWORD", 1 "IsMSLogoNeeded"="REG_DWORD", 0 "isphone"="REG_SZ", "0" "issilent"="REG_DWORD", 1 "istelnoneeded"="REG_DWORD", 1 "MachineUniqueId"="REG_QWORD, .... "mtdul"="REG_DWORD", 0 "mtpul"="REG_DWORD", 0 "ncic"="REG_DWORD", 0 "nhpmar"="REG_DWORD", 0 "nosd"="REG_DWORD", 654321 "notshowProFeatureListNag"="REG_DWORD", 0 "nrgrs"="REG_DWORD", 0 "nssust"="REG_DWORD", 0 "ntslis"="REG_DWORD", 0 "RenewNowURL"="REG_SZ", "https://www.getmydrivers.com/app/carts/renew" "scn"="REG_DWORD", 1 "sdur"="REG_DWORD", 0 "sen"="REG_DWORD", 1 "send"="REG_DWORD", 0 "setup_type"="REG_SZ", "4" "sndcn"="REG_DWORD", 0 "tbmovtoregtbatactnow"="REG_DWORD", 0 "TELNO"="REG_SZ", "" "thememode"="REG_DWORD", 0 "utm_campaign"="REG_SZ", "default" "utm_days"="REG_SZ", "0" "utm_medium"="REG_SZ", "newbuild" "utm_source"="REG_SZ", "getmydrivers" "x-at"="REG_SZ", "" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\RealDefense\GetMyDrivers\1.0.0.34925] [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\RealDefense\GetMyDrivers\LANG] "LangCode"="REG_SZ", "en" "LangID"="REG_DWORD", 0 [HKEY_CURRENT_USER\Software\RealDefense\GetMyDrivers] "affiliateid"="REG_SZ", "" "afterInstallUrl"="REG_SZ", "https://www.getmydrivers.com/app/carts/post-install?" "AFTINSTS"="REG_DWORD", 0 "aoign"="REG_DWORD", 0 "auslnt"="REG_DWORD", 0 "AutoScan"="REG_DWORD", 0 "budr"="REG_DWORD", 0 "BuyNowURL"="REG_SZ", "https://www.getmydrivers.com/app/carts/" "CplURL"="REG_SZ", "" "DepOnSPCDock"="REG_DWORD", 0 "DeviceIconIDNDriverName"="REG_SZ", "37;Intel(R) PRO/1000 MT Desktop Adapter" "DriverOutdatedCount"="REG_DWORD", 1 "DriverOutdatedNames"="REG_SZ", "Intel(R) PRO/1000 MT Desktop Adapter" "escn"="REG_DWORD", 0 "finalparams"="REG_SZ", "" "FirstInstallDate"="REG_SZ", "31082020 18:28:10" "FreeUpdateKey"="REG_SZ", "8969F-DUZH7-E3P92-B777H" "frmhg"="REG_DWORD", 0 "frmwd"="REG_DWORD", 0 "GA"="REG_DWORD", 1 "InstalledPath"="REG_SZ", "C:\Program Files (x86)\GetMyDrivers" "isado"="REG_DWORD", 1 "IsMSLogoNeeded"="REG_DWORD", 0 "isphone"="REG_SZ", "0" "isScanningRequired"="REG_DWORD", 0 "issilent"="REG_DWORD", 1 "istelnoneeded"="REG_DWORD", 1 "iusm"="REG_DWORD", 1 "launchdelay"="REG_DWORD", 0 "LaunchWithWindows"="REG_DWORD", 0 "lst"="REG_QWORD, .... "macid"="REG_SZ", "375387188553876988" "Manufacturer"="REG_DWORD", 31 "ManufacturerName"="REG_SZ", "Oracle Corporation" "Model"="REG_SZ", "VirtualBox" "mtdul"="REG_DWORD", 0 "mtpul"="REG_DWORD", 0 "ncic"="REG_DWORD", 0 "nhpmar"="REG_DWORD", 0 "nosd"="REG_DWORD", 654321 "notshowProFeatureListNag"="REG_DWORD", 0 "nrgrs"="REG_DWORD", 0 "nScanAreas"="REG_DWORD", -1 "nssust"="REG_DWORD", 0 "ntslis"="REG_DWORD", 0 "OSFriendlyName"="REG_SZ", "Windows 7" "ovwt"="REG_DWORD", 1 "pcrt"="REG_SZ", "637344819523239360" "pcrts"="REG_SZ", "31-08-2020 14:45:52" "ProcessorName"="REG_SZ", "Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz" "RAM"="REG_SZ", "2.00 GB" "recdi"="REG_SZ", "Intel(R) PRO/1000 MT Desktop Adapter - Network adapters - 9/23/2008 - 8.3.15.0" "RenewNowURL"="REG_SZ", "https://www.getmydrivers.com/app/carts/renew" "rwft"="REG_DWORD", 0 "scn"="REG_DWORD", 1 "scrr"="REG_SZ", "1920x975" "scrsd"="REG_SZ", "1" "scrsf"="REG_SZ", "1" "sdur"="REG_DWORD", 0 "sen"="REG_DWORD", 1 "send"="REG_DWORD", 0 "setup_type"="REG_SZ", "4" "slst"="REG_SZ", "8/31/2020 6:29:36 PM" "smb"="REG_DWORD", 0 "sndcn"="REG_DWORD", 0 "sunosub"="REG_DWORD", 0 "tbmovtoregtbatactnow"="REG_DWORD", 0 "TELNO"="REG_SZ", "" "thememode"="REG_DWORD", 0 "TotalDevicesScannedCount"="REG_DWORD", 36 "utm_campaign"="REG_SZ", "default" "utm_days"="REG_SZ", "0" "utm_medium"="REG_SZ", "newbuild" "utm_nagdays"="REG_SZ", "0" "utm_source"="REG_SZ", "getmydrivers" "x-at"="REG_SZ", "" "x-lip"="REG_SZ", "0" [HKEY_CURRENT_USER\Software\RealDefense\GetMyDrivers\1.0.0.34925] [HKEY_CURRENT_USER\Software\RealDefense\GetMyDrivers\LANG] "LangCode"="REG_SZ", "en" "LangID"="REG_DWORD", 0 [HKEY_CURRENT_USER\Software\RealDefense\Notifier] "BaseUID"="REG_SZ", "GetMyDrivers" Malwarebytes log: Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 8/31/20 Scan Time: 6:59 PM Log File: 4d0f480a-ebab-11ea-bc71-00ffdcc6fdfc.json -Software Information- Version: 4.2.0.82 Components Version: 1.0.1025 Update Package Version: 1.0.29265 License: Premium -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: {computername}\{username} -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 231449 Threats Detected: 91 Threats Quarantined: 91 Time Elapsed: 11 min, 42 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 1 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\GetMyDrivers.exe, Quarantined, 1229, 665593, , , , , 720686568F759D96251CFE30402BA663, F9DFA788E08A2D0F7C9DC96AAC95148D80E135E5B09AC7DF748C8625B19D1DF3 Module: 6 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\GetMyDrivers.exe, Quarantined, 1229, 665593, , , , , 720686568F759D96251CFE30402BA663, F9DFA788E08A2D0F7C9DC96AAC95148D80E135E5B09AC7DF748C8625B19D1DF3 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\Microsoft.Win32.TaskScheduler.dll, Quarantined, 1229, 665593, , , , , C757150E058428E2A0757701930C223C, E3D4A237487E2DCD925C84559957473692BF04CD59B5F95748594345A047231E PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\rdu.dll, Quarantined, 1229, 665593, , , , , FA317A600B621C7A1D77DE83BD8C6499, 82E052C42E9C4EE5A1F1C3E87CF07D852116DD1BEEA4C5AB2F88D59E9222FE49 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\System.Data.SQLite.dll, Quarantined, 1229, 665593, , , , , 9892E0D72EEDF3DA1CDCFDAC318D556C, AF7E21907304CCAD550B6CCDB02464CBC163FA0E222EAD0594570E70360212B4 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\unrar.dll, Quarantined, 1229, 665593, , , , , 9A529F653528AAAAA13D26921635B177, 788690C06CD984BA86FE3B212EE2EDCA0FA74E6F84CC4D9E44A59311F7586CF3 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\WpfAnimatedGif.dll, Quarantined, 1229, 665593, , , , , F298A070FD9FB092FA0374439B040D68, CE8EF825FC10E5A3265BD3A4C418E7012ADE1F61BBEB7ED9459C1311E4E6B917 Registry Key: 14 PUP.Optional.GetMyDrivers, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\GetMyDriversNotifier, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CF190848-5F5C-4876-BA8A-C209354F9F96}, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{CF190848-5F5C-4876-BA8A-C209354F9F96}, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\GetMyDriversNotifier_startup, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{41FD23FA-82DC-4742-9784-3639BA790B42}, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{41FD23FA-82DC-4742-9784-3639BA790B42}, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\GetMyDriversNotifier_trigger, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{75176096-EF58-4F31-99D5-23A88D79C8E9}, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{75176096-EF58-4F31-99D5-23A88D79C8E9}, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\GetMyDrivers_is1, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers.TskLnk, HKCU\SOFTWARE\REALDEFENSE\GetMyDrivers, Quarantined, 5185, 665606, 1.0.29265, , ame, , , PUP.Optional.GetMyDrivers.TskLnk, HKLM\SOFTWARE\WOW6432NODE\REALDEFENSE\GetMyDrivers, Quarantined, 5185, 665605, 1.0.29265, , ame, , , PUP.Optional.GetMyDrivers, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\GetMyDrivers_RASAPI32, Quarantined, 1229, 666249, 1.0.29265, , ame, , , PUP.Optional.GetMyDrivers, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\GetMyDrivers_RASMANCS, Quarantined, 1229, 666249, 1.0.29265, , ame, , , Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 13 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\updater\amd64Helper, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\updater\extract, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\updater, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\GetMyDrivers\InstallerLogs, Quarantined, 1229, 665595, , , , , , PUP.Optional.GetMyDrivers, C:\USERS\{username}\APPDATA\ROAMING\GETMYDRIVERS, Quarantined, 1229, 665595, 1.0.29265, , ame, , , PUP.Optional.GetMyDrivers, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\GETMYDRIVERS, Quarantined, 1229, 665597, 1.0.29265, , ame, , , PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\1.0.0.34925, Quarantined, 1229, 665601, , , , , , PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\Download, Quarantined, 1229, 665601, , , , , , PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\Backup, Quarantined, 1229, 665601, , , , , , PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\update, Quarantined, 1229, 665601, , , , , , PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\Logs, Quarantined, 1229, 665601, , , , , , PUP.Optional.GetMyDrivers, C:\USERS\{username}\APPDATA\ROAMING\REALDEFENSE\GETMYDRIVERS, Quarantined, 1229, 665601, 1.0.29265, , ame, , , File: 57 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons\0.ico, Quarantined, 1229, 665593, , , , , 47F20E2C92493B3938E775BFB536B278, AB926A37A2A7F8CCB8F6E61D2017E40946254E415A5384014335E0AD8BA62B2A PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons\1.ico, Quarantined, 1229, 665593, , , , , FA788B51ADFFA1CEF1FDAC4377AB7D95, AC512BD0393F4912187714460C387639C338976A353246CD27B8F51172906D7D PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons\10.ico, Quarantined, 1229, 665593, , , , , E9E680C59C4BAEA9BF9029802EA29C03, F16584FDDFE8CC3749B39F2D871C0896A9B4288E767A8882BC97F5E4BD79EDE4 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons\2.ico, Quarantined, 1229, 665593, , , , , F3CC8F4F10CC17C293DF2AE52653C08D, A7D47D6AC73349BD3A46E9BCD74A2B6A4F75DA491319002F465EFBE54417D0AB PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons\3.ico, Quarantined, 1229, 665593, , , , , BA4176F8E4DD960760AF73FB5689755C, 9F1E47DF0E4510B580C3909A625D412D8A0578BC4291B27C4375B42791BF2697 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons\4.ico, Quarantined, 1229, 665593, , , , , B7ACBE69C21BE45631A021101EB5CE01, 96D5EDAE87A6A9C67C66D143E0BB3EC5B50DB7894C96438BEB793ABDE25FBC77 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons\5.ico, Quarantined, 1229, 665593, , , , , 0F0F92A28121442BE857615B8C8030E1, 9B85356355279EC14072929C347C5CF23B0EE43FE6D4070DD80BD434E8A56CBB PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons\6.ico, Quarantined, 1229, 665593, , , , , 62693AABDEA58147373A0C1ED7F16E0A, F04E7538B563349FEC9862BCE102A88786ABB06892114C2A4522D61F0D9775FF PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons\7.ico, Quarantined, 1229, 665593, , , , , 9338A3234F995EF48CEAE45D7F52CE5D, 2578870C658068161718EC5CEE57B58D08A0E4F85CACC499F757635D11BDA29C PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons\8.ico, Quarantined, 1229, 665593, , , , , 8C7C84094144E2B961474ECAE82B117E, 6EEECFEFD1639E49BA279E47B9F6E7B3407AA789B94DB2DB531CD908E06B25AA PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons\9.ico, Quarantined, 1229, 665593, , , , , 73686605A51EEDC8AA6021BE6AF611C2, 25FAA2B77180E81760AB411B5DF20FC96DD4839B96E8A8B2D0FAA0CD4E94DA17 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\icons\uptodate.ico, Quarantined, 1229, 665593, , , , , 8C0A5391C82B5501A47B3C60B3A921FB, 4F33B7BF85674F0A32E8F0C562F3B42940325D11A3611A44D81CB7D9836A3A4F PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\updater\amd64Helper\DriverUpdateHelper64.exe, Quarantined, 1229, 665593, , , , , 32F290AAB7C8AC8B2F57EBC7CE9A019C, A81657167C956F8F6740F183A78524D8BA67739846E8FFEF1DB636ADBF596471 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\updater\amd64Helper\DriverUpdateHelper64.manifest, Quarantined, 1229, 665593, , , , , 28007BD0D4FF1515DFEE669B8AB248A7, 4E8F1E5BF2B16EBF0678A07FAEB85526AF31E3553BF9F14816E030AB28AC74A9 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\updater\extract\7z.dll, Quarantined, 1229, 665593, , , , , 7C1AEAE042A9A9A5E4A4A5194AABD6F8, 848D16A23B373208C1A33ED5FF98D35D6B995610DC5DE07B7C74BFFB51CEC14C PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\updater\extract\7z.exe, Quarantined, 1229, 665593, , , , , 2FA0A4D41C704C2888447E8CB86B314F, 5F5CD53E1FD8C6AC840E5DF36673AC5B2C1F25635C757F8B7A8BF7CE25220A2A PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\updater\extract\copying.txt, Quarantined, 1229, 665593, , , , , 99F3B5B60D488B7F1A56E14BD13C76FE, 2C3C3EF532828BCD42BB3127349625A25291FF5AE7E6F8D42E0FE9B5BE836A99 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\updater\extract\History.txt, Quarantined, 1229, 665593, , , , , 7E2B3E23DAA35A507F8E5F08E7B504FB, B0FABBBF9D7D7F5FA324D2C78CE7AAE5D2002183ECD796ED08FA29EE5AA30BB6 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\updater\extract\license.txt, Quarantined, 1229, 665593, , , , , 645A3070F7A0AFFFFC6CADCA80ACED43, 4204247B4FED5DEF70D5583D1C1012FB783E1C56621DCD25C0CA226052A5E393 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\updater\extract\readme.txt, Quarantined, 1229, 665593, , , , , 804FE613A156F65D632A4B592011E718, 8DCFCC2D76C91E112D50F55A0C041BB47EC8100CF90864F446B0D7022BBA5FB8 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\eng_gmd_en.ini, Quarantined, 1229, 665593, , , , , 05D19050DC4132B48E55960C64A09139, 09ABEBEC394AABA32F53B3994583F00FC98F09E6E0728D1B48675DA604C1D6BB PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\GetMyDrivers.exe, Quarantined, 1229, 665593, , , , , 720686568F759D96251CFE30402BA663, F9DFA788E08A2D0F7C9DC96AAC95148D80E135E5B09AC7DF748C8625B19D1DF3 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\GetMyDrivers.exe.config, Quarantined, 1229, 665593, , , , , 300AA727F2B17C2C4760FDDFA873473B, 43F79C2E0BF8AA8612E32C1AEBB38ED245C5EAC089155ABEBBA8BBE1FA78871C PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\GMDNotifier.exe, Quarantined, 1229, 665593, , , , , 199A59A4FE313CE284B08D33B43182B1, 3AF5A1F116C442AB631179BAB634A6AE36700788A1B3252EF53CBA81ADC6CB87 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\GMDNotifier_Corruptlog.txt, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\GMDNotifier_log.txt, Quarantined, 1229, 665593, , , , , 2FA007E532971995F699DDF659E455AB, DC7F82FAEE356FB0C09C3A2833D942399F6007B8B082A60B0F557F37D0EC3BD3 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\GMDNotifier_OutOfMemorylog.txt, Quarantined, 1229, 665593, , , , , , PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\Microsoft.Win32.TaskScheduler.dll, Quarantined, 1229, 665593, , , , , C757150E058428E2A0757701930C223C, E3D4A237487E2DCD925C84559957473692BF04CD59B5F95748594345A047231E PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\notifier.ini, Quarantined, 1229, 665593, , , , , 940EAB611D26F9E854FE364CDF3C67BC, C54999C3459CF9F07BDC14DDD5D70C700EA624BA6A158DA70AB2AFEA6B4BD0C9 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\notifier.json, Quarantined, 1229, 665593, , , , , 5BB2ABF5EEC44BDCACB802DAD39EFB43, 1EF5215546C48A0842367402BDF655BCFE9C9130B39A4C08AE0DFB7CFBD61263 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\Notifierlib.dll, Quarantined, 1229, 665593, , , , , 8EF86E6A20CA40E378BD89F1219A5471, 9440CD8FE9BC0FA34E19C6A7F368B6109A2287C165AE21DBF10005621415DDF1 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\rdu.dll, Quarantined, 1229, 665593, , , , , FA317A600B621C7A1D77DE83BD8C6499, 82E052C42E9C4EE5A1F1C3E87CF07D852116DD1BEEA4C5AB2F88D59E9222FE49 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\System.Data.SQLite.dll, Quarantined, 1229, 665593, , , , , 9892E0D72EEDF3DA1CDCFDAC318D556C, AF7E21907304CCAD550B6CCDB02464CBC163FA0E222EAD0594570E70360212B4 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\unins000.dat, Quarantined, 1229, 665593, , , , , 7B5866D8BFC07C5985E3535CB4D7329C, 8F0807D02478CBF65ED8208A3A7287E3CC4BAACB9A24416B00450F717A18FBCB PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\unins000.exe, Quarantined, 1229, 665593, , , , , 704E9C16B5061F5FCBF96C0864D0942E, 9D43A9B7CA39284C05DE8798EF0B2E6CA1ED0728E5BC15E691B6691E920E569D PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\unins000.msg, Quarantined, 1229, 665593, , , , , 5F38274FC51EC35B61E925153E26EF1C, 946195C199C2F798ED0AB3DC8AE4511BE30AD70E5FB994D677BEEE0AE249DEC8 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\unrar.dll, Quarantined, 1229, 665593, , , , , 9A529F653528AAAAA13D26921635B177, 788690C06CD984BA86FE3B212EE2EDCA0FA74E6F84CC4D9E44A59311F7586CF3 PUP.Optional.GetMyDrivers, C:\Program Files (x86)\GetMyDrivers\WpfAnimatedGif.dll, Quarantined, 1229, 665593, , , , , F298A070FD9FB092FA0374439B040D68, CE8EF825FC10E5A3265BD3A4C418E7012ADE1F61BBEB7ED9459C1311E4E6B917 PUP.Optional.GetMyDrivers, C:\DOCUMENTS AND SETTINGS\PUBLIC\Desktop\GetMyDrivers.lnk, Quarantined, 1229, 665593, , , , , D0AD78ECA027E21433433856155D12B5, DA754C9C43B55F1CD4B7219C1BB3BA25CE8F8801ADBB731C747815DF724A92E3 PUP.Optional.GetMyDrivers, C:\USERS\PUBLIC\Desktop\GetMyDrivers.lnk, Quarantined, 1229, 665593, , , , , D0AD78ECA027E21433433856155D12B5, DA754C9C43B55F1CD4B7219C1BB3BA25CE8F8801ADBB731C747815DF724A92E3 PUP.Optional.GetMyDrivers, C:\WINDOWS\SYSTEM32\TASKS\GetMyDriversNotifier, Quarantined, 1229, 665593, , , , , 930F42F8757444D236981E7379D54835, 8D6A0F036605F76487920D23F6B01AB3345846F4AED8AD1F554F6EB987741595 PUP.Optional.GetMyDrivers, C:\WINDOWS\SYSTEM32\TASKS\GetMyDriversNotifier_startup, Quarantined, 1229, 665593, , , , , E0D3CBC04F69E6697817395A2F5CD98A, 14020AC3D2258C48A65877C3CDF367B60C0918E2385714A71AB5EDD364EDA306 PUP.Optional.GetMyDrivers, C:\WINDOWS\SYSTEM32\TASKS\GetMyDriversNotifier_trigger, Quarantined, 1229, 665593, , , , , 45667EFBAE1B054A59D08B13DAE45068, E1F2B30D5CC922D569E71001E4C321B44F2530A4EE69C4F6DD2BBB0D076D5B77 PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\GetMyDrivers\InstallerLogs\StatusLog2020_8_31_18_25.log, Quarantined, 1229, 665595, , , , , 8A877A5B30E1A489F4FE9B9A53792D9E, 388E76855E7A739FAB0D5365B6A11DD1C564D52E61659AF3E6DE1EDDE8E12600 PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\GetMyDrivers\InstallerLogs\StatusLog2020_8_31_18_27.log, Quarantined, 1229, 665595, , , , , EF7D068FA36F2113B86167B42F2F9474, 81C11FF9949E3F4E4D820930ABB656BC7EC1C657E6DAED1A563E1B8FAE83DB95 PUP.Optional.GetMyDrivers, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GetMyDrivers\GetMyDrivers.lnk, Quarantined, 1229, 665597, , , , , 060F6913E949158956D47DEF3F8BA2B1, 9017809EA5A6CCB260D0B02B0D89E96B58D7C84AC05CF71F135342B6014A3C5D PUP.Optional.GetMyDrivers, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GetMyDrivers\Uninstall GetMyDrivers.lnk, Quarantined, 1229, 665597, , , , , DABAABBA897C4E7FFF99A596FEA3D9D8, 61288CB0AD0E3DC36D46DFD41996BFA52094992CBAFA917731BB32B1537D90B7 PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\Logs\Errorlog.txt, Quarantined, 1229, 665601, , , , , AEBEFA2EC60277744D95EA6A83BC8227, 38E4855F5FF709B98DA63940C52BA8B01E3C17F62802D74BE14D469A6F3CD6A0 PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\Logs\GetMyDrivers.txt, Quarantined, 1229, 665601, , , , , 9F7EDEC537EBB5C035F83370A42DEF9D, 6840A1BF07D7806D031B9DB08723C3BE859D484FDD29FCE5C16D77A1B82ED41A PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\DriverData.bin, Quarantined, 1229, 665601, , , , , C1FA27CB04E0F4057726523B372F9428, 7D82BC51B5C78E067D1AB80C7909E5E1C74855F5772791ABE63D22D6F318409E PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\DriverDataBackup.bin, Quarantined, 1229, 665601, , , , , C1FA27CB04E0F4057726523B372F9428, 7D82BC51B5C78E067D1AB80C7909E5E1C74855F5772791ABE63D22D6F318409E PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\DriverDataIcs.bin, Quarantined, 1229, 665601, , , , , 51E15AEFC3AF967E72958DE9363ECEEB, A3848CBD9556A8D37C53319E4F842BBFBB43AAA70E6946EEEFC5B0C761009A77 PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\freeDriver.ini, Quarantined, 1229, 665601, , , , , 3985D4A6B9B138559ABB941E437BE3AE, 053CA74542D36C2D41BF1875A5B86304ABA12D745EC381A3C7A01C98EDDD547A PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\notifier.ini, Quarantined, 1229, 665601, , , , , E43BD3EF82CE69A6760B0265E59AB70E, 0740E2C689CC021A44CF052F7CDA05B081F6A2DE5B07AD10AE942F690CD2966D PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\Update.ini, Quarantined, 1229, 665601, , , , , 95995F9C44B713BAE60B6D2469AAF58E, 58F901E8F531DBF9305C6BF17AC96ADDCCF5778E6491612A57C5FE0C9B5BB3E0 PUP.Optional.GetMyDrivers, C:\Users\{username}\AppData\Roaming\RealDefense\GetMyDrivers\UserUpdates.bin, Quarantined, 1229, 665601, , , , , 1738D39ADA91366F8E453407B55EF3BF, A32F14CDEBA85CC64FBE15C7F30B9BFB6EF1B058169FD685FC1BEC513DE60C1E PUP.Optional.GetMyDrivers, C:\USERS\{username}\DESKTOP\GETMYDRIVERSSETUP.EXE, Quarantined, 1229, 666250, 1.0.29265, , ame, , 0F21221A5AFDA17F43E950ADAB3A6D29, 882718338DBF9B5FF66470F00D767217FD1F0B3CDB4EBD714FE3435A8705C6A7 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) As mentioned before the full version of Malwarebytes could have protected your computer against this threat. We use different ways of protecting your computer(s): Dynamically Blocks Malware Sites & Servers Malware Execution Prevention Save yourself the hassle and get protected.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.