Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: AdwCleaner bad VirusTotal result 4/55

01 Sep 2014   #1
bawldiggle

XP/7x32 & x64/8x64/8.1x64
 
 
AdwCleaner bad VirusTotal result 4/55

AdwCleaner has been recommended from several quarters.

I have downloaded "adwcleaner_3.308.exe" from the author ...
https://toolslib.net/downloads/viewd.../1-adwcleaner/

But scans by VirusTotal and Metascan return negative results

VirusTotal
- fresh scan 31-Aug-2014
https://www.virustotal.com/en/file/f...80b1/analysis/
- found FOUR threats
- 55 scan engines
1. CMC | Trojan.Win32.Generic!O
2. Cyren | W32/GenBl.9DED4724!Olympus
3. Kingsoft | VIRUS_UNKNOWN
4. Symantec | Trojan.Gen.SMH

Metascan
- historical scan 28-Aug-2014
https://www.metascan-online.com/en/s...22572979e4b875
- found ONE threat
- 40 scan engines
1. Filseclab | Trojan.Pirminay.aakt.xzed

I find it so frustrating to find a recommendation (even on sevenforums.com) only to be confronted with added crapware.

What gets me going is AdwCleaner is full of the crap that it boasts about detecting and removing

OpenCandy is not alone as sneakware. Babylon(fs) does not like being uninstalled.

Any ideas where I might find a clean adware detector and removal tool. Malwarebytes does not view "OpenCandy" as malware.

Thank you


My System SpecsSystem Spec
.
01 Sep 2014   #2
DavidE

Multi-Boot W7_Pro_x64 W8.1_Pro_x64 W10_Pro_x64
 
 

Quote   Quote: Originally Posted by GrayGhost2 View Post
Malwarebytes does not view "OpenCandy" as malware.
For me Malwarebytes (Ver 2) does detect and quarantine "OpenCandy".
In Settings / Detection and Protection, set PUP protection to "Treat detections as malware".
My System SpecsSystem Spec
01 Sep 2014   #3
MoxieMomma

OEM Windows 7 Ult (x64) SP1
 
 

Hi:

To add to DavidW7ncus's excellent advice about MBAM...

I suspect that the problem is not with AdwCleaner, but with the AV vendors who for many reasons (marketing/financial/etc) choose not to recognize many legitimate malware-removal tools from other sources. Essentially, the detection at VT would be considered a "False Positive".

AdwCleaner is used thousands of times a day at many computer disinfection forums.
And it is hosted at bleepingcomputer.com, which AFAIK, only hosts downloads that are "malware-free":
AdwCleaner Download

It sounds to me as if you might already be infected -- at least with PUPs/adware/junkware?
You might want to get some free, expert cleanup help, either here or at another computer disinfection forum?

<just a thought>

Cheers,
My System SpecsSystem Spec
.

01 Sep 2014   #4
Tookeri

Windows 7 Pro 32
 
 

A tip: Always check on herdProtect too because they say they're good at detecting false positives!

Clean 0/68
A number of engines detected this file but were erroneous detections (false positives).
Malware scan of adwcleaner_3.308.exe 2b9afd04d0325d2cbaa3e3bf16a59b63e2ee35e1 - herdProtect
My System SpecsSystem Spec
01 Sep 2014   #5
DonnaB

Win7 64-bit, Vista 32-bit, XP 32-bit, W2K 32-bit (VM)
 
 

@ GrayGhost2,

I just downloaded AdwCleaner from here, both BC's and the authors site and both files offered were executables that downloaded straight to my desktop. You do not have to go through the install process which is where most of your crapware comes from during installation.

AdwCleaner is a "portable software", and some AV software may detect malware removal tools.

There is no crapware included in the executable downloads. Those are false positives and the AV databases need to be updated to prevent this.
My System SpecsSystem Spec
01 Sep 2014   #6
mjf

Windows 7x64 Home Premium SP1
 
 

The site
AdwCleaner Download
(CAUTION)
has been given as a download site previously.
and Norton quarantines it reporting Trojan "Trojan.Gen.SMH"

so I'd agree with GrayGhost2 and don't think it should be recommended at this stage.
My System SpecsSystem Spec
01 Sep 2014   #7
derekimo

Microsoft Community Contributor Award Recipient

 
 

Quote   Quote: Originally Posted by mjf View Post
The site
AdwCleaner Download
(CAUTION)
has been given as a download site previously.
and Norton quarantines it reporting Trojan "Trojan.Gen.SMH"

so I'd agree with GrayGhost2 and don't think it should be recommended at this stage.
I doubt bleepingcomputer has any malicious content, it is a security based site.

I think we are dealing with a false positive, probably based on what it takes for Adwcleaner to do it's job.

Here's Norton's view on the site itself,

https://safeweb.norton.com/report/sh...omputer.com%2F
My System SpecsSystem Spec
01 Sep 2014   #8
mjf

Windows 7x64 Home Premium SP1
 
 

Yes Norton does consider the site secure. I could imagine it is possible to be false positives (by a number of anti virus software). Still, there is a dilemma in deciding to use it given that it is just an additional safety check.
Check a risk with a risk?
My System SpecsSystem Spec
01 Sep 2014   #9
Layback Bear

Windows 7 Pro. 64/SP-1
 
 

It not a dilemma to me.

I use the Bleeping Computer site because I trust them.

I just downloaded it and scanned it with Malwarebytes, Super Anti Spyware, and Microsoft Security Essentials.
No problems found.

I do not use the authors site.
I can't read that site and the last time I ended up with a bunch of trash.

I have used Eset online scanner several times in the past when AdwCleaner was installed and it never flagged it.

Like many sites have reported about fake anti virus, and Malwarebytes programs their is a good chance that their are fake AdwCleaner also.

Seem like when a product works and becomes popular someone makes a fake.
My System SpecsSystem Spec
01 Sep 2014   #10
derekimo

Microsoft Community Contributor Award Recipient

 
 

Here is the authors site,

https://toolslib.net/downloads/viewd.../1-adwcleaner/

Interesting to note, the last commenter says the same thing you did about Norton flagging it.

I just tried to report this to Norton as a possible false positive but they want something from a log or clipboard and I don't have Norton.

Would you mind submitting it Michael?

https://submit.symantec.com/false_positive/standard/
My System SpecsSystem Spec
Reply

 AdwCleaner bad VirusTotal result 4/55




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
AdwCleaner
Hello Just ran Adw 1st time in long time, does anyone know where to look to see what these items are so I know what will be removed.I try to Google but when I enter the string it just comes up with everyones log file. Don't want to delete anything that says Microsoft in the string. Thanks
System Security
VirusTotal getting annoying cause of FPs
I use sigcheck from Sysinternals to once a month or so check all executable images in system32\drivers and system32 on VirusTotal. Usually there's only a few false positives, mostly from AegisLab and sometimes from ByteHero. I don't know these two engines but from what I've seen so far, I'm not...
System Security
How to use AdWCleaner?
Can someone explain to me whats the proper way to use this? When i click scan, all i see is waiting and pending for a very long time and it doesn't seem to do anythings. Its on the services tab. Am i suppose to click on each tab such as services, folders, files and all the other ones and do it...
System Security
adwcleaner
When I download and install the adwcleaner it doesn't read as english, it reads in Turkish. Therer is no option for english. What do I do?
Software
VirusTotal Uploader
VirusTotal Uploader VirusTotal Uploader (VTup) adds an Explorer context menu that allows you to right click on a file detected as suspicious by any malware scanner or Anti-Virus (AV) application and send it to VirusTotal (VT) for further analysis. . 1. Read the VTup online documentation. ...
Tutorials
Question about adwcleaner
So i just finished using adwcleaner to clear out all the registry keys and what not, so my question is, is it safe to uninstall it? It says the quarantine will empty does that mean it will delete everything and uninstall adwcleaner, or should i keep adwcleaner on my computer? Also my avg popped up...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 05:41.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App