Bitdefender Adware Removal Tool for PC – BETA

[A Guy]

Bitdefender Adware Removal Tool for PC – BETA

Bitdefender Adware Removal Tool for PC – BETA

Test the new Bitdefender Adware Removal Tool for PC – Beta!

Bitdefender Adware Removal Tool for PC is a free app that identifies and removes unwanted apps such as adware, malicious hijacker programs, annoying toolbars and other browser add-ons. Keep the apps you like, get rid of the programs that bug you. The tool will only erase those apps that you wish to be removed. It scans your computer for adware, and produces a list of apps marked for removal.

Adware Remover | Bitdefender Labs

I D/L and ran it. I can't say how good it is as it found nothing as expected. It's fast, and Bitdefender has a good reputation. Probably not much use if you have adware protection. Worth a spin just to see. A Guy

 

[Gornot]

I tried Bitdefender's free AV once; the only problem is that as soon as it detects something, it's gone. Even if its a false positive, or something like a modified dll it's just gone and Windows gets screwed up in some cases. If I had an option for whitelisting some modified dlls I'd love to use BitDefender.

So it's good to see we get some choice in the matter with this app. Might give it a spin.

 

[Callender]

BitDefender Adware Removal Tool

I ran BitDefender Adware Removal Tool (Beta) too. It ran without issues but didn't detect anything. Personally I'll use anything that might pick up infections that were missed by other scanners!

Currently running my first scan with:

9-Lab Removal Tool Beta - not recommended for novice users.

This might be another one to keep an eye on.

Edit: Scan completed and 9-Lab Removal Tool seems to suffer from an unusually high number of false positive detections! Maybe they'll get things sorted eventually.

 

[Callender]

False positive detections

Okay - it seems to be flagging up anything with 1-5 detections on VirusTotal - usually little known or used files that get a clean bill of health from the major AV's.

Example detection:

9-Lab:



SigCheck:



VirusTotal:

 

[Jacee]

Malwarebytes' will most likely find "wwdc.exe" to be an infection too.

 

[Tookeri]

Malwarebytes doesn't flag it, at least not on Virustotal. But as you probably already know AV settings on Virustotal can be different from local settings with the same product (from Virustotal FAQ):

A given antivirus in VirusTotal detects a file and its equivalent commercial version does not

VirusTotal antivirus solutions sometimes are not exactly the same as the public commercial versions. Very often, antivirus companies parametrize their engines specifically for VirusTotal (stronger heuristics, cloud interaction, inclusion of beta signatures, etc.). Therefore, sometimes the antivirus solution in VirusTotal will not behave exactly the same as the equivalent public commercial version of the given product.

It can be a good idea to also check the VT tab "Additional information" and scroll down to Advanced heuristic and reputation engines.

 

[Callender]

MBAM Detection

MBAM reports a clean machine.

So does SAS, CIS, Emsisoft Emergency Kit, Trend Micro Anti-Threat Toolkit (ATTK)

9-Lab reports the following (all clean according to MBAM)

9-lab Removal Tool 1.0.0.25 BETA
9-lab.com

Database version: 89.26159

Windows 7 Service Pack 1 (Version 6.1, Build 7601, 64-bit Edition)
Internet Explorer 9.11.9600.17420

21/11/2014 18:37:10
9lab-log-2014-11-21 (18-37-10).txt

Scan type: 
Objects scanned: 14747
Time Elapsed: 29 m 21 s

Files detected: 12

Malware.MPL.Gen.sm [c:\users\chris\appdata\roaming\SwiftSearch.exe]
Malware.Win32.Gen.3CBD.sm!ff [C:\Users\Chris\Desktop\exewatch.exe]
Malware.Win32.Gen.DA5A.sm!ff [C:\Users\Chris\Desktop\Toolbox\Close To Quit\CloseToQuit.exe]
Malware.Win32.Gen.bot [C:\Users\Chris\Desktop\Toolbox\Driver Signature Override\dseo13b.exe]
Rootkit.Win64.Gen.rc!i [C:\Users\Chris\Desktop\Toolbox\explorer++_1.3.4_x64\Explorer++_original.exe]
Rootkit.Win32.Gen.bot!i [C:\Users\Chris\Desktop\Toolbox\prefetch_parser\parse_prefetch_info_v1.5\parse_prefetch_info.exe]
Rootkit.Win32.Gen.bot!s2 [C:\Users\Chris\Desktop\Toolbox\Windows Worms Doors Cleaner\wwdc.exe]
Mal/Fraud!se-757 [C:\Users\Chris\Desktop\Toolbox\WinHex\setup.exe]
Malware.Win32.Gen.sm!s5 [C:\Users\Chris\Desktop\Toolbox 2\Bat_To_Exe_Converter\Windows (32 bit)\Bat_To_Exe_Converter.exe]
Malware.Win32.Gen.3CBD.sm!ff [C:\Users\Chris\Desktop\Toolbox 2\CtrlMouseWheelZoom\CtrlMouseWheelZoom.exe]
Malware.Win32.Gen.sm!s2 [C:\Users\Chris\Desktop\Toolbox 2\DDS\dds.com]
Malware.Win32.Gen.sm!s1 [C:\Users\Chris\Desktop\Toolbox 2\eicfg_removal_utility\eicfg_remover.exe]

So it's detecting some well known software including:

DDS
eicfg_removal_utility
explorer++

None of these have ever been flagged up by the extensive list of other scanners that I've run!