Hi
I have downloaded a newer version of adwcleaner 4.113, still it cannot detect and remove the infected Babylon registry keys...
secman.DLL\
HKLM\SOFTWARE\Classes\AppID\
secman.OutlookSecurityManager.1\
HKLM\SOFTWARE\Classes\
secman.OutlookSecurityManager\
HKLM\SOFTWARE\Classes\
secman.DLL\
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}]
"DllName"="BabylonToolbar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}]
"DllName"="BabylonToolbar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}]
"DllName"="BabylonToolbarTlbr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}]
"DllName"="BabylonToolbar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}]
"DllName"="BabylonToolbar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}]
"DllName"="BabylonToolbarTlbr.dll"
Download the latest version 4.113... still cannot remove the infected registry keys below....
secman.DLL\
HKLM\SOFTWARE\Classes\AppID\
secman.OutlookSecurityManager.1\
HKLM\SOFTWARE\Classes\
secman.OutlookSecurityManager\
HKLM\SOFTWARE\Classes\
secman.DLL\
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\
Dear Xplode!
I LOVE AdwCleaner it helps me a lot! I love that it first kills almost all processes in order to do a good job after. In older versions it terminated the TeamViewer applications process too but I noticed that now it trusts TV so it leavs it alone. This is great! As I understand there is a "whitelist" for apps that won't be terminated before a clean? If so I would like to propose a new addition to this list: Ammyy. Ammyy is just like TV: a legit remote admin app. It has a free version also I think a lot of people use it. Sometimes I user it instead of TV but now I can't run Adw through it because then I "close my self out" of the computer: without "local" user interaction I won't be able to get back in the computer after I click ADW Clean. Their website: http://www.ammyy.com/en/
What do you think? Thanks for your answer in advance and KEEP UP THE GOOD WORK! Thank you in the name of all the users of ADW!
Bonjour malgré la derniere version d'AdwCleaner il y a toujours 3 faux positifs concerant 3 logiciels sain.
Il s'agit de LastPass (je n ai pas de rapport car un ami m a dit qu il y avait faux positifs.
Concernant les 2 autres il s'agit d'IDM http://www.internetdownloadmanager.com/download.html
Clé Trouvée : HKLM\SOFTWARE\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Clé Trouvée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Clé Trouvée : [x64] HKLM\SOFTWARE\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}
et de la nouvelle version 15 de Driver Genius http://www.driver-soft.com/
Dossier Trouvé : C:\Program Files (x86)\driver-soft
Dossier Trouvé : C:\ProgramData\drivergenius
Dossier Trouvé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\driver genius
Fichier Trouvé : C:\Users\m\Desktop\Driver Genius.lnk
***** [ Tâches planifiées ] *****
***** [ Raccourcis ] *****
***** [ Registre ] *****
Clé Trouvée : HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
Clé Trouvée : HKLM\SOFTWARE\Driver-Soft
Clé Trouvée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Driver Genius_is1
it works great for me. i never have any issues. the best part is free software. thank for the amazing job. if it was worth $30 I would pay for it. is there a paypal account to do donations?
@Me1: I haven't used YTD Video Downloader in years, so I can't say anything about that. If I remember correctly Hotspot Shield had at least one banner that appeared when the user had the software running and disappeared when the user closed the software. What I meant is that it could be the bundleware / adware part of the installers and the banner ad in Hotspot Shield that is triggering the heuristic in AdwCleaner. I agree with you though, these softwares should be whitelisted.
@anonsubmitter, yes you are right. But, most free software downloaded on the Web come bundled up with useless crapware anyway. The YTD downloader box, if you don't want the app, can easily be unchecked while installing your main program. Unckeck all boxes for programs unrelated to the main program. If you need YTD or Hotspot Shield, they have a website where you can get them. No need to be bundled up to anything. They are already very popular. They both can be uninstalled very easily from Programs & Features, so they should not be removed by AdwCleaner. Removing Hotspot Shield this way messes up the Internet connection.
For those who don't usually pay attention while installing software, a program like Unchecky could be very useful. That way, you won't be flooding the malware removal forums all over the Web.
http://unchecky.com/
Just downloaded to update my version, but can't run it because Norton antivirus detects a thread and deletes it immediately. The threat is identified as 'Suspicious.Cloud.7.EP'.
Not sure if this is a false positive, but don't want to take a chance on it. Please verify the software, clean it if necessary and update the download link (or post a note). Txs.
@Me1: I have read that YTD YouTube Downloader's installer is nowadays bundled with adware, so that might be the reason. If that's the case that detection would be weird since JDownloader has the same features + a lot of other features, its installer is bundled with adware as well (at least three different kinds) and it isn't falsely detected.
If I remember correctly Hotspot Shield was bundled with adware as well back when I used it years ago.
I find many legitimate items flagged by AdwCleaner. Blindly clicking on Clean (now Cleaning???) is asking for trouble.
Hola, Hotspot Shield, YTD YouTube Downloader, AVG LinkScanner, etc. are not adware. They should not be deleted by AdwCleaner.