Malwarebytes gets tougher on PUPs

Marcin: Good post, but I am wondering – during your long walks on beaches, how do you avoid the fish?

It’s complicated.

To me this is where Malwarebytes exceeds (in pup detection) keep up the good work!!!

the difference between malware and PUPs from a legal standpoint is that the person installing has an option to not install the program, even if that option is obfuscated or hidden within a “custom installation” menu.

And this has nothing to do with the lawsuit Spyhunter made against Malwarebytes? ……I’m getting sick of Malwarebytes digging to deep. They could have easily made an exception but they haven’t so I think I’ll uninstall Malwarebytes. I’d been thinking about it for a while now anyway.

I have been waiting for Malwarebytes for many weeks now to do something about it.

The “auto update” called WINDOWS 10 was a PUP to my little notebook that essentially couldn’t handle 10 and went berserk. It cost me $125 to undo the damage that Microsoft did to my notebook.

This should be dealt with in a class action lawsuit for damages. I’m sure I’m not the only victim. I have since stopped all auto updates on both computers and the notebook.

You might try a scan with malwarebytes when booted in safe mode.
Make sure after scan the file is marked for deletion / quarentine.
Doing this in safe mode might prevent the malwares capability of reinjecting itself.

If that doesn’t help there are other programs within Malwarebytes to deal with more nefarious infections. You might get assistance on the Malwarebytes forum for desinfection.

the same with me. i have ASC 10 pro, and malwarebytes finds it as pups, i added to exclude it but malwarebytes still finds it..why is asc considered pups..anyone know?

You’ve gotten way too aggressive because Malwarebytes 3.0.6 keeps identifying Uniblue’s Registry Booster 2017 as a PUP and even though I tell Malwarebytes to “Always ignore” the program, it does not ignore it and it somehow uninstalls it from our computers — and we have to keep reinstalling it. We’ve been using Registry Booster for at least 7 years and it is a legitimate program — Malwarebyte’s treatment of it is puzzling and unwarranted. Malwarebytes is also incorrectly identifying Iolo’s System Mechanic and IoBit’s Driver Booster as PUPs, which they most definitely are not. At least the “Always ignore” worked for them.

Hi Stu. There’s a big difference between malware and PUPs. You definitely do NOT want malware, but PUP stands for Potentially Unwanted Programs.

I agree 100%. My ASC 10.2 was working perfectly one day, and the next was listed as over 900 PUPs. When I tried contacting MB I was simply told if I wanted I could have my money back for MalwareBytes if I wanted… That is corporate hostage taking… I have TWO programs I have paid money for, I like them both, but now because YOU decided it was a PUP you are making ME make a choice? If one of your kids was born autistic would you just ask the doctor for your money back? They did not explain their reasoning, just basically said take it or leave it. As soon as I can find an alternative I think I will switch..

Perhaps, in the quest to pump up your statistics, your war on Advanced System Care is an ill advised and counterproductive use of your programmer’s talents. If you can’t play nice with well established reliable products, maybe we will just have to scrap your product and use one, of which there are others, that doesn’t try to sabotage other vendors in the marketplace.

About time we got more aggressive with them.

Kudos!

been there done the uninstall, waiting for T shirt.

i think malwarebytes still can not forgive what iObit done to them at 2009

What is the difference in behavior between Advanced System Care and CCleaner? Both are PC optimization software, but ASC is classified as PUP while CCleaner is not.

This is from PC Advisor three years ago. I don’t know Advanced System Care and have never used it and don’t know how it is today. Maybe it’s the reason Malwarebytes mark it as PUP.

“Warning; if you download IObit’s Advanced System Care you are very
likely to download with it the Yahoo Re-direct Rootkit virus. There is
no indication and it’s downloaded whether you download from CNet or
IObit. The virus takes over all your browsers and redirects them to
Yahoo. All the browser resetting in the world will not get your browsers
away from Yahoo. It’s very difficult to eradicate. None of the
anti-virus products work. Norton Internet Security missed it and
Malwarebytes, Hitman, Stinger & Spybot didn’t get rid of it. If you
have a System Restore prior to downloading, that might work. It did once
for me. The only other way I eradicated it was to use disc imaging
software and to re-install an earlier image of the disc. For me, I shall
never go anywhere near ASC ever again.”

Like many others here … I do not appreciate you deciding that ASC (Adv System Care PRO) is a PUP. I do not agree that a competitor product should be flagged and NOT an easy way to 1 time PERMANENTLY remove it from your list as a user. I have written about this numerous times over the past year and I have read your response and how you close the subject – time after time.

An inexperienced novice would believe their machine is infected with 883 (as reported) PUPs when all are ONE PROGRAM – a paid program named Advance System Care. Then you expect them to know to PRESS next (without selecting any of the alleged PUPs) to see a menu allowing complete ignorance of ASC, in the reported list of PUPS.

THIS IS, in my personal opinion, A SERIOUS breach of etiquette and showmanship on your part – to decide what is best for the user of your program without LETTING the customer decide if a PAID program is usable by them (on top of it partially a competitor) and that you automatically flag it MULTIPLE TIMES as a PUP.

You need to correct this problem ….

I have called and left emails requesting my money be refunded for your program with I purchased and still have approximately 700 days before renewal on several computers.

I have received nothing back in the form of communication. OTHER than your referencing myself and others to your PUP site on the issue.

THIS IS A SPECIFIC ISSUE FOR ADVANCED SYSTEM CARE ONLY.

I have used your product of years. I have recommended your programs to hundreds of people over the years. But with your current attitude toward ASC, I am left with no other avenue except to ask for a refund and I will remove your program from all of my computers NOW and forever.

It is a shame that you consider ASC such a threat (especially a paid PRO version of ASC) that you have to scare others into thinking that it is a danger.

Oh and don’t give me the line that Microsoft doesn’t like it (ASC) either. I am an MS professional partner and have been since certifications began years ago. I have advised MS on many database issues and even sat on advisory boards for them.

I have no intention of getting into a ‘theoretical’ argument with others about the PUP status of ASC – simply how does ASC become a PUP – SPECIFICALLY, why is Advance System Care a Potentially Unwanted Program – not generalities. SPECIFICALLY … other than possibly partially a competitor product.

Yep

So, how can we confirm that it has PUPs? I don’t see anything bad from the program and its findings.

My experience has been quite different. After a series of rapid fire “updates” to Iobit’s Malware Fighter and Advanced Systemcare, my old XP started misbehaving. I looked up the symptoms and found others who had experienced the same thing. Several pointed fingers at Iobit, a Chinese software company. I already have Norton 360 and it does many of the same things ASC and MWF do and it’s a paid for subscription through my ISP. So I decided to cut a bunch of duplication of service programs to see if the old girl would run more smoothly.

And before anyone starts, no I’m not ready anytime soon to trash a couple of thousand dollars worth of software that won’t run on Windows 7,8, and10 and beyond. I can’t afford it. My business depends on it and until I can buy a machine with enough juice to run a dual boot option, I’m sticking with XP.

SO: I remove the two Iobit programs and I promptly have a boot failure. I reinstall the boot.ini file, get it running and find that Norton anti-virus protection won’t run and nor will several of Norton’s other useful programs. I reboot and get a second boot failure. This has happened three times. Virtually all my other malware/virus/adware scanners have failed for one reason or another. I get corrupt memory references and system file errors out the ying yang when I’ve tried to uninstall and reinstall Norton 360 or access other troubleshooting software. MWB did work for me and found several PUPs so far including one from ASC and three that were toolbar utilities that Iobit apparently missed.

I was going to give Glary Utilities a run at my registry, but I’m almost afraid to. If the Chinese wanted to mess with us, ASC would certainly be one way to do it. That thing’s everywhere on American computers. I’m not a paranoid person, but something’s hinky with my baby and it all started when I tried to remove Iobit’s ASC and MWF. I’m afraid now to try and remove it from my laptop.

I don’t know what I could install on my computer that would protect me during the removal of the unnecessary “protection” programs that have accumulated over time. Sounds like a “protection” racket to me.

Thanks MWB for your help. Once I get rid of all this nonsense, I hope I can rebuild my computer so it works right without losing too much stuff along the way.

Also the vehemence with which some of these posters defend ASC seems a little over the top. As one poster from another thread pointed out, “Methinks they do protest too much.”

Scan the files or folders that list the PUPs with Malwarebytes, I also scan with My AV and Superantispyware.. All of those folders with those PUPs came up clean. If there was malware there, other programs would detect it. I cannot and do not use the JRT [Junkware Removal Tool] anymore because it does not allow me to uncheck files or folders that are programs I want to keep. PUPs are potentially unwanted programs. Scan the folders for malware. It may be a PUP that you did not want installed. If you installed it, uncheck and keep it. If it shows up as containing malware, remove it or quarantine it!

I still use ASC, but I removed Iobit MWF years ago because it caused a driver conflict. I had no problems uninstalling. Look it up online, how to remove. Simply using the built in uninstaller rarely removes traces. I use Revo Uninstaller free, and use the most advanced, highest level scan when removing. Sometimes there are other steps that need to be taken to fully remove. Some programs get very wrapped in your registry. So some programs have special instructions to remove or uninstall online at IT tech sites like Tom’s Hardwarw, Tech Republic, CNET, and others. I search all of them and am looking for similar uninstall instructions across several different sites. . . .

I use ASC Pro and CCLeaner Free. CCLeaner free is a cleaner of registry and junk files. It does not optimize. ASC free optimizes and Iobit ASC Pro optimizes even more. . . .

It seems like this has been going on for so much longer than 5 or 6 months. . . .

I gave up and deleted IOBit Advanced SystemCare for now, but I may try Malwarebytes exclusions.

Regarding SpyHunter. I have been building, diagnosing and performing advanced cleaning on PCs for years, Spyhunter is a great peace of software and has done more for me than malware bytes any time. It does not come bundled with junk and regularly has definition updates. Its also LEGIT. Malwarebytes flags a lot of legit software…makes me wonder why? Malwarebytes find the least amount of problems out of all the software programs I have used. Its never been kept in my “tool kit”

Hi Doriano, you can get help here: https://forums.malwarebytes.com/forum/187-malwarebytes-adwcleaner/