Search: Advanced search
Browse by category:
Scammers Are Using a Fake Version of AdwCleaner to Trick People
The latest trend in the awful Windows ecosystem is pretty ridiculous ó scammers have a fake version of the reputable AdwCleaner tool, which is a real tool for Windows experts. And this one pretends your computer is infected and tries to make you pay them to remove it.
AdwCleaner is indeed a real freeware tool, with a good reputation for removing spyware and adware. Itís not as well known as MalwareBytes because itís not all that user friendly, since it is meant for Windows experts rather than regular users. And the scammers have tried to mimic the interface, stealing the logo, and even ripping out the icon (badly) for their fake version.
Fake AdwCleaner is Being Distributed Through Adware Infections
The ironic thing is that this is getting on peopleís PCs that are already infected with adware or spyware of some type, which then keep popping up windows to a page that looks like this oneÖ which tells you that adware is detected. Which is surprisingly accurate, although the fake app isnít going to remove that adware.
Malware alerting you about malware never has your best interest in mind.
Once you click through that dialog, itíll give you a scary message like this, telling you to download AdwCleaner. Since youíve probably heard your geeky friends talking about AdwCleaner, a normal user might be tempted to download it.
This is not the AdwCleaner you are looking for.
If you make the mistake of downloading and running this fake AdwCleaner, youíll be quickly presented with a window that looks an awful lot like the real thing.
The fake version is actually a bit more user-friendly.
Once the fake one finishes scanning, itíll present you with a dialog saying your PC is completely infected with spyware and browser hijackers, and then itíll offer to remove it, as long as you pay $59.99 to them through Paypal. And, of course, that fire sale ends tomorrow.
Itís important to note here that the real AdwCleaner is completely free. You can download it from BleepingComputer.
That seems expensive, even for malware.
Hopefully somebody at PayPal can suspend the account by Mardel Innovations, because they are clearly a bunch of scammers.
Follow the money. Thatís what the government should be doing.
The ironic thing is that the real AdwCleaner doesnít actually detect this fake version at this point.
Removing the Fake AdwCleaner From Your PC
Removing this fake version of AdwCleaner is luckily really easy. Right-click on the icon in the Taskbar and click Close Window, making sure to notice that it actually admits that it is a piece of adware called AdwareBooC. Guess they forgot to change that.
Go delete the downloaded file from whatever folder you saved it to.
Now to stop it showing up at startup, use WIN + R to open up a Run dialog, type in msconfig and hit the enter key. Once System Configuration is open, switch over to the Startup tab, find the Adware line, and uncheck it. Notice the path, which currently is in our local appdata folder.
From what we can tell, the path might end up being random.
If you donít have msconfig because you are using Windows 8, you can also use Autoruns from SysInternals (which is part of Microsoft). Find the startup entry in the Logon tab and delete it.
SysInternals tools are amazing. Read our full guide.
Now open up Windows Explorer and type %localappdata% into the location bar.
You can also use %appdata% to open the Appdata\Roaming folder
You should see the same file that is loading at startup. Delete it.
At this point your PC should be free of the fake AdwCleaner. But it isnít free of viruses and malware, because you probably got infected with this thing because your PC is infected with other malware.
Scan Using MalwareBytes to Remove Other Spyware and Adware
The best bet for cleaning up spyware and malware is Malwarebytes. You might ask yourself why you wouldnít just use your regular antivirus product, but the fact is that antivirus just doesnít detect spyware very often. Itís only useful for viruses that try to destroy your PC, which are few and far between at this point. Almost all of the malware out there is trying to spy on you, redirect your browsing, and insert more ads into pages that youíre viewing. Itís all about the money.
So the only really good product on the market that will find and remove spyware, adware, and other malware is Malwarebytes. Luckily they have a free version that will let you clean up and remove everything ó if you want to pay for the full version that has active protection to prevent these things from happening, thatís fine too.
Once youíve downloaded and installed it, youíll be prompted to run a scan, so click that big green Scan Now button.
After it completes scanning, itíll find a big huge list of things to remove. Click the Apply Actions button to actually remove all the malware.
Youíll want to reboot your computer to make sure that everything is fully cleaned up. If anything seems to come back, run Malwarebytes again, remove anything found, and then reboot again.