[Daily Deals Chrome Extension Flagged as PUP]

Please stay in the ticket that you submitted to PUP@malwarebytes.com. Your questions will be addressed there.

[False Positive]

Hello,

Thank you for reporting this. It should be fixed within the hour.

All best,

[Auto redirection Chrome]

32 minutes ago, AlexMartin said:

Easy Auto refresh was quickly updated today and fixed the problem:

https://chrome.google.com/webstore/detail/easy-auto-refresh/aabcgdmkeabbnleenpncegpcngjpnjkc

Updated15 February 2021

@AlexMartin

Are you the creator of this extension? If so, please get in contact with our PUP Department as soon as possible to discuss delisting the extension; see here for how to do so: https://www.malwarebytes.com/pup/

[Auslogics Disk Defrag Free portable false positive]

Hello,

We have fixed this on our end. However, FYI the file "looks" suspicious for a number of reasons we wont get into here. This is why this seems to recur every few years.

Thanks for submitting,

 

[A false positive in a piece of software I myself created (Screensaver)]

Hello,

Thank you for reporting this. We have made some changes on our backend to fix this that will be reflected in our database in a few hours.

All best,

[Is escan av a risk?]

Hello again,

This installer installs a BestToolbars toolbar, so we will be marking it as PUP.Optional.BestToolbars.

All best,

 

 

[Is escan av a risk?]

Could you please zip up and attach this file for us (have Malwarebytes restore it from quarantine first):

 

[Is escan av a risk?]

Hello and welcome to the Malwarebytes forum.

 

Please attach a scan log from Malwarebytes showing the detection in question, and please also attach any files that are being detected after zipping them up.

 

All best,

 

 

[PDF Creator 3.5.1 Build 7201 for TS : IDP.DLL detected as NYMAIM.B]

Hello,

We use a variety of malware detection mechanisms and I am afraid we are not at liberty to discuss these in great detail.

Thank you again for your submission.

All very best,

[I'd like to know if my file is a virus.]

As a DLL injector, we would call it Riskware as well.

Game hacks such as these are always risky because such hacks very commonly contain malware bundled in.

 

Use at your own risk.

[RegistryWorkshop false detection]

Hello and welcome to the Malwarebytes forum.

I am not getting any detection when scanning that file. Could you please post a Malwarebytes log for us so we can see the detection?

All best,

[User of my program getting adware reported]

Hello and thank you for reporting this. This should now be fixed. 

All best,

[Reg Organizer]

Hello again,

After productive discussions with the company in question, and because of positive changes made to the newest version of the software, today we have delisted this program. Will be reflected in the next database update.

All best,

[Reg Organizer]

Hello,

If you wish to continue using the software, you may add it to your exclusions list. The PUP detection listing is not a false positive. There shouldn't, however, be 200 items in the scan log. Can you rescan and confirm?

[scan finds Reg Organizer items as PUPs]

1 hour ago, Chemtable said:

There is no difference for the user as MWB just removes the application and reports about fixing 200+ errors, which is the number of the Reg Organizer files including help files, readme.txt, license.txt etc. The more files the program consists of, the more error fixes reported!

Currently the users of our application (developed since 2001) asking why are they suddenly get "protected" from Reg Organizer that they have been using for a long time. We are awaiting the official information about the PUP criteria violated to disclose this situation in our blog post and IT resources.

If you represent the company, contact pup@malwarebytes.com to discuss your software.

[PowerISO 7 x64]

Hello,

This installer contains a monetization feature called FusionCore that we detect. It will be labeled appropriately. Please feel free to add it to your exclusions list if you would like to continue using it.

All best,

[Samsung SmartSwitch Preinstalled on Windows 10]

Hello and thank you for reporting this. I have shared this with out ADWCleaner team. If you have a log file showing the detection, that would also be useful for us to have.

[HWMONITOR_1.35.zip false positive?]

Hello and thank you for reporting this. This sounds like an F/P with our machine learning engine. If you wouldn't mind, could you please attach the file here for us? I'll fix it on our back end.

[Wallpaper Engine False positive or not]

You may restore the file from Malwarebytes' quarantine and then provide the file to us.

[Ashampoo WinOptimizer 18 application - blocked and PUP detections]

I'll have a look at that one as well. Seemed like an older one at first but apparently it's still available to download.

All best,

[Ashampoo WinOptimizer 18 application - blocked and PUP detections]

Hello,

Yes, this is a new PUP listing and is not a false positive. You can read more about our PUP criteria here: https://blog.malwarebytes.com/malwarebytes-news/2016/10/malwarebytes-gets-tougher-on-pups/

If you would like to continue using the software, you are free to add it to your exclusion list in Malwarebytes.

All best,

[Can a video splitter be considered as a rouge windows booster?]

Thank you for sharing that, uzi.

I've made some changes on our back end to more specifically reflect our detection of WinBooster. Should be available in the next database update (at most in a couple hours).

All very best,

[Can a video splitter be considered as a rouge windows booster?]

Hi uzi,

Could you please share a scan log showing the detections in question?

All best,

[Possible False Positive on spelling tool executable]

Hello and thank you for reporting this. I have fixed this on our end and this should no longer be detected.

All very best,.

[False Positive Detection]

Hi again,

Based on all the evidence presented, this is not a false positive and the detection will remain.