Exterminate It! Antimalware


Known threats:700,085 Last Update:March 01, 12:55


It seems that the problem with UACd.sys virus has been solved by this program. So many thanks for creating this amazingly useful program.

Eva S.
Feb 27, 01:18 pm

Exterminate It! wrongly identified as PUP

Dear Exterminate It! Customers,

As some of you might already know starting from the beginning of February Exterminate It! has been erroneously detected as Potentially Unwanted Software (PUP) by the following Security Products:

  • Windows Defender – Misleading:Win32:Lodi
  • Webroot – removed Exterminate It! from detection after contacting their support
  • Avira – PUA/Exterminate.EL.2
  • ESET-NOD32 – Win32/UwS.ExtermIt.A
  • K7AntiVirus – Riskware ( dec001281 )
  • K7GW – Riskware ( dec001281 )
  • Panda – PUP/ExterminateIt
  • Sophos AV – Troj/Decept-IX

We have notified all the vendors above of the false positive detections and requested detection removal.

The current false positive detection state of Exterminate It! can be found on virustotal.com.

Reasons for Detection

We sent the requests asking about the reason Exterminate It! was detected as PUP and two vendors provided the accurate information (we are grateful to Webroot and ESET for their detailed answers).

Apparently, Exterminate It! is detected as PUP because of the counter we provide at the end of the scan.
On the summary dialog we display number of detected threats including cookies. According to one of the responses our application is listed in the application blacklist called “Deceptors” provided by AppEsteem.

This is the violation title: “ACR-003:The app lists tracking cookies as “threats.” This misleads consumers and can scare them into purchasing the app to remove these items.”

We appreciate AppEsteem’s evaluation, but it would be nice if in the future they send us the warning before listing the Exterminate It!, which has been present on the antimalware market for more than ten years, as “Deceptor.”

To solve the problem with the erroneous detections, we will provide two separate counters for cookies and threats in the next version of Exterminate It!. We have also considered the suggestions they’ve provided and implemented the 30 days refund policy.

Restore Exterminate It! Antimalware on PC

As whitelisting those detections may take some time, to continue using Exterminate It! on your PC along with the enlisted Security Products, please follow this temporary workaround:

Restore the removed Exterminate It! executable file (ExterminateIt.exe) installed by default at: C:\Program Files (x86)\Exterminate It! using the Undo / Quarantine / etc. functionality depending on the product:

  • Windows Defender:
    • Double click on Shield icon located in the system tray
    • Click on Virus and Threat Protection
    • Click on Scan History
    • Click on Misleading:Win32/Lodi items
    • Click on Restore button for every Misleading:Win32/Lodi item detected
  • Avira:
    • Open the Avira Control Center program
    • Choose the ‘Administration’ option and then click the ‘Quarantine’ to access the Quarantine management panel
    • Roll out the list of quarantined items and click on the PUA/Exterminate.EL.2 items
    • Click ‘Restore’ button
  • ESET-NOD32:
  • Panda:
    • Click on Antivirus and then the View details link in the Quarantine section
    • In the Window displayed – select all PUP/ExterminateIt related entries and click on Restore button
  • Webroot:
    • Update the software to the most recent version. To restore the Exterminate It! executable file check the items below.
    • Open on the cog icon next to PC Security
    • Click the Quarantine tab
    • Click the check box next to the filename, then click Restore
    • To apply this change, please run another scan of your computer