Alienware Desktops

Last reply by 08-18-2022 Unsolved
Start a Discussion
2 Bronze
2 Bronze
778

Aurora R8, AWCC flagged as Malware/Adware

Alienware Aurora R8

I've seen some other threads with folks having different issues with AWCC version 5.5.9.0 but I have only seen my issue (unanswered) on external websites.  I have experienced my desktop flickering and the blue wheel loading cursor like others have while installing the most recent version like others have described.

This time, however, I decided to wait it out and see what happens. Eventually Webroot popped up saying Display001VcpSrv.exe is a "W32.Adware.Gen" Infection. For now I'm letting Webroot remove it and will reinstall later if there's some sort of confirmation that it is not adware. I also saw external posts where Norton was flagging this exe as malware as well.

Screenshots:

AWCC Adware.png

Here's the full path:

AWCC Adware Path.png

Thanks,

Mike

Replies (6)
6 Indium
771

If you downloaded the drivers from the official Dell driver download site than I would say that is  false positive.

Dell drivers 

3 Argentum
756

That one is part of the game eye components, what ever that is . In that directory you will find a separate uninstall program for it. I did run it and it removed that completely, it seems a separate  package.

Running the awcc 5.5.9 installer package repair does not re-install it.But  Awcc seems to work without it.

10 Diamond
700

@Mike KC 

Somewhere in your travels on the internet you clicked YES and the malware attached itself to the exe file and its now residing in memory so deleting it wont make it go away.

I would recommend doing a fresh start then downloading AWCC directly from Dell then reinstalling webroot etc.

Windows key R  to run

c:\windows\system32\systemreset.exe -cleanpc

FRESH STARTFRESH START

 

 


Report Unresolved Customer Service Issues
here

I do not work for Dell. I too am a user.

The forum is primarily user to user, with Dell employees moderating
Contact USA Technical Support


Get Support on Twitter @DellCaresPro


Diagnostics & Tools

689

"Somewhere in your travels on the internet you clicked YES and the malware attached itself to the exe file and its now residing in memory so deleting it wont make it go away"

This information is not accurate as the machine we tested it on was a fresh OS install - no futher information gathered as yet.

2 Bronze
2 Bronze
574

I have the same issue with Sophos (so it’s not just webroot).   Also it looks like other people have had Display001VcpSrv.exe blocked with Norton.   My issue came after an auto update of the control center today.  I hope the installer didn’t get compromised.   Can someone from Dell please respond?

2 Bronze
2 Bronze
440

Just an update since I wasn't clear about the source.  I did not download the installer from Dell and install (though at some point I may have uninstalled and downloaded from Dell).  AWCC has been installed since I've had the machine, and it was updating on it's own like it always has.

My wife's Alienware x17 hasn't ever behaved any differently, so no cause for alarm there either.  She hasn't been on hers in a while so I started hers up and immediately AWCC was wanting to update.  I let it run, updated successfully, scanned hers with webroot, nothing popped.  Scanned the containing folder specifically, nothing popped.

I decided to hash her file to see if it was the same one, ran:

certutil -hashfile "C:\Program Files\Alienware\Alienware FXDisplay001 Components for AWCC\Display001VcpSrv.exe" MD5

File has was: 645c2654f54268b09724b1c0cbaf4229

Restored my quarantined file, scanned, didn't pop again.  Hashed my file with the command above, same file.  My guess is that the antivirus signatures have been updated, would be nice of Dell to confirm though.

Latest Solutions
Top Contributor