Results 1 to 13 of 13
  1. #1
    3 Star Lounger
    Join Date
    Jun 2014
    Posts
    321
    Thanks
    27
    Thanked 7 Times in 5 Posts

    FalseAlert Using Produkey 32 bit?

    I was trying to use Produkey 32 bit, but when I extract the files AVG warns of a PUP called "HackTool"
    Naturally this was a huge red flag, especially with a name like that!!
    I sent a message to the Nirsoft site asking whether this file is legit.
    They responded that this is a common problem with virus blockers; some files show up as viruses, trojans, whatever, but they really aren't malicious.

    Anyone had a similar issue with Produkey?

    rstew

  2. #2
    jwoods
    Guest
    Probably a false positive, but you can upload the file to VirusTotal.com and see what their scanners think.

    https://www.virustotal.com/

    Malwarebytes Anti-Malware had an issue with Nirsoft's WirelessNetView.

    I've used Nirsoft tools for a long time and never had any issues.
    Last edited by jwoods; 2015-04-24 at 18:18.

  3. #3
    Super Moderator jwitalka's Avatar
    Join Date
    Dec 2009
    Location
    Minnesota
    Posts
    6,917
    Thanks
    119
    Thanked 816 Times in 731 Posts
    From: http://www.nirsoft.net/faq.html

    Q: The antivirus software on my computer reports that some of the your utilities are infected with a virus or trojan. What should I do ?

    A: First of all, All the utilities in my Web site are clean, and they don't contain any virus or trojan. Unfortunately, Antivirus programs are not perfect, and in many times they detects innocent software as infected with trojan or virus. This problem is known as 'False Positive' or 'False Alert', and it's quite common in password-recovery tools. If your antivirus software reports that utilities you downloaded from this Web site are infected with a virus or trojan, I highly recommend you to contact your antivirus company and ask them to fix this 'False Positive' problem in the next update of your antivirus software. You can also contact NirSoft to report about 'False Positive' problems. Click here to view the latest 'False Positive' problems reported by users from around the world.

  4. #4
    Super Moderator satrow's Avatar
    Join Date
    Dec 2009
    Location
    Cardiff, UK
    Posts
    4,789
    Thanks
    341
    Thanked 619 Times in 518 Posts
    It's a potential 'hack tool', ie. someone could use it on a computer to find the product key without your knowledge. Possibly flagged because a hacker once used, or suggested using, it.

    It's clean and perfectly legal for your own use.

  5. #5
    3 Star Lounger
    Join Date
    Jun 2014
    Posts
    321
    Thanks
    27
    Thanked 7 Times in 5 Posts
    OK thanks for all the feedback.
    I will give it a try and hopefully recover the product keys.

    rstew

  6. #6
    Silver Lounger RolandJS's Avatar
    Join Date
    Dec 2009
    Location
    Austin metro area TX USA
    Posts
    1,896
    Thanks
    111
    Thanked 144 Times in 141 Posts
    Belarc will sniff almost all product keys. There used to be a password cracker named CainAndAbel, however, Cain wasn't able, and Abel couldn't raise cain.
    "Take care of thy backups and thy restores shall take care of thee." Ben Franklin revisited.
    http://collegecafe.fr.yuku.com/forum...-Technologies/

  7. #7
    WS Lounge VIP Coochin's Avatar
    Join Date
    Jun 2014
    Location
    Queensland, Australia
    Posts
    2,392
    Thanks
    37
    Thanked 351 Times in 306 Posts
    Quote Originally Posted by RolandJS View Post
    ...Cain wasn't able, and Abel couldn't raise cain...
    "...Cain rose up against Abel his brother, and slew him." (Gen.4:8 KJV)
    Computer Consultant/Technician since 1998 (first PC was Atari 1040STE in 1988).
    Most common computing error is EBKAC: Error Between Keyboard And Chairback
    Confuscius said: "no use running harder if you're on the wrong road" and "any problem once correctly understood is already half-solved".

  8. #8
    Super Moderator BATcher's Avatar
    Join Date
    Feb 2008
    Location
    A cultural area in SW England
    Posts
    3,507
    Thanks
    34
    Thanked 206 Times in 185 Posts
    I think the antivirus manufacturers had to take special note of Mark Russinovich's / Sysinternals' utilities like PSEXEC, to make sure they were not flagged as viruses, because, yes, some of them could be used by as 'hack tools'! As is the case for almost any system utility...

    They don't seem to do this for Nir Sofer's highly-useful utilities.
    BATcher

    milliHelen
    (unit): that quantity of female facial beauty sufficient to launch a single ship

  9. #9
    Super Moderator satrow's Avatar
    Join Date
    Dec 2009
    Location
    Cardiff, UK
    Posts
    4,789
    Thanks
    341
    Thanked 619 Times in 518 Posts
    Pretty sure Russinovich had a second utility flagged at some point as well.

  10. #10
    Super Moderator jwitalka's Avatar
    Join Date
    Dec 2009
    Location
    Minnesota
    Posts
    6,917
    Thanks
    119
    Thanked 816 Times in 731 Posts
    They don't seem to do this for Nir Sofer's highly-useful utilities.
    Nirsoft has a web page dedicated to the problem: http://nirsoft.net/false_positive_report.html

    Jerry

  11. #11
    Super Moderator BATcher's Avatar
    Join Date
    Feb 2008
    Location
    A cultural area in SW England
    Posts
    3,507
    Thanks
    34
    Thanked 206 Times in 185 Posts
    Quote Originally Posted by jwitalka View Post
    Nirsoft has a web page dedicated to the problem: http://nirsoft.net/false_positive_report.html
    He gave up on this page over six years ago, since the AV manufacturers are laws unto themselves.
    BATcher

    milliHelen
    (unit): that quantity of female facial beauty sufficient to launch a single ship

  12. #12
    Super Moderator jwitalka's Avatar
    Join Date
    Dec 2009
    Location
    Minnesota
    Posts
    6,917
    Thanks
    119
    Thanked 816 Times in 731 Posts
    The page is not current but is an acknowledgement of the problem.

    Jerry

  13. #13
    Silver Lounger RolandJS's Avatar
    Join Date
    Dec 2009
    Location
    Austin metro area TX USA
    Posts
    1,896
    Thanks
    111
    Thanked 144 Times in 141 Posts
    Quote Originally Posted by BATcher View Post
    He gave up on this page over six years ago, since the AV manufacturers are laws unto themselves.
    The only way to sidestep AV/Mal-SpyWare laws is to add URLs, folders, and processes to the respective Exclusion blocks.
    "Take care of thy backups and thy restores shall take care of thee." Ben Franklin revisited.
    http://collegecafe.fr.yuku.com/forum...-Technologies/

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •