Results 1 to 13 of 13
  1. #1
    3 Star Lounger
    Join Date
    Jun 2014
    Posts
    283
    Thanks
    11
    Thanked 6 Times in 5 Posts

    FalseAlert Using Produkey 32 bit?

    I was trying to use Produkey 32 bit, but when I extract the files AVG warns of a PUP called "HackTool"
    Naturally this was a huge red flag, especially with a name like that!!
    I sent a message to the Nirsoft site asking whether this file is legit.
    They responded that this is a common problem with virus blockers; some files show up as viruses, trojans, whatever, but they really aren't malicious.

    Anyone had a similar issue with Produkey?

    rstew

  2. #2
    jwoods
    Guest
    Probably a false positive, but you can upload the file to VirusTotal.com and see what their scanners think.

    https://www.virustotal.com/

    Malwarebytes Anti-Malware had an issue with Nirsoft's WirelessNetView.

    I've used Nirsoft tools for a long time and never had any issues.
    Last edited by jwoods; 2015-04-24 at 19:18.

  3. #3
    Super Moderator jwitalka's Avatar
    Join Date
    Dec 2009
    Location
    Minnesota
    Posts
    6,792
    Thanks
    117
    Thanked 798 Times in 719 Posts
    From: http://www.nirsoft.net/faq.html

    Q: The antivirus software on my computer reports that some of the your utilities are infected with a virus or trojan. What should I do ?

    A: First of all, All the utilities in my Web site are clean, and they don't contain any virus or trojan. Unfortunately, Antivirus programs are not perfect, and in many times they detects innocent software as infected with trojan or virus. This problem is known as 'False Positive' or 'False Alert', and it's quite common in password-recovery tools. If your antivirus software reports that utilities you downloaded from this Web site are infected with a virus or trojan, I highly recommend you to contact your antivirus company and ask them to fix this 'False Positive' problem in the next update of your antivirus software. You can also contact NirSoft to report about 'False Positive' problems. Click here to view the latest 'False Positive' problems reported by users from around the world.

  4. #4
    Super Moderator satrow's Avatar
    Join Date
    Dec 2009
    Location
    Cardiff, UK
    Posts
    4,485
    Thanks
    283
    Thanked 573 Times in 477 Posts
    It's a potential 'hack tool', ie. someone could use it on a computer to find the product key without your knowledge. Possibly flagged because a hacker once used, or suggested using, it.

    It's clean and perfectly legal for your own use.

  5. #5
    3 Star Lounger
    Join Date
    Jun 2014
    Posts
    283
    Thanks
    11
    Thanked 6 Times in 5 Posts
    OK thanks for all the feedback.
    I will give it a try and hopefully recover the product keys.

    rstew

  6. #6
    Silver Lounger RolandJS's Avatar
    Join Date
    Dec 2009
    Location
    Austin metro area TX USA
    Posts
    1,722
    Thanks
    95
    Thanked 126 Times in 123 Posts
    Belarc will sniff almost all product keys. There used to be a password cracker named CainAndAbel, however, Cain wasn't able, and Abel couldn't raise cain.
    "Take care of thy backups and thy restores shall take care of thee." Ben Franklin revisited.
    http://collegecafe.fr.yuku.com/forum...-Technologies/

  7. #7
    WS Lounge VIP Coochin's Avatar
    Join Date
    Jun 2014
    Location
    Queensland, Australia
    Posts
    2,151
    Thanks
    31
    Thanked 305 Times in 265 Posts
    Quote Originally Posted by RolandJS View Post
    ...Cain wasn't able, and Abel couldn't raise cain...
    "...Cain rose up against Abel his brother, and slew him." (Gen.4:8 KJV)
    Computer Consultant/Technician since 1998 (first PC was Atari 1040STE in 1988).
    Most common computing error is EBKAC: Error Between Keyboard And Chairback
    AMD FX8120 (8-core @ 3.1GHz) CPU, Gigabyte GA-990FXA-D3 motherboard, 8GB (2x4GB) DDR3 1866MHz RAM, ATI-AMD Radeon HD6770 PCI-E VGA, 480GB Kingston SSD, 2TB Seagate SATA3.0 HDD, ASUS DVD/RW.

  8. #8
    Super Moderator BATcher's Avatar
    Join Date
    Feb 2008
    Location
    A cultural area in SW England
    Posts
    3,413
    Thanks
    33
    Thanked 195 Times in 175 Posts
    I think the antivirus manufacturers had to take special note of Mark Russinovich's / Sysinternals' utilities like PSEXEC, to make sure they were not flagged as viruses, because, yes, some of them could be used by as 'hack tools'! As is the case for almost any system utility...

    They don't seem to do this for Nir Sofer's highly-useful utilities.
    BATcher

    Time prevents everything happening all at once...

  9. #9
    Super Moderator satrow's Avatar
    Join Date
    Dec 2009
    Location
    Cardiff, UK
    Posts
    4,485
    Thanks
    283
    Thanked 573 Times in 477 Posts
    Pretty sure Russinovich had a second utility flagged at some point as well.

  10. #10
    Super Moderator jwitalka's Avatar
    Join Date
    Dec 2009
    Location
    Minnesota
    Posts
    6,792
    Thanks
    117
    Thanked 798 Times in 719 Posts
    They don't seem to do this for Nir Sofer's highly-useful utilities.
    Nirsoft has a web page dedicated to the problem: http://nirsoft.net/false_positive_report.html

    Jerry

  11. #11
    Super Moderator BATcher's Avatar
    Join Date
    Feb 2008
    Location
    A cultural area in SW England
    Posts
    3,413
    Thanks
    33
    Thanked 195 Times in 175 Posts
    Quote Originally Posted by jwitalka View Post
    Nirsoft has a web page dedicated to the problem: http://nirsoft.net/false_positive_report.html
    He gave up on this page over six years ago, since the AV manufacturers are laws unto themselves.
    BATcher

    Time prevents everything happening all at once...

  12. #12
    Super Moderator jwitalka's Avatar
    Join Date
    Dec 2009
    Location
    Minnesota
    Posts
    6,792
    Thanks
    117
    Thanked 798 Times in 719 Posts
    The page is not current but is an acknowledgement of the problem.

    Jerry

  13. #13
    Silver Lounger RolandJS's Avatar
    Join Date
    Dec 2009
    Location
    Austin metro area TX USA
    Posts
    1,722
    Thanks
    95
    Thanked 126 Times in 123 Posts
    Quote Originally Posted by BATcher View Post
    He gave up on this page over six years ago, since the AV manufacturers are laws unto themselves.
    The only way to sidestep AV/Mal-SpyWare laws is to add URLs, folders, and processes to the respective Exclusion blocks.
    "Take care of thy backups and thy restores shall take care of thee." Ben Franklin revisited.
    http://collegecafe.fr.yuku.com/forum...-Technologies/

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •