Jump to content

pcpunk

Honorary Members
  • Posts

    83
  • Joined

  • Last visited

Reputation

0 Neutral

Recent Profile Visitors

2,103 profile views
  1. I see now that you are staff! I followed the bot suggestions and found the link that seems to answer my question. https://support.malwarebytes.com/docs/DOC-1037 Thanks!
  2. But will I be able to use that same license on the new OS?
  3. If I buy Malwarebytes now on Windows 7, but later move to 10, will Malwarebytes work with me to move the license over to the new OS?
  4. Okay, the old one is being Flagged as Malware Still. Just downloaded a new one, the new one is not being Flagged. So I will just Delete the old one when I hear back from you guys.
  5. Attachment PRODUKEY.EXE This one looks like it was from 2017, so perhaps that is the difference? I will download a new one in the meantime. I don't really believe the second one is a False positive, I just don't know much about malware. I fear it is not harmful but is part of some software that I use? I will gladly remove it if that's what needs to be done. I guess things have been working well enough for all this time so it's likely to be okay to delete it. I would however like to know how it got there, or what software it is attached too? produkey.zip
  6. I wonder why Produkey is being flagged as Malware? I guess the MWB team don't like this one. Generic.Malware/Suspicious, E:\PRODUCT KEY FINDERS\PRODUKEYZIP\PRODUKEY\PRODUKEY.EXE, No Action By User, [0], [392686],1.0.12833 And, I have another Pup that's been Quarantined for a long time and forgot about it. Could someone help me with these? PUP.Optional.InstallCore, HKU\S-1-5-21-2980750377-741722422-2426231483-1000\SOFTWARE\CSASTATS\ic, Quarantined, [411], [586068],1.0.8455 MWB ic Reg Key Problem.txt MWB PRODUKEY.txt
  7. That one I don't need so will delete it. Thanks, pc
  8. Yes, the Link is the same. The mistake was, they seemed to have sent me the wrong link, and instead linked me to the download for "lsrshsetup.exe", instead of the one I wanted: lsrmphdsetup.exe. I didn't look at it closely to see it was not the same download. The "lsrshsetup.exe" is the one that had the bad Reputations. All good now, thanks for taking the time to get me straightened out. I know this for sure as I have a copy of the email with the link, so there is my confusion. I did Quarantine the file and re-scanned and all looks good. Just re-scanned the "lsrshsetup.exe" at VirusTotal and HERE is what I got. It took longer this time than it did before, and unfortunately showed one detection. I will Delete this folder once you have all the info you wanted. I don't need this software anyhow, it is already on my other computer from the lsrmphdsetup.exe, which is the one I wanted.
  9. I should mention Virus Total Community score was -12, That's a Negative 12. But that is just opinion I would guess.
  10. It shows it is indeed from Lazesoft, so that is good. Virustotal says it is good! I will run the tool, delete it, and report back if there are any issues. Thanks very much nasdaq!
  11. I found the Thread that I created due to this same issue. Sorry for the confusion, but I still don't understand what it is or what to do with it? From what Didier Stevens was saying it was okay as long as the digital signature is good, but I don't know how to check that. Suspicious Download Results? I also made a mistake in the first part of that thread as to what I downloaded. This is what I downloaded "Lazesoft Recover My Password 4.2.1 Home Edition (Free)" "lsrmphdsetup.exe" At the bottom of THIS PAGE. So I'm quite sure this is what I'm seeing, though don't know where the detection is coming from. I assume it is coming from the File itself because I don't remember installing it. Or I started to install it and thought it better not to on my main machine. Hope that was clear, I'm not feeling well today. What's really weird is I contacted Lazesoft a while back and they gave me this MD5: D8A1D239E6F74318BC0362C75D7CFA07 for that file. And even gave me a Link to the same file but not the cnet link I guess. I downloaded it and the MD5 above did not match. I gave up, but I should have contacted them and told them the Hash did not match. If you want I can just delete that file and run another scan.
  12. I can't remember now if I tried to remove it. I was afraid to remove it recently because I don't know what program is using it. I think it looks little weird, as little as I know about the Registry, it don't look like a normal Registry Key to me. Honestly it has not affected my pc one bit, and this is why I have not taken care of it till now. I also have multiple computers so no hurry, but this is my most important pc. Thanks! FRST.txt Addition.txt
  13. I've had this issue for a while now but think it is some kind of false positive. See Attached Results. Thanks, pccpunk MBAM 12-23-18.txt
  14. Yes, will need to be careful and remove this from all computers I maintain! Already found it on the next one, and Deleted it, and on and on LOL, with all the pc's I have it will be a little work.
  15. Either way the Detection is gone now. I followed the first part of the directions and Rebooted. Then I ran a Scan again, and the Detections were still there. I then Cleaned out/Deleted some "Other search engines" one being "Trovi Search" or something to that effect, and now all good so far. I did not see anything relating to "Conduit" in Other search engines, but did see lot's of stuff that I didn't think I needed, and Deleted them. Thanks for all the help! hope all will be good from now on with this one
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.