potterapple Posted January 11, 2016 ID:1011883 Share Posted January 11, 2016 I ran Malwarebytes Anti-Malware and it detected 2 objects which were ProduKey. I am slightly worried if my PC has been infected in any other way. I have included FRST log files and MBAM CheckResults.txt in this post. If any other diagnostic files are needed let me know I shall provide them. Thank you!PS: I read the post that P2P applications should be disabled after I had run MBAM if needed I can run MBAM again. FRST.txtAddition.txtCheckResults.txt Link to post Share on other sites More sharing options...
yardbird Posted January 11, 2016 ID:1011884 Share Posted January 11, 2016 Your next stop is here: https://forums.malwarebytes.org/index.php?/topic/9573-im-infected-what-do-i-do-now/ Then Post a new topic here Which will take you to Malware Removal Help forum (to the right "Start New Topic") Where the experts will help you remove the infection/issue. Thank You! You have an issue where you need to go to the Malware Remove forum & an expert will advise you...... Link to post Share on other sites More sharing options...
yardbird Posted January 11, 2016 ID:1011886 Share Posted January 11, 2016 This user is in Malware Removal. Link to post Share on other sites More sharing options...
daledoc1 Posted January 11, 2016 ID:1011917 Share Posted January 11, 2016 Hi, @potterapple: Actually, we would like very much to be able to assist you with malware cleanup. However, your logs show evidence of pirated/illegal software/media.Such items violate the forum piracy policy. Even though you have already started a new topic in the malware removal section here, no further help can be provided at this time in either thread.Both topics will be locked by the forum Moderator team.If you would like further help, please remove/uninstall all illegal/cracked/pirated software and items from the computer.Then, please send a PM to a form mod requesting that your topic be reopened. Thanks for your understanding, Link to post Share on other sites More sharing options...
David H. Lipman Posted January 11, 2016 ID:1011925 Share Posted January 11, 2016 For potterapple and those reading this thread: There are two problems here ( at least ) 1. Lack of information 2. Misinterpretation potterapple indicated that MBAM "detected 2 objects which were ProduKey" and in the subject "found Malware in Produkey" yet at no point did potterapple explain what "Produkey" is. Therefore it leaves the thread open to presumption and misinformation. If we go simply by the word ProduKey we may presume ProduKey is Nir Sofers ProduKey utility But any file can be named anything and that is where potterapple is providing a complete lack of information Let's assume that the post was about Nir Sofers ProduKey utility. MBAM does detect it. However potterapple did not provide what it was detected as, or a log or log snippet or a report from Virus Total or other service. However if it is Nir Sofers ProduKey utility then MBAM detects this as "PUP.Optional.ProductKeyFinder". That is NOT a malware detection. It was detected as a Potentially Unwanted Program ( PUP ) which is not a malware declaration. Other vendor detections will use the declaration "hacktool" and "passview" . Presuming we are discussing Nir Sofers ProduKey utility, the utility is not malicious. It is a tool for recovering the Product Key of applications. Because of its nature it is not detected because it is a malicious utility but because in the hands of someone with nefarious or dubious intentions it can be used maliciously. That is where the misinterpretation lies. daledoc1 indicated... However, your logs show evidence of pirated/illegal software/media.Such items violate the forum piracy policy.Software Piracy is one reason the utility is flagged. Since it obtains application Product Keys it *may* be used to pirate software. Link to post Share on other sites More sharing options...
daledoc1 Posted January 11, 2016 ID:1011927 Share Posted January 11, 2016 < Minor clarification: The OP's logs show pirated software/material, separate from the Nirsoft utility itself.> Thanks, Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted January 12, 2016 Root Admin ID:1012063 Share Posted January 12, 2016 2016-01-10 12:38 - 2016-01-10 14:47 - 00000000 ____D C:\Users\Tushar\Desktop\New Girl S05E01 HDTV x265[HEVC] AAC-TREGO2016-01-10 12:37 - 2016-01-10 12:37 - 00020296 _____ C:\Users\Tushar\Desktop\[kat.cr]new.girl.s05e01.hdtv.x265.hevc.aac.trego.torrent These are considered piracy and need to be removed. The software used to download them also needs to be either disabled, or removed as well in order to reopen the topic and continue to provide help. Thank you Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now