Solved

Adobe Acrobat Pro XI Activator FP

  • 30 January 2014
  • 21 replies
  • 525 views

Userlevel 4
This file is reported as clean by my Kaspersky Antivirus, NOD32, Bitdefender
 
It is flagged by my Norton AV and by my Webroot SecureAnywhere AV though so I put it on the ignore list
 
Since the big sharks like Kaspersky don't detect it, I believe this is a false positive with no real harm?
 
Kindly remove it as it is the only FP being detected on my system
 
SHA256: 46067bcde7fb1006430f97c286d7ac8de915315291c6c542567ae73939f848c8 File name: adobe.acrobat.xi.pro.patch-MPT.exe Detection ratio: 26 / 50 Analysis date: 2014-01-30 16:25:15 UTC ( 1 hour, 49 minutes ago )
 
 
PE signature block
Copyright© MPTPublisher MPT34MProduct ActivatorOriginal name ActivatorInternal name MPT34MFile version 1.0Description cr4cking th3 cod3 4 fun! Virus Total link: https://www.virustotal.com/en/file/46067bcde7fb1006430f97c286d7ac8de915315291c6c542567ae73939f848c8/analysis/
icon

Best answer by Ssherjj 15 April 2018, 03:36

View original

21 replies

Userlevel 7
Badge +35
We don't typically detect cracks/patches/keygens unless of course they are for our own products, but we don't recommend using them either for what I would think are obvious reasons. Most users that run these will just create overrides as you have done. I wouldn't exactly call it an FP since it's certainly a gray area, but I can go ahead and whitelist this one.
 
-Dan
 
 
 
 
 
 
Userlevel 7
I must respectfully disagree with you. Just because Kaspersky and Bitdefender don't detect something doesn't mean it is an FP, especially when 26 other scanners do detect it.
Userlevel 4
Sorry, but you can add NOD32, avast to that list too

Also, according to AV comparatives latest report, kaspersky has detected 100% of virsues in the latest tests AND with 0 false positives. Another fact that u mentioned is the detection rates is 26 out what? 50? That means there is an error and all the ones that do not detect it are big names in the AV industry
Userlevel 7
One scanner will never detect 100% of malware, even AV-Comparatives have said "just because a product reached 100% protection in this test does not mean they will block all threats, it just means they were able to detect all samples used in this test." Also by using your own test logic check AV-Test Norton gets 100% protection and detection multiple times aswell. I suppose also using your logic that Norton isn't a big name then since you said all the big names don't detect it? Malwarebytes? By the way ESET does detect it "ESET-NOD32 a variant of Win32/HackTool.Patcher.T " as does TrendMicro, another big name.

Sorry if I seem angry I'm just having a bad day and sometimes us southerner's take it out when we talk!
Userlevel 7
Badge +56
One thing we don't do is recommend using software cracking apps or keygens or the software itself already cracked.
 
Daniel
Userlevel 4
No offnese taken man. What virus total says about eset that it detects it is wrong as I have nod32 v7 installed on another computer fully updated with HIPS on and it does not get detected. While what u say about no AV will detect everything 100% thattrue, but 4 big names reporting it safe, kaspersky, bitdefender, avast pro, and nod32 is no coincidence bro

That is the only cracked program I have every single sofwtare is legally owned including silly things like fotosizer (a batch photo resizer), u see, I don't mind paying for a developer's hard work but this freakin' adobe acrobat costs 600 usd for a license man sheeeesh
Userlevel 7
Badge +35
If you look at the detections in VirusTotal the file is almost universally detected as a Hacktool, Keygen, Crack or Patch. These detections are often geared more towards enterprise environments, where admins don't want these type of programs on their networks. 
 
VirusTotal results should only ever be used as a guide. Reading the results accurately takes experience. Knowledge of how the service works,  the naming conventions used by the various scanners, and familiarity with the accuracy of the VirusTotal versions of the various scanners based on my personal experience all come into play when I view any VirusTotal result.
 
As I mentioned earlier and TH has also said, we do not recommend the use of cracks, keygens, or other similar programs. These programs are often bundled with malware payloads and hack/crack/warez sites are also notorious for hosting malware. 
 
-Dan
 
 
 
Userlevel 4
Ok bro, I will delete that file and ill never use cracks anymore

Thanks for ur patience and expslanation
Userlevel 3
Badge +9
Due to Aphasia my ability to understand (receptive and expressive) is very limited. I took Windows offer to update my Abrocate Reader and that was a huge mistake because it came with many games, including McAfee which I do not want. I tried uninstalling  the games but they are still there. It really slowed down my computer. Any suggesstion? 
Userlevel 7
Badge +62
Hello berryme56,
 
Sorry to hear you are having these issues! This can happen when you do not uncheck these PUA's. And it is easy to do. I have done this before by clicking away and I learned the hard way. ;)
 
What you are seeing and describing sounds like it may be what we on the Community refer to as a PUA. (Potentially Unwanted Application) These are very annoying at best in that they cause pop-us, redirect your browser home page, and other behavior that may slow down the computer and direct ads your way, but they are not actually doing anything bad like damaging files or stealing information. Often they are installed intentionally by you the user as browser add-ons for various tasks such as quick search tools.. but they also come with the result of added annoying pop-ups and ads. Other times they 'piggy back' with other software that you installed, or try to 'sneak' onto your system entirely.
 
WSA does detect and remove many PUA's, and more are being added, but WSA does not detect all of them. A simple browser add-on with PUA behavior that is easy to identify and easy to remove is not likely to be detected and removed by WSA. Those that are intentionally difficult to locate and remove are. Please see THIS LINK for more information regarding Webroot's stance on these annoying programs.
 
For those that are not detected by WSA, please see this KB Article. It has some easy to follow directions on locating and removing PUA's. You may also want to submit a Trouble Ticket, especially if you cannot remove it easily from the directions in the KB Article.
 
For those that ARE detected by WSA, but cannot be removed automatically, you can submit a Trouble Ticket.  Webroot Support will help you get these annoying 'crapware' off your computer at no extra charge, and the additional examples may help to better automatic removal of that particular PUA for all users in the future.
 
Hope this helps?
Userlevel 3
Badge +9
Thank you for the reply and yes, I learned a great lesson. If my computer is running well then do not allow others to update anything without my approval. I see in my settings that I have the choice to un-get rid of  updates recently placed on my computer so I will do this now.
 
Many thanks...
Userlevel 7
Badge +62
@ wrote:
Thank you for the reply and yes, I learned a great lesson. If my computer is running well then do not allow others to update anything without my approval. I see in my settings that I have the choice to un-get rid of  updates recently placed on my computer so I will do this now.
 
Many thanks...

Your most welcome berryme56,
Don't forget to uninstall McAfee. Since it was an a add-on as well.;)
 
Also add a good free Ad Blocker like the ones suggested below:
 
For Internet Explorer Ad Block Plus: https://adblockplus.org/
 
For Firefox uBlock Origin: https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/?src=ss or Privacy Badger: https://addons.mozilla.org/en-us/firefox/addon/privacy-badger-firefox/

 
Google Chrome uBlock Origin: https://chrome.google.com/webstore/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagm?hl=en or Privacy Badger: https://chrome.google.com/webstore/detail/privacy-badger/pkehgijcmpdhfbdbbnkijodmdjhbjlgp

 
uBlock Origin For Microsoft Edge Browser on Windows 10: https://www.microsoft.com/en-us/store/p/app/9nblggh444l4
Userlevel 3
Badge +9
I had Geek Squad delete all the games and Mc Affee since it wasn't allowing me to do it. I probably missed a step but with my disorder, it makes sense. Anyway, all games are gone and my computer is now fast! 
 
Thanks,
 
Mike
Userlevel 7
Badge +62
Hi Mike,
 
Thank you so much for letting us know. That is really great that everything is fixed for you and most of all you have a fast computer again! :D
 
Take care! 🙂
Userlevel 3
Badge +9
Many thanks, Sherry.
 
Mike
Userlevel 7
Badge +62
Anytime Mike! Just holler if you ever need more help because that is why we are here. 😉
Userlevel 3
Badge +9
Sometimes I see a chrome.exe possible leak after scanning my computer with Webroot. The Geek Squad is nothing to worry about. Is this true?
Userlevel 7
Badge +62
Hello there berryme,
 
System Analyzer is just a baseline tool,,, mine always says Firefox.exe has a leak ...so no worries.
 
Yes the GeekSquad is right about this.;)
 
Userlevel 3
Badge +9
Again Sherry, many thanks!
Userlevel 7
Badge +62
You're most welcome!!:D
Luckely, Webroot doesn't participate in AV Comparatives or AV Test, so no experience is required.
 
All we need is to believe.

Reply