Microsoft Toolkit found on most sites is virus

Discussion in 'Windows 10' started by rohitshakti2, Oct 24, 2016.

  1. rohitshakti2

    rohitshakti2 MDL Novice

    Oct 24, 2016
    2
    0
    0
    Hi friends,

    I was trying to download Microsoft toolkit to activate Windows 10 but all the sites have virus infected files, can anyone help ?

    regards
     
  2. 2574

    2574 MDL Junior Member

    Feb 23, 2010
    57
    24
    0
  3. rohitshakti2

    rohitshakti2 MDL Novice

    Oct 24, 2016
    2
    0
    0
    But torrentz have been discontinued in India.:eek:
     
  4. 2574

    2574 MDL Junior Member

    Feb 23, 2010
    57
    24
    0
  5. Katzenfreund

    Katzenfreund MDL Expert

    Jul 15, 2016
    1,337
    773
    60
    It's true that when I had googled for it before joining here, even the first Google result was a fake.

    But it seems to me, MDL members shouldn't have to use torrents to download it, there should be links like the one created by 2574 above.
     
  6. Mr.X

    Mr.X MDL Guru

    Jul 14, 2013
    5,572
    13,002
    180
    I've always wondered if Google's doing this on purpose to discredit MTK. Frankly I think it is. Google and Microsoft perfectly know were MTK is born and maintained. Think and expect the worst and you won't be disappointed...

    Anyway in MagicActivator in my sign. you will find several activators including MTK.
     
  7. pisthai

    pisthai Imperfect Human

    Jul 29, 2009
    6,644
    1,922
    210
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  8. pisthai

    pisthai Imperfect Human

    Jul 29, 2009
    6,644
    1,922
    210
    Just personally, I think, promote any file for to download, the poster should attach at least a MD5 and/or SHA256 Checksum, for to give the downloader the ability to check it's what it should! Even still, that isn't a guaranty that those file('s) are 'clean'!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  9. pisthai

    pisthai Imperfect Human

    Jul 29, 2009
    6,644
    1,922
    210
    Simply true!

    And for sure, Microsoft will do anything to discredit any tool which is build for to 'bypass' their License Terms. That will result in any means of 'black mailing', and also force Anti AV Developers for to show such tools as dangerous, even if those just a so called 'False Positive' etc.!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  10. 2574

    2574 MDL Junior Member

    Feb 23, 2010
    57
    24
    0
    #10 2574, Oct 24, 2016
    Last edited: Oct 24, 2016
    I linked to the Official MTK thread and on there there's the SHA1 hash for the EXE. Why post a hash for it when the can OP can compare the hash from the MTK thread to what I uploaded and shared on fileconvoy?

    I'll just say to the OP, I should have mentioned, after you extract the zip file, compare the SHA-1 hash to the one on the official MTK thread.

    edit: I'm beginning to see why CODYQX4 only posts magnet links and just avoids the maintenance of keeping a direct link up and working.
     
  11. EXO56

    EXO56 MDL Novice

    Mar 22, 2013
    32
    18
    0
    +1 for a direct link not magnet only

    Also, haches would be greatly appreciated

    For those who complains about downloading fake MTK : why download it from other locations since you know where is the source for the legit and trusted one?
    Download it from this thread. You'll never be disapointed!
     
  12. Tiger-1

    Tiger-1 MDL Guru

    Oct 18, 2014
    2,515
    2,555
    90
    @Mr.X, yep you is right, since long time I also see this behavior so use FF or any other browser except Chrome ;):sneaky:
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  13. Katzenfreund

    Katzenfreund MDL Expert

    Jul 15, 2016
    1,337
    773
    60
    @ pisthai
    Re the VirusTotal analysis giving 10 suspect out 56 scans, from my experience I’d consider that as not unusual for a hacktool. The red finds could very well be false positives, while the analysis, at worst inconclusive.

    I use the word “suspect” instead of “malware” for the red finds and base my above comment on the following:
    (a) Some scanners routinely mark hack tools, cracks, keygens etc as undesirable at best.
    (b) The 10 red results are either from obscure scanners or generic, not definite finds of malware.
    (c) The “big guys” declare the file as clean.

    Important
    The above is for general info only and does not constitute advice in the current case, for which I accept no responsibility.
    Of course, you do well to be suspicious and scan everything that could be infected, it’s not paranoia but prudence.
    And the general rule remains: If in doubt don’t.
     
  14. Enthousiast

    Enthousiast MDL Tester

    Oct 30, 2009
    12,439
    13,512
    340
    I believe Bat.1 has already shown the TOP solution to kill all the suspicion on another thread about the same subject:

    If you don't trust the DAZ and KMS tools from MDL, then BUY Office/Windows and be done with this.
     
  15. pisthai

    pisthai Imperfect Human

    Jul 29, 2009
    6,644
    1,922
    210
    You're right!

    Had you also read my post (here Post #9)?

    Some few month ago I was deep checking all those 'supposed Infections' and found (on the older Beta of MTK), that all of those are just False Postive's and not dangerous in any mean. I always check any Tool Apps downloaded with Virustotal, doesn't matter from which website I download them. It's just a simple precaution, special if there isn't any Checksum provided for the download.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  16. NeXtStatioN

    NeXtStatioN MDL Senior Member

    Dec 29, 2014
    325
    577
    10
    #16 NeXtStatioN, Oct 24, 2016
    Last edited: Oct 24, 2016
    The best way, for the people who still don't believe these toolkits are clean, is to practice some software tracking.
    Use a VM running Windows 7, install a sandbox like Sandboxie, a process monitoring such as Process Monitor and do the tests yourself.
    You'll see every file written, modified, every connection established etc...
    And you will see there's nothing harmful at all.
    Anyway.
    All toolkits published on MDL are 99% Virus-Free ('cause we can't be sure of everything)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  17. Tiger-1

    Tiger-1 MDL Guru

    Oct 18, 2014
    2,515
    2,555
    90
    @Bat.1 you is 100% right, and I don't have worry about this because I don' use NONE A/V more instead I use only good sense:p
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  18. dobbelina

    dobbelina MDL Senior Member

    Apr 2, 2009
    425
    505
    10
    The AV manufacturers are undermining their own product by to many "False Positives".
    Naming the scan results with some self invented cryptic term, that not even their competitors can understand.

    Can you imagine getting a disease, seeing 10 different doctors about it, giving you 10 different diagnosis?
    When even the most benign files are being registered as
    "suspicious", what happens when you get a real infection
    or threat?
    You download the file instinctively, thinking it's yet
    another ya, you guessed it, "False Positive".
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  19. Enthousiast

    Enthousiast MDL Tester

    Oct 30, 2009
    12,439
    13,512
    340
    Most socalled false positives are really "behaves like" or as someone else earlier mentioned "potentially unwanted program". As you can see in l33tissw00t's virustotal report most report "heur", heur stands for heuristic.
    Heuristic means it's not compared with a database containing known viruses/malware but the trigger really is because it "looks" like or behaves like. To be save the AV handles it as a virus/malware. And in the past we have seen AV's being paid for reporting cracks/hacks like viruses/malware.