TpKnrres.exe identified as Virus (InfoStealer)

Performance, hardware, software, general buying and gaming discussion..
Post Reply
Message
Author
hyde
Junior Member
Junior Member
Posts: 341
Joined: Fri Jul 08, 2011 8:12 pm
Location: New York, NY

TpKnrres.exe identified as Virus (InfoStealer)

#1 Post by hyde » Mon Sep 17, 2012 1:19 pm

I assume it is a false positive but I still wanted to post about this here, in case someone reached out to Lenovo or Symantec about this.
It is also strange that while it was reported back in 2011 today is the first time I was warned by Norton about this.

C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe

http://gyazo.com/6d16bb12b5ca30be243942 ... 1347904872

http://gyazo.com/cc46c6ed22ba2d168d3782 ... 1347905489
Resolved Threats:
No risks have been resolved

Unresolved Threats:
Infostealer
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Not Attempted
-----------
8 Registry Entries
HKEY_USERS\S-1-5-21-2023814471-3051691555-3246933146-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced->Hidden:1 - No action taken
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced->Hidden:1 - No action taken
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced->Hidden:1 - No action taken
HKEY_USERS\S-1-5-21-2023814471-3051691555-3246933146-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced->ShowSuperHidden:1 - No action taken
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced->ShowSuperHidden:1 - No action taken
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced->ShowSuperHidden:1 - No action taken
HKEY_USERS\S-1-5-21-2023814471-3051691555-3246933146-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced->ShowSuperHidden:1 - No action taken
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run->LENOVO.TPKNRRES - No action taken
2 Files
c:\program files\lenovo\communications utility\tpknrres.exe - No action taken
c:\program files\lenovo\communications utility\tpknrres.exe - No action taken
1 Process
c:\program files\lenovo\communications utility\tpknrres.exe - No action taken
1 Browser Cache
8/18/2011 - X220, Intel i5-2540M, 12.5" IPS, FingerPrint, Cam, BT, Intel 6205 Wifi, 8GB, U2312HM Mini Dock Plus 3
1/15/2012 - S405 (Wife's), AMD A6-4455M, 14", 4GB RAM, Windows 8
7/02/2015 - T450s Intel i5-5300U, 14" FHD IPS, FingerPrint, Cam, BT, SSD + M.2, Intel 7265, 12GB
Top
ajkula66
SuperUserGeorge
SuperUserGeorge
Posts: 15737
Joined: Sun Feb 25, 2007 11:28 am
Location: Brodheadsville, Pennsylvania

Re: TpKnrres.exe identified as Virus (InfoStealer)

#2 Post by ajkula66 » Mon Sep 17, 2012 1:29 pm

Get rid of Norton and sleep tight... :D
...Knowledge is a deadly friend when no one sets the rules...(King Crimson)

Cheers,

George (your grouchy retired FlexView farmer)

AARP club members:A31p, T43pSF

Abused daily: R61

PMs requesting personal tech support will be ignored.
Top
RealBlackStuff
Admin
Admin
Posts: 17508
Joined: Mon Sep 18, 2006 5:17 am
Location: Mt. Cobb, PA USA
Contact:
Contact RealBlackStuff

Re: TpKnrres.exe identified as Virus (InfoStealer)

#3 Post by RealBlackStuff » Mon Sep 17, 2012 2:06 pm

+1, and then some!
Top
ThinkRob
Senior ThinkPadder
Senior ThinkPadder
Posts: 2364
Joined: Wed May 20, 2009 9:54 am
Location: near RTP, NC

Re: TpKnrres.exe identified as Virus (InfoStealer)

#4 Post by ThinkRob » Mon Sep 17, 2012 9:49 pm

If you're going to pay for anti-virus, you may as well get NOD32 and call it a day. Otherwise, I'd recommend MSE.

But either way, Norton does not enter into the picture. There's a reason for that.
Need help with Linux or FreeBSD? Catch me on IRC: I'm ThinkRob on FreeNode and EFnet.

Code: Select all

Current laptop: X1 Carbon 3
Current workstation: none
Top
Post Reply
  • Similar Topics
    Replies
    Views
    Last post

Return to “Thinkpad - General HARDWARE/SOFTWARE questions”

Who is online

Users browsing this forum: No registered users and 12 guests