Hoax.Win32.DeceptPCClean.rn File: J:\RECYCLER\S-1-5-21-1844237615-448539723-1644491937-1003\Dj3\_restore{A498A8FE-6AA5-4C86-ADB1-79DA239AD830}\RP2\A0002112.exe Malicious program MD5: CC044C17921E379E2D63A7F7BEBE203B SHA256: 0CD497165E1D4BB749927677B70E8F3277F0823F455DEF496A13D9DB12C4CC58 Can you tell me whether this is a real or false alarm. This is my external Hard Drive where I keep my system backups, so I don't want to delete anything without being sure of it. Thank you
The filehash belongs to DriverMax installer and it is considered a PUP/Trojan Fraud by some vendors, so I dont think it is a false positive. Kaspersky has a very low rate of false positives, when it detects something it is worth to take a deeper look.
Kaspersky flags it as Hoax.Win32.DeceptPCClean.rn, so it doesn't look like a false positive. Apart from that, some other vendors also flag it as riskware or PUP. It's certainly something you don't want to have running on your computer.
