• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Question Strange malware found with Emsisoft running in HirensBoot PE?

taisingera

taisingera

Golden Member
I wanted to see if Emsisoft Emergency Kit would run in a PE environment. So I copied it to a Hirens Boot PE and ran it. It worked and found 1 malware, Rogue.Win32.FakeOpt(A) in the Recovery partition of windows 10 under the folder \Users\Default\AppData\Roaming\Microsoft\Windows\StartMenu\Programs\WindowsRecovery\

The only file in there was a Lazesoft Windows Recovery exe. I checked and found that there is such a company that supplies such software. Is this a false positive on Emsisoft or is Microsoft really using 3rd party, possibly suspect software for recovery?
 
Nevermind, the detection is actually on the BOOT partition of the HirensBoot PE. It is strange though how it detected the start menu item as malware but the program itself included with Hirens did not trigger a warning.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top