It seems so obvious in retrospect! I extracted the files manually and I see there are some Google Analytics related files. I didn't realize the RarSfx meant self-extracting RAR. I'm attaching relevant screenshots if it helps to see what I'm seeing.Īuslogics Disk Defrag Portable is suddenly malicious?ĮDIT: Nevermind about #2. In fact, Windows Security tells me that it failed to remediate the problem. #2: Does anyone know how to restore a file that Windows Defender got rid of? I don't see the usual "allow" or "restore" options in Windows Security. It's not like I just downloaded a new or updated version that changed the code. Again, this is a file I've had for years. So it's not just Windows Defender acting up. #1: Is it feasible that this portable app has had some hidden trojan all these years and only now is it being properly picked up by anti-virus scanners, or is it most likely just a sudden false positive? I uploaded the file to Jotti and VirusTotal before it disappeared, and there were several AVs flagging it as malicious. I went into Windows Security center and told it to allow/restore it, but after I rebooted my computer today for the most recent Windows Update, it's gone! That leads me to two questions: The most recent time I used it a few days ago, out of nowhere Windows Defender marked it as malicious. exe of Auslogics Disk Defrag Portable sitting in a folder on my PC for years, and frequently used it.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |