Hirens Boot CD Malware?

tVirus · Jan 17, 2012

I have noticed there are a few files on the hirens boot cd which are detected as malware by MBAM. Is this CD safe to use because I have been using it for drive backups on the laptop?

VirusTotal Results...
/System32/fdco1.dll (VT 0/43)
/System32/keybtray.exe (VT 28/43 - Mostly Heur)
/System32/msxml2.dll (VT 2/43 - MSFake)
/System32/sfcfiles.dll (VT 0/43)
/System32/vbscript.dll (VT 2/43 - MSFake)
/System32/wzcsvc.dll (VT1/43 - Unclassified)

Tarnak · Jan 17, 2012

Hirens...I don't think you are allowed to talk about it? But, I could be wrong.

JRViejo · Jan 18, 2012

Tarnak said:

Hirens...I don't think you are allowed to talk about it? But, I could be wrong.
Click to expand...

Tarnak, the Hiren's of old contained paid commercial software, violating copyrights in the process, but the new Hiren's Boot CD is mainly all Freeware, with some Shareware programs.

tVirus, your best bet is to post your findings in MBAM's False Positives Forum, if you believe these are false positives. They will advise you.

treehouse786 · Jan 18, 2012

i have the ISO on my hard drive and all 9 of my on demand scanners detect something or another in Hirens ISO so i dont think they are false positives. although the ones you listed are not detected by my scanners so those particular ones could be false positives. but on the whole most scanners will detect something in Hirens as it does have exe's and dll's which are used by malware so they are not false positives per say.

dont worry about them

tVirus · Jan 19, 2012

I understand there could be an issue with FPs on most of these files but what bothers me is the /System32/keybtray.exe, this is detected as malware by 28 anti-malware products.

Spooony · Jan 20, 2012

Tools used to reset passwords and such are flagged as hack tools. But theyre not. Thats a false positive and its non malicious

Spooony · Jan 20, 2012

tVirus said:

I understand there could be an issue with FPs on most of these files but what bothers me is the /System32/keybtray.exe, this is detected as malware by 28 anti-malware products.
Click to expand...

where did you find that file? In your systems drive system32 folder?

TheKid7 · Feb 20, 2012

Today I was thinking about adding Hiren's Boot CD 15.1 to my YUMI USB Flash Drive for the first time. As a precaution, I scanned with both the Kaspersky Rescue Disk 10 and the Dr.Web LiveCD. Both reported Malware in the Hiren's Boot CD ISO file. Kaspersky had specifics:

Detected: Trojan.Win32.Chifrax.cxp E:/...../...../Hirens.BootCD.15.1.zip/Hiren's.BootCD.15.1.iso/HBCD/Programs/Files/WinNTSetup.7z/WinNTSetup.exe

I changed my mind about adding Hiren's Boot CD 15.1 to my YUMI USB Flash Drive. I know that the detection(s) may be False Positives, but I do not want to take the "Risk".

The Red Moon · May 23, 2012

hi.
Can Hirens boot cd be installed straight onto an external hard drive.?
Does it have to go on a CD?
Many thanks.

stapp · May 23, 2012

There's not much point in installing it anywhere. You burn the iso to a cd and use it to boot your machine outside of Windows.

Then you can run some of its tools on your 'poorly' machine such as doing an Eset Online scan to get rid of nasties, (it allows you to use the internet) checking the state of your hard drive and loads of other things.

It's a great cd to have around.

Log in or Sign up

Hirens Boot CD Malware?

tVirus Registered Member

Tarnak Registered Member

JRViejo Super Moderator

treehouse786 Registered Member

tVirus Registered Member

Spooony Registered Member

Spooony Registered Member

TheKid7 Registered Member

The Red Moon Registered Member

stapp Global Moderator

Log in or Sign up

Hirens Boot CD Malware?

tVirus Registered Member

Tarnak Registered Member

JRViejo Super Moderator

treehouse786 Registered Member

tVirus Registered Member

Spooony Registered Member

Spooony Registered Member

TheKid7 Registered Member

The Red Moon Registered Member

stapp Global Moderator

Useful Searches