Unsolved
1 Rookie
•
3 Posts
0
19
Malware Detected on - Dell\SARemediation\SystemRepair
I'm getting the Malware alert from this location
\Device\HarddiskVolume3\ProgramData\Dell\SARemediation\SystemRepair\Snapshots\Backup\597778D506395925D9F7CAAD6EC7CBA64A3B246C.exe
No hits when sent to VirusTotal. its showing it was whatsapp.exe / gxxhi.exe / q78Z7cSM.exe
https://www.virustotal.com/gui/file/f86e5dd72607994f8f7ed6e26d8b2a8216e16f4dc9726a22767e731e27930303/detection
RoHe
10 Elder
10 Elder
•
44.1K Posts
0
July 19th, 2024 20:12
What software is giving the alert? There have been times in the past when anti-malware software has given false positives for Dell software... Not saying you should ignore the alert, but this needs further investigation.
What PC model and version of Windows and version of SupportAssist?
Narendra001
1 Rookie
1 Rookie
•
3 Posts
0
July 20th, 2024 05:53
Thanks for responding...
Please let me know why Dell SupportAssist Tool take the system Snapshots...
and Snapshots are stored in that location..
(edited)
RoHe
10 Elder
10 Elder
•
44.1K Posts
0
July 20th, 2024 23:18
They're backup images of your OS installation that SupportAssist takes from time to time. and saves in that location. They can be (automatically) used to recover if PC won't boot because of a Windows failure (but not a hardware failure). Think of them like Windows System Restore points you can create inside Windows and use to revert to a previous image if something goes wrong, assuming Windows can still boot the PC.
Don't know why they're being flagged as malware. You can turn this feature off if you want , but you will lose the extra level of protection from boot and performance issues...