boot-recovery-and-repair-helper

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The included installer script downloads and then executes a remote installer from https://d1.easeus.com/epm/free/epm_free_ob.exe (with mirrors https://d2.easeus.com/... and https://d3.easeus.com/...) at runtime, so the skill fetches and runs external code.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs running installer scripts with elevated privileges, bypassing execution policy/UAC, and performing disk-level operations (rebuild MBR, create bootable USB, recover partitions) that modify system state and require admin rights, so it poses a high risk of compromising the machine.