ESET fail


  1. Posts : 334
    windows 10
       #1

    ESET fail


    Hi all,
    Last night windows defender told me it found a trojan and quarantined it and deleted it.
    After that I ran a full scan and all was fine. To be on the save side, I went to ESET online scanner and had the whole computer checked. It came back with 11 more threads. Looking at the log, I found that ALL of them where from programs that I had installed, some years ago like:
    Freemake video converter
    Ultimate Boot CD
    Google chrome
    Image burn
    Winzip driver updater
    Plus 1 reg hack that I don’t remember
    All of these are false positives and most are old so they should be in there data base.
    Needles to say, I am not impressed and I don’t see any reason to pay for a subscription.
    Just my 2 cents
      My Computer


  2. Posts : 21
    Windows 10
       #2

    I'm running ESET and have both Ultimate Boot CD and Google Chrome - neither are being detected as threats on my system. Maybe you got some deeper issues.
      My Computer


  3. Posts : 1,031
    Win10 Version 21H2 19044.1645
       #3

    Sven1458 said:
    Hi all,
    Last night windows defender told me it found a trojan and quarantined it and deleted it.
    After that I ran a full scan and all was fine. To be on the save side, I went to ESET online scanner and had the whole computer checked. It came back with 11 more threads. Looking at the log, I found that ALL of them where from programs that I had installed, some years ago like:
    Freemake video converter
    Ultimate Boot CD
    Google chrome
    Image burn
    Winzip driver updater
    Plus 1 reg hack that I don’t remember
    All of these are false positives and most are old so they should be in there data base.
    Needles to say, I am not impressed and I don’t see any reason to pay for a subscription.
    Just my 2 cents
    Are the threats PUPs (potentially unwanted programs) or malware ? Do you scan often with WD ?

    Many rely on WD as primary AV and periodically use the free ESET online scanner. I have no issues.
      My Computer


  4. Posts : 289
    Windows 10 Pro 21H2
       #4

    I have eleven years of experience with Webroot on five computers. It is not uncommon for a virus to sneak into my file system and lay dormant without being detected. What's important, is that your AV catches it when it starts up, so far, Webroot has caught every single one that starts, and most before they get through the door. ESET more than likely would have stopped it, ESET has good detection rates.
      My Computers


  5. Posts : 514
    Windows 10
       #5

    Sven

    Upload the complete Eset log please. It's located here.
    C:\Users\username\AppData\Local\Temp\log.txt
    Last edited by jmatt; 06 Mar 2021 at 21:50.
      My Computer


  6. Posts : 334
    windows 10
    Thread Starter
       #6

    Here is the log:
    21:59:05 # product=EOS# version=8# esetonlinescanner.exe=3.4.7.0# country="United States"# lang=103321:59:57 Updating21:59:57 Update Init22:00:08 Update Download22:00:58 esets_scanner_reload returned 022:00:58 g_uiModuleBuild: 4869322:00:58 Update Finalize22:00:58 Call m_esets_charon_send22:00:58 Call m_esets_charon_destroy22:00:58 Updated modules version: 4869322:01:10 Call m_esets_charon_setup_create22:01:10 Call m_esets_charon_create22:01:10 m_esets_charon_create OK22:01:10 Call m_esets_charon_start_send_thread22:01:10 Call m_esets_charon_setup_set22:01:10 m_esets_charon_setup_set OK22:01:10 Scanner engine: 4869306:55:16 # product=EOS# version=8# flags=0# av=0# fw=7# admin=1# esetonlinescanner.exe=3.4.7.0# EOSSerial=0e61e8d9903e2b47867a92b3cad4baf9# engine=48693# end=finished# bannerClicked=0# remove_checked=true# archives_checked=false# unwanted_checked=true# unsafe_checked=true# antistealth_checked=true# sfx_checked=true# utc_time=2021-03-06 14:55:15# local_time=2021-03-06 06:55:15 (-0800, Pacific Standard Time)# country="United States"# lang=1033# osver=10.0.19042 NT # compatibility_mode_1=''# compatibility_mode=5893 16776573 100 88 0 38414819 0 0# scanned=537353# found=11# cleaned=11# scan_time=8698# scan_type=2# flow=2021-03-05 21:59:26|scr|scan_type|2021-03-05 21:59:28|promo|essp|2021-03-05 21:59:36|scr|pua|2021-03-05 21:59:44|scr|updating|2021-03-05 22:00:58|scr|scanning|2021-03-06 00:25:58|scr|all_cleaned|2021-03-06 06:49:07|scr|report_cleaned|2021-03-06 06:49:07|click|resolved_detections|2021-03-06 06:50:46|scr|quarantine|2021-03-06 06:54:12|click|restore_now|2021-03-06 06:54:12|scr|quarantine|2021-03-06 06:55:12|scr|report_cleaned|2021-03-06 06:55:12|click|resolved_detections# periodic=1,1# test=default# email=# stats_enabled=1sh=724895B1353831E6ED891E309C77E9242EB76366 ft=1 fh=0000000001a50528 vn="a variant of Win64/DriverReviver.A potentially unwanted application (cleaned by deleting)" ac=C fn="C:\Program Files\WinZip Driver Updater\DriverUpdater.exe"sh=8D7210F6A68E182F6987F230A714A52180599E4E ft=1 fh=00000000000880d0 vn="a variant of Generik.MCFBDGM potentially unwanted application (cleaned by deleting)" ac=C fn="C:\Program Files\WinZip Driver Updater\Uninstall.exe"sh=514EB9808AB313F568838F9C889AC190286B3D84 ft=1 fh=000000000000b000 vn="a variant of MSIL/Freemake.A potentially unwanted application (cleaned by deleting)" ac=C fn="C:\Program Files (x86)\Freemake\Freemake Video Converter\FMCommon\ConverterCommon\BrowserPlugin.dll"sh=ADC3985709DE708C12DE8E273E9A85E4A733B613 ft=1 fh=0000000000162600 vn="a variant of MSIL/Freemake.A potentially unwanted application (cleaned by deleting)" ac=C fn="C:\Program Files (x86)\Freemake\Freemake Video Converter\FMCommon\ConverterCommon\FreemakeConverterCommon.dll"sh=E46D8D5188E26EB0804F604D9448999460 171A18 ft=1 fh=00000000000f7190 vn="a variant of Win32/Freemake.C potentially unwanted application (cleaned by deleting)" ac=C fn="C:\Program Files (x86)\Freemake\Freemake Video Converter\SetupUpdate.exe"sh=F5D17C972CD37DFFD70AE4FCAC7E1050A5FFD669 ft=1 fh=00000000000f7148 vn="a variant of Win32/Freemake.C potentially unwanted application (cleaned by deleting)" ac=C fn="C:\Users\Sven\Downloads\FreemakeVideoConverterSetup_bd8a01fa-b99c-f755-e58c-18a41640c39f.exe"sh=A82AD01914DBF9F89E7543361D21EDD870D414C3 ft=1 fh=0000000000095b48 vn="a variant of Win32/ByteFence.B potentially unwanted application (cleaned by deleting)" ac=C fn="C:\Users\Sven\Downloads\Reason-Free-Antivirus-Installer.exe"sh=49ACAFACAAC62A745E69D71A58CC9453C41B15D0 ft=1 fh=0000000010d57fa5 vn="a variant of Win32/Toolbar.Conduit.I potentially unwanted application,Win32/PrcView potentially unsafe application (cleaned by deleting)" ac=C fn="C:\Users\Sven\Downloads\UBCD4WinV360.exe"sh=09953D378772817E1EBDFE51706645309D54A67C ft=1 fh=00000000011fb4e0 vn="a variant of Win64/DriverReviver.A potentially unwanted application,a variant of Generik.MCFBDGM potentially unwanted application,a variant of Win32/DriverReviver.A potentially unwanted application,a variant of Win32/DriverReviver.C potentially unwanted application (cleaned by deleting)" ac=C fn="C:\Users\Sven\Downloads\wzdu46.exe"sh=6FC013ED5944B13EFC54648699EA80F304E37AD0 ft=1 fh=00000000003c75fa vn="Win32/FusionCore.L potentially unwanted application,a variant of Win32/FusionCore.P potentially unwanted application (cleaned by deleting)" ac=C fn="J:\dvd editing\SetupImgBurn_2.5.8.0.exe"sh=E510575E520D68219D31BA1F197C151812341892 ft=1 fh=0000000001126620 vn="a variant of Win64/DriverReviver.A potentially unwanted application,a variant of Win32/DriverReviver.A potentially unwanted application,a variant of Win32/DriverReviver.C potentially unwanted application (cleaned by deleting)" ac=C fn="J:\winzip driver updater.exe"06:55:16 Call m_esets_charon_send06:55:16 Call m_esets_charon_destroy06:58:12 # product=EOS# version=8# esetonlinescanner.exe=3.4.7.0# country="United States"# lang=103306:58:14 # product=EOS# version=8# flags=0# av=0# fw=7# admin=0# esetonlinescanner.exe=3.4.7.0# EOSSerial=0e61e8d9903e2b47867a92b3cad4baf9# engine=0# end=finished# bannerClicked=0# remove_checked=false# archives_checked=false# unwanted_checked=false# unsafe_checked=false# antistealth_checked=false# sfx_checked=false# utc_time=2021-03-06 14:58:13# local_time=2021-03-06 06:58:13 (-0800, Pacific Standard Time)# country="United States"# lang=1033# osver=10.0.19042 NT # compatibility_mode=freeze# scanned=0# found=0# cleaned=0# scan_time=0# scan_type=1975192960# flow=2021-03-06 06:58:11|scr|home# periodic=1,1# test=default# email=# stats_enabled=106:58:14 Call m_esets_charon_send06:58:14 Call m_esets_charon_destroy06:58:35 # product=EOS# version=8# esetonlinescanner.exe=3.4.7.0# country="United States"# lang=103306:59:02 # product=EOS# version=8# flags=0# av=0# fw=7# admin=0# esetonlinescanner.exe=3.4.7.0# EOSSerial=0e61e8d9903e2b47867a92b3cad4baf9# engine=0# end=finished# bannerClicked=0# remove_checked=false# archives_checked=false# unwanted_checked=false# unsafe_checked=false# antistealth_checked=false# sfx_checked=false# utc_time=2021-03-06 14:59:02# local_time=2021-03-06 06:59:02 (-0800, Pacific Standard Time)# country="United States"# lang=1033# osver=10.0.19042 NT # compatibility_mode_1=''# compatibility_mode=5893 16776573 100 88 0 38415046 0 0# scanned=0# found=0# cleaned=0# scan_time=0# scan_type=1975192960# flow=2021-03-06 06:58:35|scr|home|2021-03-06 06:58:38|promo|ems# periodic=1,1# test=default# email=# stats_enabled=1
      My Computer


  7. Posts : 514
    Windows 10
       #7

    pericles is correct they were pup's.
    To get a 2nd opinion & make sure you are really clean run this.

    AdwCleaner
    Download AdwCleaner 8.1.0
    Download AdwCleaner
    Downloads - AdwCleaner - ToolsLib
    https://www.malwarebytes.com/adwcleaner/
    Close all open programs and internet browsers.
    Double click on AdwCleaner.exe to run the tool.
    Click Scan Now
    Click on Quarantine for all it finds.
    Reboot.
    Please Copy & Paste the contents of that logfile with your next reply.
    https://i.imgur.com/qERgl4y.gif
      My Computer


  8. Posts : 334
    windows 10
    Thread Starter
       #8

    They are not PUPs, they are legitimate programs that i use, some for years and i had to download them again.
    How is a driver updater a PUP? how is freemake a PUP.
    My opinion of ESET has not changed
      My Computer


  9. Posts : 1,031
    Win10 Version 21H2 19044.1645
       #9

    Sven1458 said:
    They are not PUPs, they are legitimate programs that i use, some for years and i had to download them again.
    How is a driver updater a PUP? how is freemake a PUP.
    My opinion of ESET has not changed

    Top 10 Ways PUPs Sneak Onto Your Computer. And How To Avoid Them. | Emsisoft | Security Blog

    PUPs are often downloaded with programs sometimes unknown to the user.

    Please follow jmatt's recs in post 7 and let us know.
      My Computer


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 15:30.
Find Us




Windows 10 Forums