ESET online scanner

patm · August 29, 2012, 05:13:08 AM

hi, ran the scanner and have 6 threats that say unable to clean. if i run it again with the Remove found threats box checked will the threats be removed.

thanks, patm

patm · August 29, 2012, 10:35:10 AM

hi, i keep on getting the message about what to do with googleupdatetaskusers-1-5-21-1214440339-1592454029-839522115-1004ua.job. is this a virus ?. i dont know what to do so i keep blocking it ?

Corrine · August 29, 2012, 10:34:17 PM

Hi, patm. Welcome to LandzDown Forum.

We will do our best to assist you. However, in order to do so, please follow all instructions provided in the sequence given. Do not install/re-install any programs or run any fixes or scanners that you have not been instructed to use. This may cause conflicts with the tools being used in the cleanup process.

If you have questions regarding any of the instructions or problems running any tools, please let us know.

I've merged your two posts to one topic. Regarding the Private Firewall question, the "googleupdatetaskusers" is part of the Google Chrome and Google Earth update mechanism. If you have either installed, you should allow it.

Let's see with ESET found. Run ESET again but this time, do the following:

Make sure that the option Remove found threats is unticked and the Scan Archives option is ticked.
Click on Advanced Settings, ensure the options Scan for potentially unwanted applications, Scan for potentially unsafe applications, and Enable Anti-Stealth Technology are ticked.
Click Scan
Wait for the scan to finish
Use notepad to open the logfile located at C:\Program Files\Eset\Eset Online Scanner\log.txt
Copy and paste that log as a reply to this topic and also let me know how things are now.

In addition, please follow the instructions here: Log Posting Instructions

patm · August 29, 2012, 11:37:39 PM

dom i turn off AV and maleware programs.

patm

Corrine · August 29, 2012, 11:48:50 PM

Hi, patm.

While scanning with ESET, it is best to temporarily disable your security programs. However, don't forget to turn them back on again after completing the scan. They do not need to be disabled while creating the other logs for review.

patm · August 30, 2012, 01:20:34 AM

little scare after scan finished i copied the log. then iwas not able to connect to internet. i turned off privatefirewall- still no connection. rebooted and everything seems ok. as far as the googleupdatetaskusers, the message popped up, this time it said program either modified or deleted if deleted then delete which i clicked. actually after i did that i could not connect until i rebooted. well, anyway here is the log copy:

# version=7
# IEXPLORE.EXE=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=686e16663efbf54ba1b5f7f6bed399bf
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2012-08-30 12:53:36
# local_time=2012-08-29 08:53:36 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=3587 16777174 85 68 369908 164353275 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=90200
# found=6
# cleaned=0
# scan_time=2529
C:\Documents and Settings\All Users\Documents\My Documents\My Documents\Downloads\Funkymix_Collection_001_-_131_(1986_-_2010)_downloader(1).exe   a variant of Win32/ExpressFiles application (unable to clean)   00000000000000000000000000000000   I
C:\Documents and Settings\All Users\Documents\My Documents\My Documents\Downloads\Funkymix_Collection_001_-_131_(1986_-_2010)_downloader.exe   a variant of Win32/ExpressFiles application (unable to clean)   00000000000000000000000000000000   I
C:\Documents and Settings\All Users\Documents\My Documents\My Documents\Downloads\WinZip165.exe   a variant of Win32/OpenInstall application (unable to clean)   00000000000000000000000000000000   I
C:\Documents and Settings\pjm\My Documents\Downloads\Funkymix_Collection_001_-_131_(1986_-_2010)_downloader(1).exe   a variant of Win32/ExpressFiles application (unable to clean)   00000000000000000000000000000000   I
C:\Documents and Settings\pjm\My Documents\Downloads\Funkymix_Collection_001_-_131_(1986_-_2010)_downloader.exe   a variant of Win32/ExpressFiles application (unable to clean)   00000000000000000000000000000000   I
C:\Documents and Settings\pjm\My Documents\Downloads\WinZip165.exe   a variant of Win32/OpenInstall application (unable to clean)   00000000000000000000000000000000   I

patm · August 30, 2012, 03:35:52 AM

i cleaned up a little and ran eset scan again and no problems found. i checked the uninstall box and went to copy the log but it was gone. do you recommend running any other diagnostic. i have norton av 2012, malwarebytes, superantispyware and spybot on my windows xp home. any others recommended.

thanks, patm

Corrine · August 30, 2012, 04:50:07 PM

Hi, patm.

I cannot provide any advice without knowing what is on the computer. Please post the requested logs. See Log Posting Instructions

GR@PH;<'S · August 30, 2012, 08:35:25 PM

patm,
The ESET on-line scanner will remove the items that it finds upon the re-booting of the PC.
Although your PC is or seems to be running ok may I saguest that you follow Corrines advice with Log Posting Instructions and post the log files here for peace of mind.

GR@PH;<'S :Hammys pint:

patm · August 30, 2012, 08:44:01 PM

i reran eset scan to obtain the log. is it normal to lose internet connection after the scan. i have to restart for connection. also, should i create a new restore point.

ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
# version=7
# IEXPLORE.EXE=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=686e16663efbf54ba1b5f7f6bed399bf
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2012-08-30 08:29:13
# local_time=2012-08-30 04:29:13 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=3587 16777190 85 68 440833 164424200 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=90682
# found=0
# cleaned=0
# scan_time=2141

Corrine · August 30, 2012, 11:13:50 PM

No, it is not normal to lose your Internet connection after running the ESET online scan. Re-running the scan only shows that the last time you ran it, you checked the box to "Remove found threats".

Quote from: Corrine on August 30, 2012, 04:50:07 PM
Hi, patm.

I cannot provide any advice without knowing what is on the computer. Please post the requested logs. See Log Posting Instructions

patm · August 30, 2012, 11:35:31 PM

i am pretty sure i ran eset scan with the "Remove found threats" box unchecked and archive box checked but i will run it again.

thanks, patm

Corrine · August 30, 2012, 11:57:19 PM

patm, Please don't run ESET again. That won't help us help you.

Instead, please post the requested logs: Log Posting Instructions

patm · August 31, 2012, 12:35:08 AM

help

i do the following

Please download DDS.scr by sUBs and save it to your desktop.

•Link
A.Double-Click dds.scr and a command window will appear. This is normal
B.Shortly after two logs will appear, DDS.txt & Attach.txt
C.A window will open instructing you save & post (do not attach) the logs
D.Save the logs to a convenient place such as your desktop

the black box pops up then a message fromm privatefirewall pops up and i click allow, wat and nothing happens.

patm

patm · August 31, 2012, 01:14:04 AM

OK HAD TO TURN OFF PRIVATEFIREWALL. now running.

PATM