SMART_HDD virus infection gets around ESET

I was very unpleasantly surprised when my system became infected with the SMART_HDD virus even while being protected by ESET NOD32 antivirus 5.

Thankfully, in the years I have used ESET, this is the first event of this type.
I sure hope we are protected now. I realize a new version of this was recently discovered.

Any thoughts?

TC Harp

 

in the last week i have seen this get around eset, avast, norton, avg, mcafee and a few others so its not just eset. i know norton was updated but im not sure about eset and the others.

if you were unable to remove it malwarebytes will do it then you must unhide the files it hid away. removal is not to bad. if you need help let me know

 

RKill, Malwarebytes, and system restore to two days ago, before the infection, to unhide everything is what seems to have worked for me. Bleepingcomputer published the procedure and an unhide.exe command, but it doesn't seem to work on win7.

Thanks,
TC Harp

 

Dude this happens all the time
Viruses Can Break security software why because it's 0day
it's not the Product fault

it's a cat and mouse Game

and No product will give you 100% protection anyway i'm sure eset guys
will patch things up

 

Very likely. I also sent the information to them.
I understand that a new version of this was recently discovered, not more than a week ago.

 

The latest and the only not yet recognized fake av was added in update about 1,5 hours ago. At VirusTotal, it's currently detected by 2 vendors. If the fake av you encountered is still not recognized, submit it to ESET please.

 

Help us out here please, what were you doing at the time of infection? What web sites visited? Email attachments? If there is a site to avoid I for one would like to block it!

Thanks.

 

how did you get infected?

in many many years of using the net I have still to get an infection from browsing web pages. I have only had trojans try to get on my pc via email and dodgy downloaded apps.

 

Exactly what I asked. I wonder why the OP has left the thread?

 

my client was infected when he clicked on a you tube video for a disney program yep.. disney so it doesnt matter what or where but the fact is it was not detected.

 

Erm... is nod32 detection getting weaker over the recent version from 3.0 onwards ? Its strange though I have friends who had v4 gotten virus from the internet.. I tried going to the site but was not infected at all...

I am a long Nod32 user I believe that Eset will not be sitting duck ignoring such threats. Just find it strange as in how do they get such thing over the internet ?

 

Quite the contraty, ESET's detection is excellent, especially in terms of rogue av detection where ESET is sometimes the only one or one of 2-3 other vendors to add detection for new created variants immediately.

 

For this I can vote yes I always looking at the ThreatSense Updates. Thanks Marcos it could be due to a long time I never gotten an infection which makes me wonder is Nod32 doing its job.

 

I'm done with this thread until TC Harp tells us what he was doing to get infected. I think unsafe browsing plus poor configuration set up is the problem not ESET.

 

I also have been infected with this...

I googled the difference between Sky tv and Virgin tv as I wanted to compare what different channels they had and boom..... I clicked on a link and it crashed my explorer then a error popped up on the screen saying something about a corrupt HDD..

I then done a on demand virus scan and found a threat "Win32/Olmarik. TDL4 trojan"

When i rebooted my pc all my files had been hidden
Also my facebook home page is now french.
When I type a address into the address bar it directs me to some random site.

I still have this infection and have no idea how to get rid off it.
I have run the online scanner

I do not look any dodgy sites or download any naughty stuff

If you can give me a few ideas on how to get rid of this I would be gratefull