How accurate is the ESET website scanner? Please help!

Discussion in 'ESET NOD32 Antivirus' started by satasonic, Apr 14, 2011.

Thread Status:
Not open for further replies.
  1. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    Guys, I went to a live streaming website and apparently there was a Virus on one of the ads. Nod32 blocked it as soon as I clicked the link. After deleting cache, I opened Nod32 and saw: Number of blocked attacks: 6.
    I deleted all the files from quarantine, and smart-scanned my machine. Nothing was found. How can I be sure that I have no virus? The scan didnt find anything at all to indicate there was one. Did I delete the malware? Also, they were all in .PDF format, cant provide the screenshot because I didnt take one :blink:

    So indeed, how can I be sure that I cleaned my machine from that crap advertisement?
     
  2. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    I performed a full scan of my machine. Nothing was found. Am I safe now?
     
  3. Thankful

    Thankful Savings Monitor

    Joined:
    Feb 28, 2005
    Posts:
    3,736
    Location:
    New York City
    You can also run an in-depth scan to be sure. Most likely, you are not infected.
    NOD32 is behaving as it should. You can also try a scan by Malwarebytes.
     
  4. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    Thank you for the reply. However- I know that those streaming websites dont include anything in them. Could an ad actually be a virus? It blocked one of the porn ads on it, and displayed the red box in the bottom right. Then it sent all of the files to quarantine. I deleted them from there. Did I do the right thing?
    Also, it scanned every folder on my machine. Nothing was found.

    PS. I deleted the cache of my browser BEFORE deleting the quarantined files (Which were only the Opera .tmp files).
     
  5. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    Anyone?
     
  6. Thankful

    Thankful Savings Monitor

    Joined:
    Feb 28, 2005
    Posts:
    3,736
    Location:
    New York City
  7. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    No, no. You didnt understand the question ;)
    I meant to ask if they Nod32 scan is actually good compared to other AV programs? If it yielded no results how sure can I be that my system is clean?


    Also, another question was- If it put the advertisement in quarantine as a cache file, is it ok to delete it? If I deleted it, did the virus go away?

    Additionally, I have never heard you could get troubles from an advertisement. Could you please confirm if you can?

    Thanks a lot!
     
  8. Thankful

    Thankful Savings Monitor

    Joined:
    Feb 28, 2005
    Posts:
    3,736
    Location:
    New York City
    Eset is a very good scanner. However, no scanner will catch EVERYTHING. That is why I recommended scanning with the other two programs.
    Someone else will have to answer your other questions.
     
  9. yongsua

    yongsua Registered Member

    Joined:
    Feb 9, 2011
    Posts:
    474
    Location:
    Malaysia
    Nod32 is really good and it is very proactive.Of course,there are some products are bad than Nod 32 but also some products are better than Nod32.My conclusion is Nod32 mostly rated as top 10 antivirus programs and recommended by many experts.Their company is a respected organization.:)

    Yes,it is ok to delete it except if you receive "Unable to clean."Besides,why don't you try the suggestion that given by Thankful?You can download Malwarebytes Anti-Malware and Hitman Pro as on demand scan.As Thankful mentioned above,"no scanner will catch EVERYTHING".:)
     
  10. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    Another question that nobody answered- Can a virus ACTUALLY be on an advertisement on any website? Nod32 luckily terminated connection to it, which is a great thing.
     
  11. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    Yes it can indeed :)

    NOD once blocked an malware AD one for me as well.
     
  12. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    And once it blocked the virus is gone, right? It had no time to spread?
     
  13. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    That's right, you are safe Sir :thumb:

    But if you want to be really sure then download one of the on-demand scanners wich has been mentioned in this thread several times, such as Malwarebytes.
     
    Last edited: Apr 15, 2011
  14. pegr

    pegr Registered Member

    Joined:
    Apr 8, 2008
    Posts:
    2,279
    Location:
    UK
    If the virus was blocked up front, then no damage should have occurred. If you are still concerned though, do as Thankful said and run a couple of scans with other programs - it was good advice.

    Relying solely on an AV to protect the system is always going to be a gamble. As Thankful has already said, no AV however good - and NOD32 is a good AV - will catch everything. When it comes to high risk vectors such as web browsing, it's a good idea to supplement with additional protection that doesn't depend on the effectiveness of the AV.

    A good way to ensure that you can't get infected via the browser is to use Sandboxie to run the browser inside a sandbox. That way if anything bad happens, it is trapped inside the sandbox and can be completely eliminated simply by emptying the sandbox.
     
  15. agoretsky

    agoretsky Eset Staff Account

    Joined:
    Apr 4, 2006
    Posts:
    4,032
    Location:
    California
    Hello,

    If you are still concerned, you can try making a bootable ESET SysRescue disc/USB flash drive and use that to scan the computer's hard disk drive.

    Regards,

    Aryeh Goretsky
     
  16. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    To my amazement, this happened again today, from a different website as well.

    If the connection was terminated- No harm was done, right?
     
  17. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    Did a smart scan, found nothing. Am I safe? What should I do next?
     
  18. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    By the way, how can I confirm whether a website is malicious or dodgy?
     
  19. Engineeringfun

    Engineeringfun Registered Member

    Joined:
    Apr 8, 2011
    Posts:
    48
    Location:
    Australia
    Yes, most likely you are safe as Nod32 is very effective in detection and prevention, especially from malware. I suggest downloading WOT, which is a tool designed to indicate which sites are safe and which are malware infested. Red indicates danger, yellow indicates that it may or may not be trusted, green indicates the site is safe and grey means that the site has not been entered into the database.

    This tool can only be downloaded using Chrome or Firefox. You should also download NoScript to block malicious scripts from hijacking your browser. Ad Block Plus is also useful as it blocks ads, for instance malware ads, that you might normally accidentally click on and this prevents a lot of virus attacks.

    If malwarebytes came up with nothing and HitmanPro came up with nothing, I think you are clean. Good luck!
     
  20. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    Thank you for the reply.

    The website you have given does not show any info about the website. Can anyone here confirm that "my-birthday-fund [dot] com" is indeed malicious in any way?
     
  21. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    As far as I know, that's right.
    Test the link/s that you find suspicious, or uncertain about if they are safe or not to access on URLVoid.com.
    But only because all results turned out green, doesn't always mean it's safe to enter the site.
     
  22. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    I have checked that dodgy website using your link. Its all green. Could this be a false positive? As far as I know there cant be a virus in a simple photo?
     
  23. Engineeringfun

    Engineeringfun Registered Member

    Joined:
    Apr 8, 2011
    Posts:
    48
    Location:
    Australia
    It may be a false positive or something on the site may have been malicious, such as a script or malware ad or related site. Nod may have detected something strange on the site, it may or may not be a false positive. There cannot be a virus in a photo, but viruses can certainly be on the site that hosts the photo on google images. Be careful with these. If you download WOT it will put the rating on the photos when searching on google images. You could also download SiteAdvisor which is another tool similar to WOT.

    :cool:
     
  24. satasonic

    satasonic Registered Member

    Joined:
    Apr 14, 2011
    Posts:
    51
    Thank you again for your response :thumb:


    I performed one more smart scan. Nothing was found.

    Did anything like this ever happen to you? Happened to me only twice in 4 years so I sort of didnt know what to do since I was surprised :cautious:
     
  25. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    When NOD/ESS say "Connection terminated" for example.
    Then usually you don't need to worry, because that is the message we want to see.

    But you can do weekly scans with Malwarebytes and/or Hitman Pro and you should be fine.
     
Thread Status:
Not open for further replies.