- Jul 26, 2015
- 263
Hello F-Secure MalwareTips Community,
I am thinking to switch from Windows Defender on to F-Secure since I found Malware on my system with a Scan and Windows Defender did not... (Private PC) - It just needs to be a Scanner with Cloud AI support and not a Software Firewall since I got that covered by NetLimiter and Mikrotik RouterOS Firewall.
What was found?
By EmsiSoft EEK DeepScan!
02/09/2020 22:46:06
Scanner detected High risk Malware "Heur.BZC.WBO.Boxter.501.4B1E4D92 (B)" in "C:\Windows\System32\Tasks\Setup Script\Windows Cleanup -> (Exec)"
02/09/2020 22:46:06
Scanner detected High risk Malware "Heur.BZC.WBO.Boxter.501.4B1E4D92 (B)" in "C:\Windows\System32\Tasks\Setup Script\Windows Cleanup -> (Exec+)"
Scanned file with VirusTotal as well to confirm and 10 Engines had a hit it was Bad.
Under those 10 Engines that found the "Bad" file was F-Secure. Since the CVE News F-Secure has become very open about vulnerability and think that this is a very good approach.
So on that part Windows Defender failed me but nothing happened to my system. Went thru my Event Logs and Firewall Logs and nothing suspicious happened. (Phew!!!) It could also be a false positive I am not sure... I already deleted that file from the system so I do not have the HASH at hand.
Many thanks in advance
Val.
I am thinking to switch from Windows Defender on to F-Secure since I found Malware on my system with a Scan and Windows Defender did not... (Private PC) - It just needs to be a Scanner with Cloud AI support and not a Software Firewall since I got that covered by NetLimiter and Mikrotik RouterOS Firewall.
What was found?
By EmsiSoft EEK DeepScan!
02/09/2020 22:46:06
Scanner detected High risk Malware "Heur.BZC.WBO.Boxter.501.4B1E4D92 (B)" in "C:\Windows\System32\Tasks\Setup Script\Windows Cleanup -> (Exec)"
02/09/2020 22:46:06
Scanner detected High risk Malware "Heur.BZC.WBO.Boxter.501.4B1E4D92 (B)" in "C:\Windows\System32\Tasks\Setup Script\Windows Cleanup -> (Exec+)"
Scanned file with VirusTotal as well to confirm and 10 Engines had a hit it was Bad.
Under those 10 Engines that found the "Bad" file was F-Secure. Since the CVE News F-Secure has become very open about vulnerability and think that this is a very good approach.
So on that part Windows Defender failed me but nothing happened to my system. Went thru my Event Logs and Firewall Logs and nothing suspicious happened. (Phew!!!) It could also be a false positive I am not sure... I already deleted that file from the system so I do not have the HASH at hand.
Many thanks in advance
Val.
Last edited: