andresito11 0 Posted March 25, 2021 Share Posted March 25, 2021 ESET Internet security repeatedly shows me this message Threat HTML/ScrInject.b in file File .tmp.drivedownload\tmp0a7pfj.drivedownload - Trojan horse trying to access googledrivesync.exe What should I do? Malwarebytes and ESET did not help. Thanks Here is the screen of message https://pasteboard.co/JUhiYfY.jpg Link to comment Share on other sites More sharing options...
Administrators Marcos 4,910 Posted March 25, 2021 Administrators Share Posted March 25, 2021 Please provide logs collected with ESET Log Collector. Link to comment Share on other sites More sharing options...
itman 1,627 Posted March 25, 2021 Share Posted March 25, 2021 Google Drive; i.e. googledrivesync.exe is attempting to download to your Downloads something malicious. It's creating a temp directory, .tmp.drivedownload, and creating this file, tmp0a7pfj.drivedownload. How Google Drive synchronization is supposed to work is as follows: Quote Googledrivesync.exe is an executable file that belongs to the Google Drive client. Google Drive is a file storage and synchronization service offered by Google. This file runs the synchronization tool that syncs files between an online Google Drive account and a Google Drive folder located on the desktop. https://www.file.net/process/googledrivesync.exe.html It is possible that the above directory and file are used by Google Drive synchronization. In any case, it appears something malicious resides on your Google Drive in the cloud. Link to comment Share on other sites More sharing options...
Recommended Posts