• ×
    Information
    Need Windows 11 help?
    Check documents on compatibility, FAQs, upgrade information and available fixes.
    Windows 11 Support Center.
  • post a message
  • ×
    Information
    Need Windows 11 help?
    Check documents on compatibility, FAQs, upgrade information and available fixes.
    Windows 11 Support Center.
  • post a message
Guidelines
Join the HP Community Solve‑a‑thon | Help Others & Share Your Solutions | Live on Zoom | 2:30 PM to 2:30 AM IST | Every Wednesday Click here to know more

‎04-08-2026 04:16 AM

HP Recommended

My ESET Internet Securrity v19 detected 4 threats in UEFI

 

2026-04-07_13-49-21.png

Translation: 

 

  1. ProtokolyLogs
  2. Skenovanie zariadenia (1)Device Scan (1)
  3. ČasTime
  4. Skontrolované priečinkyScanned Locations
  5. Detail hlásenia:
    • Čas: 16.03.2026 11:28:06Time: 16 Mar 2026, 11:28:06
    • Skontrolované priečinky:
      Scanned Locations:
      • Operačná pamäťSystem Memory
      • C:\Zavádzacie sektory/UEFIC:\Boot Sectors/UEFI
      • D:\Zavádzacie sektory/UEFID:\Boot Sectors/UEFI
      • G:\Zavádzacie sektory/UEFIG:\Boot Sectors/UEFI
      • H:\Zavádzacie sektory/UEFIH:\Boot Sectors/UEFI
      • *C:, D:, G:, H:*C:, D:, G:, H:\ (Local Drives)
      • Databáza WMIWMI Database
      • Systémová databáza RegistrySystem Registry Database
  6. Skontrolovaných: 1298028Items Scanned: 1,298,028
  7. Detegovaných: 4Threats Detected: 4
  8. Vyliečených: 0Threats Resolved: 0
  9. Stav: UkončenéStatus: Completed

 

I wrote ticket to ESET sdupport, but they not found any issues in files and OS. They suggested this solution:

https://support.eset.com/sk/kb6567-eset-deteguje-skodlivy-kod-v-uefi

 

I have latest BIOS flashed. 

 

How can I solve this issue? 

 

Thanks

 

 

Reply
3 REPLIES 3

‎04-08-2026 08:12 AM

HP Recommended

Greetings @yard2018 

 

It sounds like a false positive detection by Eset if you submitted the files to Eset for inspection.

 

And Eset determined the files were clean.

 

If you want peace of mind you could have a local PC Electronics Tech reprogram the MB firmware using a Serial ISP Programmer.

 

You would probably also want to back up data on the system drive before reprogramming the BIOS. Then immediately reinstall the operating system after flashing the BIOS.

 

Or restore a known good OS backup if you do offline system image backups.

 

Again, Eset seems to be indicating the malware detection might be a false positive.

 

Regards

Reply
1 person found this reply helpful
Was this reply helpful? Yes No

‎04-08-2026 10:31 AM

HP Recommended

@Bill_To:  I think is false and I will not reflashing  EPROM, this is insane. ESET not describe which type of malware detected, and this look all is not only in UEFY, but scanned  hard drives too..    All is hacked? 🙂 by who?   RU, CN, US hackers?  Mad. 

 

Is exist some  low level HP UEFI or  HDD BIOS scaner? Or it is impossible scan if UEFI or HDD BIOS is infected? 

Reply
1 person found this reply helpful
Was this reply helpful? Yes No

‎04-08-2026 01:40 PM

HP Recommended

Greetings @yard2018 

 

I don't know if HP has a low level EFI scanner.

 

It's very difficult to detect and remove malware embedded in MB firmware.

 

Did you rescan the system using Eset: Advanced scans>Custom scan>in-depth scan>Scan as an administrator to check if the malware is still present?

 

I can only suggest checking to see if the Bleeping Computer Security Forum can help.

 

Regards

Reply
Was this reply helpful? Yes No
Warning
Be alert for scammers posting fake support phone numbers and/or email addresses on the community.
If you think you have received a fake HP Support message, please report it to us by clicking on "Flag Post".
† The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation.
Didn't find what you were looking for? Ask the community
† The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the <a href="https://www8.hp.com/us/en/terms-of-use.html" class="udrlinesmall">Terms of Use</a> and <a href="/t5/custom/page/page-id/hp.rulespage" class="udrlinesmall"> Rules of Participation</a>.