Unknown Infections?

ricksheppard

I have Total Security 2008, latest updates. I just ran a deep scan. and came up with some some malware. I couldn't find any information on the internet about any of them.

Application.Aseye.BFR

Application.Aseye.BPC

Application.Aseye.BPM

Does anyone know anything about these things? You'd think since bitdefender detected them it would know something about it. Silly me for thinking that.

Rick S.

alexcrist

Hi Rick Sheppard,

First of all, the prefix Application means that, what you have, is not necessarily a virus. It is a potentially harmful application, that can be used to harm your PC. On the other hand, if you installed that application, you know it and use it, then it might just be nothing to worry about.

But, in order to be able to tell you if it is safe or not, we have to know the exact path of the infected files (open BitDefender's log files and copy in your next post the paths).

About the virus: the BitDefender Team is trying to analyze as many malware as they can, so they can release signatures and keep your PC safe. They have very little time to spare and write a description for viruses, so they try to add to their Virus Encyclopedia only the most important malware. And that is why you didn't find any information on the BitDefender site.

I've searched the net and I could find an exact description for this potential malware. All I could discover is that it is an adware (not a virus). I will try to contact a BitDefender Virus Analyst and see if he can tell you what Aseye is about.

Cris.

vlad

Please upload the detected files here and I'll have a look. It might be a false positive, so don't delete the files just yet.

ricksheppard

They are crazy things like this:

\System Volume Information\_restore{41378033-E42E-4A8A-A780-377782B717F8}\RP213\A0027475.exe Application.Aseye.BFR Disinfect Failed

alexcrist

They are crazy things like this:

\System Volume Information\_restore{41378033-E42E-4A8A-A780-377782B717F8}\RP213\A0027475.exe Application.Aseye.BFR Disinfect Failed

Hi Rick Sheppard,

Sorry for the late reply.

Those files are in System Restore (a system used by Windows to return to an earlier state, if smething goes wrong). If there aren't any other files infected except the ones in the system restore points, then you could just emtpy the Restore Points:

right click on My Computer -> Properties -> System Restore. Select Turn off System Restore on all drives, press Apply, then un-select that option and press Apply again. This will delete all System Restore Points, on all partitions.

Don't worry, Windows will create other Restore Points when needed.

System Restore is a very good feature because, as I said, it allows you to return Windows to an earlier state in case something goes wrong (maybe you configured something wrong and Windows can't start anymore...). The bad part of ths feature is that, sometimes, it makes backups of some infected files (or maybe viruses place a copy of them in System Restore points). Antivirus products don't have access to those files (they can only scan the files, but not clean them), so that's why BitDefender could only warn you about them, but not actually do something about it. It's perfectly normal.

Cris.