Bd Unable To Unhide Or Remove Rootkit In Thumbs.dn

I have 2nd problem, BD detected rootkit in my download folder which contain/shown Thumbs.dn. I cant delete the Thumbs.dn Below are the BD Log file:


BitDefender Log File


Product : BitDefender Antivirus 2009


Version : BitDefender UIScanner v.12


Scanning task : Deep System Scan


Log date : 12:08:56 11/10/2008


Log path : C:\Documents and Settings\All Users\Application Data\Bitdefender\Desktop\Profiles\Logs\deep_scan\1223698136_1_02.xml


Scan Paths:Path 0000: C:\Program Files\BitDefender\BitDefender 2009\uiscan.exe


Path 0001: C:\WINDOWS\system32\wuauclt.exe


Path 0002: C:\WINDOWS\System32\svchost.exe


Path 0003: C:\WINDOWS\system32\wscntfy.exe


Path 0004: C:\WINDOWS\System32\alg.exe


Path 0005: C:\WINDOWS\System32\svchost.exe


Path 0006: C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe


Path 0007: C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe


Path 0008: C:\WINDOWS\system32\UStorSrv.exe


Path 0009: C:\WINDOWS\system32\svchost.exe


Path 0010: C:\WINDOWS\system32\nvsvc32.exe


Path 0011: C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE


Path 0012: C:\WINDOWS\system32\rundll32.exe


Path 0013: C:\WINDOWS\system32\ctfmon.exe


Path 0014: C:\Program Files\Messenger\msmsgs.exe


Path 0015: C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe


Path 0016: C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe


Path 0017: C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe


Path 0018: C:\WINDOWS\system32\spoolsv.exe


Path 0019: C:\WINDOWS\Explorer.EXE


Path 0020: C:\WINDOWS\system32\svchost.exe


Path 0021: C:\WINDOWS\system32\svchost.exe


Path 0022: C:\WINDOWS\System32\svchost.exe


Path 0023: C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe


Path 0024: C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe


Path 0025: C:\WINDOWS\system32\svchost.exe


Path 0026: C:\WINDOWS\system32\svchost.exe


Path 0027: C:\WINDOWS\system32\lsass.exe


Path 0028: C:\WINDOWS\system32\services.exe


Path 0029: C:\WINDOWS\system32\winlogon.exe


Path 0030: C:\WINDOWS\system32\csrss.exe


Path 0031: \SystemRoot\System32\smss.exe


Path 0032: C:\


Path 0033: D:\


Scan Options:Scan for viruses : Yes


Scan for adware : Yes


Scan for spyware : Yes


Scan for applications : Yes


Scan for dialers : Yes


Scan for rootkits : Yes


Target Selection Options:Scan registry keys : Yes


Scan cookies : Yes


Scan boot sectors : Yes


Scan memory processes : Yes


Scan archives : Yes


Scan runtime packers : Yes


Scan emails : No


Scan all files : Yes


Heuristic Scan : Yes


Scanned extensions :


Excluded extensions :


Target Processing:Default action for infected objects : Disinfect


Default action for suspicious objects : None


Default action for hidden objects : None


Default action for encrypted infected objects : None


Default action for encrypted suspicious objects : None


Default action for password-protected objects : None


Scan engines summaryNumber of virus signatures : 1861176


Archive plugins : 43


Email plugins : 6


Scan plugins : 12


System plugins : 5


Unpack plugins : 7


Overall scan summaryScanned items : 99497


Infected items : 0


Suspicious items : 0


Resolved items : 0


Unresolved items : 1


Password-protected items : 0


Individual viruses found : 0


Scanned directories : 4539


Scanned boot sectors : 6


Scanned archives : 423


Input-output errors : 27


Scan time : 00:19:59


Files per second : 82


Scanned processes summaryScanned : 32


Infected : 0


Scanned registry keys summaryScanned : 823


Infected : 0


Scanned cookies summaryScanned : 823


Infected : 0


Remaining issues:Object Name Threat Name Final Status


C:\Downloads\Thumbs.dn\com1.{d3e34b21-9d75-101a-8c3d-00aa001a1652}\úø .\LastF.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren


.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.


ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.


bd.ren.bd.ren Rootkit-Hidden Items Hidden


Please help me.


Thanks.

Comments

  • rootkit
    rootkit ✭✭✭

    Please upload the file(s) in an archive, protected with the password infected.


    Attach the archive in your next post here.


    If it's too big, upload it on www.rapishare.com and post here the download link.