Bd Unable To Unhide Or Remove Rootkit In Thumbs.dn
I have 2nd problem, BD detected rootkit in my download folder which contain/shown Thumbs.dn. I cant delete the Thumbs.dn Below are the BD Log file:
BitDefender Log File
Product : BitDefender Antivirus 2009
Version : BitDefender UIScanner v.12
Scanning task : Deep System Scan
Log date : 12:08:56 11/10/2008
Log path : C:\Documents and Settings\All Users\Application Data\Bitdefender\Desktop\Profiles\Logs\deep_scan\1223698136_1_02.xml
Scan Paths:Path 0000: C:\Program Files\BitDefender\BitDefender 2009\uiscan.exe
Path 0001: C:\WINDOWS\system32\wuauclt.exe
Path 0002: C:\WINDOWS\System32\svchost.exe
Path 0003: C:\WINDOWS\system32\wscntfy.exe
Path 0004: C:\WINDOWS\System32\alg.exe
Path 0005: C:\WINDOWS\System32\svchost.exe
Path 0006: C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
Path 0007: C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
Path 0008: C:\WINDOWS\system32\UStorSrv.exe
Path 0009: C:\WINDOWS\system32\svchost.exe
Path 0010: C:\WINDOWS\system32\nvsvc32.exe
Path 0011: C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
Path 0012: C:\WINDOWS\system32\rundll32.exe
Path 0013: C:\WINDOWS\system32\ctfmon.exe
Path 0014: C:\Program Files\Messenger\msmsgs.exe
Path 0015: C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
Path 0016: C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
Path 0017: C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
Path 0018: C:\WINDOWS\system32\spoolsv.exe
Path 0019: C:\WINDOWS\Explorer.EXE
Path 0020: C:\WINDOWS\system32\svchost.exe
Path 0021: C:\WINDOWS\system32\svchost.exe
Path 0022: C:\WINDOWS\System32\svchost.exe
Path 0023: C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
Path 0024: C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
Path 0025: C:\WINDOWS\system32\svchost.exe
Path 0026: C:\WINDOWS\system32\svchost.exe
Path 0027: C:\WINDOWS\system32\lsass.exe
Path 0028: C:\WINDOWS\system32\services.exe
Path 0029: C:\WINDOWS\system32\winlogon.exe
Path 0030: C:\WINDOWS\system32\csrss.exe
Path 0031: \SystemRoot\System32\smss.exe
Path 0032: C:\
Path 0033: \
Scan Options:Scan for viruses : Yes
Scan for adware : Yes
Scan for spyware : Yes
Scan for applications : Yes
Scan for dialers : Yes
Scan for rootkits : Yes
Target Selection Options:Scan registry keys : Yes
Scan cookies : Yes
Scan boot sectors : Yes
Scan memory processes : Yes
Scan archives : Yes
Scan runtime packers : Yes
Scan emails : No
Scan all files : Yes
Heuristic Scan : Yes
Scanned extensions :
Excluded extensions :
Target Processing:Default action for infected objects : Disinfect
Default action for suspicious objects : None
Default action for hidden objects : None
Default action for encrypted infected objects : None
Default action for encrypted suspicious objects : None
Default action for password-protected objects : None
Scan engines summaryNumber of virus signatures : 1861176
Archive plugins : 43
Email plugins : 6
Scan plugins : 12
System plugins : 5
Unpack plugins : 7
Overall scan summaryScanned items : 99497
Infected items : 0
Suspicious items : 0
Resolved items : 0
Unresolved items : 1
Password-protected items : 0
Individual viruses found : 0
Scanned directories : 4539
Scanned boot sectors : 6
Scanned archives : 423
Input-output errors : 27
Scan time : 00:19:59
Files per second : 82
Scanned processes summaryScanned : 32
Infected : 0
Scanned registry keys summaryScanned : 823
Infected : 0
Scanned cookies summaryScanned : 823
Infected : 0
Remaining issues:Object Name Threat Name Final Status
C:\Downloads\Thumbs.dn\com1.{d3e34b21-9d75-101a-8c3d-00aa001a1652}\úø .\LastF.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren
.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.
ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.bd.ren.
bd.ren.bd.ren Rootkit-Hidden Items Hidden
Please help me.
Thanks.
Comments
-
Please upload the file(s) in an archive, protected with the password infected.
Attach the archive in your next post here.
If it's too big, upload it on www.rapishare.com and post here the download link.0