Exploit.pdf-js.gen

toalice
toalice
in Bitdefender 2009 products

Running BitDefender Internet Security 2009 Version 12.0.12.10. Last updated 5/14/2009 8:15 PM. System is Windows XP SP2 fully updated.


BD Internet Security 2009 alerted that Exploit.PDF-JS.Gen had been detected while on internet. Unable to move or delete so access to file denied. Ran deep system scan immediately after. Scan was clean except for 1 over compressed file (see log). Question is if BD could not move or delete this file and it didn't show up in the scan in the Firefox 3 cache then where is the file? I'm going to delete Firefox cache in any case and also run Malwarebytes Anti-Malware. Just looking for some input as to where else this file might be and whether I'm in danger of this ****** being initiated if I run Adobe Acrobat Reader. I'm using Reader 8.1 recently updated.


Log:


BitDefender Log File


Product : BitDefender Internet Security 2009


Version : BitDefender UIScanner v.12


Scanning task : Deep System Scan


Log date : 5/14/2009 9:37:55 PM


Log path : C:\Documents and Settings\All Users\Application Data\Bitdefender\Desktop\Profiles\Logs\deep_scan\1242362275_1_02.xml


Scan Paths:Path 0000: C:\


Path 0001: E:\


Path 0002: F:\


Scan Options:Scan for viruses : Yes


Scan for adware : Yes


Scan for spyware : Yes


Scan for applications : Yes


Scan for dialers : Yes


Scan for rootkits : Yes


Target Selection Options:Scan registry keys : Yes


Scan cookies : Yes


Scan boot sectors : Yes


Scan memory processes : Yes


Scan archives : Yes


Scan runtime packers : Yes


Scan emails : No


Scan all files : Yes


Heuristic Scan : Yes


Scanned extensions :


Excluded extensions :


Target Processing:Default action for infected objects : Disinfect


Default action for suspicious objects : None


Default action for hidden objects : None


Default action for encrypted infected objects : None


Default action for encrypted suspicious objects : None


Default action for password-protected objects : Log as not scanned


Scan engines summaryNumber of virus signatures : 2976914


Archive plugins : 45


Email plugins : 6


Scan plugins : 13


System plugins : 5


Unpack plugins : 7


Overall scan summaryScanned items : 363415


Infected items : 0


Suspicious items : 0


Resolved items : 0


Unresolved items : 1


Password-protected items : 0


Overcompressed items : 1


Individual viruses found : 0


Scanned directories : 12856


Scanned boot sectors : 4


Scanned archives : 6001


Input-output errors : 0


Scan time : 01:15:14


Files per second : 80


Scanned processes summaryScanned : 58


Infected : 0


Scanned registry keys summaryScanned : 1166


Infected : 0


Scanned cookies summaryScanned : 31


Infected : 0


Objects that were not scanned:Object Name Reason Final Status


C:\Data\Flash movies\Pivotal Movies\Alliance ERS\Ers images\Ers images.zip=]newopp-0009.bmp Overcompressed Not scanned

Comments

  • alexcrist
    alexcrist

    Hello Desertrider,


    Please open BitDefender Security Center and click on the History button, in the lower-right corner of the window. Look at the Antivirus Realtime protection for the alert you described, double click it and make a screenshot of the window with the alert details. Then attach the screenshot here.


    Cris.

  • toalice
    toalice
    Hello Desertrider,


    Please open BitDefender Security Center and click on the History button, in the lower-right corner of the window. Look at the Antivirus Realtime protection for the alert you described, double click it and make a screenshot of the window with the alert details. Then attach the screenshot here.


    Cris.


    Thanks for the reply. Here is the screenshot. Looks like it was blocked. I hadn't use the History feature before to highlight an alert and get the info. I hadn't taken a screenshot of the original alert so it's nice to learn a way to recreate it.


    post-5462-1242372381_thumb.jpg

  • alexcrist
    alexcrist
    edited May 2009

    The file was blocked by the HTTP traffic scan module of BitDefender. This means that the file was blocked before it reached the browser's cache, and that's why BitDefender didn't detect anything on Deep Scan.


    There isn't anything you should worry about at this point, since the infected file was never stored on your system. :)


    As for the Overcompressed file, take a look at this topic: http://forum.bitdefender.com/index.php?sho...=overcompressed


    Cris.

  • toalice
    toalice

    Thanks again for the clarification and info. Other then a short bout with the infamous "services not available" issue (solved by using the uninstall tool and reinstalling) I've had good success with both BD 2008 and 2009.


    Rick

All Time Leaders

Categories

Defenders of the month