Exploit.pdf-js.gen
Running BitDefender Internet Security 2009 Version 12.0.12.10. Last updated 5/14/2009 8:15 PM. System is Windows XP SP2 fully updated.
BD Internet Security 2009 alerted that Exploit.PDF-JS.Gen had been detected while on internet. Unable to move or delete so access to file denied. Ran deep system scan immediately after. Scan was clean except for 1 over compressed file (see log). Question is if BD could not move or delete this file and it didn't show up in the scan in the Firefox 3 cache then where is the file? I'm going to delete Firefox cache in any case and also run Malwarebytes Anti-Malware. Just looking for some input as to where else this file might be and whether I'm in danger of this ****** being initiated if I run Adobe Acrobat Reader. I'm using Reader 8.1 recently updated.
Log:
BitDefender Log File
Product : BitDefender Internet Security 2009
Version : BitDefender UIScanner v.12
Scanning task : Deep System Scan
Log date : 5/14/2009 9:37:55 PM
Log path : C:\Documents and Settings\All Users\Application Data\Bitdefender\Desktop\Profiles\Logs\deep_scan\1242362275_1_02.xml
Scan Paths:Path 0000: C:\
Path 0001: E:\
Path 0002: F:\
Scan Options:Scan for viruses : Yes
Scan for adware : Yes
Scan for spyware : Yes
Scan for applications : Yes
Scan for dialers : Yes
Scan for rootkits : Yes
Target Selection Options:Scan registry keys : Yes
Scan cookies : Yes
Scan boot sectors : Yes
Scan memory processes : Yes
Scan archives : Yes
Scan runtime packers : Yes
Scan emails : No
Scan all files : Yes
Heuristic Scan : Yes
Scanned extensions :
Excluded extensions :
Target Processing:Default action for infected objects : Disinfect
Default action for suspicious objects : None
Default action for hidden objects : None
Default action for encrypted infected objects : None
Default action for encrypted suspicious objects : None
Default action for password-protected objects : Log as not scanned
Scan engines summaryNumber of virus signatures : 2976914
Archive plugins : 45
Email plugins : 6
Scan plugins : 13
System plugins : 5
Unpack plugins : 7
Overall scan summaryScanned items : 363415
Infected items : 0
Suspicious items : 0
Resolved items : 0
Unresolved items : 1
Password-protected items : 0
Overcompressed items : 1
Individual viruses found : 0
Scanned directories : 12856
Scanned boot sectors : 4
Scanned archives : 6001
Input-output errors : 0
Scan time : 01:15:14
Files per second : 80
Scanned processes summaryScanned : 58
Infected : 0
Scanned registry keys summaryScanned : 1166
Infected : 0
Scanned cookies summaryScanned : 31
Infected : 0
Objects that were not scanned:Object Name Reason Final Status
C:\Data\Flash movies\Pivotal Movies\Alliance ERS\Ers images\Ers images.zip=]newopp-0009.bmp Overcompressed Not scanned
Comments
-
Hello Desertrider,
Please open BitDefender Security Center and click on the History button, in the lower-right corner of the window. Look at the Antivirus Realtime protection for the alert you described, double click it and make a screenshot of the window with the alert details. Then attach the screenshot here.
Cris.0 -
Hello Desertrider,
Please open BitDefender Security Center and click on the History button, in the lower-right corner of the window. Look at the Antivirus Realtime protection for the alert you described, double click it and make a screenshot of the window with the alert details. Then attach the screenshot here.
Cris.
Thanks for the reply. Here is the screenshot. Looks like it was blocked. I hadn't use the History feature before to highlight an alert and get the info. I hadn't taken a screenshot of the original alert so it's nice to learn a way to recreate it.0 -
The file was blocked by the HTTP traffic scan module of BitDefender. This means that the file was blocked before it reached the browser's cache, and that's why BitDefender didn't detect anything on Deep Scan.
There isn't anything you should worry about at this point, since the infected file was never stored on your system.
As for the Overcompressed file, take a look at this topic: http://forum.bitdefender.com/index.php?sho...=overcompressed
Cris.0 -
Thanks again for the clarification and info. Other then a short bout with the infamous "services not available" issue (solved by using the uninstall tool and reinstalling) I've had good success with both BD 2008 and 2009.
Rick0