Generic.pwstealer.63206060 And Generic.pwstealer.0e96bf1a

Hi,


my coumputer seems to be infected by Generic.PWStealer.63206060 and Generic.PWStealer.0E96BF1A and they cannot be removed.


I am getting the following issues left:


[system]=]C:\WINDOWS\system32\svchost.exe (full dump) DeepScan:Generic.PWStealer.63206060 No action was possible


[system]=]C:\WINDOWS\system32\svchost.exe (memory dump) Generic.PWStealer.0E96BF1A No action was possible


Does someone know what they are about? I have not seen any info available in the Internet.


Could someone please help me to know how they could be removed?


Thanks in advance

Comments

  • Hi,


    my coumputer seems to be infected by Generic.PWStealer.63206060 and Generic.PWStealer.0E96BF1A and they cannot be removed.


    I am getting the following issues left:


    [system]=]C:\WINDOWS\system32\svchost.exe (full dump) DeepScan:Generic.PWStealer.63206060 No action was possible


    [system]=]C:\WINDOWS\system32\svchost.exe (memory dump) Generic.PWStealer.0E96BF1A No action was possible


    Does someone know what they are about? I have not seen any info available in the Internet.


    Could someone please help me to know how they could be removed?


    Thanks in advance


    follow this link and these instructions: http://forum.bitdefender.com/index.php?showtopic=14941

  • follow this link and these instructions: http://forum.bitdefender.com/index.php?showtopic=14941


    Thanks. I went to C:\WINDOWS\system32\ and look for svchost.exe and follow your instructions disabling the antivirus. I renamed the file since I am worried to delete this one as it is a important process in Windows to be run. Additionaly, scan it and there was no track of any virus. I performed a deep scan afterwards and both issues are still there:(


    Am I doing something wrong?

  • Check this thread here, http://forum.bitdefender.com/index.php?showtopic=14084. The detection was only in the memory and not in the actual file. In other words, another process might have injected something in svchost.exe while it was running, leaving the original file intact. You might have had other infections that BD deleted previously and your computer might be fine, you would just have to restart the computer to get rid of those detections. Of course, your case might be different, so don't quote me on that.


    Check the thread above anyway, it might help you.

  • Check this thread here, http://forum.bitdefender.com/index.php?showtopic=14084. The detection was only in the memory and not in the actual file. In other words, another process might have injected something in svchost.exe while it was running, leaving the original file intact. You might have had other infections that BD deleted previously and your computer might be fine, you would just have to restart the computer to get rid of those detections. Of course, your case might be different, so don't quote me on that.


    Check the thread above anyway, it might help you.


    Hi again,


    I verified the thread AndreiRC was meentioning, restarted the computer and ran a Deep System scan and there was no track of the viruses but again they appeared when performing a Full system scan :(


    I have run the AVIS tool and attached the result just in case someone understands the content and have any other clue about how to solve it.


    Thanks again

    /applications/core/interface/file/attachment.php?id=5384" data-fileid="5384" rel="">bd_sys_log.xml