Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible DeepScan:generic.Malware infection


  • Please log in to reply
No replies to this topic

#1 Catscratch

Catscratch

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:11:20 AM

Posted 19 December 2009 - 05:10 AM

Hello. My Bitdefender resident shield is blocking a virus it calls DeepScan:Generic.Malware.SFMdld.93CB0F9B
As per topic description, when running a full system scan with bitdefender, nothing is picked up. At first it was only affecting svchost according to bitdefender shield but now it seems to be blocking various net traffic, freeandfee.com/bot.exe and chuyennangtaythi.net/bot.exe from what I have seen so far. I am running windows 7 ultimate 32bit and fully updated bitdefender 2010 total security. When bitdefender failed to find the virus I activated and updated and subsequently ran windows defender after disabling bitdefender, which also found nothing. Sometime after this I started getting a message from interactive services detection saying a program running on this computer is trying to display a message. This is now popping up from time to time. I have no idea what to do about this so some help would be appreciated! Im going to run another full bitdefender scan and will post the logs here when it is done.

Note. I attempted to google DeepScan:Generic.Malware.SFMdld.93CB0F9B several times, but came up with nothing useful. There was variants of DeepScan:Generic.Malware it seems but their symptoms where not the same nor was there any useful removal advice from what I could find.

*EDIT*
Here is the log file from the last full scan I ran with bitdefender.

BitDefender Log File


Product: BitDefender Total Security 2010
Version: BitDefender Antivirus Scanner
Scanning task: Deep System Scan
Log date: 2009/12/16 10:00:05 AM
Log path: C:\ProgramData\BitDefender\Desktop\Profiles\Logs\deep_scan\1260950405_1_01.xml

Scan paths:
Path 0000: C:\
Path 0001: D:\
Path 0002: H:\

Scan Level:
Scan for viruses: Yes
Scan for adware: Yes
Scan for spyware: Yes
Scan for applications: Yes
Scan for dialers: Yes
Scan for rootkits: Yes
Scan for keyloggers: Yes

Virus Scanning Options:
Scan registry keys: Yes
Scan cookies: Yes
Scan boot sectors: Yes
Scan memory processes: Yes
Scan archives: Yes
Scan runtime packers: Yes
Scan e-mails: Yes
Scan all files: Yes
Heuristic Scan: Yes
Scanned extensions: not configured
Excluded extensions: not configured

Target Processing:
Default first action for infected objects: Disinfect
Default second action for infected objects: None
Default first action for suspect objects : None
Default second action for suspicious objects: None
Default action for hidden objects: None
Default first action for encrypted infected objects: Disinfect
Default second action for encrypted infected objects: None
Default first action for encrypted suspicious objects: None
Default second action for encrypted suspicious objects: None
Default action for password-protected objects: Log only

Scan Engines Summary
Virus signatures: 4731232
Archive plugins: 44
E-mail plugins: 6
Scan plugins: 13
System plugins: 5
Unpack plugins: 8

Basic
Scanned items: 1367633
Infected items: 2
Suspect items: 0 (no suspected items have been detected)
Hidden items: 0 (no hidden items have been detected during this scan)
Resolved items: 2
Unresolved items: 0 (no issues remained unresolved)

Advanced
Scan time: 03:01:29
Files per second: 125
Skipped items: 65067
Password-protected items: 15
Over-compressed items: 5
Individual viruses found: 2
Scanned folders: 23869
Scanned boot sectors: 6
Scanned archives: 9055
Input-output errors: 55
Scanned processes: 40
Infected processes: 0
Scanned registry keys: 0
Infected registry keys: 0
Scanned cookies: 0
Infected cookies: 0



Resolved issues:Object Path Threat Name Final Status
D:\Cloned Cd's\others\Homeworld 2\Homeworld 2.nrg=>HW2_Setup.exe=>wise0019=>(Embedded EXE 2o) Trojan.Generic.IS.564678 Archive moved to Quarantine
H:\Stuff\Downloads\Torrent Files\BitDefender 2010 Total Security.rar=>BitDefender 2010 Total Security\Patch Bitdefender All versions.exe Trojan.Keygen.AX Archive moved to Quarantine

Not scanned objects:Object Path Reason: Final Status
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part01.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part02.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part03.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part04.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part05.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part06.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part07.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part08.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part09.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part10.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part11.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part12.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part13.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part14.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Junk\Installs\winzip81.exe=>(ZIP Sfx s)=>SETUP.WZ=>WINZIP32.EX_ Password-protected Not scanned (file was password-protected)
H:\Games\Hon\game\maps\darkwoodvale.s2z Over-compressed archive(s) Not scanned (over-compressed file)
H:\Games\Hon\game\maps\test.s2z Over-compressed archive(s) Not scanned (over-compressed file)
H:\Games\Hon\game\maps\test_simple.s2z Over-compressed archive(s) Not scanned (over-compressed file)
H:\Games\Quake 3\defrag\defrag_media.pk3 Over-compressed archive(s) Not scanned (over-compressed file)
H:\Games\Savage 2 - A Tortured Soul\game\maps\practice.s2z Over-compressed archive(s) Not scanned (over-compressed file)

*2nd EDIT*
Alright finished scan here are the results

BitDefender Log File

Product: BitDefender Total Security 2010
Version: BitDefender Antivirus Scanner
Scanning task: Deep System Scan
Log date: 2009/12/19 12:13:44 PM
Log path: C:\ProgramData\BitDefender\Desktop\Profiles\Logs\deep_scan\1261217624_1_00.xml
Scan paths:
Path 0000: C:\
Path 0001: D:\
Path 0002: H:\
Scan Level:
Scan for viruses: Yes
Scan for adware: Yes
Scan for spyware: Yes
Scan for applications: Yes
Scan for dialers: Yes
Scan for rootkits: Yes
Scan for keyloggers: Yes
Virus Scanning Options:
Scan registry keys: Yes
Scan cookies: Yes
Scan boot sectors: Yes
Scan memory processes: Yes
Scan archives: Yes
Scan runtime packers: Yes
Scan e-mails: Yes
Scan all files: Yes
Heuristic Scan: Yes
Scanned extensions: not configured
Excluded extensions: not configured
Target Processing:
Default first action for infected objects: Disinfect
Default second action for infected objects: None
Default first action for suspect objects : None
Default second action for suspicious objects: None
Default action for hidden objects: None
Default first action for encrypted infected objects: Disinfect
Default second action for encrypted infected objects: None
Default first action for encrypted suspicious objects: None
Default second action for encrypted suspicious objects: None
Default action for password-protected objects: Log only
Scan Engines Summary
Virus signatures: 4743737
Archive plugins: 44
E-mail plugins: 6
Scan plugins: 13
System plugins: 5
Unpack plugins: 8
Basic
Scanned items: 1379372
Infected items: 0 (no infected items have been detected)
Suspect items: 0 (no suspected items have been detected)
Hidden items: 0 (no hidden items have been detected during this scan)
Resolved items: 0 (no threats have been detected during this scan)
Unresolved items: 0 (no issues remained unresolved)
Advanced
Scan time: 03:13:53
Files per second: 118
Skipped items: 59416
Password-protected items: 15
Over-compressed items: 5
Individual viruses found: 0
Scanned folders: 24455
Scanned boot sectors: 6
Scanned archives: 9181
Input-output errors: 59
Scanned processes: 81
Infected processes: 0
Scanned registry keys: 1010
Infected registry keys: 0
Scanned cookies: 44
Infected cookies: 0



Not scanned objects:Object Path Reason: Final Status
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part01.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part02.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part03.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part04.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part05.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part06.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part07.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part08.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part09.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part10.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part11.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part12.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part13.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Downloads\Torrent Files\Sins patches\Patch111.part14.rar Password-protected Not scanned (file was password-protected)
H:\Stuff\Junk\Installs\winzip81.exe=>(ZIP Sfx s)=>SETUP.WZ=>WINZIP32.EX_ Password-protected Not scanned (file was password-protected)
H:\Games\Hon\game\maps\darkwoodvale.s2z Over-compressed archive(s) Not scanned (over-compressed file)
H:\Games\Hon\game\maps\test.s2z Over-compressed archive(s) Not scanned (over-compressed file)
H:\Games\Hon\game\maps\test_simple.s2z Over-compressed archive(s) Not scanned (over-compressed file)
H:\Games\Quake 3\defrag\defrag_media.pk3 Over-compressed archive(s) Not scanned (over-compressed file)
H:\Games\Savage 2 - A Tortured Soul\game\maps\practice.s2z Over-compressed archive(s) Not scanned (over-compressed file)

Edited by Catscratch, 19 December 2009 - 02:35 PM.


BC AdBot (Login to Remove)

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users