Improve company productivity with a Business Account.Sign Up

x
?
Solved

Virus Exploit:Win32/Pdfjsc.AEI

Posted on 2013-12-24
10
Medium Priority
?
459 Views
Last Modified: 2013-12-24
Downloaded and scanned with MS Safety Scanner and it said that it partially removed the following exploit.  What does partially mean?  Any ideas.  Ran the quick scan and it came back clean.  Computer was running Malwarebytes Pro, that scan came back clean as well.

---------------------------------------------------------------------------------------------------------------------------
---------------------------------------------------------------------------------------

Microsoft Safety Scanner v1.0, (build 1.165.538.0)
Started On Mon Dec 23 22:05:44 2013

Extended Scan Results
----------------
->Scan ERROR: resource file://C:\pagefile.sys (code 0x00000020 (32))
->Scan ERROR: resource file://C:\pagefile.sys (code 0x0000054F (1359))
->Scan ERROR: resource file://C:\pagefile.sys (code 0x00000020 (32))
->Scan ERROR: resource file://\\SERVER\WPDATA~1 (code 0x0000054F (1359))
Threat detected: Exploit:Win32/Pdfjsc.AEI
    containerfile://C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.Outlook\MX4H1RNN\282244.pdf
        SHA1:   470C0FFA41185D920502904E9CA04BEE4EBEB032
    file://C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.Outlook\MX4H1RNN\282244.pdf->(pdf0002:)
        SigSeq: 0x00000E287E53DD1D
        SHA1:   022D7BE468A0DF363965C377E5FC58787030CCBD

Extended Scan Removal Results
----------------
Start 'remove' for file://\\?\C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.Outlook\MX4H1RNN\282244.pdf->(pdf0002:)
Operation failed (code=0x8026), please use a full antivirus product ! !

Start 'remove' for containerfile://\\?\C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.Outlook\MX4H1RNN\282244.pdf
Operation failed (code=0x8026), please use a full antivirus product ! !


Results Summary:
----------------
Found Exploit:Win32/Pdfjsc.AEI, partially removed.
Microsoft Safety Scanner Finished On Tue Dec 24 06:44:10 2013


Return code: 7 (0x7)

---------------------------------------------------------------------------------------

Microsoft Safety Scanner v1.0, (build 1.165.566.0)
Started On Tue Dec 24 06:50:55 2013
->Scan ERROR: resource file://C:\pagefile.sys (code 0x00000020 (32))
->Scan ERROR: resource file://C:\pagefile.sys (code 0x0000054F (1359))
0
Comment
Question by:Mark Marquez
  • 4
  • 4
  • 2
10 Comments
 
LVL 11

Assisted Solution

by:Miftaul
Miftaul earned 1000 total points
ID: 39738104
Its a vulnerability in PDF, please update the adobe reader to latest version.
0
 
LVL 18

Expert Comment

by:awawada
ID: 39738164
0
 

Author Comment

by:Mark Marquez
ID: 39738182
Thank you.  I opened the PDF reader and went to help>check updates.  
Said that it had the latest version.
0
Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

 
LVL 18

Expert Comment

by:awawada
ID: 39738221
Do you use Adobe Reader?
If yes which version do you have?
0
 

Author Comment

by:Mark Marquez
ID: 39738234
Adobe Reader 10.1.8
0
 
LVL 18

Accepted Solution

by:
awawada earned 1000 total points
ID: 39738237
You must have 11.0.05.
Get it from http://get.adobe.com/reader

After run an update to get 11.0.05 .
0
 

Author Comment

by:Mark Marquez
ID: 39738258
Done.  11.0.05
0
 
LVL 18

Expert Comment

by:awawada
ID: 39738264
Now you are up-to-date :)
Happy Xmas.
0
 

Author Comment

by:Mark Marquez
ID: 39738294
Thanks, to you as well:)
0
 
LVL 11

Expert Comment

by:Miftaul
ID: 39738328
Please mark answers as accepted.
0

Featured Post

Building an Effective Phishing Protection Program

Join Director of Product Management Todd OBoyle on April 26th as he covers the key elements of a phishing protection program. Whether you’re an old hat at phishing education or considering starting a program -- we'll discuss critical components that should be in any program.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Today, still in the boom of Apple, PC's and products, nearly 50% of the computer users use Windows as graphical operating systems. If you are among those users who love windows, but are grappling to keep the system's hard drive optimized, then you s…
The Cyber News Rundown brings you the latest happenings in cyber news weekly. Who am I? I’m Connor Madsen, a Webroot Threat Research Analyst, and a guy with a passion for all things security. Any more questions? Just ask.
In the video, one can understand the process of resizing images in single or bulk. Kernel Bulk Image Resizer is an easy to use tool for resizing large number of images. One can add and resize multiple images with this tool in single go. The video sh…
Did you know PowerShell can save you time with SaaS platforms? Simply leverage RESTfulAPIs to build your own PowerShell modules. These will kill repetitive tickets and tabs, using the command Invoke-RestMethod. Tune into this webinar to learn how…

607 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question