Jump to content

Malwarebytes Pro does not detect VEFO trojan


Recommended Posts

Post merged

What is Malwarebytes doing about W32/Agent.VEFO!tr trojan virus?

Luckily my hardware firewall caught the outgoing from this but the current set of Malwarebytes definitions do not locate the infected file on my computer.

The only info I could find is here:

http://www.fortiguar...id&data=4378692

A search of the Malwarebytes site for VEFO returns no results.

A full scan with the latest definitions for Malwarebytes Pro (defn as of 11:30 PM 09Dec2012) finds nothing. An equivalent scan with Norton 360 (and updated defns) also finds nothing.

The Hardware firewall does not report the offending file. It just reports the attempt by the trojan to send data toan IP located in the Ukraine.

How do I track down the offending file and exterminate it?

http://www.fortiguar...id&data=4378692 is the correct link to Fortigate info.

I am using a paid version of MalwarebytesPro.

Link to post
Share on other sites

Hi and welcome to Malwarebytes.

Please update MBAM, run a Quick Scan, and post its log. Use Notepad to COPY All contents & then Paste inside main-body of reply.

Next,

Download DDS and save it to your desktop from http://download.bleepingcomputer.com/sUBs/dds.com here

or http://download.bleepingcomputer.com/sUBs/dds.scr or

http://www.infospyware.net/sUBs/dds

Disable any script blocker if your antivirus/antimalware has it.

Then double click dds.scr to run the tool.

DDS will run in a command prompt window and will take 3 to 4 minutes or so.

  • When done, DDS will open two (2) logs:
  • DDS.txt
  • Attach.txt
  • Save both reports to your desktop.

Please Copy & Paste contents of the following logs in your next reply:
DDS.txt
Attach.txt
Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Edited by Maurice Naggar
Link to post
Share on other sites

I'm still here. I've been engaged in a "discussion" with the company that is supposed to provide 24 x 7 x 365 Intrusion Protection for my systems. Turns out they have to have a mind-set "adjustment" regarding what is blocked and not blocked coming into my system. They are NOT erring on the side of prevention.

Will the steps you outlined in your prior post help me eradicate all traces of this darn infestation?

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.