What is virtool.vbs.jap... ?

Discussion in 'other anti-virus software' started by 2ATtheBus, Jun 11, 2008.

Thread Status:
Not open for further replies.
  1. 2ATtheBus

    2ATtheBus Registered Member

    Joined:
    Jun 11, 2008
    Posts:
    6
    BitDefender found three files 'infected' with virtool.vbs.jap and 'deleted' them - have not found any info on the web about what this might be and whether it is indeed a threat... ?

    Thanks for help...
     
    2ATtheBus, Jun 11, 2008
    #1
  2. bigc73542

    bigc73542 Retired Moderator

    Joined:
    Sep 21, 2003
    Posts:
    23,934
    Location:
    SW. Oklahoma

    Attached Files:

    Last edited: Jun 11, 2008
    bigc73542, Jun 11, 2008
    #2
  3. 2ATtheBus

    2ATtheBus Registered Member

    Joined:
    Jun 11, 2008
    Posts:
    6
    Thanks so much - any information on what this type of malware does, or can do... ?

    NOD32 did not find it, so was wondering how this might have affected the computer, while it has been living there... ?

    The three files were kind of important, and they are backed up on an external drive - can they be cleaned of this malware and re-accessed...?

    Have been concerned lately about possible keylogging - and whether NOD32 can identify those... ?

    Sorry hope this is not jumping around too much... :)
     
    2ATtheBus, Jun 11, 2008
    #3
  4. bigc73542

    bigc73542 Retired Moderator

    Joined:
    Sep 21, 2003
    Posts:
    23,934
    Location:
    SW. Oklahoma
    bigc73542, Jun 11, 2008
    #4
  5. kinwolf

    kinwolf Registered Member

    Joined:
    Oct 19, 2006
    Posts:
    271
    The virtool family is not a virus or rootkit, it's simply a familly of "tools" to create or isntruct or some other stuff that don't fall in a virus category. As an example, a password decoder for RDP file that I downloaded lately was detected as a virtool.8354.

    In your case it seems BD thaught those file where some manual for creating worms or trojan. Might be a false positive in this case, maybe upload them to virustotal to make sure?

    Also, you might want to change BD behavior to quarantine infected file instead of deleting so that if you get false positive, you can get the files back.

    Hope this help
     
    kinwolf, Jun 11, 2008
    #5
  6. bigc73542

    bigc73542 Retired Moderator

    Joined:
    Sep 21, 2003
    Posts:
    23,934
    Location:
    SW. Oklahoma
    That seems to contradict several of the major AV companies concerning the virtool family.
     
    bigc73542, Jun 11, 2008
    #6
  7. 2ATtheBus

    2ATtheBus Registered Member

    Joined:
    Jun 11, 2008
    Posts:
    6
    Thank you - what do the major AV companies say about this virtool... ?

    Still trying to make a decision on how to deal with the backup copies...

    Not sure about uploading personal files to 'virustotal' website... ?
     
    2ATtheBus, Jun 13, 2008
    #7
  8. bigc73542

    bigc73542 Retired Moderator

    Joined:
    Sep 21, 2003
    Posts:
    23,934
    Location:
    SW. Oklahoma

    I found my info through Google. But the info I found seems to indicate that Virtools are Hacker related such as trojans and other malware along with trojan construction tools. Kaspersky has some good info on the subject. http://www.viruslist.com/en/viruses/encyclopedia?virusid=55457 and here http://www.viruslist.com/en/find?search_mode=full&words=VirTool&x=18&y=9
     
    bigc73542, Jun 15, 2008
    #8
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...