Hi all,
I'm managing BitDefender Cloud Security for Endpoints in my company. Unfortunately we seem to have a persistent trojan infection that is spreading through Dropbox and is continually creating infected temp files in the .dropbox.cache folder.
Strangely - the infection isn't picked up by full scans (do they simply NOT scan the .dropbox.cache folder?). It is picked up by custom scans specifically targeted to that folder but it always reports that the infection was detected but unresolved. However, if you're logged into the offending computer you can do a contextual scan on the .dropbox.cache folder and then you're given the option to move to quarantine.
So two questions:
1) How do I kill this thing from all infected computers (because it keeps coming back and its super annoying).
2) How can I make sure this is picked up and resolved automatically in future scans?
I've attached the scan logs from a custom scan where it was picked up and a contextual scan where it was resolved.
/applications/core/interface/file/attachment.php?id=13360" data-fileid="13360" rel="">Persistent_infection_custom_scan_unresolved.xml
/applications/core/interface/file/attachment.php?id=13361" data-fileid="13361" rel="">Persistent_infection_resolved_contextual_scan.xml
