Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan.Generic - rmc_rtspdl.dll


  • Please log in to reply
3 replies to this topic

#1 sqweebo

sqweebo

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:11:06 AM

Posted 15 June 2010 - 03:55 AM

Hi All,
This is my first post so i hope I am doing everything correctly. I am an experienced pc user.

I have recently rebuit my laptop after and earlier issue. I run a standard Windows dual boot system. Both partitions run under Win XP Pro SP3. One partition is for serious stuff, software development mainly, and the other for general 'home' use.

I use Comodo for my firewall/anitvirus and Malwarebytes and IOBit Security 360 for additional protection. A scan this morning with IOBit Security 360 found the above infection. A scan with Malwarebytes does not pick it up and neither does Comodo? I am obviously very concered but am at a loss as how how i got infected as I thought I was adequately protected. I am not aware that I have been to any 'dodgy' sites.

I have recently been the victim of identity theft and had my bank account cleaned out. Although not related to this issue, I am concered that this infection could result in similar problems arising.

Any help or advise on how best to proceed would be much appreciated. Particulary, the best way to prevent this happening again in th future.

Regards,
Sqweebo

BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,754 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:06:06 AM

Posted 15 June 2010 - 07:23 AM

In regards to IOBit, please read Malwarebytes' accuses IOBits of stealing their programs malware definitions.

Get a second opinion. Go to Jotti's virusscan or VirusTotal. In the "File to upload & scan" box, browse to the location of that file and submit (upload) it for scanning/analysis.
-- Post back with the results of the file analysis.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 sqweebo

sqweebo
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:11:06 AM

Posted 15 June 2010 - 01:22 PM

Hi Quiteman7,
Thanks for the reply.

In view of the issues surrounding IOBit I will be removing it from my system. Any advice on the best alternative? Perhaps I should browse the forum as I am sure there must be a recommendation somewhere?

Jotti's reported 1 result out of 20

Clam AV 2010-01-08 PUA.Packed.ASPack212

Virustotal reported

File rmc_rtspdl.dll received on 2010.06.15 17:57:27 (UTC)
Current status: finished

Result: 0/41 (0.00%)

So it looks like it's a false positive, if that's the correct term.

#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,754 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:06:06 AM

Posted 15 June 2010 - 01:41 PM

False Positive: Antivirus Glossary
What is a false positive?

I recommend taking advantage of the Malwarebytes Anti-Malware Protection Module which uses advanced heuristic scanning technology to monitor your system and provide real-time protection to prevent the installation of most new malware. This technology monitors every process and stops malicious processes before they can infect your computer. The database that defines the heuristics is updated as often as there is something to add to it. Enabling the Protection Module feature requires reqistration and purchase of a license key that includes free lifetime upgrades and support. After activation, Malwarebytes can be set to update itself and schedule scans automatically on a daily basis. The Protection Module is not intrusive as it utilizes few system resources and should not conflict with other scanners or anti-virus programs.

I recommend SUPERAntiSpyware Free to use it as a separate stand-alone on-demand scanner. The free version does not provide real-time protection or scheduled scanning so there is no need for it to run at startup.

Trustworthy Programs:
Bleeping Computer's Freeware Replacements For Common Commercial Apps
Bleeping Computer's List of Virus & Malware Resources
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users