Note: I have not included logs or other information as I have not gathered it yet
The reason I made this topic was advice about IF I should look into an issue, not to solve the issue inside of this topic.
Prior to doing a system scan, my windows desktop was acting up:
I attempted to rename a PDF I downloaded off of Dropbox and the desktop stopped responding before eventually going black for a second and reappearing WITHOUT the file. When the desktop went black the windows taskbar did not show any icons, but the icons reappeared upon the desktopâs return from the void. I am not sure if this information makes a difference, however, in the interest of context I have included it.
So, I ran a scan today that came up with an infection. The file infected was rtmcodecs.dll:WofCompressedData and the infection was a âroot kitâ. I tried to hit the âapplyâ button and delete the file (as was the fix selected) but Avast! came back with an error. I then tried to use repair, fix automatically, and move to quarantine, but each one came back with more errors.
The error messages may or may not have varied with the option selected. I am very sorry, but I was stupid and did take note of the error itself. I do know that one of these errors was: âError: The Request Is Not Supported (50)â
After learning what exactly a rook kit was I found the file infected inside the system 32 folder and scanned it repeatedly with AVAST. Each scan stated âno threat found.â (It should be noted that I have my âfull system scanâ sensitivity set to high and code emulation off). This confused me, so I downloaded Malwarebytesâ Anti Root Kit software and ran that too. Again, no threat was found.
This baffled me. I ran a Malwarebytes scan and it found nothing. I ran more AVAST scans and found MORE nothing. I created a different scan that would only scan the âWindowsâ folder and found even MORE nothing (I did leave code emulation on for the custom scan). I ran ANOTHER Malywarebytes Anti Root Kit scan and found, you guessed it, nothing. I have done everything aside from a boot scan (leaving the best for last).
This is my question:
Should I be worried about this? Repeated scans come up with nothing, but considering what a root kit IS I am worried anyway.
With any other file I would just delete it and move on, but I am hesitant to delete a .dll file. Especially one that is located in the system32 folder.
Thank you very much for your time and I hope you have a wonderful day/night ;D
Edit: Ran a boot scan and nothing came up. I plugged in my USB Internet adaptor and checked all the TCP connections with each checking out aside from one (I am unsure if I should post the address).