Relevant Knowledge

theK

About 2 days ago, BitDefender discovered and stopped a spyware program on my machine known as Relevant knowledge. The program simply being called rlservice.exe

The name that was displayed contained HEUR, so I assumed it was a stealth program using heuristics to avoid Bitdefender finding it, until 2 days ago when it tried popping up.

Although Bitdefender told me it could not dis infect or quarantine it. I still found it in my quarantine folder and sent it up to the Bitdefender labs. It told me the file path and sure enough, there it was. However, whenever I would try to delete it, or even shred it with the Bitdefender shredding tool, it would ask me for administrative approval. I gave the go ahead but it wouldn't allow me to do it.

I then right clicked on the folder and did a manual scan, Bitdefender then allowed me to delete rlservice.exe easily, and I then removed the folder it was conatained in.

Is that it all it takes to be truly rid of that thing? Or is there something more to be done?

On a side note, what actually happens to the infected files I send up to Bitdefender through the program? I was told they are analyzed, but how? Is it to discover how it was coded? Like I said, just a side curiosity

Unknown

Unfortunately we don't have any way of knowing if your system is still infected if we don't have a look at some reports generated on the machine. Here's what to do:

Contact support by e-mail and send us the latest scan report from your system together with the reports generated by the tools available in this article:

http://www.bitdefender.com/site/KnowledgeBase/consumer/#490

Information on how to contact support can be found in the lower part of the article.