Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

This thread was archived. Please ask a new question if you need help.

trend micro rubotted reports malicious dns query when accessing and reading release note page for 3.6.7 update

  • 2 replies
  • 0 have this problem
  • 6 views
  • Last reply by TXGuy

AnonymousUser
AnonymousUser
more options

Trend Micro RUBotted.exe reports the above. The recommended scan, Trend Micro House Call, completes in 2:40 minutes and does not find a bot on my system. I have done the above action twice, (reading and opening release note fixes) and both times the same identical warnings appeared. My system appears to be clean. However, the RUBotted.exe program is designed to flag bot-like behavior, and I think this finding is correct, and not a false-positive. This only happens when this page is opened, and I therefore think there is an embedded link that cannot be seen, and is run when this page is opened. I did update to version 3.6.7, but scanned the system before and after I updated to 3.6.7. Results are identical.

This happened

Just once or twice

== I was looking at the latest fixes for Firefox 3.6.7

Trend Micro RUBotted.exe reports the above. The recommended scan, Trend Micro House Call, completes in 2:40 minutes and does not find a bot on my system. I have done the above action twice, (reading and opening release note fixes) and both times the same identical warnings appeared. My system appears to be clean. However, the RUBotted.exe program is designed to flag bot-like behavior, and I think this finding is correct, and not a false-positive. This only happens when this page is opened, and I therefore think there is an embedded link that cannot be seen, and is run when this page is opened. I did update to version 3.6.7, but scanned the system before and after I updated to 3.6.7. Results are identical. == This happened == Just once or twice == I was looking at the latest fixes for Firefox 3.6.7

All Replies (2)

TXGuy
TXGuy
more options

Trend Micro has a record of "false positives". Report the problem to them and let them investigate. Please post your results back in this thread for information for other users.

AnonymousUser
AnonymousUser Question owner
more options

I have submitted hijackthis and CIS logs to Trend Micro. TM is reporting system as clean.

Submit this as a false-postive.