I believe that rdb extension files are related to ZA. I have noticed recently an extraordinary amount of disk space taken by multiple deletions, sometimes every minute or two, of a file called bu_todelete.rdb, which is apparent in the list at the Norton Protected Unerase Wizard. Each copy of the file was exactly the same size, about 4.7 MB. Norton confirms the files were deleted by the vsmon process (which is ZA). Now I uninstalled and re-installed ZA, but the deletions are continuing, but they are each smaller, just 1.7 MB. These deletions held in Norton Unerase purgatory sometimes take up to 6 GB of disk space total. I don't recall this problem before a week or so ago. I did have a major virus/spyware infection prior to that (apparently something attempting to hijack my machine for a botnet) but seem to have cleaned it up nicely, but can't help wonder if the virus didn't modify ZA behavior in some manner that persists. There is only one reference to bu_todelete.rdb through Google, and not very enlightening: http://www.sysinternals.com/Forum/fo...=6622&PN=1 (this is a forum dedicated to interpreting rootkit scan results, apparently).
Does anyone know anything about bu_todelete.rdb? Gurus? Many thanks.
Operating System:Windows XP Home Edition
Product Name:ZoneAlarm (Free)