Should I Delete This Detected File?

Windows/installer/44a3b.msi.


Vista


Scan keeps aborting, detecting this as a generic trojan (2606229). This is suspicious since this file has a last modified date in April 2009. Why would it suddenly be detected now?


And why did scan suddenly decide to run in the middle of the day when all scans are scheduled for late night (time zone setting confirmed)?

Comments

  • Hello E Beard,


    Please archive that file and protect it with the password "infected", upload it on http://www.sendspace.com/ then send me a PM with the download link . You can find details on how to protect an archive with a password following the next instructions .


    Thank you .

  • It was no longer detected the next day (after updates). Should I still send it?

  • Hello E Beard,


    Most probably, the detection have been removed, so it is not necessary to send us a sample of this file .


    Thank you.

  • I had the same thing show up on my computer, but after 3 deep scans it's still there and unresolved. this is from the log file:


    C:\Windows\Installer\4a032.msi=](Embedded EXE) Trojan.Generic.2606229 Delete Failed (file was in an archive)


    I don't know what that file is or what archive means...how do I get rid of this?


    Thanks.

  • I had the same thing show up on my computer, but after several deep scans it's still there and unresolved. this is from the log file:


    C:\Windows\Installer\3468c.msi=](Embedded EXE) Trojan.Generic.2606229 Delete Failed (file was in an archive)


    I don't know what that file is I did find the folder on my computer but am unsure as to if I should manually delete this or not?? Please help!


    Thanks.

  • Hello Mel and Countyr&Soup,


    If possible, browse to the next location from your system : C:\Windows\Installer\ , look after the "3468c.msi" file, upload it on http://www.sendspace.com/ then send me a PM with the download link .


    We are looking forward to your reply.


    Thank you.

  • Hello Mel and Countyr&Soup,


    If possible, browse to the next location from your system : C:\Windows\Installer\ , look after the "3468c.msi" file, upload it on http://www.sendspace.com/ then send me a PM with the download link .


    We are looking forward to your reply.


    Thank you.


    Sorry I need a little more guidence on this. I go into the start menu and search for C:/Windows\Installer and get a whole bunch of files some are folders some are little computers with cd's. What am I supposed to be looking for? And am I supposed to open it?


    Thank You!


    Also I'm using Vista and I have the 2009 BitDefender Internet Security.

  • Sorry I need a little more guidence on this. I go into the start menu and search for C:/Windows\Installer and get a whole bunch of files some are folders some are little computers with cd's. What am I supposed to be looking for? And am I supposed to open it?


    Thank You!


    Also I'm using Vista and I have the 2009 BitDefender Internet Security.


    You should disable "hide filename extensions" in your explorer settings. Then you can see complete filenames (xyz.exe, batch.cmd, image.jpg, textfile.txt, wordfile.doc and so on) like "3468c.msi".


    Unfortunately I can't help you change the settings because I've got a German Windows version, and just translating the menues would probably be different from your operating system. So maybe somebody else could assist...


    lutz

  • Hello Countyr&Soup,


    Here is what you have to do :


    1. Display hidden objects :


    - go to your "Control Panel" and open "Folder Options";


    - then go to the "View" tab and perform the changes listed below:


    * check "Display contents of system folders"


    * check "Show hidden files and folders"


    * uncheck "Hide file extensions for known file types"


    * uncheck "Hide protected operating system files"


    - click "Apply" and then "OK" to exit.


    NOTE: On Microsoft Windows Vista you will apply the same steps except for selecting "Display contents of system folders".


    2. On your computer, you should have an icon called Computer. Double click on it then go to the next location : C:\Windows\Installer\ .


    3. Look after the file "3468c.msi", upload it on http://www.sendspace.com/ then post here the download link .


    Thank you.