is this safe to delete or repair ??? or should I just leave it in the chest and forget about it - can find precious little about this on google but have searched on virus scanners and results are has follows
uploaded onto virusscan - only recognised by avast
It is hard to say as there are 4 detections, not much out of 32 scanners and two of those are suspicious, possibly heuristics or generic signatures. Though there is nothing to stop you submitting it for analysis. Send the sample to virus@avast.com zipped and password protected with password in email body and possible false positive in the subject. Or you can also add the file to the User Files (File, Add) section of the avast chest if it isn’t already there, where it can do no harm and send it from there (select the file, right click, email to Alwil Software). No need to zip and PW protect when the sample is sent from chest.
To me what is strange is the file location for what is purporting to be an uninstall file, they are generally in the programs own folder. The other thing that is suspicious is if it were a genuine uninstall file I would expect to see some hits relating to the program it uninstalls and I don’t see that.
A google search on one of the other named detections returns many hits, http://www.google.com/search?q=Worm.P2P.Spybot, check these out and see if any of the associated files, registry entries are present, etc. Though I would have expected the AVs in these that are also on virustotal (VT) to detect it.
Does the CustoMess for Messenger not ring any bells ?
I’m calling it a night now, if you have any other queries, just post and someone is likely to pick it up.