Worried about a deleted virus

My computer was running especially sluggish today so I thought to do some cleaning and see if I had a virus. I ran MBAM and got nothing. Then I ran an avast Quickscan and got an infection called “Win32:MalOB-HF” in location C:\WINDOWS\system32\sti_cis.dll. It didn’t allow me to repair the file, or move it to the chest, so I deleted it in haste. Now I’m concerned whether or not I deleted an important file, so I haven’t rebooted my computer yet.

Is it safe?

hey and welcome to the forum. i not sure but i could be related to a webcam accoding to microsoft.

http://answers.microsoft.com/en-us/windows/forum/windows_vista-hardware/trouble-with-webcam/3d1a5778-aeb7-478d-8305-c3cbd89b2a13.

or it is windows file.

http://en.community.dell.com/support-forums/software-os/f/3524/p/19147739/19270725.aspx#19270725

it could be a false threat. i fell the file need more investigation so hopefully someone more into this will help you.

Hello and welcome to the forum! :slight_smile:

If you’ve deleted the file with avast then it’s gone forever.

DJBone

ProcessLibrary.com http://www.processlibrary.com/directory/files/sti_ci/19176/

https://blog.avast.com/2009/07/29/what-to-imagine-behind-win32malob-cryp/

MalOb – it’s a shortcut for “malware obfuscator” – this means that the file was modified with some custom tool to hide the bad things

XP repair install freezes
http://www.tomshardware.co.uk/forum/88656-35-repair-install-freezes

So going by that article, I didn’t screw up anything badly by deleting it?

you should have uploaded the file to www.virustotal.com and tested with 40+ malware scanners before you deleted

I’ll remember that in the future, but what about now? Do I not reboot my computer to complete the deletion process?

I just went and ran the Webcam application in the Virus Total search, and 1/46 of the result said there was a threat called Trojan/Win32.Genome.gen.

can you post the link to scan result here

https://www.virustotal.com/file/76c16ffbdcadb2504f9a8160a355b1d19df7c0a992147f7438a24d4e233e3d52/analysis/

Possibly a false positive, worse case scenario is that you may need to reinstall the webcam software best case would be no problems

hmmmm ::slight_smile:

First seen by VirusTotal
2013-01-12 12:17:21 UTC ( 16 minutter ago )

“Possibly a false positive, worse case scenario is that you may need to reinstall the webcam software best case would be no problems”

Alright, thanks. Finally got the answer I needed.