Version 6.01644
win 7x64
yesterday i got an alert ;
C:\Windows\SoftwareDistribution\DownIoad\1nstaII\mpas-d_bd_1.165.2.3O9.O.exe> MpMiniSigStub.exe Medium Threat: Win32:Evo-gen [Susp] Move to Chest
i let it move to chest, today i got a second alert.
The references on this forum point to avast being unable to scan this file ; in this case it is treated as a virus.
i suspect it might be a virus:this is what just occurred:
i clicked ok to move to chest.
so the file was removed from "C:\Windows\SoftwareDistribution\DownIoad\1nstaII\"
notice 1nstaII is spelled with 1 not LEDIT:The 1nstall issue is not right, the "1 "is caused by the fact i had onenote ocr'd my screenshot from this alert .( i could not find a way to copy this from the avast gui.
A minute later the dir "1nstaII"was removed
i then got this Fw alert:
The file location suggests windows update, but this is my update history: no file called "MpMiniSigStub.exe" has been downloaded via win update the past 2 days
I would really like some assistance please, thanks
EDIT:
I just discovered windows update triggers the alert:
EDIT 3:
after this failed update attempt i could look at the actual file ,it is:
C:\Windows\SoftwareDistribution\Download\Install\
mpas-d_bd_1.165.2309.0.exeEDIT 4:
virustotal result : "Probably harmless! There are strong indicators suggesting that this file is safe to use. "
https://www.virustotal.com/en-gb/file/c225cff19a8fb92b6bcf29619903738af314b0bac0047c81f4d5159b1ea6a3f4/analysis/