To help you better we need some information from you.
*** Please fill in the fields below. If you leave fields empty or specify 'latest' rather than the actual version your answer will be delayed as we will be forced to ask you for this information. ***
Product, version and build: WMI Explorer Version 2.2.76
64 bit version of product:
Operating system:
Windows 7 fully patched
64 bit OS:
*** Please add details and screenshots as needed below. ***
Microsoft Security Essentials is reporting multiple instances of a trojan following install.
MSE Version details
Antimalware Client Version: 4.10.209.0
Engine Version: 1.1.14600.4
Antivirus definition: 1.263.494.0
Antispyware definition: 1.263.494.0
Network Inspection System Engine Version: 2.1.14202.0
Network Inspection System Definition Version: 118.5.0.0
Virus reported in WMI Explorer
Forum rules
DO NOT POST LICENSE NUMBERS, ACTIVATION KEYS OR ANY OTHER LICENSING INFORMATION IN THIS FORUM.
Only the original author and our tech personnel can reply to a topic that is created in this forum. If you find a topic that relates to an issue you are having, please create a new topic and reference the other in your post.
Any code longer than three lines should be added as code using the 'Select Code' dropdown menu or attached as a file.
DO NOT POST LICENSE NUMBERS, ACTIVATION KEYS OR ANY OTHER LICENSING INFORMATION IN THIS FORUM.
Only the original author and our tech personnel can reply to a topic that is created in this forum. If you find a topic that relates to an issue you are having, please create a new topic and reference the other in your post.
Any code longer than three lines should be added as code using the 'Select Code' dropdown menu or attached as a file.
- Alexander Riedel
- Posts: 8575
- Last visit: Sat Nov 02, 2024 12:15 pm
- Been upvoted: 42 times
Re: Virus reported in WMI Explorer
The file indicated is a WMI cache file, which is generated on your computer and not shipped with the product.
I am quite certain it is a false positive, since the file is not really executable in any way.
It is a text file, you can open those files in any editor to check, they contain information about the WMI class with some partial HTML around it for display purposes.
Since this occurs on your machine, I would suggest to submit the file to Microsoft for verification:
https://www.microsoft.com/en-us/wdsi/filesubmission
just to be on the safe side.
I am quite certain it is a false positive, since the file is not really executable in any way.
It is a text file, you can open those files in any editor to check, they contain information about the WMI class with some partial HTML around it for display purposes.
Since this occurs on your machine, I would suggest to submit the file to Microsoft for verification:
https://www.microsoft.com/en-us/wdsi/filesubmission
just to be on the safe side.
Alexander Riedel
SAPIEN Technologies, Inc.
SAPIEN Technologies, Inc.
- Alexander Riedel
- Posts: 8575
- Last visit: Sat Nov 02, 2024 12:15 pm
- Been upvoted: 42 times
Re: Virus reported in WMI Explorer
Thanks Alexander.
After sending the report, I looked a bit deeper and realised as you pointed out, the file is a local one.
I will submit to MS today.
Thanks for the prompt response.
Tom
After sending the report, I looked a bit deeper and realised as you pointed out, the file is a local one.
I will submit to MS today.
Thanks for the prompt response.
Tom