Recommendations that are inconclusive

0
I don't understand something....and this sort of thing has happened before...I got an Inconclusive Scan Result about Ixeacomc.dll... it made not mention that there was any error regarding it... just that it found it and might be a trojan... so when I tried to find out more about it everything in my searches indicated that it was " It is a resource used by your Windows operating system. It is one of the many tools that your applications (Microsoft Office, Internet Explorer, etc.) use to work properly." etc... but gave no reason as to why it shouldn't be there or that it should be removed... then the following instructions in every search told you how to remove it because of an error message.  But this didn't come up in an error message it was found in your scan... Can something be perfectly fine to leave alone if there is no error message related to it? 

Thanks ...Raub

Share
Asked Jan 3 '15 at 4:16
Add a comment

1 Answer

 
0
When herdProtect comes back with an "inconclusive" result, it means that it found some reason to believe that the file *might* be malicious, but it couldn't confirm one way or the other.  In such cases the recommended action would be to send the file to the herdProtect cloud for deeper analysis and then run another scan about 75+ minutes later to see if a conclusive result can be found after cloud analysis has been initiated.

If you don't want to wait, you can try to determine if the file has been infected or not in a couple of ways.  First, search around the internet for the file name (including the .dll extension) and look at multiple analysis sites to try and find the usual file size, location, and checksum.  You can then use a program like http://download.cnet.com/MD5-SHA-Checksum-Utility/3000-2092_4-10911445.html or similar to verify the checksum of your file to those that are known to be good checksums.  That's not a guarantee though, as sometimes those sites have outdated info.  You could also try contacting Microsoft and asking if they can give you a legitimate checksum for the version of the file that you have.

When it comes to files that are a part of your windows system, it is best to leave them alone until you're sure it's been infected.

I would recommend scanning again.  If it comes up inconclusive, send it to the cloud for deeper analysis and then scan again about an hour and fifteen minutes or so later.

Good luck,
Drake
Share
Answered Jan 14 '15 at 14:19
Update: I just downloaded and installed the latest version (was released Dec. 18, 2014). As of this version, real-time protection is not yet present in the build. - Drake Phoenix 118 months ago
Sorry, the above comment was for a different post, not this one. Please ignore it here. - Drake Phoenix 118 months ago
Thanks Drake... I will follow your advice and see what changes...yes of course I'm cautious about deleting anything that is part of Windows Operating System which is why I felt I need clarification...I'll let you know what happens if anything does..R - Raub 118 months ago
Add a comment

Know someone who can answer? Share a link to this question via email, Google+, Twitter, or Facebook.

Your Answer

Not the answer you're looking for? Ask your own question.