MBAM QUESTION after update

[sandman512]

Ok, I had some issues that the new version corrected. Basically the previous version was unable to get rid of Trojan.Agent. This new version did, now the problem, I ran it yesterday twice, no problems. Today, I ran it and found some infections. My question is why would this happen and how can I prevent this? THANKS!

Here are today's results after yesterday being CLEAN!

Malwarebytes' Anti-Malware 1.25

Database version: 1068

Windows 5.1.2600 Service Pack 3

7:55:58 PM 8/18/2008

mbam-log-08-18-2008 (19-55-58).txt

Scan type: Quick Scan

Objects scanned: 49310

Time elapsed: 7 minute(s), 21 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 3

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 1

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\umwdf (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\umwdf (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\umwdf (Trojan.Agent) -> Quarantined and deleted successfully.

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\WINDOWS\system32\wdfmgr.exe (Trojan.Agent) -> Delete on reboot.

[nosirrah]

Update and try again , should be gone

[leofelix]

Hi all

I've got apparently the same problem

 Valori di registro infetti: 0Elementi dato del registro infetti: 0Cartelle infette: 0File infetti: 1
Processi delle memoria infetti:(Nessun elemento malevolo rilevato)
Moduli della memoria infetti:(Nessun elemento malevolo rilevato)
Chiavi di registro infette:(Nessun elemento malevolo rilevato)
Valori di registro infetti:(Nessun elemento malevolo rilevato)
Elementi dato del registro infetti:(Nessun elemento malevolo rilevato)
Cartelle infette:(Nessun elemento malevolo rilevato)
File infetti:C:\WINDOWS\system32\wdfmgr.exe (Trojan.Agent) -> Quarantined and deleted successfully.

I suppose it's a false positive, this file is part of Windows Media Player 10 as you can see

http://www.liutilities.com/products/wintas...library/wdfmgr/

can you confirm?

thanks in advance

regards

P.S Kaspersky 2009 did not found any malware

[RubbeR DuckY]

Already fixed everyone.

[Reilly'sPal]

I have the most recent updates, and I am still receiving the same log file as shown above. Are these false positives or should they be quarantined? Thanks for any info you can provide.

[ky331]

10:43 pm, eastern daylight saving time (USA)

the current database is still 1068, and the problems above are still present

[RubbeR DuckY]

It will be fixed in 1069, thank you.

[ky331]

I wasn't awake to "catch" 1069; but I will confirm that the problem has been fixed in 1070.

as always, thanks for the quality help.