1.    29 Dec 2015 #1
    Join Date : Sep 2015
    Posts : 49
    Windows 10 64 bit Pro

    Malwarebytes anti-malware home premuim found a virus


    Hey guys my Malwarebytes anti-malware home premuim found a virus on 12/28/2015 the virus is called Registry Keys: 2Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MRT.exe, Quarantined, [9bde31124b3fcf67160c05712fd509f7],
    Trojan.Agent, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MRT.exe, Quarantined, [8ced152e4a40989eeb370472f311a15f],

    and its already on quarantine do i need to do more stuff to it to get a rid of virus or my Malwarebytes anti-malware home premuim has take care of virus? because my windows defender is not working..
      My ComputerSystem Spec
  2.    29 Dec 2015 #2
    Join Date : Sep 2015
    Posts : 49
    Windows 10 64 bit Pro
    Thread Starter

    Malwarebytes Anti-Malware
    Malwarebytes | Free Anti-Malware & Internet Security Software


    Scan Date: 12/28/2015
    Scan Time: 9:00:15 PM
    Logfile:
    Administrator: Yes


    Version: 2.01.6.1022
    Malware Database: v2015.03.09.05
    Rootkit Database: v2015.02.25.01
    License: Trial
    Malware Protection: Enabled
    Malicious Website Protection: Enabled
    Self-protection: Disabled


    OS: Windows 8
    CPU: x64
    File System: NTFS
    User: AmirAcle


    Scan Type: Threat Scan
    Result: Completed
    Objects Scanned: 343845
    Time Elapsed: 2 min, 28 sec


    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Heuristics: Enabled
    PUP: Enabled
    PUM: Enabled


    Processes: 0
    (No malicious items detected)


    Modules: 0
    (No malicious items detected)


    Registry Keys: 2
    Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MRT.exe, Quarantined, [9bde31124b3fcf67160c05712fd509f7],
    Trojan.Agent, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MRT.exe, Quarantined, [8ced152e4a40989eeb370472f311a15f],


    Registry Values: 0
    (No malicious items detected)


    Registry Data: 0
    (No malicious items detected)


    Folders: 0
    (No malicious items detected)


    Files: 0
    (No malicious items detected)


    Physical Sectors: 0
    (No malicious items detected)




    (end)


    AFTER THAT I DID ANOTHER SCAN AND IT WAS CLEAN
      My ComputerSystem Spec
  3.    30 Dec 2015 #3
    Join Date : Jun 2015
    Posts : 12,958
    Windows 10 Pro

    You don't have to do anything more then let Malwarebytes do its job

    Also, I would enable rootkit detection and self protection.
    Rootkit
    Attachment 56062

    Self protection
    Attachment 56064
      My ComputersSystem Spec
  4.    30 Dec 2015 #4

    I believe that is aperiodic file (updated now and again) in windows updates. It is a backup and more intensive scan of your computer for viruses. It is, as far as I am aware, a legit MS program.
      My ComputerSystem Spec
  5.    30 Dec 2015 #5
    Join Date : Jul 2015
    Posts : 4
    Windows 10

    Your Malwarebytes Anti-Malware is out of date, please download current version.

    Version: 2.2.0.1024
    Database Version: v2015.12.30.02
      My ComputersSystem Spec
  6.    30 Dec 2015 #6
    Join Date : Aug 2015
    Posts : 824
    Win10/64 Pro 1511 (and 2 Win 7/64 Ult & Pro systems)

    Quote Originally Posted by irelandguy View Post
    Your Malwarebytes Anti-Malware is out of date, please download current version.

    Version: 2.2.0.1024
    Database Version: v2015.12.30.02
    Not only is your PROGRAM version out of date, but your DATABASES are SERIOUSLY outdated, as well.
    So, there's a decent chance the detection was a false-positive, based on the old database.

    Scan Date: 12/28/2015
    Scan Time: 9:00:15 PM
    Logfile:
    Administrator: Yes


    Version: 2.01.6.1022
    Malware Database: v2015.03.09.05
    Rootkit Database: v2015.02.25.01
    NOTE: If you cleanly upgrade the program now, without first restoring the file from quarantine, the uninstall will permanently remove the quarantined files from your system. If it was a false-positive, and if the file *is* a legit, important file, it could damage your system. (EDIT: See below for why a clean upgrade, rather than an on-top upgrade, is suggested.)

    If you are reasonably sure it is a false positive hit on a legit file, you can update the databases, reboot and then restore the file from quarantine.
    If you then rescan with the current database and it is no longer detected, then it was a F/P because of the old database.

    BUT, if you are not sure, it would be safer to:
    1) Leave the item in quarantine for now (until it can be determined to be safe).
    2) Update the MBAM DATABASES and then re-scan.
    3) If it was a false positive because, then it should no longer be detected.
    4) If you're not sure, you can submit a new scan log with the current database AND the file in question for analysis HERE.

    Since your PROGRAM version is very old, once you sort this file detection issue with the current database, I suggest a clean upgrade to the current version.
    Please carefully follow the steps in this pinned topic to uninstall your current version of MBAM and reinstall the latest build - MBAM Clean Removal Process 2x
    EDIT: If you do have Self-Protection enabled, it must be disabled before attempting a clean reinstall/upgrade.
    It is important to reboot when prompted by the removal tool. It's a good idea to reboot again AFTER the upgrade.

    Thanks,

    MM

    P.S. The detection was a "Trojan", not a virus. All viruses are malware, but not all malware are (true) viruses. In fact > 95% of malware these days is non-viral malware.
    Last edited by MoxieMomma; 30 Dec 2015 at 10:18.
      My ComputerSystem Spec
  7.    30 Dec 2015 #7
    Join Date : Nov 2015
    Posts : 299
    Win-10 Pro x64

    Also, I don't know if this was already mentioned and I missed it, but I did note where you said; ".... because my windows defender is not working.."

    I don't think MalwareBytes is a good replacement for your anti-virus, but moreover something to be used in addition with. See HERE.


    b1rd
      My ComputerSystem Spec
  8.    30 Dec 2015 #8
    Join Date : Aug 2015
    Posts : 824
    Win10/64 Pro 1511 (and 2 Win 7/64 Ult & Pro systems)

    Quote Originally Posted by b1rd View Post
    Also, I don't know if this was already mentioned and I missed it, but I did note where you said; ".... because my windows defender is not working.."

    I don't think MalwareBytes is a good replacement for your anti-virus, but moreover something to be used in addition with. See HERE.


    b1rd
    Correct!
    Good catch, @b1rd!
    MBAM Premium is designed to run alongside an AV, to provide complementary protection against zero-hour and zero-day, non-viral malware threats!

    MM
      My ComputerSystem Spec
  9.    04 Jan 2016 #9
    Join Date : Jul 2015
    Posts : 898
    Windows 10 Home

    Quote Originally Posted by davehc View Post
    I believe that is aperiodic file (updated now and again) in windows updates. It is a backup and more intensive scan of your computer for viruses. It is, as far as I am aware, a legit MS program.

    Agree. MRT is their Malware Removal Tool. At least if he removed it from quarantine and computer, Windwos Update will reproduce it at next Check for Updates.
      My ComputerSystem Spec

 


Similar Threads
Thread Forum
Latest Version of Malwarebytes
Latest Version of Malwarebytes Released WHQL Version 3.3.1 Release Date: November 2nd 2017 Malwarebytes download page Malwarebytes Trial Download Page Release Notes: Malwarebytes 3.3.1
AntiVirus, Firewalls and System Security
Solved Latest Version Malwarebytes Anti Exploit
89528 Malwarebytes Anti Exploit Stand Alone Beta Latest beta version 1.11 Build 45 29 Nov 2017 ***Download page*** Changelog:
AntiVirus, Firewalls and System Security
BEST Anti-Virus for Windows 10 Pro ??
I have been using Norton Anti-Virus for 10 years and Norton Security the past 3 years !! I actually bought a 3-User pack on a Super Sale Price (from Norton). My Wife uses on and I have one "unused" !! Since I Upgraded to WINDOWS 10 PRO I find...
AntiVirus, Firewalls and System Security
Solved Malwarebytes Anti -Exploit
At the moment I'm using Bitdefender anti virus and Malwarebytes anti malware. Would it be advantageous to install the above program. I'm not sure I fully understand what this program is trying to do. I have read the description on their web site...
AntiVirus, Firewalls and System Security
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 23:43.
Find Us
Twitter Facebook Google+ Ten Forums iOS App Ten Forums Android App



Windows 10 Forums