trojan dropper file

[placou 1968]

hello, it's me .....again.

mbam has captured the following:

d:\i386\Apps\App07410\p2go\wmfdist.exe

the capture calls it: trojan dropper file. It wont let me quarantine it, not sure if i can or if i need to delete it "only" because im somewhat apprehensive as to what it may leave behind in little pieces. mse, msert, hmanpro,tdsskiller, all fail to catch it.

reasearch indicates to me, this or a version of this, has been around since early 2000, but i cant find solid information as to a prevention /removal tool.

i have reasonable suspicion it is located in an "options" file. my suspicion came soley from what i have read about it, hoping i wouldnt have to bother you'all but im stuck.

i actually know the site i picked this up at if it is of any help, prior to going there the site was listed as safe by a tool i cant mention by name here, but im begining to learn i need a good set of tools that would coincide with someone involved in a business with an investigative nature.

windows xp home, version 2002. by the nature of my profession this computer is only used by me, and extremely limited social networking, no e-mails,

thanks in advance

[4goTTen21]

Doesn't look like a threat. Folder p2go directory is created by Cyberlink's Power2Go burn utility as temporary path. wmfdist.exe is a part of Microsoft Windows Media Player. Try uploading file to virus total.

[mr6n8]

Might be a false positive and should have been corrected if it is. These are posts on it, though they are presumable found in different locations (WMP).
http://forums.malwarebytes.org/index...owtopic=101691
http://forums.malwarebytes.org/index...owtopic=101700

Try a re-scan after updating your MBAM.

[placou 1968]

thanks guys, i think i finally get it, based upon the links im gona disregard unless i see further, i downloaded emisisoft and it caught some thing and i havent had any further problems, once again you guys are awesome, thanks

[4goTTen21]

It's a pleasure