Jump to content

strix

Members
  • Posts

    5
  • Joined

  • Last visited

Reputation

0 Neutral
  1. I see. The avira antivir comes up with nothing either (apart from my accelfix), in any case should I be worried that my passwords are leaked or is it a "light" threat?
  2. Thanks for the headsup. However MBAM doesn't find the file now that the registry keys are quarantied. Is it harmless or should I remove it to be sure?
  3. Here you go. The registry entries are nothing to be worried about? mplayerplgn.zip
  4. The same files with a quickscan: Files: C:\WINDOWS\mplayerplgn.dll (Trojan.BHO) -> No action taken. [85DCBDB239B2414800501F44D3EAAE86] Registry: HKEY_CLASSES_ROOT\dnscache.dnscacheobj (Trojan.BHO) -> No action taken. [85DCBDB239B2414800501F44D3EAAE86] HKEY_CLASSES_ROOT\TypeLib\{1fd79a59-37b1-459b-9097-09f9fab8a523} (Trojan.BHO) -> No action taken. [85DCBDB239B2414800501F44D3EAAE86] HKEY_CLASSES_ROOT\Interface\{b97f9125-71a1-48d0-b920-f140ef8de809} (Trojan.BHO) -> No action taken. [85DCBDB239B2414800501F44D3EAAE86] HKEY_CLASSES_ROOT\CLSID\{376892ae-1825-4e5f-9f85-23f9640051cc} (Trojan.BHO) -> No action taken. [85DCBDB239B2414800501F44D3EAAE86] HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{376892ae-1825-4e5f-9f85-23f9640051cc} (Trojan.BHO) -> No action taken. [85DCBDB239B2414800501F44D3EAAE86] HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{376892ae-1825-4e5f-9f85-23f9640051cc} (Trojan.BHO) -> No action taken. [85DCBDB239B2414800501F44D3EAAE86] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{376892ae-1825-4e5f-9f85-23f9640051cc} (Trojan.BHO) -> No action taken. [85DCBDB239B2414800501F44D3EAAE86] HKEY_CLASSES_ROOT\dnscache.dnscacheobj.1 (Trojan.BHO) -> No action taken. [85DCBDB239B2414800501F44D3EAAE86]
  5. Hi, can anyone help me to determine if this is a legit threat or just a false positive (before i go through the painstaking process of changing all my passwords...) Infected file: C:\WINDOWS\mplayerplgn.dll (Trojan.BHO) -> No action taken. Registry: HKEY_CLASSES_ROOT\dnscache.dnscacheobj (Trojan.BHO) -> No action taken. HKEY_CLASSES_ROOT\TypeLib\{1fd79a59-37b1-459b-9097-09f9fab8a523} (Trojan.BHO) -> No action taken. HKEY_CLASSES_ROOT\Interface\{b97f9125-71a1-48d0-b920-f140ef8de809} (Trojan.BHO) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{376892ae-1825-4e5f-9f85-23f9640051cc} (Trojan.BHO) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{376892ae-1825-4e5f-9f85-23f9640051cc} (Trojan.BHO) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{376892ae-1825-4e5f-9f85-23f9640051cc} (Trojan.BHO) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{376892ae-1825-4e5f-9f85-23f9640051cc} (Trojan.BHO) -> No action taken. HKEY_CLASSES_ROOT\dnscache.dnscacheobj.1 (Trojan.BHO) -> No action taken. All from a quick scan. Full scan came up with an additional file: mfc42u.dll as malware.packer.gen, from The Sage dictionary. False positive?
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.