mlpj2.exe? vba05.dll? Huh!?

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by CaNoFzOo, Nov 26, 2004.

  1. CaNoFzOo

    CaNoFzOo Sergeant Major

    I ran HiJack this... just to look at my log for fun, and I saw some weird things in there. Googled them and found nothing on them. Ran Ad-Aware SE found nothing. Ran Panda Online Virus Scan, and it found Virus:Trj/Downloader.ZO. The only infected file it found was msshed32.exe.


    But here are the odd entries I found.

    O2 - BHO: (no name) - {A78860C8-EE1A-46DF-A97F-E3E6D433E80B} - C:\WINDOWS\system32\vba05.dll

    O4 - HKCU\..\RunOnce: [mlpj2.exe] C:\WINDOWS\System32\mlpj2.exe /k

    O4 - HKLM\..\RunOnce: [mlpj2.exe] C:\WINDOWS\System32\mlpj2.exe /k


    Any ideas?
     
    CaNoFzOo, Nov 26, 2004
    #1
  2. PhilliePhan

    PhilliePhan Guest

    They look like Trojans to me.

    Fix them with HijackThis (assuming its in a safe folder - C:\Program Files\HijackThis)

    Then, boot to Safe Mode with the viewing of hidden files enabled and DELETE:

    C:\WINDOWS\system32\vba05.dll
    C:\WINDOWS\System32\mlpj2.exe

    See if that does the trick.

    PP :)
     
    PhilliePhan, Nov 26, 2004
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds