Hi Pondus,

Two flags are more than one as searched the malware hash…
VirusTotal.com 2/40 (5%) detected malware

ThreatExpert.com New/Nothing Found

Team-CYMRU.org New/Nothing Found

Now lets use the common google search query “MediaPluginSetup.exe BHO.C” and what do we get…e.g.:
This report for WOT: http://www.mywot.com/en/forum/11086-fake-media-player-spreading-through-facebook

This with another added flag: http://virscan.org/report/36f7a8ba55a616e274915fa4a3e3c4b1.html
CP Secure finding: Troj.Downloader.W32.Aphex.020

So what you think?

polonus