Can you clarify please so I can move this to a more appropriate spot. Is this using Enterprise software, if so what type?
Enterprise Software 18.104.22.1685 Dat 7235
Thanks and I just realised that as you've posted in a private area, I can't move it. Could I trouble you to repost in this area please?
OK someone from that group has kindly moved this for me. I am not familiar with a corporate setup but in this case if it were my own computer I would run Malwarebytes Free and possibly AdwCleaner - both linked in the last link in my signature below. Note to keep MalwareBytes Free of charge do NOT accept the free trial.
If you can deploy those to multiple machines by all means try that until someone with corporate knowledge comes along.
BTW this is !My Picture.scr I believe, not !My Picutre.scr.
There are a number of references to it online when I did a Google Search.
It is spelt ... ! My Picutre.SCR....
I have tried different ways as per Google, none worked. It is found mostly on server shares
I stand corrected and have altered the headers accordingly. If my methods are no good then hopefully someone from the corporate side of things will post suggestions.
Manual removal steps were available for an earlier version of this. Those removal instructions may not be applicable to the latest incarnation of the malware.
This threat is classified as a backdoor trojan. A backdoor trojan provides remote, usually surreptitious, access to affected systems. A backdoor trojan may be used to conduct distributed denial of service (DDoS) attacks, or it may be used to install additional trojans or other forms of malicious software. For example, it might be used to install a downloader or dropper trojan, which may in turn install a proxy trojan used to relay spam or a keylogger trojan which monitors and sends keystrokes to remote attackers. It might also open ports on the affected system and thus potentially lead to further compromise by other attackers. This threat is detected by the Microsoft antivirus engine.
McAfee has an entry in the database for the earlier Microsoft classification : Generic MSIL.m!DEDD3CA6FBC3. Those removal instructions may need to be amended.
There is technical information available from other AV vendors but, again, these may not describe the latest version of the Trojan.
http://www.threatexpert.com/report.aspx?md5=1fd2ad4e640b5aef24b976c685f087ca (October 2012) description only
http://about-threats.trendmicro.com/us/malware/TROJ_AGENT.SND (n.d.) has manual removal steps