I have seen these 2 files on practically every single share on my network, I have been manually deleting them 1 by 1.
I have SAV and SEP running, and what I do not understand is why either product is not picking up on these files and killing them. I have submitted both, the rondcw.exe is something called w32.harakit...I know how to delete this, I use SEP and Malwarebytes, and it removed it. I have a virtual machine that I am testing this on. The problem now is the lmoeam.exe, I ran that on the VM and I can not clean it. Malwarebytes will not run and Spy-bot is blocked from reaching out to the internet. I am picking these off one by one, but what I really need to know is WHY my AV (SAV/SEP) are NOT killing the initial files to begin with. (rondcw.exe and lmoeam.exe)
Please advise