Virus alert, cannot be detected by most of the antivirus out in the market.
Will reside on one of our Recycler profiles. (You should delete the files Desktop.ini, MxEng.exe) if it is in use, you can use the utility Unlocker 1.8)
The virus will create registry entries on
1. HKLM\SOftware\Microsoft\Windows NT\Winlogon\Shell (it will add the exe file csrcs.exe after Explorer.exe)
2. HKLM\SOftware\Microsoft\Windows NT\Winlogon\Taskmon (pls delete this entry)
The virus will use System (svchost) to infect other pcs on the network. It will also scan/send the virus on your network.
I will try to upload samples to Symantec Security Response asap..