Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Database version: 5900 Windows 6.1.7601 Service Pack 1 (Safe Mode) Internet Explorer 8.0.7601.17514 28/02/2011 07:59:21 mbam-log-2011-02-28 (07-59-21).txt Scan type: Full scan (C:\|) Objects scanned: 341842 Time elapsed: 41 minute(s), 44 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 1 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: c:\Windows\winsxs\amd64_wcf-icardagt_exe_31bf3856ad364e35_6.1.7600.16385_none_8dcc9c6f8b58a5eb\icardagt.exe (Backdoor.Bot) -> Quarantined and deleted successfully. I tried searching about this .exe and I can't tell if it's genuine backdoor or not. I ran in safe mode, full scan. Also ran AVG in safemode cmd prompt and it was clean. I removed the file to be safe, but want to know if this was a real threat before I bother changing all passwords etc. and do a full format.