Not much we can say,
0 detections, similarity between the executables:
Same imports: [[ 1 import(s) ]]
mscoree.dll: _CorExeMain ( (You must have had Net Framework installed for this ...
You could have more versions of the .NET Framework, to establish which look at the subkeys under this registry key:
KEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\policy.)
But it could be a bot/trojan infection, and my best guess is
http://www.microsoft.com/security/portal/Threat/Encyclopedia/Entry.aspx?Name=Worm:Win32/Prolaco.gen!Baka Win32 Fruspam/worm
http://community.ca.com/blogs/securityadvisor/archive/tags/Worm_3A00_Win32_2F00_Prolaco.gen_2100_B/default.aspxThere is a new Win32/Fruspam worm variant on the loose, and judging from a couple of the subject lines, Fruspam thinks you need a new job
The second infection is Mal/MSIL-A
Manual removal instructionsMal/MSIL-A Manual Removal Instructions
Backup Reminder: Always be sure to back up your PC before making any changes.
Step 1 : Use Windows Task Manager to Remove Mal/MSIL-A Processes
Remove the "Mal/MSIL-A" processes files:
%AppData%\recyclerr\recyclerr.exe
Step 2 : Use Registry Editor to Remove Mal/MSIL-A Registry Values
Locate and delete "Mal/MSIL-A" registry entries:
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
Step 3 : Detect and Delete Other Mal/MSIL-A Files
Remove the "Mal/MSIL-A" processes files:
%AppData%\recyclerr\recyclerr.exe
Step 4
Delete the IE temp files,some Mal/MSIL-AV temp file may exist there.
This is if you know how to do this, but better is to wait for essexboy here,
he might suggest a malware cleansing routine, probably MBAM etc. will do the job,
so wait for his instructions,
polonus