cnm - how is this possible from a trusted site like CNET (unless the trojan specifically masks itself to look like it is originating from CNET downloads)?
EDIT: Also important to add, none of my other anti-virus programs found this malware, including Malwarebytes, MSFT Security Essentials....I don't even think combofix found it as I ran combofix right before I ran the ESET online scanner.
The first instance of malware that triggered me to run all these scans was Malwarebytes which found the below although I don't think it is related to the WIN32/INSTALLCORE.D APPLICATION trojan....
c:\Windows.old\Derek\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\XR1AX8G6\oi_limewirewin.exe (Adware.OpenInstall) -> Quarantined and deleted successfully.
Edited by m3equals333, 20 November 2011 - 01:28 AM.