We do have Spector but why would it detect dll files in the operating memory: windows/system 32 directory and office directories? We have Spector files set to specific directories.
We have 150 workstations. Over the course of the last two weeks Eset Endpoint has detected, in the operating memory, a variant of win32/urlbot.nao trojan on 22 different machines. Eset cannot clean or delete the files. When we do a full scan with Eset after the message, no objects are infected. Eset does appear to be quarantining files from the windows\system32 and office directories. This infection is spreading. Any help would be appreciated.