Let me spell it correctly! BRONTOK.U One of my NOD32 protected computers came up with this "worm" and it has spread to other computers on my home network. According to the information I have, it is done through e-mail addresses, so that makes sense. Deep scanning the system, it is indicated that it resides in winlogon.exe. Each reboot seems to result in MORE infections, not less. It hijacks the folder structure, creating folders with an .exe extension that propagate the worm. What a PAIN. Any advice? I've been running NOD32 scans, but it keeps coming back. NOD32 Ver. 2.70.32 Database: 2880 ============== UPDATE: NOD32 Seems to have cleared one computer after a reboot--not the 1st infected one.