While looking through other posted HJT log's I do not see it as a running process.
I scanned with HJt and it shows as a "running process"
Command: %WinDir%\wscntfy.exe /nosplash
Description: Added by the Troj/Banker-FZ password-stealing Trojan for certain online Brazilian banks.
File Location: %WinDir%
Startup Type: This startup entry is started automatically from a Run, RunOnce, RunServices, or RunServicesOnce entry in the registry.
"wscntfy.exe" is the Windows Security Center, introduced in Service Pack 2.
It displays a tray icon indicating the status of updates, virus protection, and firewall.
Edited by Scarlett, 30 June 2006 - 08:42 AM.