Edit.. Never mind, I see you already tried adjusting permissions in an attempt to delete it.
I just submitted a .zip containing the exe and sys files to VirusTotal, and detection has improved somewhat. NOD32, Ewido, Prevx, Dr. Web, and...
When I submitted the driver a few days ago, the following AV programs identified it as malware: ArcaVir Avast F-Prot F-Secure Kaspersky...
Thanks for the info :) What tools do you use to analyze malware samples?
Ok! I finally got the files. I deleted them from the disk, and kept renamed copies. I'm going to submit them on the Castle Cops forum and to...
Sorry about the delay. Everyone at my friend's house has been rather ill the past couple days. I expect to have the files sometime this weekend....
Franklin--- Thank you for the suggestions, but I wasn't sure how to get the hidden files so I could submit them. I will have them shortly...
Hey everyone, I was looking at a friend's computer... her 2 children (teenagers) are the ones who mostly use it for downloading music, instant...
Hi Wayne, Thanks for the update. I have been trying it for most of the day now... The 3.300 Beta 3 that I was using prior to this one had...
Forgot to mention in the OP... I'm running WinXP Home, with all the critical updates. I haven't installed things like the .Net framework and...
Hi everyone, I've been a longtime user of PG, and I'm pretty happy with it. It's a nice program to have. However, I've noticed some odd...
Hi Tom, Thank you for the response. I am running a software firewall, in my case the free version of Outpost. It let me know about the...
Over the past 2 days or so, I have noticed that my software firewall (the free version of Outpost) is recording incoming connection attempts on...
You might want to try a scan with F-Secure's beta RK detection program called Blacklight. It's at http://www.f-secure.com/blacklight/cure.shtml
Hi Paranoid2000, Ahh, I see. I didn't know the free version was unsupported. Seems likely that what I've seen regarding ICMP is a bug, as you...
Hi Defenestration, Yes, I have disabled the messenger service that uses those ports. I wish more people would do so, since my logs show a...
Hi Paranoid I am using the free version of Outpost, so I am not able to test the newer versions. I will head over to their forum and repost my...
Hi everyone, I did a packet capture with Ethereal on my computer (running Win XP home SP1, and using dialup) and noticed a lot of MSN...
Hi, I have been reading about the growing complexity and danger of rootkits. Recently, MS security people have been warning about advanced...
Thanks for the info :)
Thank you, Gavin. I have updated manually and changed the name of the directory back to the default. Everything is working fine now :)
Thank you for the information, Rejzor. :)
Hi, I have downloaded said program from http://www.cpuid.com/cpuz.php When I attempted to run it, Process Guard came up and prevented it...
OK, thank you for the information :) Would it be possible for someone to hijack the 127.0.0.1 loop and send traffic out to the Internet at...
Hi, I have AntiVir and Port Explorer running at the same time when I'm online. Within PE, it shows AntiVir maintaining the following...
Separate names with a comma.
