Ok.... I found this virus called "win32/ddos.boxed.n".... it has actually been out a few weeks according to nod32 page http://www.nod32.com/support/info.htm you will find it at position NOD32 - v.1.869 (20040913) Virus signature database updates: However, if you go to nod32's virus page..http://www.nod32.com/pedia/w.htm, it can't be found? Now if you go to google and type it in http://www.google.com/search?hl=en&lr=&q=win32/ddos.boxed.n&btnG=Search All you get is nod32 again? So is nod32 renaming this to make it appear to be a new virus?.. or is it really new? I found this virus on my dad's machine of which has been plagued with the protoride virus as of late and it wouldn't go away with mcaffee's "even though it kept cleaning it!".... a sidenote... I found 9 viruses total all kissin cousins to the same name..... and mcafees found none? Bye Bye Mcafee! I was also very pleasantly surprised to find that Nod32 scans in "system restore" where 4 of them were! under some funky A000349uo.exe type name. I only thought mks_vir could do that!.... Although I think they really have promise.. MkS_Vir if far too incompatible and slow on app startups to compete! oh and by the way... of the nine that nod32 found... mks_vir only found the 4 in system restore.. the other 5 on the hardrive it didn't find! i tried to send the file to firstname.lastname@example.org and instantly before I could blink, it arrested it and wouldn't let me send it... I finally had to disable AMON to send it!... So far I'm impressed with the horsepower and speed of NOD32 around the curves!.... Now if we can just get the control panel a little less confusing, we will be in good shape! Keep up the good work!