I am having horrendous problems with a profoundly sophisticated malware which goes undetected by NOD32, TDS-3, Worm Guard, SpySweeper, Pest Patrol, UnHackMe, Ad Aware SE, Port Explorer, and everything else I have tried. The new beta 2 driver for LooknStop does detect that this thing is trying to get to the internet and allows me to block it - as a result I have purchased LooknStop tonight and am VERY grateful for this wonderful piece of software. The symptom is that it picks running programs and tries to use them to get to the Internet. An example would be the following warning from LooknStop: Service and Controller app C:\WINDOWS\SYSTEM32\SERVICES.EXE This software has started the following application which connects to the internet. Do you authorize it to do that? Generic Host Process for Win32 Services C:\WINDOWS\SYSTEM32\SVCHOST.EXE Sometimes it tries the above repeatedly until LooknStop shuts off all access to the Internet and I have to reboot. Other times it tries once or twice in a row at random intervals and then goes dormant for a while. On one occasion it went through a list of about 10 or 11 of the currently running processes which had access to the internet and tried each of them twice. Tonight it did something new - now that it has been thwarted by LooknStop it tried to send some UDP packets at one point. Fortunately LooknStop blocked this also. I have been fighting this thing since last Wednesday and the only thing which even detects its presence is LooknStop with the new Beta 2 driver and the registry settings set. Nothing else can detect it . Any suggestions would be greatly appreciated. I intend to try Reg Run Security Suite Gold and Ewido Security Suite tomorrow night, if I get time, to see if either of these can detect it.