From: <betty889125@hotrmailnospam.org>


| I'd like to submit the file, except that I ran Crap Cleaner even before I
| knew it was on the system. Crap Cleaner deleted it.
| I'm going to run the above rootkit program as well as Sysinternals and a
| few others.
|
| Do you think it's time for Multi A-V? Is is safe to run these online
| scanners rather than downloaded the signatures like Multi-AV does?
| Don't the online scanners record every filename on your computer?
| Secondly, isn't there stuff they can't find because of one's firewall?
|
| I have McAfee's SiteAdvisor as a BHO, use IE-Spyad and have a HOSTS file,
| plus use Avast and a firewall. Still, it's amazing how these things
| infiltrate a computer. I was reading on one of the security sites that
| Spyware problems are soaring.
|
| I wonder if it pays to change the name of your computer, sign on name,
| password, and release and renew IP addresses on a regular basis.
|
| Someone better inform the media soon how serious a problem this is
| becoming. Any guesses as to how many home computers are seriously
| infected around the world?
|
| (Please excuse my crossposting, but I'm incensed at my violation of
| privacy with this spyware/malware/trojan problem and I feel that the more
| individuals who read about this particular keylogger, if that's what it
| is, the better.)

I have more confidence in Gnmer that RootKit Revealer so I suggest using it first.

Sure, you can use my Multi AV Scanning Tool. The McAfee module alone knows hundreds of
Keylogging Trojans. Additionally, you never know what else any of the modules might find.

I really do NOT know what you had. I looiked in virus libraries and could not find it. It
may be new or it may be an old one that is using new names for Registry keys and files.

I would assume the worst. That is you need to immediately redo *all* passwords that have
been used on that PC. Online Banking, Forum accounts, Quicken, -- every and all of them.
Chaning ther name of the computer is waste of time. The PC name is meaningless. Getting a
new IP address is also worthless. I do suggest that if you are on Broadband, get and use a
Cable/DSL Router sucgh as the Linksys BEFSR41.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm