Ok, this is mostly informational, but I do have a beg halfway down the message if someone is familiar with identifying what a virus does on a system once it's there... I recently acquired a virus from a link a friend sent me at stupid-flash.redbox.pl. It's been running on my system for a couple weeks now. Only a couple of days ago did I notice an 'exp1orer.exe' (that's with a ONE, not an L) running on my system... I knew it wasn't supposed to be there, so started digging. Long story short, I found that I got it from a Flash game that wasn't embedded, but ran as an EXE. Actually, ALL of the Flash games on that site install the virus. I sent the infected file to Symantec a nite ago and they've since updated their definitions, since NAV wasn't even detecting the virus. Symantec classified it as a 'Keylogger.Trojan', but didn't really provide any other details. Joy... So anyway... Since Symantec didn't give me any more information, I'm in a bit of a jam. I'm sure I typed in plenty of passwords. I don't have a software firewall, so the process could have been e-mailing out logs from my system without me noticing. I'll eventually drop on a network monitor and even ATTEMPT to read the disassembled exe, but was wondering if someone else might have the tools already available to see what this virus might have been doing on my system? As far as contact information at stupid-flash.redbox.pl, there isn't any on the website. I suppose I can go digging in whois to try to contact someone about it. Not sure how helpful they'll be. I also noticed a newsgroup post at http://groups.google.com/groups?q=stupid-flash.redbox.pl&hl=en&lr=&ie=UTF-8&safe=off&as_qdr=y&selm=be18jk%24ko3%241%40atlantis.news.tpi.pl&rnum=1 from a piotr.nakomny@wp.pl that advertises the site. Someone has an interest in spreading this virus, I'm guessing. Thanks... Scott

Get a firewall(Outpost/Sygate/Kerio/Zone Alarm)! Enabling the XP firewall will not help you with this problem, as it does not notify or ask you for permission for outgoing traffic. Get a trial version of Agnitum's Tauscan to check for your trojan and clean it.

Mcafee av calls it MULTIDROPPER-HF trojan but can't find it on their site...still lookin I went there to the site and tried to dl one of the games....that is the name from mcafee. Trojan remover 6.03 from simplysuper.com does not see it (I didn't run it) just scanned file with trojan remover. I submitted sample to mcafee As well as doing what capt said I would concider changing your passwords, and if you shop online with creditcards and such...I would change those too... Good luck