* listen on 0.0.0.0:0
* listen on 0.0.0.0:30
* listen on 0.0.0.0:60
* connect to 166.84.48.97:230
* connect to 62.136.230.97:196
* connect to 164.205.72.98:120
* do nothing
I suspect these attempts are actually tests to probe or bypass my firewall. I have not allowed it past this point because I have no idea what it intends to do once it connects.
The process has hidden itself from Task Manager (which is not unusual) but surprisingly it is also able to hide from the MSDN "Process Explorer" which I understood to be much more thorough.
I tried Googling for "Children of the Gods" +spyware and found nothing.
Does anyone out there have more information on this probable spyware/malware/rootkit?
Edited by SpliFF, 11 August 2009 - 07:15 AM.