* listen on 0.0.0.0:0
* listen on 0.0.0.0:30
* listen on 0.0.0.0:60
* connect to 184.108.40.206:230
* connect to 220.127.116.11:196
* connect to 18.104.22.168:120
* do nothing
I suspect these attempts are actually tests to probe or bypass my firewall. I have not allowed it past this point because I have no idea what it intends to do once it connects.
The process has hidden itself from Task Manager (which is not unusual) but surprisingly it is also able to hide from the MSDN "Process Explorer" which I understood to be much more thorough.
I tried Googling for "Children of the Gods" +spyware and found nothing.
Does anyone out there have more information on this probable spyware/malware/rootkit?
Edited by SpliFF, 11 August 2009 - 07:15 AM.