We have a Windows 2000 server that has the folder _@##.tmp appearing in the root of one of the drives. This folder cannot be deleted by normal means and we use zap.exe to get rid of it. It then reappears with the number, represented by the ## incremented.
I've seen this problem before on another Windows server some years back and used one of the virus scanners of the day to remove the malware causing the folder to appear and reappear.
In this case we have run VIPER, PREVX, Spybot, Malwarebytes, Superantispyware etc., with no ultimate resolution. It is suspected that it may be caused by a variant of Win32/Agent trogen.
Was wondering if anyone has some new information re this problem and it's ultimate resolution.
Thanks - Al