Endpoint Protection

During scaning Norton Pc check was scannig a file "c:/users/..../local/temp/e-card.exe"   this file pass the antivirus scan. But after searchnig for this file manualy, I could not find it.
I looked in the folder. also, I used search from windows and finally I used command line "dir" and "find". But none was able to find the file. How come Norton can see a file that I can not locate after the scan? I'm a;lmost sure it is a virus but it pass norton scan.

the file might have been moved to the quarentine folder;
or might have deleted the file after finding it as suspecious.

It  could have been a hidden file...did you  select show hidden files and  folders , and   then check?

it is not in quarentine and the setting for all folders and files are to show system and hidden files.
The file is just not detected by manual search, only by norton. And norton skip it as it is not a virus. 

remove the hidden attribute, using

attrib -h -r -s *.*

thank you for the help. But the results are the same. I can't find the file that norton are seeing during scan - /temp/e-card.exe

Use Icesword1.2 its a rootkit removal/Revealer tool..With this you can browse temp folder and find file that are in kernel level..which cannot be seen in user level.
http://www.antirootkit.com/software/IceSword.htm

thanks, I tried to install the icesword on Vista but I'm getting error "initiliezed failed" do you have any other root kit that can you can recommand?

To run icesword you need to login as administrator and disable UAC.did you run icesword for Vista (its on the same link above)..However you can try using GMER from Gmer.net

I'm runing GMER right now, will see the results later. What about DarkSpy? if yes, can you recommand the link for download?

thanks

---- EOF - GMER 1.0.15 ----
GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-09-10 00:40:06
Windows 6.0.6001 Service Pack 1
Running: gmer.exe


anything to worry about....?

Nothing to worry as such..