Anyone heard of this

GRWINSTHLP.EXE

Microsft antispyware picked this up in System 32 folder and and I have cleaned it off but cannot find much info on it - system working ok and have kept backup just incase ??

sorry don`t use that antispyware from microsoft always had problems with it i use adaware found it made less problem and it finds a lot

Yes I like adaware but it didn't pick this up - may be a false positive wait and see

<LI style="LIST-STYLE-TYPE: none">Here you go, it's malware not adware. The following is the description.<LI style="LIST-STYLE-TYPE: none"><LI style="LIST-STYLE-TYPE: none">Determination: Bad

<LI style="LIST-STYLE-TYPE: none">This program uses the file names GRWINSTHLP.EXE and INSTHLP.DAT and at least 5 other file names, the latest we have seen is 48FDACAC-333F-4F07-BB6F-91708C. It has a file size of 16,896 bytes and is found in the folder [%WINDIR%\SYSTEM32\] or [?:\WINDOWS\SYSTEM\] and at least 101 other folders. This program also appears with different file types. This is quite rare and is a technique sometimes used to disguise malware.