Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 229
  • Last Modified:

unknown icon..

I have just watched a blue and read double helix icon flickering while using the modem to connect to my isp.
when placing the curser over the helix it said it was 'protect.com' and then went off as soon as the connection was made.. I have never seen the icon before!

anyone know what it is..?
0
jlymn
Asked:
jlymn
  • 4
  • 2
  • 2
  • +2
1 Solution
 
dredgeCommented:
possibly a virus, trojan horse, or worm.

do you run a virus scanner? a personal firewall?
0
 
gmichelsCommented:
FYI the WHOIS for protect.com:

 Registrant:
                         Protect.com
                         118 Mongkok Plaza Rd, Suite 15C
                         Hong Kong, HK 00000
                         HK

                         Domain Name: PROTECT.COM
                         
                         Administrative Contact:
                            Wong, Sylvia  protect@tom.com
                            118 Mongkok Plaza Rd, Suite 15C
                            Hong Kong, HK 00000
                            HK
                            (852)9256-6818

                         Technical Contact:
                            Wong, Sylvia  protect@tom.com
                            118 Mongkok Plaza Rd, Suite 15C
                            Hong Kong, HK 00000
                            HK
                            (852)9256-6818

                         Billing Contact:
                            Wong, Sylvia  protect@tom.com
                            118 Mongkok Plaza Rd, Suite 15C
                            Hong Kong, HK 00000
                            HK
                            (852)9256-6818


                         Record last updated on 13-Aug-2001.
                         Record expires on 06-Mar-2004.
                         Record Created on 06-Mar-2000.

                         Domain servers in listed order:
                            NS1.DOMAINDIRECT.COM   216.40.33.21
                            NS2.DOMAINDIRECT.COM   216.40.33.22

0
 
GUEENCommented:
0
Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

 
Kyle SchroederEndpoint EngineerCommented:
Have you installed any new software lately?  Where does this helix show on the screen; in the Dial-up networking window, or on the desktop?  I can't even reach www.protect.com.  Click Start/Run then type msconfig and press enter.  Go to the Startup tab and see if there are any entries for protect.com; uncheck them if so.

-d
0
 
jlymnAuthor Commented:
dredge - I'm using dr solomons viruscan with latest updates. It can't find anything wrong

dogztar - can't see any enties for protect.com

I'll leave question open for a while - if no one knows points go to gmichels.

thanks



0
 
gmichelsCommented:
You might also do a search through your registry for "protect.com" on the off chance it appears there.

As dogtzar pointed out, you can't get to "protect.com" via HTTP but it may be being contacted in another way. If you have any way to do packet captures, you might watch for those IP addresses and see if you have any traffic going that way -  to 216.40.33.21 or  216.40.33.22
0
 
gmichelsCommented:
Also, if you can get a quick screen capture of the icon and post it online someplace, someone may recognize it.

0
 
gmichelsCommented:
and *DOH*...do a FILE SEARCH for protect.com
In this Internet age, we forget that .COM is also a file extension! *L*

0
 
GUEENCommented:
hehe - good job GM.
0
 
Kyle SchroederEndpoint EngineerCommented:
jlymn:
So what was the solution?

-d
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 4
  • 2
  • 2
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now