unknown icon..

I have just watched a blue and read double helix icon flickering while using the modem to connect to my isp.
when placing the curser over the helix it said it was 'protect.com' and then went off as soon as the connection was made.. I have never seen the icon before!

anyone know what it is..?
jlymnAsked:
Who is Participating?
 
gmichelsCommented:
FYI the WHOIS for protect.com:

 Registrant:
                         Protect.com
                         118 Mongkok Plaza Rd, Suite 15C
                         Hong Kong, HK 00000
                         HK

                         Domain Name: PROTECT.COM
                         
                         Administrative Contact:
                            Wong, Sylvia  protect@tom.com
                            118 Mongkok Plaza Rd, Suite 15C
                            Hong Kong, HK 00000
                            HK
                            (852)9256-6818

                         Technical Contact:
                            Wong, Sylvia  protect@tom.com
                            118 Mongkok Plaza Rd, Suite 15C
                            Hong Kong, HK 00000
                            HK
                            (852)9256-6818

                         Billing Contact:
                            Wong, Sylvia  protect@tom.com
                            118 Mongkok Plaza Rd, Suite 15C
                            Hong Kong, HK 00000
                            HK
                            (852)9256-6818


                         Record last updated on 13-Aug-2001.
                         Record expires on 06-Mar-2004.
                         Record Created on 06-Mar-2000.

                         Domain servers in listed order:
                            NS1.DOMAINDIRECT.COM   216.40.33.21
                            NS2.DOMAINDIRECT.COM   216.40.33.22

0
 
dredgeCommented:
possibly a virus, trojan horse, or worm.

do you run a virus scanner? a personal firewall?
0
 
GUEENCommented:
0
Introducing Cloud Class® training courses

Tech changes fast. You can learn faster. That’s why we’re bringing professional training courses to Experts Exchange. With a subscription, you can access all the Cloud Class® courses to expand your education, prep for certifications, and get top-notch instructions.

 
Kyle SchroederEndpoint EngineerCommented:
Have you installed any new software lately?  Where does this helix show on the screen; in the Dial-up networking window, or on the desktop?  I can't even reach www.protect.com.  Click Start/Run then type msconfig and press enter.  Go to the Startup tab and see if there are any entries for protect.com; uncheck them if so.

-d
0
 
jlymnAuthor Commented:
dredge - I'm using dr solomons viruscan with latest updates. It can't find anything wrong

dogztar - can't see any enties for protect.com

I'll leave question open for a while - if no one knows points go to gmichels.

thanks



0
 
gmichelsCommented:
You might also do a search through your registry for "protect.com" on the off chance it appears there.

As dogtzar pointed out, you can't get to "protect.com" via HTTP but it may be being contacted in another way. If you have any way to do packet captures, you might watch for those IP addresses and see if you have any traffic going that way -  to 216.40.33.21 or  216.40.33.22
0
 
gmichelsCommented:
Also, if you can get a quick screen capture of the icon and post it online someplace, someone may recognize it.

0
 
gmichelsCommented:
and *DOH*...do a FILE SEARCH for protect.com
In this Internet age, we forget that .COM is also a file extension! *L*

0
 
GUEENCommented:
hehe - good job GM.
0
 
Kyle SchroederEndpoint EngineerCommented:
jlymn:
So what was the solution?

-d
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.