Anyone seen this file? I think it is spyware, but cannot find it anywhere. Am I the first? ggbcaus.exe

Posted on 2005-05-06
Last Modified: 2013-12-04
ggbcaus.exe Found this yesterday as a process that could not be stopped. As soon as you stopped, or deleted the registry for it, it came back. Finally jsut went into safe mode and got rid of it. The users computer was polluted with spyware, and got all of it except this one. Searched for it, but foudn nothing. Thought I would ask the community.
Question by:Ranman38
    LVL 18

    Accepted Solution

    Almost certain it is malware. Uknown files (especially ones that don't return anything on google) are usually malware.    Deleting the file in safe mode is what I would have told you to do.  
    LVL 57

    Expert Comment

    by:Pete Long
    not seem it b4 just out of curiosity whats the computername of the offending PC? - some viri name themselves based on the hostname of the PC (to make themselves difficult to find)

    Browser Hijacking/Spyware/Adware/Malware Removal instructions

    Full removal and Prevention instructions are available on my website,

    Please don't "Gum up" the TA's here by posting Hijack This Logs
    go here and have it analysed.

    The EE Official Link to info is,

    Author Comment

    Well, computer name is nothing near the file name, but users initials were gg!  hmmmm.....

    Featured Post

    Highfive + Dolby Voice = No More Audio Complaints!

    Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

    Join & Write a Comment

    Suggested Solutions

    This is a guide to the following problem (not exclusive but here) on Windows: Users need our support and we supporters often use global administrative accounts to do this. Using these accounts safely is a real challenge. Any admin who takes se…
    Users of Windows 10 Professional can disable automatic reboots using the policy editor. This tool is not included in the Windows home edition. But don't worry! Follow the instructions below to install (a Win7) policy editor on your Windows 10 Home e…
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…

    729 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    21 Experts available now in Live!

    Get 1:1 Help Now