[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 132
  • Last Modified:

Anyone seen this file? I think it is spyware, but cannot find it anywhere. Am I the first? ggbcaus.exe

ggbcaus.exe Found this yesterday as a process that could not be stopped. As soon as you stopped, or deleted the registry for it, it came back. Finally jsut went into safe mode and got rid of it. The users computer was polluted with spyware, and got all of it except this one. Searched for it, but foudn nothing. Thought I would ask the community.
0
Ranman38
Asked:
Ranman38
1 Solution
 
luv2smileCommented:
Almost certain it is malware. Uknown files (especially ones that don't return anything on google) are usually malware.    Deleting the file in safe mode is what I would have told you to do.  
0
 
Pete LongConsultantCommented:
not seem it b4 just out of curiosity whats the computername of the offending PC? - some viri name themselves based on the hostname of the PC (to make themselves difficult to find)

Browser Hijacking/Spyware/Adware/Malware Removal instructions

Full removal and Prevention instructions are available on my website,

http://www.petenetlive.com/Tech/Browsers/hijack.htm

Please don't "Gum up" the TA's here by posting Hijack This Logs
go here and have it analysed.
http://www.hijackthis.de/index.php?langselect=english

The EE Official Link to info is,
 http:Q_20975384.html#10973783
0
 
Ranman38Author Commented:
Well, computer name is nothing near the file name, but users initials were gg!  hmmmm.....
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now