Should I Block It?

  • Thread starter Thread starter Zetor
  • Start date Start date
Z

Zetor

Hi, my Norton Firewall warns me that "dnglhphq.exe" is
attempting to connect and that it was classed as "high
risk" and to block it which is what I have been doing,
anyone know what program this could be?
Zetor
 
Zetor said:
Hi, my Norton Firewall warns me that "dnglhphq.exe" is
attempting to connect and that it was classed as "high
risk" and to block it which is what I have been doing,
anyone know what program this could be?
Zetor
Click to expand...
A Google search -- the first place you should go for a information on a
questionable file -- yeilds no information. Do a search of your hard
drive for the file and then decide for yourself if you want it to phone
home. You are the best judge of what should and should not be allowed
access from your own computer. If the hard drive search yields location
information that you don't understand, post back with it.
 
Hi, my Norton Firewall warns me that "dnglhphq.exe" is
attempting to connect and that it was classed as "high
risk" and to block it which is what I have been doing,
anyone know what program this could be?
Zetor
Click to expand...

Zetor,

Probably the randomly assigned name of a spyware or viral component. That's not
an uncommon spyware or virus tactic these days.

How current is your virus protection? Try one or more of these free online
virus scans, which should complement your current protection:
<http://www.bitdefender.com/scan/license.php>
<http://www.pandasoftware.com/activescan>
<http://www.ravantivirus.com/scan/>
<http://housecall.trendmicro.com/housecall/start_corp.asp>

Now check for, and learn to defend against, additional problems.

Start by downloading each of the following free tools:
AdAware <http://www.lavasoftusa.com/>
CWShredder <http://www.majorgeeks.com/download4086.html>
CoolWWWSearch.SmartSearch (v1/v2) MiniRemoval
<http://www.majorgeeks.com/download4113.html>
HijackThis <http://www.majorgeeks.com/download.php?det=3155>
LSP-Fix and WinsockLSPFix <http://www.cexx.org/lspfix.htm>
Spybot S&D <http://www.safer-networking.org/index.php?page=download>
Stinger <http://us.mcafee.com/virusInfo/default.asp?id=stinger>

Create a separate folder for HijackThis, such as C:\HijackThis - copy the
downloaded file there. AdAware and Spybot S&D have install routines - run them.
The other downloaded programs can be copied into, and run from, any convenient
folder.

Start by closing all Internet Explorer and Outlook windows, and running
CoolWWWSearch.SmartSearchMiniRemoval, then CWShredder. Have the latter fix all.

Next, run AdAware. First update it ("Check for updates now"), configure for
full scan (<http://www.lavahelp.com/howto/fullscan/>), then scan ("Start" - "Use
custom scanning options" - "Next"). When scanning finishes, select everything
for deletion, and hit Next again.

Next, run Spybot S&D. First update it ("Search for updates"), then run a scan
("Check for problems"). Trust Spybot, and delete everything ("Fix Problems")
that is displayed in Red.

Then, run HijackThis ("Scan"). Do NOT make any changes immediately. Save the
HJT Log.
<http://forums.spywareinfo.com/index.php?showtopic=227>

Finally, have your HJT log interpreted by experts at one or more of the
following security forums (and post it, or a link to your forum posts, here):
Aumha: <http://forum.aumha.org/index.php>
Net-Integration: <http://forums.net-integration.net/>
Spyware Info: <http://forums.spywareinfo.com/>
Spyware Warrior: <http://spywarewarrior.com/index.php>
Tom Coyote: <http://forums.tomcoyote.org/>

If removal of any spyware affects your ability to access the internet (some
spyware builds itself into the network software, and its removal may damage your
network), run LSP-Fix and / or WinsockXPFIx.

Cheers,
Chuck
Paranoia comes from experience - and is not necessarily a bad thing.
 
Back
Top