Ok, here's a head-scratcher for ya

Anytime I get a pop-up on Zone Alarm asking if something I don't recognize should access the internet, I immediately Google it to see what it is and what I think I should do. Recently, I keep getting this "ubpl.exe would like to access the internet" thing. So, I Google. And I get NOTHING. No matches at all. That's never happened.

My 14 yr old does a lot of stuff with dollmaking (graphics) and ends up getting some pretty sketchy stuff on here a lot of times. But it's usually pretty easy to find out what these kinds of things are and how to remove them. I almost NEVER have viruses, and can always get rid of even the most stubborn spyware. But this one has me puzzled.

Anyone heard of this ubpl.exe? It's really annoying the crap out of me that I can't even seem to find where on my computer it is...Spybot/AdAware are apparently not finding whatever it is.

Thanks for any assistance! :hi:

and did not find anything on it YET. Did you try going to
Start-Find-Files and Folders and type it in? Is it in your startup files?

Nada. :shrug:

...came up with a reference to spam being posted to usenet, but it wasn't very informative.

In your next post, it would be helpful to tell us the PORT it's trying to access to help guage the threat.

These programs are VERY tricky (they'd have to be, or we'd just stop them, right?). On one system I was running all of the usual spybot, search & destroy, etc programs and it would regularly come up with stuff (esp hijacking IE - don't use IE!). So I ran said virus/spyware programs, they then reported the system was clean, but upon reboot (NOTE: DISCONNECTED FROM THE INTERNET FOR TESTING) I'd be infected all over again with OTHER programs.

My thinking is that some of these guys must be installing programs which infect legitimate programs that are run when certain events happen (boot/login/etc) like "mobsync" which I have no use for but I can't stop from running. These programs then "spin off" new exe's, run them and start the 'fun' all over again. It wouldn't suprise me if they were named on some random basis, frustrating any attempt to label them.

With this scheme, it would take a long time indeed to figure out where the problems REALLY came from...

I'd search for said ubpl.exe on your hard drive and with a right click check out it's properties. If it's in your internet cache - delete away.

It's probably a random name.

If you want to track it down you probably need to look at your
boot run lists (tricky, depends on OS), and/or boot into fancy
modes again depending on your OS.