Beware!!! - Branded Hackers - screenshot sent via Google mail servers

I have found a suspicious file named 'UBGT.exe' in my c://windows/system32/sys32 folder. The sys32 folder is hidden and I found many screenshots of my PC activities.
It’s very stranger and it is connecting to Google mail servers and sending my PC activities in jpg format. The IP which the screenshots are forwarded is of GOOGLE. Is this a new Spy ware or some activities from Google? It is totally ridiculous. I am Ad sense and Ad words user, is this a Google’s new software to spy on this programs. I hope this is not related to Google because I do have respect for it. Whatever it is it is disgusting and must be Professional Hackers or the branded Hackers. . My NoD32 antivirus did not detect it. I installed Seagate firewall and stopped its activities. Yeh, everyone please check your PC’s.


Here are the screenshot of it:


IP belongs to GOOGLE:


Who is Information of the IP :

 

gosh that was disgusting.....

 

Damn thanks for the head up.. I'm checking my PC right now!

 

thanks for the hint!! i hope u an find the source!

 

eak! scary stuff *checking right now*

 

I think that means its being sent to gmail. So someone is receiving your screenshots with gmail.

I am a avid google user and I didn't see that file.

 

It's rather application trying to send emails via google mail servers. Probably kinda spam worm. It is not related to Google, only uses its servers to send unwanted mail.

 

I have not yet deleted the file, I am trying to get in the .exe. I have reported this to Google and asked for the explanation.

 

Sounds like you have spyware and the creator of the program is just using gmail to get your info. I don't think google is actually related.

 

By default folder sys32 doesnt exist.I recommended to download and install Spybot - Search & Destroy.Below is download page the softwares.

http://www.spybot.info/en/index.html

 

wow scary stuff, good thing i use a mac

 

I don't have gmail where i believe other users may offer their helping hand. Everyone who have gmail, please check and update this thread if you are effected. This thread will be another case study for a lot of webmasters here.

Quote for today: It is time to learn linux

 

I hope it has just sending screenshot not my passwords or any important documents. Strange thing here is there is no information about UBGT.exe file in Google search.

if it is worm which is the best application to remove it. NOD32 did not detect it.
:-(

 

Alright I checked my PC.. didn't find anything.. phew..

 

100% AGREE!!

Windows is easy,make one person more reach.
Linux is complicated,full question but make our brain work correctly

 

Try latest version of kaspersky antivirus.

 

thanks for the info, checking now.

 

Thanks! Let me download it and see the result

 

Thats messed up.. how did you come across the file?

 

Sounds like a key logger to me, anyone you know might want to check up on your 'activities?'