 | |
| |
| 11 Feb 2010 | #1 |
| | Niwus.exe is a virus or spyware? Hi everybody..... When I start my laptop shown that niwus.exe want to connect internet, this program come from \program files\windows NT\, if I am allowed to connect to the Internet, the program spends approximately Internet quotas 70kb Is this kind a new variant virus or spyware?, can't I delete them and how the the safe way to to remove them? And here another file in windows NT, it call niwus.nof The lister of niwus.nof: URL,,Stealth Redirect To,http://stebuklas.dgorter2.hop.*********.net/ ,0,0 URL,,Stealth Redirect To,http://stebuklas.brammidas.hop.*********.net/ ,0,0 URL,,Stealth Redirect To,http://stebuklas.websellers.hop.*********.net/ ,0,0 URL,,Stealth Redirect To,http://stebuklas.btbet.hop.*********.net/ ,0,0 URL,,Stealth Redirect To,http://stebuklas.cragar.hop.*********.net/ ,0,0 URL,p,Stealth Redirect To,http://stebuklas.postyourhm.hop.*********.net/ ,0,0 Why this progam want to connect internet by visit to those sites? 2nd question: My laptop installed AVG Internet Security v9.0.733 If I connect the internet my firewall say that the following program (windows) trying to connect: wermgr.exe rundll32.exe service.xe taskhost.exe isass.exe svchost.exe msdt.exe msiexec.exe Can't I stop them by blocking to the internet connection?, and why Windows always try connect internet? Please, I need advise. |
My System Specs | |
| 11 Feb 2010 | #2 |
| | Upload the file (Niwus.exe) to Virus Total, and if any A/V scanners pick it up as something nasty. I can tell you that rundll32.exe, service.exe, taskhost.exe, svchost.exe, and msiexec.exe are safe if they are running from the \Windows\System32 or \Windows\SysWOW64 directories. The others in your second question may be safe, but I can't comment on them. |
| My System Specs |
| 11 Feb 2010 | #3 |
| | 
Quote: Originally Posted by Damarwulan  Hi everybody..... When I start my laptop shown that niwus.exe want to connect internet, this program come from \program files\windows NT\, if I am allowed to connect to the Internet, the program spends approximately Internet quotas 70kb Is this kind a new variant virus or spyware?, can't I delete them and how the the safe way to to remove them? And here another file in windows NT, it call niwus.nof The lister of niwus.nof: URL,,Stealth Redirect To,http://stebuklas.dgorter2.hop.*********.net/ ,0,0 URL,,Stealth Redirect To,http://stebuklas.brammidas.hop.*********.net/ ,0,0 URL,,Stealth Redirect To,http://stebuklas.websellers.hop.*********.net/ ,0,0 URL,,Stealth Redirect To,http://stebuklas.btbet.hop.*********.net/ ,0,0 URL,,Stealth Redirect To,http://stebuklas.cragar.hop.*********.net/ ,0,0 URL,p,Stealth Redirect To,http://stebuklas.postyourhm.hop.*********.net/ ,0,0 Why this progam want to connect internet by visit to those sites? 2nd question: My laptop installed AVG Internet Security v9.0.733 If I connect the internet my firewall say that the following program (windows) trying to connect: wermgr.exe rundll32.exe service.xe taskhost.exe isass.exe svchost.exe msdt.exe msiexec.exe Can't I stop them by blocking to the internet connection?, and why Windows always try connect internet? Please, I need advise. Hello, Welcome to SF, According to some forums that file is a Virus. best thing to do would be disable from Startup. Start > msconfig > Startup then if you find it uncheck it and reboot the System that should prevent from Starting up. Also download Malwarebytes and run it. Other services that your referring to are Windows services which you don't want to block. Hope this helps, Captain |
| My System Specs |
| . |
| |
| 12 Feb 2010 | #4 |
| | Ok, stoping this program using msconfig.exe If this virus, can't I delete folder \program files\windows NT\*.* ? Many thanks |
| My System Specs |
| 12 Feb 2010 | #5 |
| | I would follow the advice given if i were you. cheers. |
| My System Specs |
| 12 Feb 2010 | #6 |
| | Hi As advised previously... 1 - Upload a File to Virustotal
|
| My System Specs |
| 14 Feb 2010 | #7 |
| | theres a new antivirus out that runs as a BAT file called ComboFix try it let us know if it workss even Malwarebytes dont panic and run them all at the same time if its a bad virus or spyware run in safe mode and use the antivirus to scan there thn youll have no porgrams running but your OS cya |
| My System Specs |
| 14 Feb 2010 | #8 |
| | ComboFix is not an Antivirus. Quote: You should not run ComboFix unless you are specifically asked to by a helper. Also, due to the power of this tool it is strongly advised that you do not attempt to act upon any of the information displayed by ComboFix without supervision from someone who has been properly trained. If you do so, it may lead to problems with the normal functionality of your computer. |
| My System Specs |
| 14 Feb 2010 | #9 |
| | Very true Tepid. Only EVER use Combofix when asked to by a Trusted person on a Trusted Security forum!!! Same goes for any advanced Removal/ analysis software. |
| My System Specs |
| 15 Feb 2010 | #10 |
| |
Quote: Originally Posted by Tepid ComboFix is not an Antivirus. Quote: You should not run ComboFix unless you are specifically asked to by a helper. Also, due to the power of this tool it is strongly advised that you do not attempt to act upon any of the information displayed by ComboFix without supervision from someone who has been properly trained. If you do so, it may lead to problems with the normal functionality of your computer. |
| My System Specs |
 |
Niwus.exe is a virus or spyware? problems?
| Thread Tools | |
| Similar help and support threads for: Niwus.exe is a virus or spyware? | ||||
| Thread | Forum | |||
| uTorrent spyware/virus | System Security | |||
| Virus, Spyware, Malware, etc. defined | System Security | |||
| virus, spyware, malware? | System Security | |||
| Do I have a spyware or a virus? | System Security | |||
| What virus/spyware program to get for 7 64? | System Security | |||
All times are GMT -5. The time now is 05:58 PM.
