It keep on connecting and using my internet connection? how to remove this file?

Is this a virus?

Hello,

This sounds like a piece of malware to me. Have you tried running an in-depth scan with your ESET Smart Security product fully up-to-date with the latest virus signature database, 3982? Also, can you locate where the malicious file is located (e.g: C:\WINDOWS\SYSTEM32 or C:\Program Files\...\)

Regards,

Mark.

Yup i already in-depth full scan my system, but seems no virus detected.

Im using the latest Eset 4 version with latest virus signature database 3982

The file is located at C:\WINDOWS\SYSTEM32\634055\399406.EXE

here's the screenshot
http://img16.imageshack.us/img16/787/virusxgd.jpg

-{ Quote: "Yup i already in-depth full scan my system, but seems no virus detected.

Im using the latest Eset 4 version with latest virus signature database 3982

The file is located at C:\WINDOWS\SYSTEM32\634055\399406.EXE

here's the screenshot
http://img16.imageshack.us/img16/787/virusxgd.jpg" }-
Hello,

If there's a weird file name like that in your SYSTEM32 folder then it's more than likey a virus. Since ESET's latest virus signature isn't detecting it as a virus, I would send the file to ESET using funkydude's directions (http://www.wilderssecurity.com/showpost.php?p=1346902&postcount=4) so that hopefully in the next virus signature update, EAV/ESS will be able to detect it.

In the meantime, you can download and install free on-demand antimalware scanners such as AntiMalwareBytes (http://www.malwarebytes.org/mbam.php) and SUPERAntiSpyware (http://www.superantispyware.com/download.html) and run them in SafeMode. You can enter safe mode by hitting F8 a bunch of times during boot-up. Make sure both products are up-to-date before scanning with them.

Regards,

Mark.

Try using either MalwareBytes or SUPERAntiSpyware (or both) and see what they report. Official site for download is above.

Hello,

If you believe your computer is infected with malware that is not detected by ESET Smart Security, then create a .ZIP or .RAR file protected with a password of "infected" containing the suspicious files and send it, along with an ESET SysInspector log file, to ESET's virus lab for further analysis.

You can download a copy of ESET SysInspector (http://www.eset.com/download/sysinspector.php) from http://www.eset.com/download/sysinspector.php (http://www.eset.com/download/sysinspector.php) and run it to create a log file.

The email address for ESET's virus lab is support@eset.sk (support@eset.sk).


Regards,

Aryeh Goretsky

Thank You guys, file sent.

=]

-{ Quote: "Thank You guys, file sent.

=]" }-
Hopefully it will be added in the next virus signature database update. Did you try any of the two Antimalware programs I suggested as well to see what they could detect?

Try scanning with malwarebytes antimalware see if that finds anything.

Virus Deleted.

Win32/FlyStudio.NIV trojan

Thank You Eset

-{ Quote: "Virus Deleted.

Win32/FlyStudio.NIV trojan

Thank You Eset" }-
Hello,

Glad to here the infection is gone and that it's been added to ESET's virus signatures.

Regards,

Mark.