My firewall gave me the following message :
Application Hijacking has been detected
The application: C:\WINDOWS\system32\nwiz.exe try to launch another application: C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
I think this is some kind of foul-up, I can’t see how this element of nvidia could launch avast’s update process. However if nvidia’s nwiz.exe was somehow establishing an internet connection then aswUpdSv.exe wight simply be checking for the presence of an internet connection at that time.
What were you ding when the warning was displayed?
I would think this is a one off, so just keep an eye on it and if it becomes a frequent occurrence it would warrant further investigation.
Please be advised that nwiz.exe can also be a virus (Gaobot) disguised as a legitimate Nvida process. The same naming is done of course in an attempt to trick the user into thinking this is wanted process.
By foul-up I mean the firewall has incorrectly identified or detected an action, it happens occasionally.
Having said that Sygate does have a problem identifying programs that use localhost proxy, it only see the proxy not the program using the proxy. This is well reported in these forums.
Sygate has now been bought out by Symantec and is/has being/been discontinued, now would seem to be a good time to look for an alternative firewall.
I too have an nvidia graphics card and it has nwiz.exe in the system32 folder. I would like to hope that avast would detect the gaobot or agobot infection.
Depends on how you are with rule based or application based firewalls. Zone Alarm free is application based and has a friendly user interface. I use Outpost Pro (paid) which can be both Rule and Application based. Kerio and comodo are two others commonly used by members of the forums. a google search for freeware firewall should produce more.