Hi, not used this forum so my apologies if this is the wrong place etc.
I’ve recently found a program called wks-nt-xp.exe in my running processes. Having never seen it there before i was a little distrubed by it, especially when it started trying to access the internet. It now attempts a connection every 20 seconds but thankfully my firewall is blocking it.
My query is, firstly should i be worried about it? Avast and adware didnt remove the file and i cant find anything online about it. Secondly if it is a baddy how do i remove it?
The file indeed looks suspicious.
I suggest to check it with a service like VirusTotal to find out if any other antiviruses detect this file as malicious. If so, please send the file to virus@avast.com for analysis (preferably packed in a password-protected ZIP or RAR).
Thanks.
Seems they’re the only one who’ve picked up on it so far but £24.95 is a bit steep to remove 1 virus =/
Anyhow a bit more information, it has now stopped all access to the internet though it does allow my LAN to connect it wont allow IE, MSN etc to connect. Very strange. Also it’s pretty smart as its managed to bypass my laptops security aswell and has now infected that :-\