What is xivnir.exe?

[Roman]

I found that xivnir.exe was running in my computer.
Google could not find xivnir.exe.
Does anybody whether this is a virus or not.
Roman

 

[Guest]

Go to: Start>Run>type MSCONFIG and press Enter
Click the Startup tab and see if xivnir.exe is listed.
If it is, uncheck/disable it>click Apply and Close. Reboot.
Now see if you get an error message or if all is OK.

 

[Malke]

I found that xivnir.exe was running in my computer.
Google could not find xivnir.exe.
Does anybody whether this is a virus or not.
Roman

Since a Google search for "xivnir.exe" brings up nothing (except your
post), there is a strong probability that the file is malware. You can
send it to Virus Total for identification.

http://www.virustotal.com/

Otherwise, just go through the normal malware removal scans to be sure:

http://www.elephantboycomputers.com/page2.html#Removing_Malware

Simply removing the file from startup doesn't get your machine clean.


Malke

 

[Roman]

I did it.
I also stopped Xivnir.exe service.
When booted, all came back alive.

I also found that Xivnir.exe is under System32 (ca. 1.4 MB).
When seached Xivnir via Start>Search. it detected as XIVNIR.EXE-1584503D.pf
under Windows>Prefetch.

I wonder I could deleted the file under Prefetch.

Roman,






I have a hunch that it must be malware.
I scanned with AVG 7.5 (this is my antivirus program) and Lavasoft
Ad-aware. They did not see them either.

 

[Roman]

As you suggested, I tried to report xivnir.exe to
http://www.virustotal.com/.
But I could not uploaded the file because the file is invisible under
Windows Explorer (even after checking "Show hidden files and folders".

I used mainly Total Commander as the file manager. With it, I can
xivnir.exe after checking "Show hidden files/folders".
The creator for xivnir.exe probably thought that nobody could see xivnir.exe
under system32 folder.

BTW, when checked registry, I see many listing which is associated with
xivnir.exe.
At the point of this time, I did not remove it because I did not know
whether xivnir.exe is malware or not.

Roman

 

[Roman]

I checked xivnir.exe under Startup Manager using JV16 Power Tools 2007. It
mentioned that xivnir.exe is from "Microsoft Update Machine" program. So it
seems that it came from Microsoft, probably during recent autoupdate. What
do you think? Roman

 

[Elmo]

I checked xivnir.exe under Startup Manager using JV16 Power Tools 2007. It
mentioned that xivnir.exe is from "Microsoft Update Machine" program. So it
seems that it came from Microsoft, probably during recent autoupdate. What
do you think? Roman

It's a worm.

http://groups.google.com/groups/search?q="Microsoft+Update+Machine"&qt_s=Search+Groups

 

[Guest]

You can safely delete ALL files listed in the Prefetch directory except the
ini file.
The files will repopulate when programs are used except for ones pertaining
to apps you may have deleted. Also, take heed to Malke's comment about
a clean machine to remove this malware. An excellent program is CCleaner.
CCleaner - Download (Free)
http://ccleaner.com/download