Hi magna86,
So it will start with this known worm, tiwi.exe aka W32.Rahiwi.A!
tiwi.exe is an executable file which primary purpose is to start a parasite or launch some of its components. Once executed, the tiwi.exe file runs a process that is responsible for the parasite's payload. tiwi.exe is a significant part of a dangerous threat, but it can also work on its own. DO NOT execute it! The tiwi.exe file is installed and used by Rahiwi. You are highly advised to scan the system, delete executable tiwi.exe and terminate all the processes it started.
In some cases a presence of tiwi.exe does not mean that your system is infected. The file may actually belong to some fully legitimate applications and therefore must stay intact. If you are in doubt, please scan the tiwi.exe file using you regular spyware remover or antivirus program.
info spyware2...but as stated here there is also a benign variant as part of clean applications:
http://www.isthisfilesafe.com/sha1/A02D46D883B09F481B496E35B53C8415372C75E5_details.aspxthe malware tiwi.exe aka W32.Rahiwi.A is a worm. It infects all Windows systems and propagates itself by duplicating itself to the root of all drives in removable, local and network shares. The worm is a slow infector. It does low damage to the infected computer and is easy to remove using an updated antivirus software. So we at least should have had protection against this slow infector
Damian
