I was using my computer when I got a Comodo firewall notice telling that netsession_win.exe and installer_uploader.exe are trying to connect to the internet. Both of those files names sound suspicious especially when they just randomly pop up on my firewall. I blocked them both from connecting and looking at my firewall logs since, netsession_win.exe has continually tried to connect to the internet. I have heard of "Akamai" before though and thought they were a legitimate internet company?
{Moderator Note: The consensus is that Akamai Netsession is safe. It's a downloading software used by many big name software companies, as well as some smaller ones.}
According to some Google searching it's installed with some games, and even Adobe Flashplayer and Adobe CS5 and uninstalling it (which you can do it straight from the control panel and it also has an uninstall.exe in it's folder) can cause problems with the programs that share it or use it. Don't completely take my word for it though because I agree that it acts suspiciously so hopefully someone who really knows more about it will give a reliable answer!
awwww dang it...looks like you and i are heading in a world of !.........my stupid mouse clicker was acting up and in the process of fixing it it clicked on the accept button when the firewall noticed popped up...... >:(
I have it on my computer too, and my virus scanner and Malware detectors (I use SuperAnti Spyware and MalwareBytes
) don't tell me it's anything suspicious...
lots of people getting the same message in the past hour: http://www.google.com/search?q=windows+firewall+netsession_win.exe
It also automatically adds itself to your Windows startup in the HKCU Registry Key (HKey_Current_User). You can temporarily disable it on the next boot by getting Mike Lin's Startup program and unchecking the box next to it, or delete it's entry altogether so it doesn't run on start up at all.
How do I find this HKCU registry key mentioned by Mike Lin... on my computer? give me step by step please since I'm not too computer smart Thanks
Hi, Fans842
That's just a small free program that you can download, to be able to view the HKCU registry. You can download it from here.
Also, if you are using Windows 10 (I don't recall off the top of my head if it was in earlier versions of Windows), you can also see the same thing by just doing this:
I got mine too but it happen last night instead of within the last hour, on my Windows Firewall. It says it's a p2p (peer 2 peer) program and suddenly we're all getting attempts to connect. I wonder if we're all trying to connect to each other! Like for some sort of DDOS attack or something? It might be helpful to view your firewall logs and do lookups on the IP addresses that it's trying to connect to. Comodo Firewall can show them as seen in Olive Oyl's screenshot.
It is very fishy! ::
there is no uninstall and this program not only downloads but will upload too on its own ,,,This seems very dangerous to me ...It only exists in a user file...i tried to contact the program and it needed a file to inspect for feedback ...total duh
I took a screen shot of my Comodo firewall log to show what Akamai netsession is trying to do. It looks very trojan-like!
V1010:111103_010310: [info] InstallerHelper.cpp:postInstallSteps(547): Successfully installed the client
V1001:111103_010311: [info] Installer.cpp:main(43): Started install log file uploader
V1001:111103_010311: [info] Installer.cpp:_ak_uploadLogs(2211): Uploading log file C:/Users/MyName/AppData/Local/Akamai/installer.txt, initial url is http://log.client.akadns.net/logs/
V1001:111103_010311: [info] Installer.cpp:_ak_readOrGenerateGuid(1984): GUID "98205676376573245sgffdg674eaafd" loaded from existing file "C:/Users/MyName/AppData/Local/Akamai/guid.ini"
V1001:111103_010332: [eror] Installer.cpp:_ak_uploadLogs(2263): Failure opening socket to log.client.akadns.net:80
V1010:111103_010332: [info] RS_Win32.cpp:RSWaitForProcessToExit(1023): Process executed with path 'C:/Users/MyName/AppData/Local/Akamai/installer_uploader.exe' exited with exit code 0.
{Mod Note: I took the liberty of obfuscating your user name in the screenshot in case you forgot to or didn't notice it was included.
}