What is autorun.exe?
autorun.exe is a legitimate executable file developed by Microsoft. This process is known as AutoPlay Application and it belongs to AutoPlay Media Studio. It is commonly stored in 'C:\DOCUME~1\roger\LOCALS~1\Temp\ir_ext_temp_0\' folder. Cybercriminals find a way out to mimic malicious programs in the name of autorun.exe to spread malware infection.
Affected Platform: Windows OS
How to detect whether your system is affected by autorun.exe?
Viruses can easily affect and corrupt “.exe” files causing several system malfunctions. Below are the symptoms to check if your system is infected with the malware:
- Problem during computer start-up.
- Problem during program start-up.
- Errors while running specific functions.
- Damaged and missing link files.
- Conflict in the process.
- Missing or corrupted driver files.
- Invalid Windows registry.
- Hardware malfunction.
To further establish the infection of malware, take the following steps:
- Go to Task Manager by pressing the combination of keys CTRL+ALT+DEL.
- Go to the process tab and right-click on the autorun.exe file and open its location.
If the file is located outside 'C:\DOCUME~1\roger\LOCALS~1\Temp\ir_ext_temp_0\' folder, then you should perform an antivirus scan to get rid of the malware infection.
How does Comodo Antivirus help you to protect your system from autorun.exe malware?
Comodo Antivirus protects your system from malware attacks and also removes any existing infections. Following are the steps to effectively purge out the autorun.exe malware from your system.
Step 1: Download and install Comodo Antivirus.
Step 2: Installation configuration frames will be displayed. Select the configuration you would like to apply.
Step 3: Select Customize Configuration option and arrange installers, configuration, and file location.
Step 4: Restart your PC.
Step 5: Wait until the Comodo Internet Security updates the antivirus.
Step 6: Initiate a quick scan that instantly begins after the update.
Step 7: If the system is infected with autorun.exe malware or any other threats, you will be prompted with an alert screen upon scanning.
Step 8: Comodo Antivirus will remove the computer virus including all other malware!
| No. | Company | File Type | SHA1 | MD5 | Malware Name |
Digitally Signed |
File Version |
Product Version |
Submitted From |
Malware Behavior |
|---|---|---|---|---|---|---|---|---|---|---|
| 1 | Autodesk Inc. | Executable | 080af32ae30af83d c3124742f6324512 861505ed |
7720463c194d8fb6 0ca330563861f9eb |
Virus.Win32. Weird.102400 |
No | 15, 0, 0, 98 |
15, 0, 0, 98 |
 37.154.129.100/32 |
N/A |
| 2 | N/A | Executable | 2aeb256700bda777 37dac8380dd9db83 feef6197 |
53c830f8c045abc5 e7d5fa6c0af681c1 |
Virus.Win32. Parite.gen |
No | 8.0.1.1 | 8.0.1.1 |  United States |
N/A |
| 3 | N/A | Executable | f3e97d27e019d128 f05bcf7aeb8827a6 53899be7 |
60acfd21aadf89f5 016b6b501a93fa61 |
TrojWare.Win 32.Agent.QJF |
No | N/A | N/A | United States |
N/A |
| 4 | Windows | Executable | 20d7bee56101937b 0158217b20dbfaf3 1b517ae7 |
e8068f5620beafcb 0229c0026784faa8 |
TrojWare.Win 32.Fareit.RG Y |
No | 1.09.0005 | 1.09.0005 | 197.234.48.109/32 |
N/A |
Europe| No. | Company | File Type | SHA1 | MD5 | Digitally Signed |
File Version |
Product Version |
Submitted From |
|---|---|---|---|---|---|---|---|---|
| 1 | N/A | Executable | 961597852eaf2f54 75e78eb142278e3c bb7693b7 |
59e99efa6b5ce638 9c6c9592515f61fe |
Yes | N/A | N/A | 104.238.128.144/32 |
| 2 | autorun | Executable | 7f537e0258a08b11 21bb9270cb4ec794 0325606d |
ca9e0e4197e8bf50 76611b58ea3e3838 |
Yes | 1.0.0.0 | 1.0.0 | 104.238.128.144/32 |
| 3 | Waypoint Global, Inc | Executable | 6a456643c4a76de1 bdb069fa5815270c 637fbcbf |
50cf5f0d6c0f9222 0ff06b4108ba0214 |
Yes | 1.0.0.29 | 4.30.0.0 | United States |
| 4 | N/A | Executable | f6d96bea3c992692 66373dc2679ce195 ee0dbf0a |
8b010a7377c46817 d1471dca28d7320a |
Yes | 22.2.0.0 | 22.2.0.0 | 104.238.128.144/32 |
