What is autorun.exe?
autorun.exe is a legitimate executable file developed by Microsoft. This process is known as AutoPlay Application and it belongs to AutoPlay Media Studio. It is commonly stored in 'C:\DOCUME~1\roger\LOCALS~1\Temp\ir_ext_temp_0\' folder. Cybercriminals find a way out to mimic malicious programs in the name of autorun.exe to spread malware infection.
Affected Platform: Windows OS
How to detect whether your system is affected by autorun.exe?
Viruses can easily affect and corrupt “.exe” files causing several system malfunctions. Below are the symptoms to check if your system is infected with the malware:
- Problem during computer start-up.
- Problem during program start-up.
- Errors while running specific functions.
- Damaged and missing link files.
- Conflict in the process.
- Missing or corrupted driver files.
- Invalid Windows registry.
- Hardware malfunction.
To further establish the infection of malware, take the following steps:
- Go to Task Manager by pressing the combination of keys CTRL+ALT+DEL.
- Go to the process tab and right-click on the autorun.exe file and open its location.
If the file is located outside 'C:\DOCUME~1\roger\LOCALS~1\Temp\ir_ext_temp_0\' folder, then you should perform an antivirus scan to get rid of the malware infection.
How does Comodo Antivirus help you to protect your system from autorun.exe malware?
Comodo Antivirus protects your system from malware attacks and also removes any existing infections. Following are the steps to effectively purge out the autorun.exe malware from your system.
Step 1: Download and install Comodo Antivirus.
Step 2: Installation configuration frames will be displayed. Select the configuration you would like to apply.
Step 3: Select Customize Configuration option and arrange installers, configuration, and file location.
Step 4: Restart your PC.
Step 5: Wait until the Comodo Internet Security updates the antivirus.
Step 6: Initiate a quick scan that instantly begins after the update.
Step 7: If the system is infected with autorun.exe malware or any other threats, you will be prompted with an alert screen upon scanning.
Step 8: Comodo Antivirus will remove the computer virus including all other malware!
| No. | Company | File Type | SHA1 | MD5 | Malware Name |
Digitally Signed |
File Version |
Product Version |
Submitted From |
Malware Behavior |
|---|---|---|---|---|---|---|---|---|---|---|
| 1 | it next | Executable | 0cd2ddd66c6d553c 1edc6f7ab6e763df eb0eea2d |
121475a6e590f3d1 0446cf92fbafd136 |
Virus.Win32. Floxif.A |
No | 6.0.2.142 | 6.0.0.0 |  103.118.78.140/32 |
N/A |
| 2 | N/A | Executable | 201464c700be6b3b c28bc3ea9578199d 836a1b06 |
5d821a761a618a96 fe0342f224ecc825 |
Win32.Neshta .A |
No | N/A | N/A | 102.129.232.209/32 |
N/A |
| 3 | Windows | Executable | 20d7bee56101937b 0158217b20dbfaf3 1b517ae7 |
e8068f5620beafcb 0229c0026784faa8 |
TrojWare.Win 32.Fareit.RG Y |
No | 1.09.0005 | 1.09.0005 | 197.234.48.109/32 |
N/A |
| 4 | R.J.L. Software | Executable | 9943c7559ba475b9 be65e8e830856083 9ce27e6b |
ed26e22ec7423b41 8470319f17af5afa |
Joke.Win32.B adJoke.FakeD el.~E |
No | 1.0.1.0 | 1.0.0.0 | 176.14.138.96/32 |
N/A |
- 4 items per page
- 8 items per page
- 16 items per page
- 32 items per page
| No. | Company | File Type | SHA1 | MD5 | Digitally Signed |
File Version |
Product Version |
Submitted From |
|---|---|---|---|---|---|---|---|---|
| 1 | N/A | Executable | f6d96bea3c992692 66373dc2679ce195 ee0dbf0a |
8b010a7377c46817 d1471dca28d7320a |
Yes | 22.2.0.0 | 22.2.0.0 | 104.238.128.144/32 |
| 2 | N/A | Executable | 334433905dbfff03 db2f0ce666ac2ac1 25e79230 |
42a71c9e82954e48 15f473421d36e283 |
Yes | N/A | N/A |  United States |
| 3 | N/A | Executable | b34a723cc56b78ca 1e90ee6f97c357dd 4aeea054 |
bc3e565bd39eea1b d162e549ecd4a4ea |
Yes | 23.2.0.0 | 23.2.0.0 | United States |
| 4 | N/A | Executable | a038dc40d7dd8b95 185fbdb2cd556b58 944653af |
7aeaf26e41c4e9e8 17557c94379a6eec |
Yes | 22.5.0.0 | 22.5.0.0 | United States |
