What is Powercfg.exe?
Powercfg.exe is a legitimate file. It is also called Power Settings Command-Line Tool. It is used to control all configurable power system settings and it is associated with Mircorosft Windows Operating Systems and it is developed by Microsoft Corporation. It is commonly stored in C:\Windows\System32. The malware programmers or cyber criminals write the different types of malicious program and name it as powercfg.exe to damage the software and hardware.
Affected Platform: Windows OS
How to check if your computer is infected with powercfg.exe malware?
The type of malware programs varies and the mode of infection also varies. Any of the following can alert you if the system is infected.
- If the internet connection fluctuation is high
- If the powercfg.exe file is taking more of your CPU memory
- If the system performance is very low
- If the system is redirected to some strange websites
- If the system is getting some annoying popup ads
How to remove the Powercfg.exe file from system using Comodo Antivirus?
Step 1: Download the award-winning Free Internet Security.
Step 2: Installation configuration frames will be displayed. Select the configuration you would like to apply.
Step 3: Select Customize Configuration option and arrange installers, configuration, and file location.
Step 4: Restart your PC.
Step 5: It will take some time for the Comodo Internet Security to update the antivirus.
Step 6: Proceed with a quick scan that automatically begins after the update.
Step 7: If threats are found during the scanning, you will be prompted with an alert screen.
Step 8: Comodo Antivirus will remove the Powercfg.exe virus from your computer including all other malwares!
First Seen: 25 October 2011 at 1:17 am
| No. | Company | File Type | SHA1 | MD5 | Malware Name |
Digitally Signed |
File Version |
Product Version |
Submitted From |
Malware Behavior |
|---|---|---|---|---|---|---|---|---|---|---|
| 1 | N/A | Executable | fa3b14f9c327b042 1abae1140e4fd0e4 4c348618 |
a5f668d99c70b720 0cea1b32caa1da95 |
Virus.Win32. Virut.CE |
No | N/A | N/A |  Pakistan |
N/A |
| 2 | N/A | Executable | cf12bee758465291 cad639b9f58f2cc3 d88f1ae9 |
4781479231fe04a6 6317683dc73000cc |
Virus.Win32. Virut.CE |
No | N/A | N/A |  197.211.57.71/32 |
N/A |
| 3 | Microsoft Corporation | Executable | 0139b50eb933a15b 8ccac6dd87a95a00 380dccc7 |
2194454f2255ca81 1c7597a46f56ec36 |
Virus.Win32. Virut.Ce |
No | 6.1.7600.1 6385 (win7_rtm. 090713-125 5) |
6.1.7600.1 6385 |
 Nigeria |
N/A |
| 4 | Microsoft Corporation | Executable | a3a5de45e4fa2661 4afe0a5e72b8d42b 1bc15c90 |
532a91af3a7de12a 1e883019a51569a1 |
Virus.Win32. Parite.gen |
No | 5.1.2600.2 180 (xpsp_sp2_ rtm.040803 -2158) |
5.1.2600.2 180 |
 Turkey |
N/A |
Zimbabwe
Russian Federation
Bulgaria
Egypt
Morocco
Algeria
Australia
Philippines
Europe
Indonesia
Iran, Islamic Republic of
Greece
Belarus
China
India
Canada
Ukraine
ItalyFirst Seen: 22 October 2011 at 12:24 pm
| No. | Company | File Type | SHA1 | MD5 | Digitally Signed |
File Version |
Product Version |
Submitted From |
|---|---|---|---|---|---|---|---|---|
| 1 | Microsoft Corporation | Executable | c2181a7f6255fe9b c6bf321a7d7d8b7a 98bb87cc |
27bce46a76104eed fba24d672fe5bc15 |
No | 5.2.3790.0 (srv03_rtm .030324-20 48) |
5.2.3790.0 | Internal Submission |
| 2 | Microsoft Corporation | Executable | 0989525dda5f937a 4895f2a53a4319ff 16890b03 |
9d71dbdd3ad017ec 69554acf9caadd05 |
No | 10.0.19041 .1 (WinBuild. 160101.080 0) |
10.0.19041 .1 |
 United States |
| 3 | Microsoft Corporation | Executable | 9adb16a18ed1650f 5f5a7e6bd83dbd3d fd1963e1 |
9ca38be255fff57a 92bd6fbf8052b705 |
No | 10.0.19041 .1 (WinBuild. 160101.080 0) |
10.0.19041 .1 |
United States |
| 4 | Microsoft Corporation | Executable | b2e02ff6a78ef9f0 a309fcc86971f3ad fcd2d538 |
cdb207f785d9f2a2 c3480b0f0b9d7f7c |
No | 10.0.17074 .1002 (WinBuild. 160101.080 0) |
10.0.17074 .1002 |
 United Kingdom |
Display 4 items per page
- 4 items per page
- 8 items per page
- 16 items per page
- 32 items per page
