What is Powercfg.exe?
Powercfg.exe is a legitimate file. It is also called Power Settings Command-Line Tool. It is used to control all configurable power system settings and it is associated with Mircorosft Windows Operating Systems and it is developed by Microsoft Corporation. It is commonly stored in C:\Windows\System32. The malware programmers or cyber criminals write the different types of malicious program and name it as powercfg.exe to damage the software and hardware.
Affected Platform: Windows OS
How to check if your computer is infected with powercfg.exe malware?
The type of malware programs varies and the mode of infection also varies. Any of the following can alert you if the system is infected.
- If the internet connection fluctuation is high
- If the powercfg.exe file is taking more of your CPU memory
- If the system performance is very low
- If the system is redirected to some strange websites
- If the system is getting some annoying popup ads
How to remove the Powercfg.exe file from system using Comodo Antivirus?
Step 1: Download the award-winning Free Internet Security.
Step 2: Installation configuration frames will be displayed. Select the configuration you would like to apply.
Step 3: Select Customize Configuration option and arrange installers, configuration, and file location.
Step 4: Restart your PC.
Step 5: It will take some time for the Comodo Internet Security to update the antivirus.
Step 6: Proceed with a quick scan that automatically begins after the update.
Step 7: If threats are found during the scanning, you will be prompted with an alert screen.
Step 8: Comodo Antivirus will remove the Powercfg.exe virus from your computer including all other malwares!
First Seen: 25 October 2011 at 1:17 am
| No. | Company | File Type | SHA1 | MD5 | Malware Name |
Digitally Signed |
File Version |
Product Version |
Submitted From |
Malware Behavior |
|---|---|---|---|---|---|---|---|---|---|---|
| 1 | N/A | Executable | fa3b14f9c327b042 1abae1140e4fd0e4 4c348618 |
a5f668d99c70b720 0cea1b32caa1da95 |
Virus.Win32. Virut.CE |
No | N/A | N/A |  Pakistan |
N/A |
| 2 | Microsoft Corporation | Executable | 2b39d580d7a18cbf 588598ffbdc4936a 2182b505 |
bb0056270670b33e e5c484fabde3029a |
Virus.Win32. Virut.CE |
No | 6.1.7600.1 6385 (win7_rtm. 090713-125 5) |
6.1.7600.1 6385 |
 Indonesia |
N/A |
| 3 | N/A | Executable | cf12bee758465291 cad639b9f58f2cc3 d88f1ae9 |
4781479231fe04a6 6317683dc73000cc |
Virus.Win32. Virut.CE |
No | N/A | N/A |  197.211.57.71/32 |
N/A |
| 4 | Microsoft Corporation | Executable | 30698bdf756b6979 d6cfbc14668d4ede a0f24a6a |
b3745031f37f6a1d d3742e7947ec689d |
Virus.Win32. Virut.CE |
No | 6.1.7600.1 6385 (win7_rtm. 090713-125 5) |
6.1.7600.1 6385 |
105.107.60.22/32 |
N/A |
Nigeria
Russian Federation
Bulgaria
Egypt
Turkey
Morocco
Algeria
Australia
Europe
Iran, Islamic Republic of
Belarus
Mexico
Canada
Ukraine
ItalyFirst Seen: 10 March 2018 at 2:55 pm
| No. | Company | File Type | SHA1 | MD5 | Digitally Signed |
File Version |
Product Version |
Submitted From |
|---|---|---|---|---|---|---|---|---|
| 1 | Microsoft Corporation | Executable | cb50353909cd4d30 985e6684b155c941 e0131890 |
f2b57888627ea4c3 c8e902079a7194d2 |
No | 10.0.21387 .1 (WinBuild. 160101.080 0) |
10.0.21387 .1 |
 United States |
| 2 | Microsoft Corporation | Executable | 5cc1f9d40a7611ca a092dd77a51eecc6 2c1d9b9c |
47a6c275be719f55 00a4ff67357ccfb1 |
No | 10.0.20215 .1000 (WinBuild. 160101.080 0) |
10.0.20215 .1000 |
 Romania |
| 3 | Microsoft Corporation | Executable | 4cf6e83239505fcf 1056f293a25fa6c0 adc644e0 |
f385f369d87be5db 7ad15b33a5678399 |
No | 10.0.22593 .1 (WinBuild. 160101.080 0) |
10.0.22593 .1 |
 India |
| 4 | Microsoft Corporation | Executable | 34a092e7cedb8388 0d943422b156f817 3b5903fe |
ac895e0d345aa127 1276a3fa3bba3eac |
No | 10.0.20215 .1000 (WinBuild. 160101.080 0) |
10.0.20215 .1000 |
Romania |
United Kingdom
Display 4 items per page
- 4 items per page
- 8 items per page
- 16 items per page
- 32 items per page
