How to Remove “Psinfo.exe”

What is Psinfo.exe?

Psinfo.exe is a legitimate process file popularly known as Sysinternals PsInfo. It belongs to Sysinternals PsInfo, developed by Sysinternals. It is located in C:\Windows\System32 by default.
Malware programmers write virus files with malicious scripts and save them as Psinfo.exe with an intention to spread virus on the internet.

Affected Platforms: Windows OS

How to determine if your computer is infected with Psinfo.exe malware?

Look out for these symptoms to check if your PC is infected with Psinfo.exe malware:

  • Unstable internet connection
  • Psinfo.exe occupies extra CPU space
  • PC processing speed slows down
  • Browser often redirects to irrelevant websites
  • Browser is bombarded with hordes of popup ads
  • Computer screen freezes repeatedly

Take the following steps to diagnose your PC for possible Psinfo.exe malware attack:

Step 1: Simultaneously press CTRL+ALT+DEL keys to open Task Manager.

Step 2: If you notice the file located outside C:\Window\System32, perform an antivirus scan to get rid of the malware.

How to remove Psinfo.exe malware from system using Comodo Antivirus?

Step 1: Download our award-winning Free Antivirus

Step 2: Installation configuration frames will be displayed. Select the configuration you would like to apply.

Step 3: Select Customize Configuration option and arrange installers, configuration, and file location.

Step 4: Restart your PC after the installation gets over.

Step 5: Wait for Comodo Internet Security to update the antivirus.

Step 6: Proceed with the quick scan that automatically begins after the update.

Step 7: If threats are found during the scanning, you will be notified through an alert screen.

Step 8: Comodo Antivirus will remove Psinfo.exe malware from your computer including all other malwares!

11

Malware Entries

First Seen: 23 August 2008 at 3:20 pm
No. Company File Type SHA1 MD5 Malware
Name
Digitally
Signed
File
Version
Product
Version
Submitted
From
Malware Behavior
1 N/A Executable 44f29ffcfbb24527
73fe8a1ebc280da5
bef7e129
b4598e81f8b457ac
6b74f7b21b99babe
TrojWare.Win
32.Agent.NVA
No N/A N/A Myanmar N/A
2 Sysinternals - www.sysinternals.com Executable 3f83adff48b17631
387f96bed29aa4ba
a95d3c37
2c5d969bd1e5c8fa
a864fd7ee67c24d7
Virus.Win32.
Sality.gen
No 1.75 1.75 Brazil N/A
3 Sysinternals Executable d5d3798252438a23
f46d5cf4c4acdfa0
9ac47506
32894083d2c64d75
af6c8df8dbcb52f0
Virus.Win32.
Virut.Ce
No 1.4 1.4 Australia N/A
4 N/A Executable d0e62393958f5497
4fd7ce6d67b946a1
6c355d9b
ecb3051ea86c8bcc
c0f4f9c03b393ec2
TrojWare.Win
32.PkdMorphi
ne.~AN
No N/A N/A Internal Submission N/A
Display 4 items per page
  • 4 items per page
  • 8 items per page
  • 16 items per page
  • 32 items per page
24

Safe Entries

First Seen: 22 April 2008 at 3:45 pm
No. Company File Type SHA1 MD5 Digitally
Signed
File
Version
Product
Version
Submitted
From
1 N/A Executable 42726d08fd81b177
81021d12cf88aee2
fe469de3
302c1e3f91c4db7a
ef55c75b2b91a32c
No N/A N/A China
2 Sysinternals Executable d8cf5250dc2043cd
722f0f2a109e4c5e
f414d39f
715e9f1a7af55583
bbc8b51967b378d8
No 1.36 1.36 Internal Submission
3 Sysinternals - www.sysinternals.com Executable fddf011b81da0ee6
6fad2f1cdeb67e5e
eef4e142
53e433146f2060b0
1e80128652d63c36
Yes 1.77 1.77 10.100.19.9/32
4 Sysinternals - www.sysinternals.com Executable 9d9c742f58577c4a
bbd4f37a44f9a691
3e430959
af4ecbb4470223db
83e47a81bcc118ff
Yes 1.75 1.75 Internal Submission
Display 4 items per page
  • 4 items per page
  • 8 items per page
  • 16 items per page
  • 32 items per page
 
Exclusive Offer
Get Free Endpoint Protection
Get Advanced
Endpoint
Protection

Award-Winning Security to Protect Your Clients from Cyber Attacks

Comodo Internet Security Pro

Antivirus Protection protection from hackers! Get the ultimate Antivirus solution to keep your PC clean and to remove viruses from a slow or infected PC. Improve the PC performance at home or use it on-the-go!

Get Comodo Internet Security Comodo Internet Security