What is perfmon.exe?
A legitimate file component of Microsoft operating system, perfmon.exe is also known as Resource And Performance Moniotor. It is typically located in C:\Windows\System32.
Malware programmers create files with malicious codes and name them after perfmon.exe to spread virus on the internet.
Affected Platform: Windows OS
How to check if your computer is infected with perfmon.exe malware?
Your PC will slow down, your internet browser will involuntarily redirect you to irrelevant websites, or you will notice perfmon.exe taking too much CPU usage if it is infected with perfmon.exe malware. Take the following steps to diagnose your PC for possible perfmon.exe malware attack:
Step 1: Simultaneously press CTRL+ALT+DEL keys to open Task Manager.
Step 2: If you notice the file located outside the file path C:\Windows\System32, then you should run an antivirus scan to get ride of the malware.
How to remove the perfmon.exe file from system using Comodo Antivirus?
Step 1: Download the award-winning Free Internet Security.
Step 2: Installation configuration frames will be displayed. Select the configuration you would like to apply.
Step 3: Select Customize Configuration option and arrange installers, configuration, and file location.
Step 4: Restart your PC.
Step 5: It will take some time for the Comodo Internet Security to update the antivirus.
Step 6: Proceed with a quick scan that automatically begins after the update.
Step 7: If threats are found during the scanning, you will be prompted with an alert screen.
Step 8: Comodo Antivirus will remove the perfmon.exe computer virus and all other malware!
First Seen: 05 October 2020 at 3:23 am
| No. | Company | File Type | SHA1 | MD5 | Malware Name |
Digitally Signed |
File Version |
Product Version |
Submitted From |
Malware Behavior |
|---|---|---|---|---|---|---|---|---|---|---|
| 1 | Microsoft Corporation | Executable | 20c45d5c2416b3fd 7a9f714b9a9d7f29 1e293f3a |
32dd907ae5503619 742103a81c590bb5 |
Virus.Win32. Virut.CE |
No | 6.1.7601.1 7514 (win7sp1_r tm.101119- 1850) |
6.1.7601.1 7514 |
 Egypt |
N/A |
| 2 | Microsoft Corporation | Executable | 79924717c7356547 e1f30f8e7d068183 5244b4c9 |
6c18aa16d336cdf6 a8ead46c07a924df |
Virus.Win32. Virut.CE |
No | 5.1.2600.5 512 (xpsp.0804 13-2105) |
5.1.2600.5 512 |
 102.41.88.6/32 |
N/A |
| 3 | Microsoft Corporation | Executable | 8b6df98b78847d23 033a7df49436cf6c f78d1aad |
00b2353f8f069103 eb18cbb161710ac4 |
Virus.Win32. Expiro.CG |
No | 6.1.7601.2 3841 (win7sp1_l dr.170612- 1252) |
6.1.7601.2 3841 |
 Turkey |
N/A |
| 4 | Microsoft Corporation | Executable | 8f4bb8459ce360f6 9d1e57c712ee4ef9 65bd3fe1 |
878d6d13bb2792e9 6028e9049b353d9f |
Virus.Win32. Virut.CE |
No | 5.1.2600.5 512 (xpsp.0804 13-2105) |
5.1.2600.5 512 |
102.41.88.6/32 |
N/A |
Ghana
Peru
India
Russian FederationFirst Seen: 27 June 2008 at 11:38 am
| No. | Company | File Type | SHA1 | MD5 | Digitally Signed |
File Version |
Product Version |
Submitted From |
|---|---|---|---|---|---|---|---|---|
| 1 | N/A | Executable | 06adda0148e04b34 76a7bf79f112c3c1 069ca61e |
f94da5c65a94b7c4 3b79923b334b2f24 |
No | N/A | N/A |  United States |
| 2 | Microsoft Corporation | Executable | 6e85f9ed567da466 b7a17a8caaa3a97a c5860b5c |
230f51f2e4d9c759 0f8e1dd76a627143 |
No | 5.1.2600.2 180 (xpsp_sp2_ rtm.040803 -2158) |
5.1.2600.2 180 |
United States |
| 3 | Microsoft Corporation | Executable | 40170eab389a6ba3 5e949f9c92962646 a302d9ef |
d38aa59c3bea5456 bd6f95c73ad3c964 |
No | 10.00 | 10.00 | 104.238.128.144/32 |
| 4 | Microsoft Corporation | Executable | 40170eab389a6ba3 5e949f9c92962646 a302d9ef |
d38aa59c3bea5456 bd6f95c73ad3c964 |
No | 10.00 | 10.00 | United States |
Nigeria
Display 4 items per page
- 4 items per page
- 8 items per page
- 16 items per page
- 32 items per page
