What is shutdown.exe?
shutdown.exe is a legitimate file. This process is known as shutdown application. It belongs to Microsoft Windows Operating System. It is developed by Microsoft Corporation. It is commonly stored in C:\Windows\System32. The malware programmers or cyber criminals write the different types of malicious programs and name it as shutdown.exe to damage the software and hardware.
Affected Platform: Windows OS
How to check if your computer is infected with shutdown.exe malware?
Malicious authors try to infect the systems with different types of malicious programs. Each form of malicious software is designed to infect the system that creates different issues and impact on the system. One can notice the following changes once the system is infected with shutdown.exe malware
- If the internet connection fluctuation is high
- If the shutdown.exe file is taking more of your CPU memory
- If the system performance is very low
- If the system is redirected to some strange websites
- If the system is getting some annoying popup ads
- If the system freezes quiet often
- If it invites the other malware to infect and damage the system and exploits the same to collect the user private information
How to remove the shutdown.exe file from system using Comodo Antivirus?
Step 1: Download the award-winning Free Internet Security.
Step 2: Installation configuration frames will be displayed. Select the configuration you would like to apply.
Step 3: Select Customize Configuration option and arrange installers, configuration, and file location.
Step 4: Restart your PC.
Step 5: It will take some time for the Comodo Internet Security to update the antivirus.
Step 6: Proceed with a quick scan that automatically begins after the update.
Step 7: If threats are found during the scanning, you will be prompted with an alert screen.
Step 8: Comodo Antivirus will remove the shutdown.exe virus from your computer including all other malwares!
First Seen: 25 October 2021 at 11:08 pm
| No. | Company | File Type | SHA1 | MD5 | Malware Name |
Digitally Signed |
File Version |
Product Version |
Submitted From |
Malware Behavior |
|---|---|---|---|---|---|---|---|---|---|---|
| 1 | Microsoft Corporation | Executable | cc0f95afba94dd80 e85924e312af3724 c558f622 |
57aae9e56a513c51 2cf2f87f450fde40 |
Virus.Win32. Virut.CE |
No | 5.1.2600.5 512 (xpsp.0804 13-2113) |
5.1.2600.5 512 |
 102.41.88.6/32 |
N/A |
| 2 | www.sordum.org | Executable | 107b7319d22d3d49 93973069af2c8565 284914d0 |
b86207de5ea6da6e e5b08e5c39275ea9 |
Virus.Win32. Sality.gen |
No | 1.1.0.0 | N/A | 156.221.145.116/32 |
N/A |
| 3 | www.sordum.org | Executable | 7979ffd878830484 41404bfeaa3b4e4f e011814f |
0a62bb0fd567e276 91b792b3222c1e36 |
Virus.Win32. Sality.gen |
No | 1.1.0.0 | NULL | 197.54.66.0/32 |
N/A |
| 4 | Microsoft Corporation | Executable | 175b69d0530c60d3 3ec0e7085792165c b26f317a |
880a2f3010aa6355 cc6f111d0d9b340a |
Virus.Win32. Virut.CE |
No | 6.1.7600.1 6385 (win7_rtm. 090713-125 5) |
6.1.7600.1 6385 |
 Egypt |
N/A |
Display 4 items per page
- 4 items per page
- 8 items per page
- 16 items per page
- 32 items per page
First Seen: 26 November 2008 at 6:25 am
| No. | Company | File Type | SHA1 | MD5 | Digitally Signed |
File Version |
Product Version |
Submitted From |
|---|---|---|---|---|---|---|---|---|
| 1 | N/A | Executable | 947845f6f9efc251 28bb975e2cffa5a2 54356604 |
e38b21f39b8b29b6 469a63191f88928a |
No | N/A | N/A |  United States |
| 2 | Microsoft Corporation | Executable | daf6d8af4e015dd9 242998d8288557b2 53f30143 |
f2a4e18da72bb2c5 b21076a5de382a20 |
No | 10.0.19041 .1 (WinBuild. 160101.080 0) |
10.0.19041 .1 |
United States |
| 3 | N/A | Non-executable | 006378c5b842953a 74fc02ba0dae0ec8 3910f161 |
ebeb4eb0d6435004 47f6224b556ea60b |
No | N/A | N/A | 10.224.25.207/32 |
| 4 | AVEVA | Executable | 856e16b25c554814 c3a98121ea4d986c 745dfcc5 |
7b1a3d4fa7b7e937 421056233077c111 |
Yes | 4601.2211. 1401.0000 |
20.0.3.0 | United States |
