How to Remove the utilman.exe virus from PC

What is utilman.exe?

utilman.exe is a legitimate file popularly known as UtilMan EXE. It belongs to Windows Operating System developed by Microsoft Corporation. It is typically located in C:\Windows\System32. Malware programmers create files with virus scripts and name them after utilman.exe with an intention to spread virus on the internet.

Affected Platform: Windows OS

How to check if your computer is infected with utilman.exe malware?

Keep an eye for the following symptoms to see if your PC is infected with utilman.exe malware:

Internet connection fluctuates
utilman.exe takes too much CPU space
PC slows down significantly
Browser automatically redirects to some irrelevant websites
Unsolicited ads and popups starts appearing
Screen freezes constantly

Take the following steps to diagnose your PC for possible utilman.exe malware attack:

Step 1: Download the award-winning Free Internet Security.

Step 2: Installation configuration frames will be displayed. Select the configuration you would like to apply.

Step 3: After network detection is complete, press “Close” button for a scan window.

Step 4: Restart your PC.

Step 5: It will take some time for the Comodo Internet Security to update the antivirus.

Step 6: Proceed with a quick scan that automatically begins after the update.

Step 7: If threats are found during the scanning, you will be prompted with an alert screen.

Step 8: Comodo Antivirus will remove the utilman.exe virus from your computer including all other malwares!

Malware Entries

Safe Entries

First Seen: 20 October 2011 at 7:28 pm

No.	Company	File Type	SHA1	MD5	Malware Name	Digitally Signed	File Version	Product Version	Submitted From	Malware Behavior
1	N/A	Executable	1d975cdae086773c d5712dd917acd48b 7a0e2f8b	f4bba752298966bc 1d388adb9231b6eb	Virus.Win32. Virut.CE	No	N/A	N/A	156.209.155.163/32	N/A
2	Microsoft Corporation	Executable	9ea032f03ee4647b 44d2e741ce014add bb3ba574	2b5a3d6758a51cfd 6353de14c429b9e2	Virus.Win32. Virut.CE	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	Australia	N/A
3	Microsoft Corporation	Executable	b6f72f0cca30a55f 00969962c7ce47f1 a62f680e	627090359c730471 5947e5a6f3120b15	Virus.Win32. Virut.CE	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	Qatar	N/A
4	N/A	Executable	1d65f123e74311d1 40e4a91a36ab8fc5 adadc733	509ff43b15b1eb8f ce426227751d99ac	Virus.Win32. Virut.CE	No	N/A	N/A	Nigeria	N/A
5	Microsoft Corporation	Executable	af5d5debe5c2becc b3010cf468805fab 46b39824	cc4d2d5ab94ccb06 d4b6f257d14fd6b5	Virus.Win32. Virut.CE	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Poland	N/A
6	Microsoft Corporation	Executable	3ccb54f0389cdb02 434fb94a88ea222d f6a9efcc	1c424b7de16358d3 e37bfccff49aa1d4	Virus.Win32. Virut.CE	No	5.1.2600.2 180 (xpsp_sp2_ rtm.040803 -2158)	5.1.2600.2 180	Poland	N/A
7	N/A	Executable	ab10783bb05eaaa6 7ed7b14752599a3a f18e87f7	b79523716cb5da1d 7ebb7ead56387c2b	Win32.Neshta .A	No	N/A	N/A	Russian Federation	N/A
8	Microsoft Corporation	Executable	1d855cb6a8640c03 19c3a889c8f98c22 c2552509	94622c6885c6881f c8f7073ab8857603	P2PWorm.Win3 2.Polip.A	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Europe	N/A
9	Microsoft Corporation	Executable	cdadb0a22cc5df55 1d563ad3ae2660a7 3fc9c731	7792a35baeb7a54d 44f1ac68931e3399	P2PWorm.Win3 2.Polip.A	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Serbia	N/A
10	N/A	Executable	cb0b479207627541 e3f819f5a63cea13 1ba5e2a2	781ba93e521c55fc c6650529a9f82532	Virus.Win32. Virut.Ce	No	N/A	N/A	New Zealand	N/A
11	Microsoft Corporation	Executable	36cb44cc469a0ce6 73f15842fc3fea7a f8b92291	e0f47fe0816e207c 94a40afe84d835ae	P2PWorm.Win3 2.Polip.A	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Hungary	N/A
12	Microsoft Corporation	Executable	db2b92f5e02b40d1 f51d38e2974681d6 e27afdd4	4b76cb565cbbb2c5 8f9bb89427b16f5c	Virus.Win32. Virut.CE	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	Morocco	N/A
13	N/A	Executable	9e8a0aded2cfd3aa 3910dbf2e82eb61c 28e6b2d5	de349aa83e0a111b ee608ed130ced1c1	Virus.Win32. Virut.CE	No	N/A	N/A	Egypt	N/A
14	Microsoft Corporation	Executable	f15b91e9ae569a81 ba05e7706dd0783b 337213cc	ef8711a79b13c383 ae97e4dd9d971843	Virus.Win32. Virut.CE	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	India	N/A
15	Корпорация Майкрософт	Executable	0465b51e6fcff2f7 a718541b7af1a865 584ba836	f4349ffa3c760a4d b617a27a46ccd3cb	Unclassified Malware	No	5.1.2600.2 180 (xpsp_sp2_ rtm.040803 -2158)	5.1.2600.2 180	Russian Federation	N/A
16	Корпорация Майкрософт	Executable	25c87169651889e5 14ae4788003b6c98 2ecd7bca	65b336a4f6c60094 3d787f3b017c6c85	Virus.Win32. Expiro.nw	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Ukraine	N/A
17	N/A	Executable	7f2d602d05ef058c 51695b31e4c74c1c f68b25ae	01dd8ab811db3e34 8c19b364e59b39e0	Virus.Win32. Virut.CE	No	N/A	N/A	197.156.80.220/32	N/A
18	N/A	Executable	40859e5a36787e89 3f411ad810d1d318 01a3201c	87e32ad1c6afc67c c39ea48bc628cc66	Virus.Win32. Virut.CE	No	N/A	N/A	Australia	N/A
19	N/A	Executable	4d1a55d4aea84e32 3ea5226dcb2c7f3e 046e5d4c	d4faa5f86610471d 0924d0da7b26b5ab	Virus.Win32. Virut.CE	No	N/A	N/A	Nigeria	N/A
20	Microsoft Corporation	Executable	cab97a90a00272d9 a83c50ad6e83c185 bd30058b	8ee3051fc7e91090 cad73c83654ee5f7	Virus.Win32. Virut.CE	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	156.220.116.63/32	N/A
21	Microsoft Corporation	Executable	7de331597ddbcb5c 8058337715c3e8c5 1cb4a098	ec397db9ca16adff 95321ca242a4c7ba	Virus.Win32. Parite.gen	No	5.1.2600.2 180 (xpsp_sp2_ rtm.040803 -2158)	5.1.2600.2 180	Spain	N/A
22	Microsoft Corporation	Executable	7c2530810300ca3e 8f5caab9c2cc2b28 4824fb39	fe476a4d69f8c470 7291bd374d525bc3	Virus.Win32. Expiro.naf	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	Russian Federation	N/A
23	Microsoft Corporation	Executable	90c3ce0b0f37d431 cd7d0e2fb42b1721 f9545045	b98e971c60645f01 778c71ec79bfd7a3	Virus.Win32. Virut.CE	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	Vietnam	N/A
24	Microsoft Corporation	Executable	dd24674311149268 113a51fe3015da9f 0e1a5e2c	56b6288191aa0cec 76bf6aed20f5f3f8	P2PWorm.Win3 2.Polip.A	No	5.1.2600.2 180 (xpsp_sp2_ rtm.040803 -2158)	5.1.2600.2 180	Serbia	N/A
25	Microsoft Corporation	Executable	36eca54d070001ab 72e3ff214a151aea f4f4c3b6	5425b2689a977caa c07d17d8be620003	Virus.Win32. Sality.gen	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Mexico	N/A
26	Microsoft Corporation	Executable	bc570d1ccacf1350 22875229e4e729c5 8c50b9a8	0cd4dde554f04c51 42242b63a2338269	Virus.Win32. Sality.L	No	5.1.2600.2 180 (xpsp_sp2_ rtm.040803 -2158)	5.1.2600.2 180	Poland	N/A
27	Microsoft Corporation	Executable	5daf29e67e99cfed 325ccacae6b8cb2a 12109e7a	2a71bdc70b3fd757 6eb33c35484e2ed8	Virus.Win32. Virut.CE	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	Indonesia	N/A
28	Microsoft Corporation	Executable	9a673425c84102e7 9b7b13ff40f11649 b07b76e0	4a88fc9137da4e95 88ea8ec5af750032	Virus.Win32. Sality.gen	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Canada	N/A
29	Microsoft Corporation	Executable	c9620005e1329818 319ead4196f5caef 3683f773	16d10ea06d09cf2f dcf3e236b5441a15	Virus.Win32. Expiro.ew	No	5.1.2600.2 180 (xpsp_sp2_ rtm.040803 -2158)	5.1.2600.2 180	United States	N/A
30	Microsoft Corporation	Executable	6274cc0458bda62a a759d03b491dea4c 273c8be6	ca725c10cbf5bb39 ab739b80bccdb6ac	Virus.Win32. Virut.CE	No	5.1.2600.3 008 (xpsp.0610 04-0027)	5.1.2600.3 008	Sudan	N/A
31	Microsoft Corporation	Executable	2e9615af3d606c18 247d0350eae469cb 84b6307a	54032dee424a2fb8 fd5ad18c8bd6178a	Virus.Win32. Virut.Ce	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Italy	N/A
32	N/A	Executable	ca75b95138c94e0b 1ecce93ae497c9c4 f6945e02	ddf05d0a467ca98d 6b79a0ba583f5ecc	Win32.Neshta .A	No	N/A	N/A	181.66.169.99/32	N/A
33	Корпорация Майкрософт	Executable	a4a0b9b979157917 1ada86b566972495 7ef2b519	275ac53d83ea8829 4f87f8fc18a47b3b	Virus.Win32. Expiro.nw	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Russian Federation	N/A
34	Microsoft Corporation	Executable	799cbc3eee6e801d 00ef47c97abe8eef b555c3ed	c347341c4f89b159 db3409d22264e579	Virus.Win32. Virut.BE	No	5.1.2600.1 106 (xpsp1.020 828-1920)	5.1.2600.1 106	Poland	N/A
35	Microsoft Corporation	Executable	25d768de1528cd15 09323db4b4114f0c f8061ea5	8888361f53c5ac5c 702557c0b995c464	MalCrypt.Ind us!	No	5.1.2600.2 180 (xpsp_sp2_ rtm.040803 -2158)	5.1.2600.2 180	United States	N/A
36	Корпорация Майкрософт	Executable	ef9d00f184e91ec6 788d82d0fd8816bd 0e7eef58	afb83dc178690129 c611a71d63ccbecd	Virus.Win32. Virut.CE	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Kazakhstan	N/A
37	Microsoft Corporation	Executable	81c062c0cc227f59 52c89ad87cd4fb2f c6940fcd	682a06fec0e73bb1 66a3f876257780b4	Virus.Win32. Virut.CE	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	Europe	N/A
38	Microsoft Corporation	Executable	ca990be5ca23781b 4cd452243680a378 c45b2438	6a342bdbb011ac90 a856ec5666632e2d	Virus.Win32. Expiro.jet	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Brazil	N/A
39	Microsoft Corporation	Executable	72ec02c352ce7f23 6489a72d36fdd387 e430357f	b32ab7fb7d97cbd0 23c89075c9550b3b	MalCrypt.Ind us!	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	United States	N/A
40	Корпорация Майкрософт	Executable	b850c7dc9f624cc7 3714f39878763613 fe30ceeb	762a51f8fb9e74a0 59f221a197310915	Virus.Win32. Expiro.R0	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Ukraine	N/A
41	Microsoft Corporation	Executable	ad10ed0857a5d397 7376166afedc340b 7f5e05eb	fbc0eb9538c0c974 0bd3c3a5a9764c93	Virus.Win32. Sality.gen	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Philippines	N/A
42	Microsoft Corporation	Executable	45dc4b70dda46dd7 244470c7e4da4461 da47897c	9b5f0fdf490bfda7 c400187ae0e44ae3	Virus.Win32. Virut.Ce	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Italy	N/A
43	Microsoft Corporation	Executable	79fff8a13f96f260 dd92b2f628b87641 e72d9af0	dcd58b943e47d7b3 ef7f68c55d60491e	Virus.Win32. Parite.gen	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Bulgaria	N/A
44	Microsoft Corporation	Executable	216f0830fe37fa38 d8725480edb49084 54d0a77f	5966e7a79872661e e3f8fbda089c92e5	Virus.Win32. Virut.Ce	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	10.224.1.116/32	N/A
45	Microsoft Corporation	Executable	911a68a3cbf4c222 02e336b2f1ecbe9d d316b102	8c442acaa621668a 6d7302123a5f771d	Virus.Win32. Virut.CE	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Lebanon	N/A
46	Microsoft Corporation	Executable	fe08b39e7bd6913c 2047ac52e7e64789 9abfe881	2cda535f3c517bc9 59758d848f603822	Unclassified Malware	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	129.205.113.157/32	N/A
47	Microsoft Corporation	Executable	a41b4434c132ea5d 092320ac9c16122a c2e250af	141ce7b7c2900335 fcff09c663dafdf1	Virus.Win32. Expiro.ew	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Internal Submission	N/A
48	Microsoft Corporation	Executable	76261983bab72775 e2a108b7c8d153f2 47e0c99f	cbc03ab70108a29f 14d655812e171acf	Virus.Win32. Virut.CE	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	Nigeria	N/A
49	Microsoft Corporation	Executable	b6ca976b34c3f0a9 cf0755bf8fbb7d04 c700ab90	17e97f585d44250e 457104a6a7a983b7	Virus.Win32. Virut.CE	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	Indonesia	N/A
50	Microsoft Corporation	Executable	96524c5564c4c5f5 c6b9445eeed3efb1 40b680cc	29829ab0bddce5de b7598e6a641ed430	Virus.Win32. Virut.CE	No	5.1.2600.2 180 (xpsp_sp2_ rtm.040803 -2158)	5.1.2600.2 180	India	N/A
51	Корпорация Майкрософт	Executable	f337ba2abed41c68 9767e38c783b17c0 4ac8d343	358e3b02dd9c90f9 02713612bd574154	Virus.Win32. Expiro.nw	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Russian Federation	N/A
52	Microsoft Corporation	Executable	f0f9451c4d01e1e1 de7ab26bb612d689 b549dd72	7aa41617261518ea 7b249a932e8778e3	Virus.Win32. Virut.Ce	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	Pakistan	N/A
53	Microsoft Corporation	Executable	be33854b83865b8c a9ae8b9af819cd55 c8ed23ff	393657c60afab13b 4540ade2a050778d	Virus.Win32. Parite.gen	No	5.1.2600.2 180 (xpsp_sp2_ rtm.040803 -2158)	5.1.2600.2 180	Turkey	N/A
54	Microsoft Corporation	Executable	f9d6b58416188f1a 6458e506ef3b5b3f a6de6e11	e9dee614bf7f0cee 87f21d44fe0fc007	Virus.Win32. Parite.gen	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	China	N/A
55	N/A	Executable	4b9dd870fd151d41 609d4e7fa9627678 52bf264a	a84a1be4a6c602e0 aa4ed97a243c8334	Win32.Neshta .A	No	N/A	N/A	179.6.194.212/32	N/A

Prev 1 2 3...14 Next

Display 4 items per page

4 items per page
8 items per page
16 items per page
32 items per page

Safe Entries

First Seen: 11 April 2011 at 10:37 am

No.	Company	File Type	SHA1	MD5	Digitally Signed	File Version	Product Version	Submitted From
1	Microsoft Corporation	Executable	0ca0df04f3e417cb 3a895b3fa58e6364 41caa008	8efdc792c97d7890 68539b699bae7fcb	No	10.0.17713 .1000 (WinBuild. 160101.080 0)	10.0.17713 .1000	United Kingdom
2	Microsoft Corporation	Executable	321bf478c09f2119 bffbb78ede91e32f df1153bf	0386d0e121e2be0e d56db9ac617ba28b	No	5.1.2600.5 512 (xpsp.0804 13-2105)	5.1.2600.5 512	Internal Submission
3	Reliance PC	Executable	ee6476342e7ab8dd fb9c1fc54b8e0bea 309832f1	f716fdcdd8470be6 da27998ed9bdf845	No	1.4.1.2100	1.4.1.2100	Internal Submission
4	N/A	Executable	1b6637c3116f46a0 3e32a5f509476bac 5ed4d261	55471258e18fb7c3 3355c2af17a1a2c8	No	N/A	N/A	Mexico
5	Microsoft Corporation	Executable	92aa7fa750e622a8 ccf560f4ed735da7 c6349d1a	8beea1ff0300cf02 0a71c24356652c0f	No	5.1.2600.1 106 (xpsp1.020 828-1920)	5.1.2600.1 106	Canada
6	Samplesoft IDN	Executable	474191fda79e0004 ba25334502e918f6 6581edbb	9a436e65537b4ab8 058e71d16d6e4a21	No	1.0.0.0	1.0.0.0	Internal Submission
7	N/A	Executable	e002568c7d4962e9 a412fba9a19739ef 1e0bb817	d398b307a787487e f9444e264912ea7c	No	1.0.0.0	1.0.0.0	United States
8	Microsoft Corporation	Executable	e00c96fc3c1380eb 2418fc017972cea5 8cb4e9d8	62f26f66c0384df1 a7525dc9b128fa46	No	10.0.17127 .1 (WinBuild. 160101.080 0)	10.0.17127 .1	Colombia

Prev 1 2 Next

Display 4 items per page

4 items per page
8 items per page
16 items per page
32 items per page

Malware Search Engine

How to Remove “utilman.exe”

What is utilman.exe?

How to check if your computer is infected with utilman.exe malware?