Exterminate It! Antimalware

malpedia

Known threats:699,443 Last Update:July 17, 22:52

Testimonials

After scanning my computer many times using big name anti-virus and malware programs I still had several problems. Finally Exterminate It found multiple infections from NetSky. I sent Exterminate It a sample and the next day I received an e-mail instructing me to update and rescan. After following the instructions ZAP the worm/trojan was gone. My computer seems to be completly back to normal now. Good Job Exterminate It!

Melvin

File: {6A128791-4857-4484-9BB2-71D4C1257200}

Location of {6A128791-4857-4484-9BB2-71D4C1257200} and Associated Malware

Check whether {6A128791-4857-4484-9BB2-71D4C1257200} is present in the following locations:

{6A128791-4857-4484-9BB2-71D4C1257200} file locations that are Windows version independent:

  • C:\Windows\System32\Tasks\{6A128791-4857-4484-9BB2-71D4C1257200}

If you find {6A128791-4857-4484-9BB2-71D4C1257200} file in any of these locations, your computer is very likely to be infected with the following malware:

IMPORTANT: Malware files can be camouflaged with the same file names as legitimate files. The {6A128791-4857-4484-9BB2-71D4C1257200} file is associated with malware only if found in the locations listed above.

Notes:

Different Variations of {6A128791-4857-4484-9BB2-71D4C1257200} File^

File SizeFile Md5Last Seen
31506D8EB11859FFA79F550CBFB74D6A583BDec 24, 2015
3256D62E3AE5CA8D2B768A99C59C93925334Dec 28, 2015
315232F7E25829CACE22859977368A94D372Dec 31, 2015
31527F79041B91ED6D7673479F768926AB3FJan 25, 2016
31460F83D51F4EBF70D048A991B4F8CD4E1FJan 31, 2016
325005BD1554E16EB807601B786DECB297ACFeb 14, 2016
31509D0F692E73EC6AFBD7C34876C423FD33Apr 17, 2016
31261B0F0DF83C4A63C69EF2CFEE65D6DC4FMay 6, 2016
31325D58564C5FB1A682756596264C1008E6Jun 17, 2016
314434A7F54552890E89CD2381E3D117AA4COct 26, 2016
31689F45E1A1914AA425CA9C05B708D73F31Jan 2, 2017
3146ABFCB00BA11FF8CFE31145A37D0E17F8Jan 4, 2017
32429621A578A2B3AF866397BCC079AED65FFeb 12, 2017
315096247E319FBFFA3C9E0E9EB84E69117FApr 25, 2017
3144E35885B77286C095E3253FE48004088EMay 21, 2017
2580D27B6676FF06D99445E8EF94F1F012F5May 23, 2017
31462A6553B66BA3A7C9C05AEE9C906FBE15Jun 12, 2017
31649B2D96F7DF00206DCA214859B35F3362Jun 23, 2017

Why Is It Important to Remove Malware Files?^

It is imperative that you delete malware-associated files as soon as possible because they can be used - or are already being used - to inflict serious damage on your PC, including:

  • Disrupting the normal functioning of the operating system or rendering it completely useless.
  • Hijacking valuable private information (credit card numbers, passwords, PIN codes, etc.)
  • Directing all your Web searches to the same unwanted or malicious sites.
  • Dramatically slowing down your computer.
  • Gaining total control of your PC to spread viruses and trojans and send out spam.

How to Remove {6A128791-4857-4484-9BB2-71D4C1257200}^

  1. To enable deleting the {6A128791-4857-4484-9BB2-71D4C1257200} file, terminate the associated process in the Task Manager as follows:
    • Right-click in the Windows taskbar (a bar that appears along the bottom of the Windows screen) and select Task Manager on the menu.
    • In the Tasks Manager window, click the Processes tab.
    • On the Processes tab, select {6A128791-4857-4484-9BB2-71D4C1257200} and click End Process.
  2. Using your file explorer, browse to the file using the paths listed in Location of {6A128791-4857-4484-9BB2-71D4C1257200} and Associated Malware.
  3. Select the file and press SHIFT+Delete on the keyboard.
  4. Click Yes in the confirm deletion dialog box.
  5. Repeat steps 2-4 for each location listed in Location of {6A128791-4857-4484-9BB2-71D4C1257200} and Associated Malware.
  6. Notes:

    • The deletion of {6A128791-4857-4484-9BB2-71D4C1257200} will fail if it is locked; that is, it is in use by some application (Windows will display a corresponding message). For instructions on deleting locked files, see Deleting Locked Files.
    • The deletion of {6A128791-4857-4484-9BB2-71D4C1257200} will fail if your Windows uses the NT File System (NTFS) and you have no write rights for the file. Request your system administrator to grant you write rights for the file.

Deleting Locked Files^

You can delete locked files with the RemoveOnReboot utility. You can install the RemoveOnReboot utility from here.

After you delete a locked file, you need to delete all the references to the file in Windows registry.

To delete a locked file:

  1. Right-click on the file and select Send To -> Remove on Next Reboot on the menu.
  2. Restart your computer.

The file will be deleted on restart.

Note: In the case of complex viruses that can replicate themselves, malware files can reappear in the same locations even after you have deleted those files and restarted your computer. Exterminate It! Antimalware can effectively eradicate such viruses from your computer.

To remove all registry references to a {6A128791-4857-4484-9BB2-71D4C1257200} malware file:

  1. On the Windows Start menu, click Run.
  2. In the Open box, type regedit and click OK. The Registry Editor window opens.
  3. On the Edit menu, select Find.
  4. In the Find dialog box, type {6A128791-4857-4484-9BB2-71D4C1257200}. The name of the first found registry value referencing {6A128791-4857-4484-9BB2-71D4C1257200} is highlighted in the right pane of the Registry Editor window.
  5. Right-click the registry value name and select Delete on the menu.
  6. Click Yes in the Confirm Value Delete dialog box.
  7. To delete all other references to {6A128791-4857-4484-9BB2-71D4C1257200}, repeat steps 4-6.
IMPORTANT: Malware files can masquerade as legitimate files by using the same file names. To avoid deleting a harmless file, ensure that the Value column for the registry value displays exactly one of the paths listed in Location of {6A128791-4857-4484-9BB2-71D4C1257200} and Associated Malware.