Exterminate It! Antimalware

malpedia

Known threats:700,085 Last Update:March 01, 12:55

Testimonials

Matt,

Thanks so much for your help. For now, this seemed to have solved the problem and found all the infected files. I'll keep you updated, as I know this virus can be very hard to kill.

Thanks a million.

Jason

File: iqiyi.pgf

Location of iqiyi.pgf and Associated Malware

Check whether iqiyi.pgf is present in the following locations:

iqiyi.pgf file locations that are Windows version independent:

  • [%ANY_DRIVE%]\iqiyi.pgf
  • C:\iqiyi.pgf

If you find iqiyi.pgf file in any of these locations, your computer is very likely to be infected with the following malware:

IMPORTANT: Malware files can be camouflaged with the same file names as legitimate files. The iqiyi.pgf file is associated with malware only if found in the locations listed above.

Notes:

Different Variations of iqiyi.pgf File^

File SizeFile Md5Last Seen
1927741444E688F21325E0370CAC63CA0648E6C15Jul 29, 2015
720896ADF6241F856BA083945BD5D305869213Sep 20, 2015
163840000A56913F0C47030AED7C48C325192BE4DSep 22, 2015
720896F5001114C8DF891FA097522B67A63196Oct 2, 2015
720896F7C70C2DB84FF2E0844260BCCE521B55Nov 11, 2015
720896037B5CA065434BF101B34E46EC98EB0DNov 20, 2015
7208961F5F049F7BED13029C4528B5234B3B9FDec 8, 2015
72089658E62FECD852F61E331108EE76A56C41Feb 6, 2017
720896E6EEE3517BA89A5D934C493C5E867795Jan 9, 2016
72089660BECBE117D6D2C6C1EE5FC2046A33F2Apr 10, 2016
7208965C3155B08FC99C5FEE52B9ADC03FC2E9May 3, 2016
7012352995DC1EDED79F88ABF1F787A12BC0C94Jul 14, 2016
720896288E573972FA458646474DA69BA0D439Aug 7, 2016
720896D7FE7A34F23577E42403AE38A77C5537Aug 30, 2016
7208960C2833075CD55430F38F9BDFC4279B59Sep 28, 2016
310870016173C439B95D9CA7B7B1E262A78A18D2ANov 6, 2016
66682880F7CE2D8511B34B8791A3BD8D4BBC8EC9Jan 27, 2017
242089984189B6EFD91A288A95CE147348844A601Mar 7, 2017
464977929F2EB0F5412ED1677AF07FEBD483D41DMar 21, 2017
72089612D64D2538A2F6F807B57A3FFA91B327Dec 3, 2015
2147483647D41D8CD98F00B204E9800998ECF8427EApr 9, 2016

Why Is It Important to Remove Malware Files?^

It is imperative that you delete malware-associated files as soon as possible because they can be used - or are already being used - to inflict serious damage on your PC, including:

  • Disrupting the normal functioning of the operating system or rendering it completely useless.
  • Hijacking valuable private information (credit card numbers, passwords, PIN codes, etc.)
  • Directing all your Web searches to the same unwanted or malicious sites.
  • Dramatically slowing down your computer.
  • Gaining total control of your PC to spread viruses and trojans and send out spam.

How to Remove iqiyi.pgf^

  1. To enable deleting the iqiyi.pgf file, terminate the associated process in the Task Manager as follows:
    • Right-click in the Windows taskbar (a bar that appears along the bottom of the Windows screen) and select Task Manager on the menu.
    • In the Tasks Manager window, click the Processes tab.
    • On the Processes tab, select iqiyi.pgf and click End Process.
  2. Using your file explorer, browse to the file using the paths listed in Location of iqiyi.pgf and Associated Malware.
  3. Select the file and press SHIFT+Delete on the keyboard.
  4. Click Yes in the confirm deletion dialog box.
  5. Repeat steps 2-4 for each location listed in Location of iqiyi.pgf and Associated Malware.
  6. Notes:

    • The deletion of iqiyi.pgf will fail if it is locked; that is, it is in use by some application (Windows will display a corresponding message). For instructions on deleting locked files, see Deleting Locked Files.
    • The deletion of iqiyi.pgf will fail if your Windows uses the NT File System (NTFS) and you have no write rights for the file. Request your system administrator to grant you write rights for the file.

Deleting Locked Files^

You can delete locked files with the RemoveOnReboot utility. You can install the RemoveOnReboot utility from here.

After you delete a locked file, you need to delete all the references to the file in Windows registry.

To delete a locked file:

  1. Right-click on the file and select Send To -> Remove on Next Reboot on the menu.
  2. Restart your computer.

The file will be deleted on restart.

Note: In the case of complex viruses that can replicate themselves, malware files can reappear in the same locations even after you have deleted those files and restarted your computer. Exterminate It! Antimalware can effectively eradicate such viruses from your computer.

To remove all registry references to a iqiyi.pgf malware file:

  1. On the Windows Start menu, click Run.
  2. In the Open box, type regedit and click OK. The Registry Editor window opens.
  3. On the Edit menu, select Find.
  4. In the Find dialog box, type iqiyi.pgf. The name of the first found registry value referencing iqiyi.pgf is highlighted in the right pane of the Registry Editor window.
  5. Right-click the registry value name and select Delete on the menu.
  6. Click Yes in the Confirm Value Delete dialog box.
  7. To delete all other references to iqiyi.pgf, repeat steps 4-6.
IMPORTANT: Malware files can masquerade as legitimate files by using the same file names. To avoid deleting a harmless file, ensure that the Value column for the registry value displays exactly one of the paths listed in Location of iqiyi.pgf and Associated Malware.