Is the file WINDTR32.EXE located on your computer? Then your computer is infected.
We do suggest you should remove WINDTR32.EXE from your computer as soon as possible.
WINDTR32.EXE is Trojan/Backdoor.
Kill the process WINDTR32.EXE and remove WINDTR32.EXE from the Windows startup.
Malware Analysis of WINDTR32.EXE
Full path on a computer: %SysDir%\windtr32.exe
Detected by UnHackMe:
WINDTR32.EXE
Default location: %SysDir%\windtr32.exe
Removal Results: Success
Number of reboot: 1
WINDTR32.EXE is known as:
Trojan.Ransom.PornoAsset.absf, Trojan.DownLoader6.61964, BehavesLike.Malware.ssc (mx-v), TR.Graftor.Elzob.12445.12, Trojan.A.PornoAsset.222720.AK, Trojan.Scar, a variant of Win32.Delf.OHS, Trojan-Ransom.PornoAsset, W32.PornoAsset.ABSF.tr, unknown virus Win32.DH{IANnCQ8}
WINDTR32.EXE hash:
- MD5: 28a2a5b27c7ae86417934eba0bbd7236
How to quickly detect WINDTR32.EXE presence?
![]( "Registry")
Registry:
![]( "Files")
Files:
Registry:- HKLM\Software\Microsoft\Windows\CurrentVersion\Run\AudioDriver: “%SysDir%\windtr32.exe”
Files:- %SysDir%\windtr32.exe