The file PO_TO_MO.EXE is identified as a virus dropper.
The dropper PO_TO_MO.EXE is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
The file PO_TO_MO.EXE loads into the computer memory and tries to connect to the dangerous web site.
Usually the PO_TO_MO.EXE dropper does not infect the files on the computer and does not replicate itself on other computers.
Kill the PO_TO_MO.EXE process and delete the file PO_TO_MO.EXE.
Malware Analysis of PO_TO_MO.EXE
Full path on a computer: %SYSDIR%\GUIMINER\PO_TO_MO.EXE
Detected by UnHackMe:
PO_TO_MO.EXE
Default location: %SYSDIR%\GUIMINER\PO_TO_MO.EXE
Removal Results: Success
Number of reboot: 1
PO_TO_MO.EXE is known as:
Trojan Btcmine
How to quickly detect PO_TO_MO.EXE presence?
![]( "Files")
Files:
Files:- %SYSDIR%\GUIMINER\SERVERS.INI
- %SYSDIR%\GUIMINER\SVCHOST.EXE
- %SYSDIR%\GUIMINER\README.TXT
- %SYSDIR%\GUIMINER\SELECT.PYD
- %SYSDIR%\GUIMINER\PO_TO_MO.EXE