Phorpiex Botnet

The Phorpiex Botnet

Phorpiex is a malicious Trojan-based program that is commonly distributed via infected email attachments, spam messages and fake advertisements. Phorpiex is normally used by hackers to capture sensitive details, monitor their victims’ keystrokes, detect vulnerabilities in the system and start various malicious processes.

Phorpiex Botnet

The Phorpiex Botnet is detected by multiple VirusTotal scanners.

If Phorpiex is present on your machine, we suggest that you stick with us and carefully read through this article so that you can get to know the key characteristics of this strange Trojan-based virus and the best methods to remove it. Phorpiex is a stealthy infection that can cause a lot of harm to the computer it has compromised. Therefore, its detection and timely elimination is essential for the wellbeing of your system. Since you are not dealing with Trojans every day, however, you may need some help to correctly locate and remove the infection. That’s why, on this page, we have published a detailed removal guide that explains how to eliminate Phorpiex step by step. In addition to the guide, there is also a professional removal tool that can handle the entire Trojan-removal process automatically for you in case you need such assistance.

Unfortunately, the identification of the malware-related files and processes and their deletion can be a real struggle without a professional security tool or a detailed removal guide because most Trojan-based threats can successfully mimic a number of system files and processes. They typically do that to confuse the people who try to remove them in order to remain in the system for as long as possible. In addition to that, these threats rarely show visible symptoms of their presence and operate in stealth mode. That’s why inexperienced web users rarely have a chance against them unless they equip themselves with reliable Trojan removal tools.

An infection like Phorpiex, for instance, can pose a great challenge to its victims because it can use a great deal of deceptive techniques to infect a large number of computers across the web. When it comes to its destructive capabilities, this particular Trojan can be very flexible, so it can be difficult to predict the type of harm it might be up to. While it hides in the system, Phorpiex can secretly steal sensitive information such as passwords, login credentials, online banking details, or specific personal or work-related files. It also may keep track of the victims’ keystrokes, make screenshots of their screen, or take audio and video records of them through the web camera and the microphone.

The most common transmitters of infections such as Phorpiex are spam e-mails with infected links or attachments, as well as pirated and unlawfully spread software. Malvertising is also a growing in popularity Trojan-distribution method in which bogus online adverts and fake pop-ups include links to the virus and the moment the users click on such ads, they instantly get infected.

That’s why the best defense while you are surfing the web is to be cautious, interact only with trusted content and use reliable security tools to monitor your computer. A moment of carelessness can cost you a contamination with a Trojan, Spyware, Ransomware or some other malware. Therefore, taking appropriate care for your system and removing the danger in time is highly necessary.


Name Phorpiex
Type Trojan
Danger Level High (Trojans are often used as a backdoor for Ransomware)
Symptoms Usually the victims can’t detect visible symptoms of the Trojan horse infection and are only faced with the consequences of its attack.
Distribution Method Trojans frequently spread across the web through spam emails, malicious files and attachments, fake ads and cracked software.
Detection Tool

Phorpiex Removal

If you are looking for a way to remove Phorpiex you can try this:

  1. Click on the Start button in the bottom left corner of your Windows OS.
  2. Go to Control Panel -> Programs and Features -> Uninstall a Program.
  3. Search for Phorpiex and any other unfamiliar programs.
  4. Uninstall Phorpiex as well as other suspicious programs.

Note that this might not get rid of Phorpiex completely. For more detailed removal instructions follow the guide below.

If you have a Windows virus, continue with the guide below.

If you have a Mac virus, please use our How to remove Ads on Mac guide.

If you have an Android virus, please use our Android Malware Removal guide.

If you have an iPhone virus, please use our iPhone Virus Removal guide

Phorpiex Botnet

Some of the steps will likely require you to exit the page. Bookmark it for later reference.

Reboot in Safe Mode (use this guide if you don’t know how to do it).

Phorpiex Botnet


Press CTRL + SHIFT + ESC at the same time and go to the Processes Tab. Try to determine which processes are dangerous.

Phorpiex Botnet

Right click on each of them and select Open File Location. Then scan the files with our free online virus scanner:

Phorpiex Botnet
Drag and Drop Files Here to Scan
Maximum file size: 128MB.

This scanner is free and will always remain free for our website's users. You can find its full-page version at:

Scan Results

Virus Scanner Result
Phorpiex BotnetClamAV
Phorpiex BotnetAVG AV
Phorpiex BotnetMaldet

After you open their folder, end the processes that are infected, then delete their folders.

Note: If you are sure something is part of the infection – delete it, even if the scanner doesn’t flag it. No anti-virus program can detect all infections.

Phorpiex Botnet

Hold together the Start Key and R. Type appwiz.cpl –> OK.

Phorpiex Botnet

You are now in the Control Panel. Look for suspicious entries. Uninstall it/them. If you see a screen like this when you click Uninstall, choose NO:

Phorpiex Botnet

Phorpiex Botnet

Type msconfig in the search field and hit enter. A window will pop-up:

Phorpiex Botnet

Startup —> Uncheck entries that have “Unknown” as Manufacturer or otherwise look suspicious.

  • Remember this step – if you have reason to believe a bigger threat (like ransomware) is on your PC, check everything here.

Hold the Start Key and R copy + paste the following and click OK:

notepad %windir%/system32/Drivers/etc/hosts

A new file will open. If you are hacked, there will be a bunch of other IPs connected to you at the bottom. Look at the image below:

Phorpiex Botnet

If there are suspicious IPs below “Localhost” – write to us in the comments.

Phorpiex Botnet

Type Regedit in the windows search field and press Enter.

Once inside, press CTRL and F together and type the virus’s Name. Right click and delete any entries you find with a similar name. If they don’t show up this way, go manually to these directories and delete/uninstall them:

  • HKEY_CURRENT_USER—-Software—–Random Directory. It could be any one of them – ask us if you can’t discern which ones are malicious.
    HKEY_CURRENT_USER—-Software—Microsoft—-Windows—CurrentVersion—Run– Random
    HKEY_CURRENT_USER—-Software—Microsoft—Internet Explorer—-Main—- Random

If the guide doesn’t help, download the anti-virus program we recommended or try our free online virus scanner. Also, you can always ask us in the comments for help!


About the author


Lidia Howler

Lidia is a web content creator with years of experience in the cyber-security sector. She helps readers with articles on malware removal and online security. Her strive for simplicity and well-researched information provides users with easy-to-follow It-related tips and step-by-step tutorials.

Leave a Comment