Categories > WeAreDevs > Hangout >
[HELP] I need help, My computer's affected by a malware/miner.
Posted
Note: This is not a fake scenario/story. This is what actually happened to me rn.
Part 1: The beginning
Hi, So it all started when I noticed weird changes in my computer. My computer started running slower (I just thought it was because of it getting old). I saw a weird process running in the backround in task manager when I went to check what was taking so much of CPU usage. I located the .exe and uploaded it to virustotal and Intezer Analyzer. Ofcourse, It was a malware. It also contained a Cryptominer. That's what made my computer way slower that what it first was. It's been like a week since that discovery happened. I might as well add that this could have been running for a long time. I installed Malware Bytes & Removed it. Hats off the windows defender for finding this out though. It gave me this description for that malware: "Grants remote access to hacker".
Part 2: The aftermath
After a few days I started to notice that my taskbar would partially load (not completely like it's supposed to). It was well responsive. The show desktop button was the only thing that did not work. The malware/miner had corrupted my windows. It deleted windows update service. I managed to use a registry containing win update service to restore that. But windows update service still won't work. Microsoft store is downloading apps forever. The progress bar is stuck on 0%. It says "Something is wrong, Try again later". The taskbar works after a few minutes when booted in (It loads).
Partially loaded taskbar:
https://i.imgur.com/v7mXNb1.png
Completely loaded taskbar:
https://i.imgur.com/jF7tV45.png
I did a SFC scan (System integrity scan) and it did not detect any corruptions:
https://i.imgur.com/YB574X9.png
Now, let's get to the conclusion.
When I click on the start, My cursor moves a certain distance then stops.
https://cdn.discordapp.com/attachments/1025472106810589266/1043137489906454539/image.png
My S^X Account was recently blacklisted for "whitelist" sharing when it's clearly my PERSONAL account. I do not share it with anymore nor do I use it on another PC. Maybe the person who logged me (not 100% sure if I got logged as neither of my accounts get logged into/it's password changed except for this one, I got blacklisted) logged into my synapse account on their PC? Is someone accessing my PC remotely? I don't know.
I need suggestions on what to do now or If anyone can help me on what to do please reply here.
Thanks for reading until here, I appreciate you trying to help.
Also sorry for being dead in the community, I've had alot to do irl.
https://media.discordapp.net/attachments/994643402949926956/1004560140252495960/uqJXQIda.gif
Discord: Ad#1085; Don't hesitate to DM me if you need help/anything.
Replied
install Kaspersky asap its one of the top malware detection engines at the moment
Cancel
Post
Replied
interesting post!
Cancel
Post
Replied
Use Malwarebytes
Cancel
Post
Replied
chnage ur passwords if ou havent yet
Cancel
Post
https://cdn.discordapp.com/attachments/1066053366758780978/1078052772567597127/image.png
Replied
Download this, and do a deep scan.
https://www.emsisoft.com/en/home/emergencykit/
Alternatively, reset your computer
Cancel
Post
Replied
second nuking windows and fresh install
Cancel
Post
Reputation Goal: 69
#NoMoreMods
#MEWANTGLOBALCHAT
"Questionable intellegence, but I like the mystery" - CubeFaces
https://cdn.discordapp.com/attachments/1136067487847415848/1138948596679589898/sig.png
Replied
may be late but, i would do a full reset or get bitdefender and use it to see if it finds anything
Cancel
Post
Ty for rep: Swiney, Byoke, Lion, Locust, Waves, Weeb, Nickk, darkn, Atari, CubeFaces, Lux14, Rice, Delta, Syraxes, Aeon, Jordan, Pluto, and Hiroku!
P.S, I like cats better too!
Replied
just reinstall windows tbh
Cancel
Post
https://cdn.discordapp.com/attachments/1023423265160560745/1132948683747500092/Frame_12x.png
Users viewing this thread:
( Members: 0, Guests: 2, Total: 2 )
Cancel
Post