Jump to content


  • Content Count

  • Joined

  • Last visited

Community Reputation

0 Neutral

About Komando

  • Rank
    New Member
  1. Hello, I've posted on here before trying to get rid of the same virus and nothing worked. Now I have found out some newer things about the virus that may help in finally getting rid of it. It seems as though what it's doing is making these gibberish folder names in my Temp folder in AppData. It must run off the start and starts up when my PC goes idle. The folders inside Temp have a bunch of .dll extensions and one application that has a silver coin symbol. Hopefully this helps to finally getting rid of this because it has been bugging me for the past couple months. Most of the time the bitcoi
  2. I'm still getting the error message. It was the first thing that popped up when I rebooted. It seems to be happening less often though which is strange.
  3. OTL Log All processes killed ========== OTL ========== C:\Windows\assembly\Desktop.ini moved successfully. File EY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 not found. File EY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] not found. File EY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 not found. File EY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] not found. File EY_LOCAL_MACHINE
  4. AdwCleaner Log # AdwCleaner v2.303 - Logfile created 06/15/2013 at 12:37:45 # Updated 08/06/2013 by Xplode # Operating system : Windows 7 Home Premium Service Pack 1 (64 bits) # User : Kyle - KENYA # Boot Mode : Normal # Running from : C:\Users\Kyle\Desktop\AdwCleaner.exe # Option [search] ***** [services] ***** ***** [Files / Folders] ***** File Found : C:\END Folder Found : C:\ProgramData\InstallMate Folder Found : C:\ProgramData\Premium Folder Found : C:\ProgramData\Zoomex Folder Found : C:\Users\Kyle\AppData\Local\PackageAware Folder Found : C:\Users\Paul\AppData\Roaming\OpenCandy ***** [R
  5. So far (about 6 minutes) and no sign of the error. Think you may have just fixed it. Heres the log, but for some reason when it rebooted it had disabled my DHCP for my LAC. Not sure if it was intentional or not but, its fixed now. Thanks for the help. If it pops up again I'll repost in this topic. ComboFix 13-06-13.01 - Kyle 06/13/2013 18:25:11.2.2 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4095.2222 [GMT -4:00] Running from: c:\users\Kyle\Desktop\ComboFix.exe Command switches used :: c:\users\Kyle\Desktop\CFScript.txt AV: Microsoft Security Essentials *Disabled/Update
  6. I'm still getting the "bitcoin-miner has stopped working" pop-up even after all this. I couldn't fit the logs into one reply so I just put them all into a text file in the order as you corresponded. SystemReports.txt
  7. So, this has been happening for some time now. Everytime I use the computer (only my user, doesn't seem to be happening to anyone else but I'm not sure) I get this error message saying "Bitcoin-miner has stopped working.". This message pops up once every minute or two. It is EXTREMELY annoying. I've just been working around it but, now I need to remove it. I suspect it's using svchost but, I'm not 100% sure because it always crashes...so I can't really tell which process it may be using. I don't see a performance impact though like many other BTC trojans seem to do. I think I may have removed
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.