Hello,
My PC hase been infected by a sticky bitcoin miner and I decided to try my chances at resolving this issue without resolving to reinstalling windows from scratch, so thank you in advance.
The malware calls itself "SecurityHealtSystray.exe" and loads the cpu to 100% whenever task manager is not open and hides itself when openning task manager (actually quite happy that the devs included this function, makes using the computer possible without lag 🤔):
I have been looking on several forums and found cases similar to mine and so the process can only be viewed with process explorer or something similar:
Similar to other cases I found, the malware is detected but comes back after a reboot whatever I do.
I used mwb with PUP's and PUM's set to "Always" as recommended in other posts to scan (I scanned twice in a row and got two different results so included them both). One thing that did look odd in the logs is that the Trojan.BitCoinMiner.Generic line under the "File: " section has a "Removal Failed" error which I did not see in posts made by other users. I also included logs for scans using FRST.
Thank you for your advice and help.
FRST.txt
Addition.txt
FirstScan.txt
SecondScan.txt