Search the Community
Showing results for tags 'bitcoin'.
-
Hi. I've been noticing high CPU temperatures and fan speeds on my laptop (which I recently cleaned and reapplied thermal paste to). Every time I open the Task Manager, the CPU usage is on 50 - 90% for a moment but immediately drops down to 5 - 10%. I'm suspecting this is a bitcoin miner virus, mainly because the symptoms are identical to what was described in this thread. Should I follow the same steps given to the person in that post? Thanks in advance for any replies. (My system is an XPS 15 9560, Intel i7 7700HQ, Nvidia GTX 1050, 8Gb RAM, Windows 10 Version 2004)
- 16 replies
-
When I open up my task manager it shows my cpu running at upwards of 50 percent and I am not doing anything on my computer I have run a custom scan using malwarebytes and scanned for rookits and gone through archives it found 12 detections but the problem still ensues. I am not sure what to do to resolve the problem.
-
Everything was working fine until a few days ago i copy and pasted my BTC address but it came out different and sent some phisher like 5 bucks i thought i was being stupid and copied a random address so i didnt worry about it until today i found out its a real problem and i need help fixing it
- 6 replies
-
- copypaste
- copy and paste
- (and 5 more)
-
I just built my new PC a few days ago and i went out of my way to buy all new components except my GPU which is second-hand. I scanned my system with malwarebytes and got a lot of adware and two Trojan bitcoin miners that are located in my registry. My problem is that after every scan i get the same malware so it seems that quarantine doesn't help. I tried locating them manually with RegEdit but i cant find anything. I watched a lot of videos on my issue and all of them suggest using Task manager and MSconfig (for startups) but there is nothing out of the ordinary. If anybod
-
I have a problem. Today I have noticed that my CPU runs at 100% until I open task manager. I know, there were similar topics on this forum but unlike these virus didn't go away. Malwarebytes detected the virus and it says it has removed it but it's still happening. I tried using system restore and went back 8 days but it's still there. (Kinda impressive) I really hope you can help me.
-
So I've been having this problem for the last few days, my PC was pretty slow so I ran malwarebytes and it found a lot of stuff, then got rid of it but they came back with every reboot so I started looking into solutions online, I guess I've managed to get rid of a few of them by running a lot of different cleaning tools but "conhost.exe" always comes back after reboot. There was also some exes called lsmose and mysa1 mysa2 and mysa3 which I found out online that are bitcoin miners. I can stop the conhost manually by stopping some processes but it comes back after every reboot so I would reall
-
hi everyone i am Rodolfo Gilliland. i am new on here...guys let's introduce with each other
-
I have recurring problem during transacting bitcoin from one wallet address to another wallet. My problem is i cant copy the exact address that i have and when i copy paste to all platforms like ie messenger, notepad, word the same wallet address will always puff up. I tried to do some testing by copying partial of the wallet address and then paste again another portion which it was successful in notepad. After that I tried to copy and paste the address many times on the same notepad without any problem. But when i tried to copy and paste in the messenger, the first attemp
- 48 replies
-
- crypto wallet
- bitcoin address
-
(and 2 more)
Tagged with:
-
Hi, I get this famous RiskWare.BitCoinMiner on my server Windows 2016. I don't now how cause it was a fresh installation. fresh installation because the first one was infected with the same malware. it's a poison i don't know what i can do... I take Malwarebytes, so i make a first scan on the server, he find RiskWare.BitCoinMiner, and remove it. good for now... But the riskware back again, and now, malwarebytes find nothing. The place of rundll32.exe who use processor : C:\Windows\Microsoft.NET\rundll32.exe This malware kill my server, i try lots of thing for remove that and i d
-
Hello there, new to the forums for Malwarebytes. Above is a picture of the recurring problem that has been happening for the past few weeks now. This started when my younger brother installed many freeware and software for video games (including shady websites for hacking video games). Now the laptop (A Razer Blade GTX970M) has been sluggish for quite some time now. Scanning with the anti-malware kept finding this program which could not be removed simply. Quarantining it doesn't keep it quarantined, instead it changes its file name to something else. My father and I have been trying methods t
-
Hello! When i start my computer and check task manager then i see that something called vgost or something with tools picture takes the most cpu. I end task always and find the location first and delete it, but it always come back! Can anyone help me with this? Last time i deleted 5 of those with malwarebytes, but they come back after restart. Can anyone help?
-
FWIW if it helps someone. Sorry I can't find the string(s) I was in originally. Had a problem with the coinhive mess, but I didn't know it. Machine slowed to a crawl and task manager showed chrome using more than 80% of CPU. Used adw, FRST, eset, malwarebytes, CC, researched for eons. Tried everything written on this subject here and everywhere else. Nothing. Only a problem in chrome. So bit the bullet and removed all addons, etc from chrome... went away. Started adding things back. Turned out, AdRemover FOR chrome was the culprit. Would never have known the miner was there if
-
PC got infected with an extremely hard to remove malware. It keeps creating a fake conhost.exe file in Windows/SysWOW64, as well as fake Adobe folders in AppData/Local. No rootkit/AV/Anti Malware program has been able to detect it. It starts up shortly after the PC boots, and its presence is known as soon as MalwareBytes blocks the RiskWare.BitCoinMiner process while doing live scans. The source of this process still cannot be found/cleaned, only the BitCoinMiner process it starts up every hour or so. It will close a majority of programs that run with cmd prompt, will close the browser wh
-
Hi, I managed to download a bitcoin miner while downloading mods for GTAV, and no matter how many times I scan using malwarebytes it won't go. After the system restart it persists and slows my PC down so much that it struggles with even CS:GO. I can't download FRST or RogueKiller because as soon as I type it in any browser, the browser closes as if the malware is closing it before I can use either tool to kill it. Please end my suffering lol
-
Hi guys. I recently started to notice that whenever I play a game, any game, I get a smooth 120 fps but then after a couple of minutes it drops to about 20 to 10 fps. I found out after some time what the problem was. When I opened task manager I could see that 2 processes are using like 90% of my gpu. They were called csrss.exe (Client Server Runtime Progress) and Desktop Window Manager. I did some research as to why they are doing this and some stuff I read said that it could be a bitcoin generator or something like that. It happens with every game I play. Csgo, Fallout4, you nam
-
Hello, I scanned my computer with the free version of malwarebytes and the scan came up with a few infections. I deleted these files and the registry entry in both regular and safe modes but it seems that they are being created each time the system is booted up. Attached is a screenshot of the scan results and the infected files. I'm running Windows 7 Home Premium 64-bit. Any help on how to get rid of these? Thanks!
-
For quite some time I had CPU usage issues that appeared to be coming from the WMI service. I figured out a workaround which was to shut down the service called "WMI" but this wasn't ideal as it would need to happen on each reboot. I have also discovered a service called NVU which claims to be NVIDIA driver updater but I suspect it is also fake. Today I figured out that WMI was a Bitcoin Miner virus and I was able to find the associated files. I could have removed them manually but I got Malwarebytes to scan and remove them for me. On reboot now, my CPU is back to norm
-
Now many Hacker targetting Bitcoin / Cryptocurrency. as it can make Big money Some try to Install malware in our computer such as https://www.cylance.com/en_us/blog/threat-spotlight-cryptocurrency-malware.html I hope malwarebytes pay more attention to this kind of malware
- 3 replies
-
- cryptocurrency malware
- bitcoin
-
(and 1 more)
Tagged with:
-
Need help on removing this virus on my laptop. I think there are still other viruses so I need all the help I can get. Since I already ran malware bytes the only persisting problem is the riskware.bitcoinminer. For some reason it can't be removed and it also clogs up the quarantine on malware bytes. Addition.txt FRST.txt
-
Hello, My name is Ethan and I'd like to request help with malware/rootkit/ad/etc removal. To give you some background, I recently got infected with THIS file. It changed my browser, redirected pages to "eatyellowmango. com", changed file names to ".bat", installed bitcoin miners, 100% CPU usage, and much worse. After 10+ hours of running every AV program I knew, it's mostly gone; but I'm still having issues with what I believe is "Adware.Yelloader" and rootkit(s). I've also gotten a BSOD message three times, saying "irql_not_less_or_equal", but that stopped now. So far, I've
-
Hello. I seem to be unable to remove the riskware.bitcoinminer. It comes up as WindowsUpdate.exe. I try to remove it using malwarebytes but it won't go away. I scanned, quarantined it and removed it but I still kept getting notifications every minute that it was being quarantined. It picked up one time on scan, but once I removed it after I did a scan, it won't pop up on a scan again. it just shows the notification of riskware being quarantined every minute no matter what i do.
-
Hello, before all, sorry if my english is bad. I've downloaded antimalwarebytes to find something wrong in my notebook because i'm having problems in some games and in web surfing. the scan showed me four malwares but i can't remove them and i'm scared to remove important files from my pc for error. i've followed the instructions of the topic "I'm infected - What do I do now?" and i'm now posting the results of the scans FRST and Additions. I hope you can help me, thank you. Addition.txt FRST.txt
-
Hi everyone in the forum, i installed a package which contained virus as when the installation process was starting..... application were installed out of nowhere ( no intention), so i went to safe mode and ""threat scanned"" with Mbam and with mcaffee virus (normal mode) i discovered yesterday which i did not see before, that lux.exe is bitcoin mining the GPU and using lot of CPU, another thing i saw is that a bunch of scripts unknown to me are hidden in my C/....Appdata ...../Roaming directory. How do i remove all these, thinking deleting the files wont help at all.. ( windows
- 14 replies
-
- bitcoin
- bitcoin miner
-
(and 1 more)
Tagged with:
-
DON'T PAY RUSSIAN CRYAKL RANSOM - YOU WON'T GET YOUR FILES BACK If you pay the typically demanded 3 btc (US$12,000) then they'll say "Pay full price 5 btc", US$20,000 and even if you pay that you still won't get your files back. CL 1.3.1.0.id-@@@@@7491-11C2.randomname Above is the latest version from Russian criminals which changes your file names and starts with the email to contact them. Typically the email is from aol.com (eg email-magna_bellator@aol.com) or india.com (eg zaloha@india.com). They will ask for 3 bitcoin today and 5 tomorrow. What do you think hap
- 2 replies
-
- russian ransomware
- cryakl
- (and 5 more)
-
I am kind of seriously frustrated. I did report false positive IP addresses before for Geth.exe (Ethereum) and Parity Technologies ( https://parity.io/ ) I can't just report a couple of Ips that I added to the exclusion list... because I think that the applications calls a lot of different Ips. Since it's P2P.... I am doing Blockchain development with ETH and when I'm in my powershell I keep seeing Blocked Ips every single sec. So I have to quit Malwarebytes to continue my work. It's so so so so so so annoying. I added the applications to the exclusion list, VIA folder. It stil
- 6 replies
-
- blockchain
- blockchain dev
- (and 4 more)