Jump to content

Search the Community

Showing results for tags 'powershell virus'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Nebula
    • Malwarebytes Nebula Modules
    • Malwarebytes Endpoint Security
    • Other Malwarebytes Business Products
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL






Found 3 results

  1. Hi, ive encountered an issue on my pc as of today with powershell. Powershell will open then close own its own right after. This has been really bugging me especially since it makes me switch tabs when im playing a game. I have tried to use various anti-malware programs to detect the issue. Did a clean boot and cleared out any suspicious files but the issue still occurs. Any advice is appreciated, thank you.
  2. My computer appears to have been affected by a horrible case of fileless malware, enabling RDP services which may have installed a Clover Bootloader, android emulation Hyper driver, as well as phpmailer. Those are just what I saw from the browsing history. I cannot enable IPV4 DNS to communicate directly with the router. Each time I install any kind of software it spawns more processes and embeds itself further into the OS. I believe there a reverse proxy that’s routing it somewhere, I just can’t figure out what rules are causing it. The issue is very persistent, and whatever malicious toolset was used was used on two previous PCs and rendered them inoperable. The PC being used now is three or so weeks old, and is on its second Windows install. Recovery will not work and resetting does not work. The good news, if there is any, is that the file dates on this is the same as the initial set from last year so whatever is going on has not been updated since then. There are a lot of powershell manifest files on the C drive, various installed programs without installation files, and the /fixboot operation does not work. The Dism.exe seems to exacerbate the problem, as well as SFC. I’ve tried to update the drivers from the manufacturer’s site, but they do t seem to be able to coexist with whatever (software or hardware emulation?) is already installed and operating on the PC. It also appears to be grabbing other devices locally close by that aren’t on the LAN like the phone, TV, MacBook, etc. Accounts created and logged into the past few weeks have had settings changed, so there’s a keylogger as well. It looks like it started with a DLL hijack/proxy, then privilege escalation. The easy answer is obviously to wipe the machine, but I’ve tried that with a Windows USB. It doesn’t remove everything completely. It still uses the drivers and many of the programs from the previous version. It also maintains the Registry, which is likely the root cause. It’s pretty overwhelming, and I’m not sure where to start. Malwarebytes antivirus kicks up the CPU usage to 100%, especially when scanning the registry. It never finds anything, though. Thanks in advance for the assistance!
  3. Hi, Windows Powershell.exe appears on my W Server 2008 R2 Enterprise, it consumes from 75% until 100% of cpu and appears occasionally but in 1 day it appears 3 times. its annoying because i will always have to end this procees in the task manager everytime that it appears. (I ran avast antivirus because i have a license but it doesn't solve this).
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.