How do I find a task I believe is related to coinminer malware?

Page 2 of 2 FirstFirst 12
  1. Try3's Avatar
    Posts : 4,333
    Windows 10 Home x64 Version 1909 Build 18363.778
       #11

    Platypus,

    Your case might be different but my unknown task did not appear in NirSoft's TaskSchedulerView or anywhere else except that task summary page you posted a diagram of.

    I don't know how we could use Process monitor to track things down either. I've used Process monitor for other things but can't see how to use it for this particular job.

    Denis
      My Computer

  2. Callender's Avatar
    Posts : 2,453
    Windows 10 Home 1903 64-bit
       #12

    Try3 said:
    I don't know how we could use Process monitor to track things down either. I've used Process monitor for other things but can't see how to use it for this particular job.
    Denis
    It creates a log of everything that ran on boot. Then open the log and check it.
    @PlatypusKnight

    As you seem to be using an HP machine check this out:

    HP Comm Recovery - HP Support Community - 6598136
      My Computer

  3. Callender's Avatar
    Posts : 2,453
    Windows 10 Home 1903 64-bit
       #13

    I guess that if you can find a service - HP Connection Optimizer - then you could temporarily disable it to test.

    https://www.shouldiremoveit.com/HP-C...5-program.aspx
      My Computer

  4. Try3's Avatar
    Posts : 4,333
    Windows 10 Home x64 Version 1909 Build 18363.778
       #14

    Do bear in mind that the unknown task and the signtool thing might be unrelated.

    I agree with Callender that Process monitor is appropriate for tracking down the source of the signtool thing.
    [My earlier, "I don't know how we could use Process monitor to track things down" comment was because I was thinking about the unknown task and had forgotten about the signtool thing.]

    Denis
      My Computer

  5. PlatypusKnight's Avatar
    Posts : 113
    Win 10 Home
    Thread Starter
       #15

    You guys are the best.
    Indeed signtool.exe was unrelated to the malware.
    I still don't know what those tasks are.
    Signtool.exe was related to HP Comm Recovery - HP Support Community - 6598136

    Thank you Callender.

    Try3 that Nirsoft tool is fantastic.

    This is why I come here.

    Marking this as solved.

    edit: spellings
      My Computers


 
Page 2 of 2 FirstFirst 12

Related Threads
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 12:53.
Find Us




Windows 10 Forums