New
#1
PUA:Win32/CoinMiner and XMRig cannot get rid of
Hi guys, This has been doing my head in so after some help if possible
i have done a lot of googling and tried most things but windows av keeps showing this
Ok, so for some reason win 10 Av keeps finding PUA:Win32/CoinMiner and XMRig as (active)
I have run Rkill and then Malwaresbytes and ESET Online Scanner and also in Safe mode with both scanners, Under win 10 2004 (19041.508)
which have found nothing/nada
If these keeps saying (Active) does this mean that the programs are actually running?
why do two programs not show anything wrong and windows Av keeping giving me these issues?
My lappy is LAGGY as heck and usually System interrupts go up to 100% a lot of the last few weeks
What else can i try as i am going grey over this :)
Thanks guys
Edit, i cannot find any of the folders these PUAs are running under either
here is my Rkill report
Program started at: 10/13/2020 04:49:18 PM in x64 mode.
Windows Version: Windows 10 Home
Checking for Windows services to stop:
* No malware services found to stop.
Checking for processes to terminate:
* No malware processes found to kill.
Checking Registry for malware related settings:
* No issues found in the Registry.
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
Performing miscellaneous checks:
* No issues found.
Searching for Missing Digital Signatures:
* No issues found.
Checking HOSTS File:
* HOSTS file entries found:
127.0.0.1 localhost
::1 localhost
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
20 out of 41 HOSTS entries shown.
Please review HOSTS file for further entries.
Program finished at: 10/13/2020 04:59:04 PM
Execution time: 0 hours(s), 9 minute(s), and 45 seconds(s)