Desperate need of help from the experts. My pc is maybe being mined.

[thomschristiansen87]

Hello.

Okay here is how and what i found out.

I woke up today to see my PC fans was working, like i played a game from the future and my rig was almost on fire from the heat. My desktop background is very detailed, but still shouldn't kill my pc.

I think my PC is already damaged sadly, cause my GPU and CPU is idling at 43celcius, usually are under 35. Luckily i only got 5 hours of sleep, or it would've blown up i think.

The problem!
When i leave my PC on desktop, after 5-10minutes of doing nothing, all fans start to go crazy, we talk mach-top-speed. And CPU/GPU usage goes to 100%.

Here's the super freaky part.
As soon as i move my mouse, just a tiny bit.... All fans and cpu/gpu usage stops instantly... Freakin' sorcery....


What does this? Do i have a bitmining-malware expert that know what to look for?
There is no program running in processes, even after 10min, i don't see any .exe of special kind start, while monitoring it, fans and usage just goes to maximum.

I guess it's a hidden program, that is hidden very well, in the services?

I'm desperate guys, this is some scary *. I've never experienced any virus, that could really kill my PC, before now...


Still running windows 7 if that helps, also i like watching alot of porn, so probably caught it through that.

Thanks in advance.

 

[PuperHacker]

@Avoid profane comments please@
Before panicking, run a virus scan with ADWcleaner or MalwareBytes.
You can also try to run at safe mode to see if it helps.
Are you willing to format your drive?

 

[thomschristiansen87]

What the actual.. Malwarebytes, found a trojan.agent.generic in registry? And riskware.gamehack.generic?
Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 5/19/18
Scan Time: 10:28 AM
Log File: 9e75bbca-5b3e-11e8-b493-00ff77c79072.json
Administrator: Yes

-Software Information-
Version: 3.5.1.2522
Components Version: 1.0.365
Update Package Version: 1.0.5168
License: Trial

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Thomas-PC\Thomas

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 315931
Threats Detected: 10
Threats Quarantined: 10
Time Elapsed: 1 min, 24 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 3
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CC20712B-A869-47B2-8656-6BF7B0022BC1}, Quarantined, [3716], [491495],1.0.5168
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{CC20712B-A869-47B2-8656-6BF7B0022BC1}, Quarantined, [3716], [491495],1.0.5168
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\OptimizerTask, Quarantined, [3716], [491495],1.0.5168

Registry Value: 1
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CC20712B-A869-47B2-8656-6BF7B0022BC1}|PATH, Quarantined, [3716], [491496],1.0.5168

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)



Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)


I lost my windows7 copy, so i would have to resort to piracy or buy another copy, so format my drive is probably not an option atm.


Also i don't think these 2 are the reason for high cpu/gpu temps. There has to be mining-malware in the services somewhere.

Gonna leave PC idle now and see if problems are fixed though.

 

[coozie7]

You should be able to download a copy of Windows directly from Microsoft and activate using your current key-assuming you haven't lost it.
If you have lost the key, create a Microsoft account and tie your current Windows licence to it, that way you'll never lose the key and if you do have to reinstall it'll activate automatically.

As PuperHacker says, run full anti virus and malware sweeps.
Also download and run Ccleaner from here: https/www.ccleaner.com/ccleaner/download A lot of minor nasties lodge themselves in the various .Temp folders and internet caches scattered throughout Windows, this'll get rid of them all in one sweep.


And remember to practise safe surfing, particularly if you're regularly visiting ' artistic ' sites, good anti virus software is essential so keep yourself protected.

 

[Phillip Corcoran]

I would add that a good third-party firewall is also an essential part of online protection - - don't rely on the one that's built in to Windows, it still isn't good enough to make the best third-party ones unnecessary - - and a firewall is more relevant than AV where protection from hacking/unauthorised access is concerned.

 

[mdd1963]

Nuke and pave, and stay off of malware-prone websites..if that is possible.