Charlie: Sorry to hear of your misfortune. I know nothing of Bitcoin or mining it but did want to comment on your solution.
I see that your computer tech used Malwarebytes to attempt to fix it. I purchased (licensed) this program years ago for a one time fee (I think it was about $30, so that I would get the running file protection. The free version just lets you scan for problems if you suspect any problems. The licensed version will usually pop up a warning and not let you visit a site that might be infected. Or sometimes you just see a message that says you can’t reach this site. Well worth the investment. Good luck with any solutions that you try. Sysinternals Process Explorer also gives you a chance to look at everything that is running on your system. Dave Grenfell From: [email protected] [mailto:[email protected]] On Behalf Of Charlie Noah Sent: March-19-18 11:51 AM To: [email protected]; Jbase Google Group Subject: [OT] I Got Bit By Bitcoin Mining Malware Importance: High Hey Folks, I know this is way OT, but there isn't a bunch of smarter people than those I've met on the MV groups. I hope you'll indulge me and someone can give me some guidance. A couple of months ago I got invaded by bitcoin mining malware on my Windows 7 Pro machine. I am always super careful about what websites I visit, never open email attachments unless I'm expecting them and verify they are real, and never click on links in emails, even from people I know. I can usually spot spam and delete it without even opening it. Despite all my caution it got in somehow. It got so bad that one morning I got a message that a service had terminated unexpectedly and Windows had to restart. After restarting, it gave me a different service error and restarted again. After about a half-dozen of these I restarted in safe mode and was able to at least get it running. At this point I had no idea it was malware, but suspected it was something beyond my diagnostic skills. I sent my computer in to my service tech, and he called me back and asked why I was mining bitcoin! I told him I didn't know what he was talking about and barely knew what a bitcoin was. Anyway, he ran scans and cleanups, installed Malwarebytes and sent it back. Apparently the visible culprit is a file called mserver.exe. The trouble is it keeps coming back. It hasn't shut me down since because I keep stopping and deleting it every day, but it's obvious that something else is out there somewhere that recreates the file. Has anyone been through this and figured out a way to get rid of this crap permanently? I've Googled it and the only procedure I've seen is very complicated, and recommended only for the specific poster. There are websites out there that claim to get rid of it, but Malwarebytes says they are dangerous and won't let them load. Please help, anybody! Charlie Noah -- -- IMPORTANT: T24/Globus posts are no longer accepted on this forum. To post, send email to [email protected]<mailto:[email protected]> To unsubscribe, send email to [email protected]<mailto:[email protected]> For more options, visit this group at http://groups.google.com/group/jBASE?hl=en --- You received this message because you are subscribed to the Google Groups "jBASE" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]<mailto:[email protected]>. For more options, visit https://groups.google.com/d/optout. -- -- IMPORTANT: T24/Globus posts are no longer accepted on this forum. To post, send email to [email protected] To unsubscribe, send email to [email protected] For more options, visit this group at http://groups.google.com/group/jBASE?hl=en --- You received this message because you are subscribed to the Google Groups "jBASE" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
