Jump to content

Urgent: XMR coin miner malware

chuong

By chuong
in Malware Finding and Cleaning

 Share
Go to solution Solved by Marcos,

Recommended Posts

chuong

chuong 0

Posted
Posted

Hi all,

I have some windows servers 2012 standard effected XMR coin miner malware, when I view with processxp 

C:\Windows\System32\svchost.exe -o pool.supportxmr.com:443 -u 44bwTAxAcX7Q99bCLnawEQW55LrCqEUfT1D8pnzz9f1LXSSwp3AXD1K829xt7xKoFdUfdxneZGCmi6BfyHVbQy73UN7GQMJ -k --tls -p 054

My servers has ESET Antivirus 7.x for windows but it cannot detect and remove this malware, please help, let me know if you need more information, thank you very much.

Link to comment
Share on other sites
  • Administrators
  • Solution
Marcos

Marcos 5,074

Posted
  • Administrators
  • Solution
Posted

Is it the same machine / case as this one?

https://forum.eset.com/topic/29656-server-100-cpu-performance/

Detection for XblGameUpdateTask.exe will be added in the next update, then ESET should be able to detect and clean it.

Link to comment
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...