THESE ARE THE THINGS THAT WORKED FOR ME, PROCEED WITH CAUTION IF YOU WANT TO FOLLOW THIS. If in the first option, you noticed spikes in CPU usage and not GPU, do the second option immediately and download Malwarebytes Anti Rootkit and rougekiller (best scanners tbh) get Anvir Task Manager if you want to check the processes happening on your computer. (I doubt that the second option will fail as I did just that and my laptop was fixed from any bullcrap that KRNL gave me.) Specially for the 2nd option since that only means that it failed. Monitor your computers fan speed, GPU and CPU percentage after doing the first or second option. Open Anvir Task Manager with administrator If Tron asks for NET 2.0 and above, allow it to download all of it. READ THE INSTRUCTIONS FOR TRON SCRIPT or at least, watch tutorials for it. (Had to do one but wasn't THAT worried since my laptop doesn't have much important documents and files) After booting your computer again, immediately download and use Tron Script, then restart your computer. If its still NOT fixed and the crappy KRNL cryptominer is still there, do a clean install of windows Yes, I mean it, reinstall windows from the cloud not from local backup and remove every file you have. Use Tron Script right after to fix any deleted window files and restart your computer. (Search about the process in google and scan it with anti rootkits and anti viruses, always do this when you're not sure about the files you're about to delete since it might be an important windows process I doubt that this is the case but its best to be cautious.) If you can't find the suspicious files that KRNL left behind since those are damned hidden cryptominers, use anti rootkits I suggest you to use Malwarebytes Anti Rootkit first before using Rouge Killer (these 2 are the ones that worked for me), if the anti rootkits found any suspicious files, delete them immediately and restart your computer. If you think you saw a process which takes up 50-100% of your CPU in anvir but in normal task manager its showing that its not using much, then quarantine it for the meanwhile. Open the normal task manager and monitor the background process IN Anvir. Try to use Anvir task manager if you want to save yourself from having a reboot, anvir essentially sees majority of the processes happening on your computer. So 1st and foremost DELETE KRNL AND EVERY FILE ASSOCIATED WITH IT AND RESTART YOUR DEVICE. Pesky miners wouldn't even let me delete them, specially a file named atl.dll in System 32 saying I had to close windows explorer to "delete" it) Doubt it that the ones who wants to log in my emails would be successful without me authorizing it lolĮdit: Tried many things as well such as booting in safe mode where I found 6 trojans using Malwarebytes antirootkit (tried to remove the virus there manually but it didnt work, did this about 4 times there, only wasted time. Got Tron and it successfully removed it, I'd still be sweating bullets if I hadn't found another dudes reddit post related to getting a virus from Krnl (he had a link to a youtuber who recommended to try Tron)Īs for passwords, I'm not that worried since I have 3FA. The damn cryptominer latched itself on system 32, it had admin perms which I managed to remove (found miner through malwarebytes anti rootkit and through google on how to remove perms on suspicious files). Did it again, this time removing ALL the files, didnt work. But was that gullible for it since kinda not wanted to grind a long time for virtual items :vĪnyways, I already did a factory reset, it didn't work. Ik haha, shouldn't have trusted em immediately.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |