How To Remove Crypto Miner ~ Advanced Rootkit Removal | How To Remove Rootkits ~ Nico Knows Tech
THIS METHOD HAS DEGRADED DUE TO KASPERSKY NOT UPDATING TDSS KILLER! IT US NO LONGER CONSIDERED SAFE TO US BY THIS KZhead CHANNEL!
How To Remove Crypto Miner ~ Advanced Rootkit Removal | How To Remove Rootkits | Nico Knows Tech
👉👉👉 USE THIS UPDATED TUTORIAL INSTEAD: • Remove Crypto Miner fr...
👉 NordVPN Here: nordvpn.com/NicoKnowsTech to get a 2-year plan with a huge discount.
Hope you guys enjoy this!
👉 If you enjoy this video, please like and share it.
👉 Don't forget to subscribe to this channel for more updates.
👉 Subscribe now: cutt.ly/OmwB3EF
Nico's Exclusive Deals & Recommendations:
👉 $20 Off ESET Smart Security: www.jdoqocy.com/click-1004721...
👉 Kaspersky Antivirus/Security Products: usa.kaspersky.com/home-securi...
👉 NordPass: nordpass.com/NicoKnowsTech
👉 Listen on Spotify: open.spotify.com/album/1vU9wu...
💢 Business Inquiries: garrettgateway@protonmail.com
👉Get Kaspersky Antivirus: usa.kaspersky.com/home-securi...
How To Remove Crypto Miner ~ Advanced Rootkit Removal | How To Remove Rootkits | Nico Knows Tech
In this video, we are going to see How To Remove Advanced Malware including Rootkits, Persistent Rootkits, Rogues, Trojan, and RATs. If you like my video Please SUBSCRIBE and don’t forget to press the bell, 🔔 like, comment, and share the video. Stay safe and Love to all. 😍😘
Download Autoruns👉: docs.microsoft.com/en-us/sysi...
Download Process Hacker👉: processhacker.sourceforge.io/
Get ESET Internet Security👉: my.eset.com/refer-friend/TNCE...
💢 Follow us on social media:
💻 Instagram: / nicoknowstech
💻 Twitter: / nicoknowstech
👉Tron Script Tutorial: • How to Remove ANY Viru...
👉Download Tron Script: / tronscript
▶️ Join my Discord: discord.io/NicoKnowsTech
▶️ Support me on Patreon: / nicoknowstech
▶️ Frequently Asked Questions: • Frequently Asked Quest...
💢 Watch our other Videos:
🎬 How To Remove All Viruses From Your PC:
👉 • How To Remove All Viru...
🎬 How To Remove Hostfile Hijack:
👉 • How to Remove Settings...
🎬 How To Run Windows Directly From USB:
👉 • How To Run Windows Dir...
🎬 Game Over For Ransomware :
👉 • Game Over Ransomware |...
---------------
#Virus #Viruses #Windows11 #CryptoMiner #deleteViruses #NicoKnowsTech
Thank you for watching this video, click the "SUBSCRIBE" button to stay connected with this channel.
Subscription Link👉: cutt.ly/OmwB3EF
👉 This method has degraded! USE THIS UPDATED TUTORIAL INSTEAD: kzhead.info/sun/jal8fqxxh6ymia8/bejne.htmlsi=MuZzogV3bbnxRPE5
As an IT specialist, I often recommend your videos to people with no specific computer related knowledge, so that they can try resolving their problem on their own. So once more, thanks for dedicating your time to make these kind of videos; step by step and really easy to understand by an average user.
That's excellent Philip! I am glad you guys enjoy the content.
If you were actually an IT specialist the only reason you would be praising this guy's videos is because you moonlight as a criminal in the computer world and this dude's making it easier for you ain't no fucking way you're an IT specialist and can watch this video and not fucking squirm and whine and then break after a few seconds and start commenting
@@sumo-ninja Whatever you say, Mr. Doe
@@sumo-ninja or maybe its cause he gets a lot of clients asking for help and he has this youtube video to show them that'd solve their issues
HEY can you help me? i think my computer has a miner virus in itt
Super great help Nico. Thank you for the help and advice!! Very helpful!!
You solved all my concerns on this subject. Thank you !
Thanks a ton brother. My pc has been running at almost 87 degrees for like 2 weeks. You just saved me from wiping my pc and starting fresh. Its completely back to 34 degrees now. Thanks again
Thanks for the help bro! Appreciate your work!
I've learned over the years that if you kill a root kit, you're golden, and things feel right once again.
Excellent anti-rootkit toolkit!!!
Don't follow advice in comments from people saying to contact them on Instagram, Whatsapp, etc. They are scammers.
They are kind of easy to tell it’s fake, they usually are just a bunch of new accounts with profile pictures that they just got off of google and the comments are the same
In my area none of the it support except select few even can tell what's been done.. for most of this trashing the hardware is my only option.. out of warranty and code embedded into hardware and factory reset and bios flashing appear to work.. but when you look at the execution it didn't work.. lol reman or trash
Nico, If I completely reset my PC and re-install all my programs. Will that remove any Virus, Rootkit, Keylogger from my PC?
Usually... But I can't say 100% due to the possibility of an APT (advanced persistent threat), lateral re-infection or certain root kits/droppers.
@@NicoKnowsTech How can you tell if you have a bootkit infection on your PC?
This helped tromendously my gpu was stuck on 100% at idle, ran tdsskiller and it dropped to 1% after the reboot, im still going to follow the other steps and most likely run an sfc scan and double check all my drivers but thank you tons
I thought those high temps were normal… thank you so much man. thought I was going to lose hours of time wiping everything.
thank you Mr. Nico, very helpful tutorial
You are welcome!
You saved me men! Thank you !!
Thanks again Nico!
Thank you! I downloaded something I shouldnt have... got reckless. Havent encountered malware in many many years. My gaming desktop with a 3090 ti and 1080 ti were being maxed out at idle! couldnt understand why PC was a full idle yet GPUs were pulling nearly 1000Watts! Someone suggested a hidden crypto malware may be the cause and sure enough with your software help I found 3 hits on a hidden crypto trojan in my app data folder w malware bytes. Thank you!!
you are life saver THANK YOU SO MUCH
Just in time. Thank u
so deserving of more attention... Helped me remove a bitcoin miner virus after watching your videos my gpu went from 100% to 3%!
I'm so happy for you!
thanks for posting these i will be watching now
Glad you like them!
Hi chief do we need to used it in sequence? Like in order? Or we can mixed everything up which ever comes 1st ? Thank you and godbless
In sequence. It is best this way for speed and stability of Windows.
What should I do if remediation of files gets failed? Should I also create a restore point in rogue cleaner after the scan?
you deserve 1 mil suibs so helpfull you helped me remove briddle buddies!
Excellent. Briddlebuddles was quite an annoying infection.
Yesterday i was trying to remove a crypto miner and now you have posted a video of how to do it. Thanks alot!
same here thanks nico!
Thank you sir!😂 In the last month ago i had a threat with trojan script wactac, i running full scan all av online and my av mean that is kapersky premium. Now, i had a some butterflyes in my stomateched about this trojan do smthg in my bios and formated and cena all disk ssd. Now your video help me to resolve this scary about some "uefi virus" in my bios. Thank you nico! Now i will formated and update my bios that is so old lmao. Your Channel is so cool! (Pardon for any mistake, i'm brazilian kek)
TDSSKiller says "cant load drive" after reboot. Appreciate any help!
Way to go Nico!
Thank you for posting this, a kid put a Kernel level rootkit on my pc and had a btc miner on there, and im hoping this will remove them. He also ratted me so I had to hard reset. Thank you so much
Please tell did you solve this and how
Damn a kid did all that?
Did this end up working I think the files on the pc might be corrupted and I’m hoping a usb windows install from a safe computer is the solution. Tried downloading from the cloud but the computer then automatically connects to other computers. It’s like my computer belongs to some company and I’m just a user. I don’t have access to view or delete some files.
I don’t even want to send this to get worked on because it seems so dangerous. I don’t know what I’m going to do after I install and it ask for all my passwords again, especially my WiFi for the first updates. My pc only cost me 700 but I’ve already spent 2 weeks struggling with this beast so here I am. I don’t really have anything I want to keep on the computer it’s just my privacy and control that I would like back.
Great tools Nico!! I ran tron script 1st on my Asus laptop(took 15 hours), then used these 3 tools, roguekiller detected an "imersivecontrolpanel" issue; I removed and rebooted. The laptop is operating much better in general BUT I still get the runaway ********** on the search bar when I open the control panel or a browser(it seems to happen only once after starting the laptop). I have to delete it with the backspace key. If not , the **** keeps typing,run away in the search bar or browser. What could the problem be? Any advice? Appreciated!...
Did you ever get help?
thank you so much i had a crypto miner making my pc run really bad just doing this incressed my fps by 30 thank you so much
Awesome! Glad your machine is healthy again.
Thanks man this video is very helpful.
Glad it helped
I watched the whole add for you deserve it
You are awesome
thank you so much i thought my pc was done for i hope you the best
Thank you Nico!!!
No worries!
@@NicoKnowsTech man I just have to say you are one of the nicest people on the internet just for doing Tron alone and you still continue with helping people thank you so much I wish you the best of luck in the future all love
Hey Nico So I'm trying this method as you told me to, so in the last program RogueKiller I don't get the option of driver loaded and when its done scanning the keyboard is the same some keys work but not all of them work I did everything as in the video. I got infected cause I downloaded an operating system I notice something weird so I immediately turn off the pc and when I turned it back on, I came to this with the keyboard. Its A Razer Orbweaver and it was working find until I did that my other keyboard didnt get infected as both were connected when the razer one got infected. Thanks
Hi Nico I don't know anything about tech can this be used on smart phones
this is a life saver
Thank you nico, i have had this virus that wouldn't go away even if i system rebooted my pc. This solution has gotten rid of it, atleast for now.
Glad to hear you are safe now.
Rogue kill & TDSS showed no threats. All clean. Could not get MBAR to download.
The Tron Script is the holy grail of fixes.
Yes, it is.
Does this work with cryptojacking? Cause i dont know if its normal for the cpu usage to spike when opening task manager.
I'm fairly certain my devices have persistent rootkit cooties.. considering that i followed the steps in this video and nothing was detected .....did I make mistakes or is it possible that the infection is in the Ram memory or in boot files? Great info in the vid though.
Channel has grown spontaneously 🤩
Yeah Blake! My first Malware Removal Video is about to hit 1 million!
Hey nico btw dumb question I wanna changed pc because I cant find this rookit in my pc and I wanna know if the rootkit can somehow transfer from my wifi to the new pc please tell me
Hey nico while im running the mbar its been going for so long now i think 5 hours right now and its stuck on scanning registry and directory area..... i can still click and scroll on the program but im not sure if i should wait longer or not or maybe its idle
xD it's getting kinda boring not to find anything anymore haha cheers for you guys 🥰
Hello Nico I am using eset and it is spamming rootkits and when I click delete Id doesn’t come backs like 3 sec later any help?
After finding malware on Malwarebytes it’s stuck on Scanning Registry and Directory Data. It’s been over 30 minutes on this one task. So should I retry the program or just wait?
Hi, Nico. Great tutorials and tips.Just a quick question. Do I have to disable any anti virus I have installed before running these scans? Or do they automatically temporarily disable my anti virus software until they finish scanning?
They don't disable any antivirus programs. I don't know what AV software you use, but if they block these scanners, then perhaps temporarily disabling them will be necessary. Thanks for the comment Kent.
@@NicoKnowsTechmy antivirus bitdefender quarantined a threat or a file that was on the TDSSKiller quarantine folder on disk c:. Should I restore it or let Bitdefender handle it? Thank you!
@@MasterDav I would restore it or it won't work.
@@NicoKnowsTech thank you very much!
DO THESE NEED TO BE RAN IN SAFE MODE I HAVE A REOCCURING PROBLEM EVEN AFTER TRON SCRIPT
your a boss dude
God bless you guy
And to you.
I downloaded tdss and restarted the pc as you instructed but it doesn't start up after clicking restarting right now, keeps saying pc did not start correctly and im stuck in a loop
After it does that three times, it will enter a recovery menu. Then follow this video from a buddy of mine kzhead.info/sun/nJGKeNiCfnOOmoE/bejne.html&feature=share9
My pc is stuck too idk even what to do
Nice Video Nico
My #1 Fan.
when i reboot as roguekiller asks... it shows blue screen of death, please help
I have a PC from about 10 years ago , had some kind of virus on it that I was never able to get rid of , swapped out hard drive and ram reinstalled win xp with new drive and ram , virus kept coming back , I even clear the bios , after watching this video im wondering if it may have been some kind of bios virus . Eventually I might re attempt getting rid of it .
Any luck Ben?
Thank you this helped a lot sadly they were able to get my youtube account deleted by posting scam videos
tbh i got a question i used kasperesy and it said it found a rootkit then i ran the deletion process but i wasnt still sure so i downloaded tdss killer because i wasnt sure but it says tdss killer didnt found anything so was my root kit was a weak virus or its so strong that tdss killer cant find it
Sir please help me to get rid of loudminner
After the restart, that TDSSKiller requested, Windows broke completly and could not be repaired
Im stuck at scanning registry and directory data in malwarebytes please help
Hey Nico I have a Mac Studio M1 and I’m pretty sure I have a rootkit virus. Is there any way I can get you to help me remove it?
I have a question hopefully someone would be able to answer it? i used mbar the anti-rootkit one and it got stuck on Scanning registry and directory data for 1 hour is that a bug or is that normal.
After reboot it can't load the tdss driver
About the Tron Script, you mentioned finishing any pending updates first before starting. Well, I have errors on my windows 10 updates, it's not updating, I tried many fixes nothing seems to work. can I start Tron even so I have many updates pending?
Did you try sfc /scannow in CMD as Administrator? Also, do you think you have malware?
If you have update issues, go ahead and run it. Also @Reversed Videos' advice could help too.
i did all what you said and i hope this works. will be updating you
did it work?
@@pek3to i honestly can't tell, i ve deleted some suspecious files and done some more cleaning and its good now, all i can say is that there is no harm in trying these methodes in the video
Please help, I did kaspersky tds killer, without changing the parameters. When the system rebooted it blue screened and now it won’t boot. Is there anything I can do?
My buddy has a guide that should help. kzhead.info/sun/nJGKeNiCfnOOmoE/bejne.html
I think I have problem with rootkit virus, I don't know if this can help me or not. My English is not good but I tried to understand.
My laptop is full of root kits with triggers , malware and Trojans and I’ve tried running tronscript and it did do anything I believe the rootkits in my system and all my files are either re writing it or stopping it from see anything I tried doing a fresh install and it didn’t do anything I went into the registry and every thing in the registry is rewrote with triggers and commands and new drivers and remote networks and some kind of crypto miner thing imma theses steps and see if it helps maybe you have some advise ?
Keep me posted
@@NicoKnowsTech thanks for reaching back to me I found out its detrahere malware and it’s took over my hole laptop it’s credited new keys for everything on my hard drive and hidden most of my sub files and users so I can’t delete anything and because of the certificates that it keeps crediting windows or tronscript can’t see it? Have you ever delt with this type of malware before? Any advice I went into the bios and deleted all the keys but it didn’t do anything the malware just rewrote them where it was loading back up
What do I do if I can’t go on the interent?
I did everything and it removed a few things but I still have a feeling that something is on my computer. I have this multiple Windows Driver Foundation processes that I suspect are crypto miners, but can't seem to get rid of it. My laptop randomly turns on and I can hear GPU fans go nuts from time to time even when nothing is open. Any solutions?
Yes, actually. I made a video on how to be sure: kzhead.info/sun/pN6zY8V7oKyXm30/bejne.html
@@NicoKnowsTech Thanks, I also tried this the same day and everything seemed fine there was maybe a random one that had score of 4 but still I feel like something is wrong. Maybe I'm just paranoid.
Great video! btw is there similar software for mobile phones? like boosting cpu etc
after few of your videos i just realised how ducked up my windows is. Not every hero wears cape...
You are too kind. Boosting CPU on phones isn't advised because nearly ALL phones including flagship phones have massive thermal throttling issues. There are a couple things you can do to improve performance which I will make some shorts about soon.
Hey nico i instagramed you i purchased a new laptop can u say if it is possible to clone windows files from hdd to ssd without booting via usb or formatting the system 😅
The os gets into a self repair loop when i click reboot at tdss the only way to get out of the loop is a system reset which i have done twice now, can anyone help
I have a root kit of some sort that won’t go away even after I’ve used tron script and many other things, could my mother board be infected? It could also be a Multipartite Virus but I have no idea and no idea what else to do
Did it solved
My rootkit will not let TDSS Killer load the Driver...any suggestions?
What do i do if my TDSSKILLER found a threat, wants me to reboot, but the reboot chrashes my pc so i have to restore my pc (obviously the virus fault), but What do i do
Can rootkit malware be hidden further in the kernal to not be detected by the software?
Rarely, but yes. Typically these types are obvious due to symptoms observed by an expert and could be removed by running these tools in safe mode.
Ive followed every step of this tutorial and i sill have the virus, it opens random folders that contain temp files on startup, what can i do apart from formating?
kzhead.info/sun/oMx-pNSjbZqFpZs/bejne.html
Hey Nico. I have a question. It says "Can't cure MBR. Write standard boot code? If you have installed custom bootloader (eg Acronis, Grub, Lilo), you will need to reinstall them after treatment." when I ran TDSKiller. Should I click yes?
Update: I clicked yes and wooh! It's gone! Thank you so much, Nico! You now have one new like on this video and one new subscriber for your channel. Keep up the good work. :)
@@akizaizayoi4763 custom bootloader would be relevant if you had a dual OS boot such as people who have windows as well as Linux on the same computer where you choose to boot to Linux or Windows when you first turn on your machine. Glad it worked out for you!
@@NicoKnowsTech I see. Thanks! I used to have a dual boot on my former laptop. Until I decided (with my friend's heavy recommendation) that I go full Linux. Now, I have this new laptop and sadly, I got attacked by a virus (my fault. I downloaded a pirated software for me to learn Adobe Premier first. I turned off firewall and realtime protection). At first, it manipulated my system32, removed my settings and control panel, and made my taskbar almost impossible to use. I then ended up having to do a clean reinstall of Windows. Everything then seemed fine after that. But my KZhead started to upload videos that contain scam and phishing links. And my Discord started sending phishing links to everyone I could sent messages with. I already changed password of all of my socials and every accounts that I used in this laptop by the way. And just now, I just did your tutorial minus the RogueKiller as it is getting late right now. TDSSKiller detected the Rootkit named "rootkit.boot.backboot.e" and had it cured finally. Anyways Nico, any suggestions on what to do next aside from tightening my security further (which I have already did) and being more careful? Anything else to scan for such? I am using an ASUS ROG gaming laptop by the way.
@@NicoKnowsTech any suggestions on what I can do next from my past situation?
@@akizaizayoi4763 Nice laptop. I have a couple of those. Good machines. I recommend getting ESET Internet Security or ESET Smart Security. My affiliate links that give discounts are in description.
TDSS killer isn't available anymore, or I can't find it. Pls help
www.bleepingcomputer.com/download/tdsskiller/
@@NicoKnowsTech thank you Nico!! I've seen other websites where I could download, but I'm gonna trust this one, wish me luck 😅
Let me know how it works out.
@@NicoKnowsTech Im having an issue with that link as well. Seems the file is gone.
@@mattzalusky6348 www.majorgeeks.com/mg/getmirror/kaspersky_tdsskiller,1.html
How can I remove a rootkit form android without hard-reset?
Let's start at the beginning: So I was suspecting I have something like a Bit Coin miner or so on my pc. It has less Performance than it should. So I decided to run Tron, and it found nothing and finished over night. After that I wanted to run Tdss killer, but as soon as I ran it, and it restarts my PC, the thing goes into the Blue Screen of death. Thankfully I made a System Restore point, so I can get my pc running again. My question is, do I have some Virus installed that fucks with my PC as soon as I use something to remove it? My Specs (if they're relevant): I5 10400f, RTX 2060, 16GB of RAM, an SSD, where my Important things run, and a HDD with an old Windows 10 Installation (plus a couple of games).
wtf inside kaspersky tdss killer when i installed his say perbot pc and when i reboat his cant run i window always i see blue screen and have not to automatic repair!!!
I get stuck at scannimg registry and directory data using malwarebytes anti rootkit, what should i do??
you should just wait, my mbar does that too and I just wait for it to finish
Hmm…each time I reboot for TDSS Killer, the diagnosing fails and my PC blue screens 😅
I have crypto miner but I noticed it after 1 day I turned off my pc and removed its power supply should I readd windows
Just follow the guide from the video and it will be gone. Did you install any exploits like krnl or jj lol?
SPEC-TAC-U- LAR!!!
I don't have a virus I just like to be safe !
hey guys what to do if you have miner on motherboard im reinstal os but it still here what can i do?
Which motherboard infection do you have? What name?
Bro the tds killer gave me a blue screen when I use the prompt in the troubleshoot it still says restart to fix nothings working
This tutorial is outdated.
@@NicoKnowsTech Can we get a newer tutorial? This is a pretty persisting issue!
Windows Defender keeps blocking MalewareBytes , any suggestions? I keep getting messages about blocking folder access, and also blocking memory changes..? so, it does not seem to find anything...but there are issues on this PC.
tame those defender settings
can i remove a rootkit if i do a clean install off of a usb that i download from my laptop
Usually yes if you wipe the drive.
Hey nico, when i installed tdskiller it asked me to reboot my pc so i did like you said, but everytime i reboot my pc it goes into a loop of automatic repair and then i get blue windows screen “windows automatic repair , your pc didnt start properly” with turn off pc and advanced options button…what should i do
Okay. When it fails to auto repair, it will come to a recovery menu. Select Troubleshooting, Advanced, Startup Options. Then reboot. Next menu: select safe mode. Reboot again, in safe mode you will need to open Command Prompt (As Administrator) then run two commands. DISM /Online /Cleanup-Image /Restorehealth SFC /scannow The reboot.
Tdss killer shows that it cant load driver after the reboot what do i do ?
My tdss killer couldnt find any malware but the second app you said did
@@LybaGhazanfar- I'm gonna try too now, thanks
@@bipbopking1101 the whole process didnt work for me. My best try would be to install windows using a usb. My antivirus could dete t malware but not resolve but one of these teo apps detected virus, said it resolved it but my antivirus could still detect virus. Its a rootkit Trojan sitting in my bootloadet efi
found out my pc was being mined for 9 months and the virus i have on my pc shuts off whenever i open task manager to check gpu will these methods also detect that type of crypto jack virus ?
Yes.
I installed tdsskiller but when I ran it it asked that my PC had to restart and a message appeared from my PC saying "starting repair" and my PC no longer starts after the restart And it only stays on that repair screen 😭😭😭 help
This method has degraded.
@@NicoKnowsTechSame problem faced. Please suggest any alternative method since this method is degraded.
@@siddharthkaushik4741 boot to safe mode then open a command prompt as administrator then run: SFC /scannow then reboot.
Hey Nico what should I do if everything I download gets corrupted by this rootkit, it’s followed me using the watsonreport….
Do the downloads fail to run?
@@NicoKnowsTech well not necessarily more like it just renames them with a .dll I could try another fresh restart and try to run it quick enough before it catches up? Iv been battling this for a whole week now everyday. Thank you for responding.
I’m going to try and downloading your steps now. Hopefully it doesn’t mess with the scanners… not sure what else to do. Update bios? I’ll try removing the hard drive.then wipe the ssd in bios and try reinstalling everything I think..? As a last last resort. Dunno I feel so lost.
Hi ✌️ im french and i dont have the « driver loaded » Button 😅 its normal ?
They removed the button recently. It's fine.
@@NicoKnowsTech Nice . Thank you
Nothing is being found by them but my pc is still running hot and GPU usage drops frokm 99 to 1 everutime I open task manager.
Check my 1 click fix video.
do i need to uninstall it after finish nico?
Up to you. I do.
@@NicoKnowsTech thank you nice. love all your video.really help me save lots of money!!!!!