cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
alisher
alisher
Level 8
Report Inappropriate Content
Message 1 of 3
‎02-02-2018 03:34 PM

WASM\Cryptonight has found

Jump to solution

Hello,

 

Virus Scan had found WASM\Cryptonight on computer. Threat target file path: C:\Users\*\AppData\Local\Google\Chrome\User Data\Default\Cache\*.

 

After that I deleted Chrome and all the related files. Unfortunately, it didn't help.

 

How can I solve this? What is the source of  WASM\Cryptonight?

 

Thanks.

Tags (2)
0 Kudos
Reply
1 Solution

Accepted Solutions
sol
sol
Level 9
Report Inappropriate Content
Message 2 of 3
‎02-02-2018 03:35 PM

Re: WASM\Cryptonight has found

Jump to solution

I am checking the history files on our device to see if I can determine where it may have come from. There are a lot of the crypt threats showing up lately but they are being caught.

Make sure you check any other device/server that might be connected such as share drives. Inspect those devices or run a scan

Make sure to clean all cache and temp files

UPDATE   the device I investigated went out to healthcare sites of legitimate means. There was one situation where someone had accessed their personal Google account so that could have been a source if they had a bad email

I cleaned all cache/temp files on that device. I found no suspicious files or activities. I have not seen the threat alert since.

Reply
2 Replies
sol
sol
Level 9
Report Inappropriate Content
Message 2 of 3
‎02-02-2018 03:35 PM

Re: WASM\Cryptonight has found

Jump to solution

I am checking the history files on our device to see if I can determine where it may have come from. There are a lot of the crypt threats showing up lately but they are being caught.

Make sure you check any other device/server that might be connected such as share drives. Inspect those devices or run a scan

Make sure to clean all cache and temp files

UPDATE   the device I investigated went out to healthcare sites of legitimate means. There was one situation where someone had accessed their personal Google account so that could have been a source if they had a bad email

I cleaned all cache/temp files on that device. I found no suspicious files or activities. I have not seen the threat alert since.

Reply
Dancomputers9
Dancomputers9
Level 7
Report Inappropriate Content
Message 3 of 3
‎07-18-2018 03:12 PM

Re: WASM\Cryptonight has found

Jump to solution

I use Firefox almost exclusively and found both this and Trojan:JS/Miner.A so it can affect more than just Chrome.

0 Kudos
Reply
More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator

    • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community


    Corporate Headquarters
    2821 Mission College Blvd.
    Santa Clara, CA 95054 USA

    Consumer Support   |   Enterprise Support   |   McAfee.com

    Legal   |   Privacy   |   Copyright © 2019 McAfee, LLC