![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
265 questions
Hello
Thank you for posting in Microsoft Community forum!
This is a vicious Trojan infection that can slow down your PC performance, corrupt your routine applications, hijack your web browsers, and even steal your computer privacy. Here are some steps you can take to remove it:
End malicious processes: Open the Windows Task Manager by pressing Ctrl + Shift + Esc keys at the same time. Find and end any malicious processes related to Win64/DisguisedXMRigMiner.
Uninstall malicious programs: Press Win + R keys together to open the Run screen. Type appwiz.cpl in the Run window and click the OK button. In Control Panel, click Uninstall a program under Programs. Look for any malicious app related to Win64/DisguisedXMRigMiner, right-click on it and click Uninstall.
Remove malicious files: Delete any files created by Win64/DisguisedXMRigMiner or related malware.
Reset Web Browsers: Remove any browser extensions installed by Win64/DisguisedXMRigMiner and related malware.
Use an Anti-Malware tool: Download and install an anti-malware tool like GridinSoft Anti-Malware, perform a “Standard scan”, move all detected items to quarantine, reset browser settings, and restart your computer.
Please note that this virus is associated with the remote code execution vulnerability CVE-2021-44228 (also referred to as “Log4Shell”) in the Log4j component of Apache. Make sure to update the Log4j component to log4j-2.17.0 or ensure that the device is set to start with log4j2.formatMsgNoLookups set to True.
Remember, it’s important to maintain regular backups of your data and keep your system updated.