At around 1:40 my kaspersky detected deleted some files (I was in the middle of the game), the things it detected were
C:\Users\heise\AppData\Roaming\d_temp\service.exe
C:\Users\heise\AppData\Roaming\Valve Software\service.tdi
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUAC (Apparently a Chrome service whose real name is GoogleUpdateTaskMachineUA, I don’t have Chrome installed)
It also deleted some Registry Entries belonging to simply game.exe (not belonging to the game I played)
I am at a loss where it could come from or if it was just a false positive, help would be appreciated.
EDIT: Kaspersky found another file, a xmrig-cuda.dll, apparently belonging to a crypto miner?
Best answer by Berny
- They were in Quarantine, Service.exe and Service.tdi that was, but I deleted them, don’t know if that was a mistake
Also, please run another Kaspersky scan with following option : https://help.kaspersky.com/KAV/2019/de-de/68189.htm
“Erkennung von anderen Programmen, mit denen ein Angreifer den Computer oder die Benutzerdaten beschädigen kann“