Sneakiest Malware I've seen Yet...

does it show up in process explorer?

i scan running processes often...
 
Last edited:
does it show up in process explorer?

i scan running processes often...

Yes, it shows up as "steam.exe"...which is designed to make you overlook it...it will not show up under an AV scanner, btw.

I discovered the problem only after my cpu & gpu kept ramping up to full power and showing a 92% load...when I was web browsing...! I could hear the fans ramping up and that got me to check my GPU readings...and then as an afterthought I looked at my cpu and found it was doing the same.

First thing I thought about is that it had to be a driver issue with Win10 TP--which it wasn't...! If anyone else runs across this problem they'd be tempted to think it was a driver problem, just like I did--which is why I posted it here.

If you don't hear your fans ramping up and your gpu doesn't "stick" at 90%+ load when it isn't supposed to--then you are blessedly free of this thing...;)
 
Just curious as to why this is in Catalyst Drivers?

And, just how does it get on one's system?

I posted the initial thread here because I thought at the time that it was a Catalyst driver problem relating to Win10TP; took me a couple of days to determine that it wasn't. I think that anyone else seeing these symptoms might well think it's a driver issue like I did, even though it's not. Hence they'd likely check out a driver forum first to see if anyone else might have seen something similar, just like I did. If I had seen that Steam thread posted here it would have saved me *a lot* of work chasing down a driver problem that didn't exist--hopefully, someone else may benefit from the information.

As to how I got it I have *no earthly clue*...! But now that I know what it is and what it does I won't be defenseless should I happen to contract this thing again. My AV scanners don't pick it up, but fortunately it is easily found and removed manually *if* you know what it is you're dealing with.
 
understood, real steam is signed so i would see it in process explorer as an unsigned process...

Ive had other processes show up in the past and squished them...
 
Spambot quoting excellent signature of a member that didn't even post in this thread. I bow while I ban. :up:
 
what did i miss?

it seems totally out of context...

edit: nm, i figured it out. the comment made is someones sig.
 
Last edited:
That make me glad i run the crap that is steam only when it's absolutely necessary. I then quit it right away
 
That make me glad i run the crap that is steam only when it's absolutely necessary. I then quit it right away

Me, too... In thinking back on it, I didn't notice any symptoms until after I'd installed the Win10TP from the .iso--which is really strange in itself--and which is why I thought it *had* to be driver-related in the beginning. 14.9's are fine, though, even with build 9860 so far...
 
Back
Top