Computer and laptop users often encounter problems. One of the potential threats is hidden miners. Such viruses use the processing power of hardware to mine cryptocurrency. They are detected after downloading harmless programs – for example, games, drivers and even applications in Google Play. Some users of torrent trackers found miners in repacks from Mechanics. To protect your device, you need to apply special services.
The whole truth about miners in repacks from Mechanics
In 2017, the cryptocurrency market reached an unprecedented level. This led to a boom in mining. Mining digital currencies is an energy-consuming occupation, which requires powerful equipment and large investments. But criminals found a way to generate a steady stream of income without investment. They distributed infected software. Viruses got into the computer of an unsuspecting person and started mining coins at the expense of the computing power of the equipment.
Hidden miners were found in several game repacks. For example, from Qoob and R.G. GameWorks. Subsequently, the manufacturers were removed from popular Russian-language torrent sites and deprived of the ability to publish files there. At the same time in the gaming community began to spread rumors that R.G. Mechanics embed miners in repacks. However, viruses were found only in archives downloaded from third-party sites. Probably, fraudsters sewed cryptominers into the original repacks and uploaded modified files to torrent trackers.
What is secret mining
The purpose of such a program is to get money for unauthorized use of other people’s computing power. Hidden cryptominers are published under the guise of pirated versions of licensed products. They are found on clone sites, torrent trackers, platforms with movies or music. There are several types of cryptominers.
| Type | Description | Detection tool |
|---|---|---|
| Cryptojacking | Attackers inject JavaScript code into websites and use visitors’ computing power to mine cryptocurrencies. | NoCoin, MinerBlock or Malwarebytes browser extensions |
| Disguised as programs or system processes | Such viruses are difficult to see in Task Manager. They masquerade as a service or a familiar application. | AnVir Task Manager, Process Explorer |
| Slow miner | Virus software consumes system resources moderately. If a heavy process is running, the cryptominer stops working so as not to slow down the OS and make it easier to detect. | Process Explorer, AIDA64 |
| Rootkit | This type is not found by either Task Manager or antivirus. However, a rootkit miner needs the Internet to function. It is detected by network activity. | TDSSKiller, COMODO |
Hidden threats can be identified by a number of characteristic signs:
5020 $
Bonus til nye brugere!
ByBit giver bekvemme og sikre betingelser for handel med kryptovaluta, tilbyder lave provisioner, højt likviditetsniveau og moderne værktøjer til markedsanalyse. Den understøtter spot- og gearet handel og hjælper begyndere og professionelle handlere med en intuitiv grænseflade og vejledninger.
Optjen en 100 $-bonus
for nye brugere!
Den største kryptobørs, hvor du hurtigt og sikkert kan starte din rejse i kryptovalutaernes verden. Platformen tilbyder hundredvis af populære aktiver, lave provisioner og avancerede værktøjer til handel og investering. Nem registrering, høj transaktionshastighed og pålidelig beskyttelse af midler gør Binance til et godt valg for handlere på alle niveauer!
- Computer performance slows down, applications and Internet pages take a long time to open.
- Hardware gets very hot.
- A message about memory shortage constantly appears in the browser.
- Task Manager shows more than 50% CPU utilization.
Dangers of downloading
If mining takes place for a long time, it can take up to 100% of system resources. This makes the computer unstable and almost unusable. In addition, high load leads to overheating of the device.
To protect yourself from hidden mining, you need to observe the following security measures:
- Use antivirus, browser extensions.
- Update the system and important software.
- Do not visit pages without an SSL certificate. The addresses of secure sites begin with https.
- When downloading the application, choose manual, advanced or custom installation method and disable unnecessary options.
- Create a separate environment for downloading questionable archives.
What is a repack
A repack is a compressed or “cracked” program. The pirated version is identical to the licensed version, but it does not have unnecessary files or can be used for free. For example, games remove voiceovers in different languages, convert music and audio recordings to a different format.
👀 How does a miner get into a computer?
There are many options: downloading a file from an unreliable source, infected email attachments, malicious online ads, social engineering, fake program updates.
💻 Do you have to format your device to get rid of the virus?
Radical measures are not always necessary. Often such virus miners are removed without formatting.
💰 Is it possible for attackers to earn something from one computer?
They spread the threat en masse. Cryptominer runs on a large number of devices at the same time. An Avast report from 2021 states that scammers have made at least $2 million this way.
💡 How popular are virus miners?
According to a ReasonLabs report, 58.4% of all detected trojans for 2021 are cryptojacking.
Is there an error in the text? Highlight it with your mouse and press Ctrl + Enter
Author: Saifedean Ammous, an expert in cryptocurrency economics.
Danish 
English (United States) 
English (UK) 
Arabic 
Bulgarian 
Hungarian 
Greek 
Indonesian 
Spanish 
Italian 
Chinese 
Korean 
Latvian 
Lithuanian 
German 
Dutch 
Norwegian 
Polish 
Portuguese (Portugal) 
Portuguese (Brazil) 
Romanian 
Slovak 
Slovenian 
Turkish 
Ukrainian 
Finnish 
French 
Czech 
Swedish 
Estonian 
Japanese