Powershell.exe run with High CPU Usage and Memory

Below Script will run and remove the Powershell.exe Malware from the Machine

$logFile = “c:\removeMalware.txt”
Get-WMIObject -Namespace root\Subscription -Class __EventFilter -filter “Name= ‘SCM Event Logs Filter'” |remove-WMIObject  -Verbose
Get-WMIObject -Namespace root\Subscription -Class CommandLineEventConsumer -Filter “Name=’SCM Event Logs Filter'” | Remove-WMIObject -Verbose
Get-WMIObject -Namespace root\Subscription -Class __FilterToConsumerBinding -Filter “__Path LIKE ‘%SCM Event Logs Consumer%'” | RemovE-WMIObject -Verbose
Get-WMIObject -Namespace root\Subscription -Class  ActiveScriptEventConsumer -Filter “Name=’SCM Event Logs Consumer'” | Remove-WMIObject -Verbose
Get-WMIObject -Namespace root\Subscription -Class CommandLineEventConsumer -Filter “Name=’SCM Event Logs Consumer'” | Remove-WMIObject -Verbose
Get-WmiObject -Namespace root\Default -List | where {$_.Name -eq ‘Office_Updater’} | Remove-WmiObject -Verbose
Add-Content $logFile “Malware Removal Script Ran”

PowerShell Scripts

Leave a Reply

Your email address will not be published.