Remove Pua.jscoinminer Trojan Virus

This article can help you to remove Pua.jscoinminer Virus. The step by step removal works for every version of Microsoft Windows.

Trojan horses are one of the worst infections out there. They sneak into your device unnoticed and do whatever they want with your system. The newest member of their malicious family is a coin miner named Pua.jscoinminer Trojan. This parasite uses JavaScript to “dig” crypto coins. The Trojan uses both your CPU and GPU to provide accounting services for the coin platform. In exchange for its services, your computer is rewarded with coins. Yet, it is the owner of the Trojan that actually gets the money, not you. This mining process is not very profitable. Yet, if you do not have expenses, it can become a stable income. So, the hackers stole your computer’s resources. They use your device without permission. Pua.jscoinminer Trojan is downloaded and active when you visit certain websites. This type of coin mining is known as drive-by mining and is supposed to be an alternative to the well-known online advertisements. Yet, the websites are supposed to ask you for a permission. Do you remember allowing this process to be executed? Of course, you don’t. The Pua.jscoinminer Trojan does not ask for approval. It steals your computer’s resources. It is also stealing your electricity. The mining process is very heavy. It requires a lot of CPU and GPU power as well as electricity. This usage overheats your hardware and may lead to system crashes, the Blue Screen of Death, and, if you extremely unlucky, to irreversible hardware damage. Keeping the Pua.jscoinminer Trojan on board is a serious risk. You should remove this parasite as soon as possible. We have attached a manual removal guide below this article. Yet, if you prefer automated solutions, you can download a powerful anti-virus app and run a full-system scan. Whatever your decision is, don’t wait. The sooner you clean your machine, the better!

Remove Pua.jscoinminer

How did I get infected with?

The Pua.jscoinminer Trojan is distributed via drive-by downloads, torrents, spam email attachments, software bundling, etc. The key to a secure and infection-free PC is caution. Download your software from reliable sources only. When you start the installation, pay close attention to the fine print. Opt for the Advanced option in the Setup Wizard. You will be surprised to find how many free apps come bundled with additional software. If you use the Standard installation, these extras will be installed without your explicit approval. Under the Advanced installation, however, you will be presented with a list of all additional apps. Examine these tools carefully. Read the Terms and Conditions/EULA or do some online research. Keep in mind that these third-party apps may be malicious. Make sure you know what you are giving your approval to. Also, know that you can deselect all extras and still install the programmed you originally planned to set up. Install only the programs you want, need and trust. The Internet is not a safe place. Don’t simply install programs. Always do your due diligence.

Why is this dangerous?

The Pua.jscoinminer Trojan is using your computer resources without permission. If that is not a reason enough for you to remove the intruder, there are many issues caused by the Trojan that will make you change your decision. This parasite, first and foremost, is running your CPU under high temperatures. If your cooling system is not efficient enough, your system will start to crash frequently. This leads to the dreaded Blue Screen of Death and data loss. What is worse, by doing so, the Trojan shortens your CPU’s life significantly. The coin mining process is only profitable if you don’t use your own resources. What appears to be profit, has caused you something else. In your case — electricity. If Pua.jscoinminer Trojan remains active for too long, it may double, even triple your electricity bill. No, this is not a joke. This is the reality. The hackers are making a mint at your expense.

Manual Pua.jscoinminer Removal Instructions

The Pua.jscoinminer infection is specifically designed to make money to its creators one way or another. The specialists from various antivirus companies like Bitdefender, Kaspersky, Norton, Avast, ESET, etc. advise that there is no harmless virus.

If you perform exactly the steps below you should be able to remove the Pua.jscoinminer infection. Please, follow the procedures in the exact order. Please, consider to print this guide or have another computer at your disposal. You will NOT need any USB sticks or CDs.

STEP 1: Track down Pua.jscoinminer related processes in the computer memory

STEP 2: Locate Pua.jscoinminer startup location

STEP 3: Delete Pua.jscoinminer traces from Chrome, Firefox and Internet Explorer

STEP 4: Undo the damage done by the virus

STEP 1: Track down Pua.jscoinminer related processes in the computer memory

  • Open your Task Manager by pressing CTRL+SHIFT+ESC keys simultaneously
  • Carefully review all processes and stop the suspicious ones.


  • Write down the file location for later reference.

Step 2: Locate Pua.jscoinminer startup location

Reveal Hidden Files

  • Open any folder
  • Click on “Organize” button
  • Choose “Folder and Search Options”
  • Select the “View” tab
  • Select “Show hidden files and folders” option
  • Uncheck “Hide protected operating system files”
  • Click “Apply” and “OK” button

Clean Pua.jscoinminer virus from the windows registry

  • Once the operating system loads press simultaneously the Windows Logo Button and the R key.


  • A dialog box should open. Type “Regedit”


Depending on your OS (x86 or x64) navigate to:

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] or
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] or

  • and delete the display Name: [RANDOM]

delete backgroundcontainer

  • Then open your explorer and navigate to: %appdata% folder and delete the malicious executable.

Clean your HOSTS file to avoid unwanted browser redirection

Navigate to %windir%/system32/Drivers/etc/host

If you are hacked, there will be foreign IPs addresses connected to you at the bottom. Take a look below:


Step 4: Undo the possible damage done by Pua.jscoinminer

This particular Virus may alter your DNS settings.

Attention! this can break your internet connection. Before you change your DNS settings to use Google Public DNS for Pua.jscoinminer, be sure to write down the current server addresses on a piece of paper.

To fix the damage done by the virus you need to do the following.

  • Click the Windows Start button to open the Start Menu, type control panel in the search box and select Control Panel in the results displayed above.
  • go to Network and Internet
  • then Network and Sharing Center
  • then Change Adapter Settings
  • Right-click on your active internet connection and click properties. Under the Networking tab, find Internet Protocol Version 4 (TCP/IPv4). Left click on it and then click on properties. Both options should be automatic! By default it should be set to “Obtain an IP address automatically” and the second one to “Obtain DNS server address automatically!” If they are not just change them, however if you are part of a domain network you should contact your Domain Administrator to set these settings, otherwise the internet connection will break!!!


  • Check your scheduled tasks to make sure the virus will not download itself again.

How to Permanently Remove Pua.jscoinminer Virus (automatic) Removal Guide

Please, have in mind that once you are infected with a single virus, it compromises your whole system or network and let all doors wide open for many other infections. To make sure manual removal is successful, we recommend to use a free scanner of any professional antimalware program to identify possible virus leftovers or temporary files.

Leave a Comment