Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Redirect and high CPU Problem


  • Please log in to reply
11 replies to this topic

#1 greypivot

greypivot

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:21 PM

Posted 30 June 2010 - 11:11 PM

Hi

I was supposed to install some free antivirus for my cousin computer when i realised that he has got the google redirect problem. Also, i realised that when there is no processes that is running, the CPU usage is often at a high rate (e.g 30% or higher) which i suspect to be the doings of a virus.

I have tried to scan his computer multiple times with Avast or Malwarebytes but to no avail.

I hope that someone here could help me out with problem. I would really appreciate any help.

Thanks
greypivot

Edited by Budapest, 30 June 2010 - 11:12 PM.
Moved from Virus, Trojan, Spyware, and Malware Removal Logs ~BP


BC AdBot (Login to Remove)

 


#2 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:21 AM

Posted 30 June 2010 - 11:13 PM

Try this:

http://www.bleepingcomputer.com/virus-remo...sing-tdsskiller
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#3 greypivot

greypivot
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:21 PM

Posted 30 June 2010 - 11:36 PM

Hi budapest

It seems that the google redirect problem has been resolved however the computer still has a moderate CPU Usage (5~20%) present even when there is no program running. Is this normal?

greypivot

#4 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:21 AM

Posted 30 June 2010 - 11:45 PM

What process is using the CPU?
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#5 greypivot

greypivot
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:21 PM

Posted 30 June 2010 - 11:55 PM

One of the program is jqs.exe. However i wasnt able to identify the rest as the CPU doesn't add up. It's like firefox.exe uses 03 CPU and taskmgr.exe uses about 02 CPU. However the CPU usage located at the bottom bar of task manager is about ~10%. Would this be considered okay?

One question, the numbers under the CPU column found in the task manager, do they represent the % of CPU usage of each program? or do they represent other units?

Thanks =DD
grey pivot

#6 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:21 AM

Posted 30 June 2010 - 11:59 PM

Funnily enough I had a problem with jqs.exe on my computer this morning. It is the Java Quick Start process and can be ended with no problem.

My understanding is that the CPU is the percentage.
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#7 greypivot

greypivot
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:21 PM

Posted 01 July 2010 - 12:16 AM

Ok, hopefully the computer would be able to function properly from now on.

Btw, i just realised that during the process of TDSSkiller, i forgot to disable the avast antivirus, would there be any interference?

Thanks!!
greypivot

#8 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:21 AM

Posted 01 July 2010 - 12:24 AM

Did TDSSkiller delete anything?
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#9 greypivot

greypivot
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:21 PM

Posted 01 July 2010 - 12:34 AM

Yep it deleted one thing

I shall just copy the only one part of the log?

21:18:35:203 3452 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\pcmcia.sys. Real md5: 9392d9146998e20638472118534d06ef, Fake md5: 82a087207decec8456fbe8537947d579
21:18:35:203 3452 File "C:\WINDOWS\system32\DRIVERS\pcmcia.sys" infected by TDSS rootkit ... 21:18:42:359 3452 Backup copy found, using it..
21:18:42:484 3452 will be cured on next reboot


Thanks
greypivot

#10 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:21 AM

Posted 01 July 2010 - 12:51 AM

Normally it only deletes one thing so I don't think Avast had any effect.

Having said that, I cannot see any harm in running TDSSkiller again.
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#11 greypivot

greypivot
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:21 PM

Posted 01 July 2010 - 01:11 AM

Yep, i reran it once again, it came out clean.

I think the computer is running great now...Thanks for your help, i really appreciate it.

I have no more further questions.

Thank you very much for your patience and help =D
greypivot

#12 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:21 AM

Posted 01 July 2010 - 01:12 AM

:thumbsup:
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users