Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

CFD.exe & CPU Usage


  • Please log in to reply
16 replies to this topic

#1 Jarod1

Jarod1

  • Members
  • 47 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 09 March 2014 - 09:45 PM

I noticed a process in my task manager lately that's been consuming alot of CPU but don't know if I should end the process or not because it warns that it may harm my comptuer. I looked it up on bleeping computer and got:

 

http://www.bleepingcomputer.com/startups/CFD.exe-777.html

 

I don't know why but it hovers around 80-99 CPU in the processes tab. I assume this is what's causing the internet and programs like games that require it to lag. What should I do about this?

 

 



BC AdBot (Login to Remove)

 


#2 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 09 March 2014 - 09:49 PM

Download freeware Anvir Task manager - http://www.anvir.com/download.htm

Install it or use portable version.Go to tab - Processes.Locate this process and with right click choose check online.A page of Virus Total will appear.Post the link of results.


Edited by Alex&Vanko, 09 March 2014 - 09:50 PM.


#3 Condobloke

Condobloke

    Outback Aussie @ 54.2101° N, 0.2906° W


  • Members
  • 5,812 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:30 AM

Posted 09 March 2014 - 09:50 PM

Remove it......completely.


Condobloke ...Outback Australian  

 

fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

 

Microsoft gives you Windows, Linux gives you the whole house...

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

#4 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 09 March 2014 - 09:57 PM

I also want to remove it,but first to check it.



#5 Condobloke

Condobloke

    Outback Aussie @ 54.2101° N, 0.2906° W


  • Members
  • 5,812 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:30 AM

Posted 09 March 2014 - 10:01 PM

Name: CFD Filename: CFD.exe Command: C:\Program Files\BroadJump\Client Foundation\CFD.exe

Description:

BroadJump Client Foundation. Broadband troubleshooting software installed by various companies. Not required and you can remove it via Add/Remove programs.
File Location: C:\Program Files\BroadJump\Client Foundation\CFD.exe Startup Type: This startup entry is started automatically from a Run, RunOnce, RunServices, or RunServicesOnce entry in the registry.

Condobloke ...Outback Australian  

 

fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

 

Microsoft gives you Windows, Linux gives you the whole house...

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

#6 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 09 March 2014 - 10:11 PM

Note: Any malware can be named anything


#7 Jarod1

Jarod1
  • Topic Starter

  • Members
  • 47 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 09 March 2014 - 10:50 PM

https://www.virustotal.com/en/file/a3854790868245a57fc3d7c42f47a063f6ec224320eb990f1c7a8945c027c329/analysis/



#8 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 09 March 2014 - 11:04 PM

Ok.It is not serious.Uninstall it from add/remove programs.Download Dr.Web - http://www.freedrweb.com/download+cureit/?nc=t&lng=en

Start the application.Choose objects to scan.Set ticks everywhere including your drives/C,D,E/.And start to scan.

Ashampoo_Snap_2014.02.26_01h38m36s_001_.



#9 Jarod1

Jarod1
  • Topic Starter

  • Members
  • 47 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 11 March 2014 - 09:00 PM

I finished it. Using my laptop right now. It found some things like:

 

1.Object - A0013753.exe, Threat - Adware.Conduit.6, Action - Move        
Path - C:\System Volume Information\_restore{482EFD7C-8F82-43C4-B2C9-342BCC241213}\RP44\A0013753.exe        

2.Object - A0013755.exe, Threat - Adware.Conduit.38, Action - Move
Path - C:\System Volume Information\_restore{482EFD7C-8F82-43C4-B2C9-342BCC241213}\RP44\A0013755.exe

3.Object - A0014808.exe , Threat - Adware.Downware.2189, Action - Move
Path - C:\System Volume Information\_restore{482EFD7C-8F82-43C4-B2C9-342BCC241213}\RP44\A0014808.exe

4.Object - A0020044.exe , Threat - Adware.Cfd, Action - Move
Path - C:\System Volume Information\_restore{482EFD7C-8F82-43C4-B2C9-342BCC241213}\RP44\A0020044.exe

5.Object - A0020069.exe , Threat - Adware.Cfd, Action - Move
Path - C:\System Volume Information\_restore{482EFD7C-8F82-43C4-B2C9-342BCC241213}\RP44\A0020069.exe

6.Object - Setup.exe, Threat - Trojan.MulDrop4.430313, Action - Cure
Path - C:\DELL\drivers\R78727\WinXP\Setup.exe

7.Object - InstallHelper.exe, Threat - Probably MULDROP.Trojan    Move, Action - Move
Path - C:\Program Files\Common Files\Motive\ InstallHelper.exe

 

 

For the ones that say move, I shouldn't select delete? Just leave it as move then hit Neutralize?


Edited by Jarod1, 11 March 2014 - 09:15 PM.


#10 hamluis

hamluis

    Moderator


  • Moderator
  • 55,554 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:11:30 AM

Posted 12 March 2014 - 08:57 AM

Conduit is a malware item and it's a good idea to move this topic to Am I Infected forum for a check, considering the results of your scan.  Moved to AII.

 

Louis



#11 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 12 March 2014 - 09:48 AM

6.Object - Setup.exe, Threat - Trojan.MulDrop4.430313, Action - Cure
Path - C:\DELL\drivers\R78727\WinXP\Setup.exe

This one will be cure it/healed/,anothers will be deleted.Take proper action,what Dr.Web has decided.After that say if you have problems.



#12 Jarod1

Jarod1
  • Topic Starter

  • Members
  • 47 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 12 March 2014 - 10:53 AM

I left everything like it was already set and hit neutralize. The computer seems fine, I have no pop-ups or anything. I tried to find the files using the paths and even went to the Doctor Web folder but all that as there was the log. So I guess the files have been quarantined somewhere?


Edited by Jarod1, 12 March 2014 - 10:54 AM.


#13 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 12 March 2014 - 11:16 AM

No they were deleted except this one,which was disinfected.Ok download AdwCleaner - http://www.bleepingcomputer.com/download/adwcleaner/

Start the application.Click Scan button.It will be short.After is done click Clean button.The application will ask for reboot.Do it and after restart a log will appear to your desktop.Save and attach it here.


Edited by Alex&Vanko, 12 March 2014 - 11:17 AM.


#14 Jarod1

Jarod1
  • Topic Starter

  • Members
  • 47 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 12 March 2014 - 01:21 PM

# AdwCleaner v3.021 - Report created 12/03/2014 at 13:16:26
# Updated 10/03/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Jay - JAY-777
# Running from : C:\Documents and Settings\Jay\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v27.0.1 (en-US)

[ File : C:\Documents and Settings\Jay\Application Data\Mozilla\Firefox\Profiles\9qt35suj.default-1393025895734\prefs.js ]

Line Deleted : user_pref("extensions.fvd_single.surfcanyon.ramp.start_time", "1394007845463");

[ File : C:\Documents and Settings\Visitor\Application Data\Mozilla\Firefox\Profiles\nbklzpwp.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [1024 octets] - [12/03/2014 13:15:19]
AdwCleaner[S0].txt - [949 octets] - [12/03/2014 13:16:26]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1008 octets] ##########
 



#15 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 12 March 2014 - 01:27 PM

Start AdwCleaner and click uninstall.It will disappear.I think everything is ok.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users