Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Connect to network and cpu goes to 100


  • This topic is locked This topic is locked
4 replies to this topic

#1 jisboss

jisboss

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:46 AM

Posted 10 March 2014 - 05:21 PM

good afternoon everyone.  I have a laptop (windows 7 home x64bit) that when offline works perfectly fine.  when i connect to the network a minute later an instance of explorer.exe starts and my cpu goes to 100 and stays there.  I did notice that when this happens if i shutdown i can see of flash of something that is running, but not visible.  So far i have run many removal tools such as:

adwcleaner

eset online scanner

ccleaner

f-secure online scanner

windows defender offline

security essentials.

Many many things have been removed, but the problem persists.

 

i did run combofix last night not knowing i probably shouldn't have.

i've tried uninstalling combofix with no luck

i did combofix / uninstall

    all that did was open an explorer window

i also tried renaming the file to uninstall and running it.

   that just ran it like normal

 

 

any help is appreciated.

 

 

thanks

jason


Edited by jisboss, 10 March 2014 - 05:21 PM.


BC AdBot (Login to Remove)

 


#2 jisboss

jisboss
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:46 AM

Posted 10 March 2014 - 06:41 PM

I tried getting the dds.txt, but it won't run.  all i have is the attach.txt



#3 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:46 PM

Posted 11 March 2014 - 02:50 AM

Hello Jason,

can you please post all the logs that show what you already have deleted?
And also run the following scans:


Step 1

Please download TDSSKiller and save it to your Desktop.

  • Start tdsskiller.exe with administrator privileges.
  • Accept the EULA and the KSN Statement.
  • Click on Change parameters.
  • Make sure that all available options (except "Loaded modules") are checked and click OK.
  • Click on Start scan.
  • If any threats are found don't delete them but choose the Skip option for all of them.
  • Click on Report to open the log file. (It is also saved at C:\TDSSKiller.<version_date_time>_log.txt).
    Copy and paste its contents in your next reply.

 

 

 

Step 2

Please download Farbar Recovery Scan Tool and save it to your Desktop.

  • Start FRST with administator privileges.
  • Make sure the option Addition.txt is checked and press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
  • Please copy and paste these logs in your next reply.


#4 jisboss

jisboss
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:46 AM

Posted 11 March 2014 - 09:41 AM

aharonov, thanks for the reply.  you can close the thread.

after running a linux live cd and doing a virus scan I've decided that i'm going to wipe the PC and start from scratch.

there are just so many infected files on the machine i would feel better giving it back completely clean.

 

thanks again

jason



#5 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:46 PM

Posted 11 March 2014 - 10:29 AM

This is not a bad idea for sure. Thanks for letting me know.
All the best.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users