Chrome Multiple Processing

freese44

New Member
Jun 10, 2021
5
So I have tried all steps laid out on this page for remvoing a Powelik Chrome based Virus. Currently any time I open a Chrome Tab it shows on Task Manager that I hav 8-16 tabs open and my CPU is bottleneck. Never had any issues with my 2700x until I noticed my task manager last night. I have restored chrome, deleted extensions, ran malwarebytes 6+ times. I was able to quarentine items and delete them twice but it is still occuring. I have used Emisoft, ESET, HITMAN, and MB to no avail. Cannot use my DAW programs with my CPU being used by chrome so much. Any further suggestions? ESET said I was totaly clean?
 
  • Like
Reactions: venustus and Nevi

struppigel

Moderator
Verified
Staff member
Apr 9, 2020
398
Hello freese44

I am Karsten and will help you with malware-related problems.

Please familiarize yourself with the following ground rules before you start.
  • Read my instructions thoroughly, carry out each step in the given order.
  • Do not make any changes to your system, or run any tools other than those I provided. Do not delete, fix, uninstall, or install anything unless I tell you to.
  • If you are unsure about anything or if you encounter any problems, please stop and inform me about it.
  • Stick with me until I tell you that your computer is clean. Absence of symptoms does not mean that your computer is free of malware.
  • Back up important files before we start.
  • Note: On weekends I might be slow to reply
-------------------------------------------------------------------

Farbar Recovery Scan Tool (FRST) Scan
  • Please download Farbar Recovery Scan Tool and save the file to your Desktop. (Note: choose the right version, 64 or 32 bit, for your operating system, only one will run)
  • Double-click FRST64.exe to run the programme.
  • Click Yes to the disclaimer.
  • Ensure the Addition.txt box is checked.
  • Click the Scan button and let the programme run.
  • Upon completion, click OK, then OK on the Addition.txt pop up screen.
  • Two logs (FRST.txt & Addition.txt) will now be open on your Desktop. Attach both logs in your next reply.
 

freese44

New Member
Jun 10, 2021
5
Hey there Karsten,
Thanks you for taking the time to respond and assist.
FYI this is occurring when I run MS Edge as well. One tab shows as (10) on TM and is using 6-40% cpu all over the place.
Let me know any other information you might need.
 

Attachments

  • Addition.txt
    103.3 KB · Views: 7
  • FRST.txt
    50 KB · Views: 7

freese44

New Member
Jun 10, 2021
5
example here I have no extensions at all 3 tabs open in chrome..... 1 quizlet.com and 2 tabs of malwartips.com......... recently reset chrome uninstalled and reinstalled and then followed the steps I originally found on this website.
 

Attachments

  • chrome hell.png
    chrome hell.png
    121.5 KB · Views: 6
  • Chrome TM chrome hell.png
    Chrome TM chrome hell.png
    137.4 KB · Views: 6

struppigel

Moderator
Verified
Staff member
Apr 9, 2020
398
1. Farbar Recovery Scan Tool (FRST) Script
  • Download the attached fixlist.txt
  • Important: The file must be saved in the same location as FRST64.exe.
NOTICE: This script is intended for use on this particular machine. Do not use this script on any other machine; doing so may cause damage to your Operating System.
  • Double-click FRST64.exe to run the programme.
  • Click Fix.
  • A log (Fixlog.txt) will open on your desktop. Attach the log to your next reply.
 

Attachments

  • fixlist.txt
    2.5 KB · Views: 2

freese44

New Member
Jun 10, 2021
5
So far what have we done to my pc? I am by no means in IT but did build this system and I would love to know for my own knowledge what we have been conducting.
Let me know a brief description if possible. Here are the fix logs, I made sure to save it where frst64.exe was, as of rn 1 Chrome tab shows (7) processes but not nearly the same ram usage ...so it looks like we are making headway.
 

Attachments

  • Fixlog.txt
    11.7 KB · Views: 2
  • after fix.png
    after fix.png
    36.1 KB · Views: 2
  • Like
Reactions: Gandalf_The_Grey

struppigel

Moderator
Verified
Staff member
Apr 9, 2020
398
The fix removed scheduled tasks that autorun the malware as well as malware files. Let's see if it created more of these in the meantime.

Re-Scan with Farbar Recovery Scan Tool (FRST)
  • Double-Click FRST64.exe to run the programme.
  • Ensure the Addition.txt box is checked.
  • Click the Scan button and let the programme run.
  • Upon completion, click OK, then OK on the Addition.txt pop up screen.
  • Two logs (FRST.txt & Addition.txt) will now be open on your Desktop. Attach the logs in your next reply.
 
  • Like
Reactions: Gandalf_The_Grey

struppigel

Moderator
Verified
Staff member
Apr 9, 2020
398
It's not in the schedulded tasks anymore.


Step 1: Reinstall Chrome, reset Edge
Please turn off syncing in Chrome if it was enabled:
  • type chrome://settings/people into the URL box, press enter
  • under the heading People, click Turn Off
  • click again Turn Off
Now please reset Edge and uninstall Chrome
Reboot.
Re-install Chrome.

Step 2: RogueKiller AntiMalware
  • Please download Roguekiller AntiMalware
  • Double-click RogueKiller64.exe to run the programme.
  • Accept the terms and conditions.
  • Click on Scan.
  • You will be presented with 3 Scan options. Below Standard Scan click on Start.
  • Wait for the scan to finish.
  • Click on Results and Report
  • On the lower right corner, click on Open and Text file.
  • Notepad will open with a report of your file. Please copy the contents and paste in your next reply.

Let me know if anything is improved
 
Top