Solved

CPU running high - suspect spyware

Posted on 2004-10-06
5
145 Views
Last Modified: 2013-12-04
I have been trying to clean up a PC that had some spyware on it. I have run Spybot seek and destroy, Ad-Aware and Giant AntiSpyware. They all found problems and fixed them but even though the system appears clear the processor is constantly running at aroung 60-70% and the "system idle process" and the "system" process are fluctuating around the 40-50% mark. I cannot see any other apparent rogue processes and Hijack this doesn't appear to show up anything although I am not expert at reading the logs. Any ideas please ?
0
Comment
Question by:Milkybar-kid
  • 3
5 Comments
 
LVL 8

Expert Comment

by:Jupiler78
ID: 12235322
Hi Milkybar-kid,

You could do Start->Run-> msconfig.exe
Then go to the last tab, and check which processes run at starting up your computer? Disable the things you don't reaaly recognize and run them thru a check on google or something

Cheers!
0
 
LVL 16

Expert Comment

by:InteraX
ID: 12235351
Hi Milkybar-kid,

Have you checked you memory with memtest86 or similar?

Memtest86
http://www.memtest86.com/
Memtest86+
http://www.memtest.org/

Memtest86+ is a memory testing app based on memtest86 that has more frequent updates etc.

Good Luck
;-)
0
 
LVL 16

Expert Comment

by:InteraX
ID: 12235362
Milkybar-kid,

Sorry. Wrong Q.
;-)
0
 
LVL 16

Accepted Solution

by:
InteraX earned 250 total points
ID: 12235376
Milkybar-kid,

Also, you can try checking to see if your PC is making any connections to unexpected systems whilst on the net.
open a command line and type 'netstat -a -o'
You can filter the results by protocol by adding  '-p <prot>' to the end where prot is tcp for tcp connections and udp for udp connections.

Once you have the pid for any processes you can type 'tasklist  /svc' to find out what the owning processes contain. The svchost.exe process is a placeholder for dll's and the like and this will tell you which dll's are loaded into that process.

Good luck.
;-)
0
 
LVL 1

Author Comment

by:Milkybar-kid
ID: 12698112
I never did solve this but the input was useful so thanks.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In today's information driven age, entrepreneurs have so many great tools and options at their disposal to help turn good ideas into a thriving business. With cloud-based online services, such as Amazon's Web Services (AWS) or Microsoft's Azure, bus…
No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

947 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now