DDOS.EXE running on server resulting in excess CPU usage

Hi there,

I have a Windows 2003 SP2 server in a small organisation running as a DC and with Exchange 2003 SP2 installed.   I understand that this is not the ideal setup but as the office only has 5 people in it it does the job nicely.  

Recently users have experienced slow response from the server from time to time, and upon investigating this I have noticed a process in Task Manager called DDOS.EXE running that takes up a majority of the CPU utilisation.  I can kill the process but it tends to return.

Can anyone please let me know what this process is, whether it is a virus/spyware, and if so how I go about removing it?

Thanks!

Pete
LVL 1
peterkennedyAsked:
Who is Participating?
 
KCTSConnect With a Mentor Commented:
its malware - use something like superantispyware http://www.superantispyware.com/
0
 
Burns2007Commented:
Is likely a trojan...if the antispyware doens't clean it, you'll need to run a full antivirus scan.
http://www.sophos.com/security/analyses/trojddosn.html

http://www.kaspersky.com/virusscanner  <-- Free online scan via IE which will check for you. THere is also links to a free 30 day trial of Kaspersky if you don't ahve exisitng antivirus.
0
 
peterkennedyAuthor Commented:
This removed the offending piece of Malware without any problems when the other Spyware program I was using didn't even find it.  Thanks!
0
All Courses

From novice to tech pro — start learning today.