peterkennedy
asked on
DDOS.EXE running on server resulting in excess CPU usage
Hi there,
I have a Windows 2003 SP2 server in a small organisation running as a DC and with Exchange 2003 SP2 installed. I understand that this is not the ideal setup but as the office only has 5 people in it it does the job nicely.
Recently users have experienced slow response from the server from time to time, and upon investigating this I have noticed a process in Task Manager called DDOS.EXE running that takes up a majority of the CPU utilisation. I can kill the process but it tends to return.
Can anyone please let me know what this process is, whether it is a virus/spyware, and if so how I go about removing it?
Thanks!
Pete
I have a Windows 2003 SP2 server in a small organisation running as a DC and with Exchange 2003 SP2 installed. I understand that this is not the ideal setup but as the office only has 5 people in it it does the job nicely.
Recently users have experienced slow response from the server from time to time, and upon investigating this I have noticed a process in Task Manager called DDOS.EXE running that takes up a majority of the CPU utilisation. I can kill the process but it tends to return.
Can anyone please let me know what this process is, whether it is a virus/spyware, and if so how I go about removing it?
Thanks!
Pete
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
This removed the offending piece of Malware without any problems when the other Spyware program I was using didn't even find it. Thanks!
http://www.sophos.com/security/analyses/trojddosn.html
http://www.kaspersky.com/virusscanner <-- Free online scan via IE which will check for you. THere is also links to a free 30 day trial of Kaspersky if you don't ahve exisitng antivirus.