DDOS.EXE running on server resulting in excess CPU usage

Hi there,

I have a Windows 2003 SP2 server in a small organisation running as a DC and with Exchange 2003 SP2 installed.   I understand that this is not the ideal setup but as the office only has 5 people in it it does the job nicely.  

Recently users have experienced slow response from the server from time to time, and upon investigating this I have noticed a process in Task Manager called DDOS.EXE running that takes up a majority of the CPU utilisation.  I can kill the process but it tends to return.

Can anyone please let me know what this process is, whether it is a virus/spyware, and if so how I go about removing it?


Who is Participating?
KCTSConnect With a Mentor Commented:
its malware - use something like superantispyware http://www.superantispyware.com/
Is likely a trojan...if the antispyware doens't clean it, you'll need to run a full antivirus scan.

http://www.kaspersky.com/virusscanner  <-- Free online scan via IE which will check for you. THere is also links to a free 30 day trial of Kaspersky if you don't ahve exisitng antivirus.
peterkennedyAuthor Commented:
This removed the offending piece of Malware without any problems when the other Spyware program I was using didn't even find it.  Thanks!
All Courses

From novice to tech pro — start learning today.