wjview.exde is causing 100% cpu usage in windows 2003 server

Hi,

on one of our windows 2003 servers, we have been getting 100% cpu usage due to wjview.exe when i launched task manager and identified this process.  Heard it is a safe windows file from microsoft but if it uses 100% cpu can i simply disable it or is it a possible virus?
dankyle67Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

XLITSCommented:
Have you done a complete malware scan?  It could be infected so it's worth taking the time to scan it.

Here is some info on wjview.exe:

http://www.processlibrary.com/directory/files/wjview/24519/
dankyle67Author Commented:
yeah i noticed that the sophos antivirus autoupdate had failed and when i tried opening sophos antivirus main window it also failed so will run a malware scan using malwarebytes first and see what it produces, thanks for now.
johnb6767Commented:
Process Explorer
http://live.sysinternals.com/procexp.exe

Double click wjview.exe, and select the Threads Tab, and double click the highest CPU hog, and paste the contents here please...

If it is a legit process, you need to know whats causing the problems......This might help.....

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Why Diversity in Tech Matters

Kesha Williams, certified professional and software developer, explores the imbalance of diversity in the world of technology -- especially when it comes to hiring women. She showcases ways she's making a difference through the Colors of STEM program.

johnb6767Commented:
Also, in the TreeView of Process Explorer, you can see what process started it. Check the File Properties, to see if it is a legitmately signed .EXE.....
dankyle67Author Commented:
Unfortunately, a local user on the console had stopped the process before i could check this.  I am logged into server remotely and didnt even know they did that.  Server is really sluggish now even though cpu usage is only 10% so strong chance it is a virus.  Currently, i am scanning it remotely with sophos using one of the other servers.  Hopefully it catches something.  I've recently used that process explorer for detecting mal/generic -a virus and it worked in identifying the process which was called ofex.exe which is from facebook virus.  Thanks
johnb6767Commented:
What about DPCs and Interupts, those look ok in Process Explorer?
dankyle67Author Commented:
sorry what is DPCs?  Decided to just use spare server to take place of this old server so most likely will disconnect this problem machine from network.  Thanks for all the help anyway.
johnb6767Commented:
Deferred Procedure Call
http://en.wikipedia.org/wiki/Deferred_Procedure_Call

One way to resolve it at least...  :)
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Vulnerabilities

From novice to tech pro — start learning today.