• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3862
  • Last Modified:

conhost.exe CPU is almost 99%

My computer is very slow. I look at the Processes running and I see that conhost.exe is running at96=99% of the CPU. . what is? Malware?  Virus? Using Windows XP with Outlook 2010 running.  . .
0
Starquest321
Asked:
Starquest321
  • 3
  • 2
  • 2
  • +3
5 Solutions
 
burrcmCommented:
conhost is a process introduced in Vista and Win7. In XP it is likely a virus/trojan. Search for the executable file. If it is anywhere but system32 it is definitely a bug. Give Malwarebytes a run.

http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?part=dl-10804572&subj=dl&tag=button

Chris B
0
 
burrcmCommented:
Notwithstanding the uninformative and misdirected copy and paste above, conhost.exe is not part of XP and should be dealt with accordingly.

The use of a registry cleaner is almost never a good idea. Most do not do what is advertised and generally will make any problem worse.

Chris B
0
 
IanThCommented:
malware :
http://en.wikipedia.org/wiki/Malware

I have seen virus and malware / trogens appearing more and more in the last 12 months
0
Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

 
Dr. KlahnPrincipal Software EngineerCommented:
Recommend you download a copy of Microsoft Autoruns and run it on the afflicted system.  This will tell you where the offending program is located, how it is being started, and allow you to disable it from being run at startup.
0
 
JonveeCommented:
The symptom as you have described it is almost certainly due to Malware, as already stated above, and Malwarebytes(MBAM) may well resolve it.
Run MBAM in normal mode.

Tutorial, if required:
http://www.bleepingcomputer.com/forums/lofiversion/index.php/t169669.html

If MBAM won't run, download and run Rkill first.
Rkill is a small, freeware and portable tool designed to terminate active malware processes allowing you to use other removal tools:
http://www.technibble.com/rkill-repair-tool-of-the-week/

Do not re-boot after running Rkill, then run MalwareBytes.

An alternative to Rkill is Rogue-Killer.  Here is a good instructive article:
http://www.experts-exchange.com/Virus_and_Spyware/Anti-Virus/A_4922-Rogue-Killer-What-a-great-name.html 

If MBAM still doesn't resolve it, try running TDSSKiller:
http://support.kaspersky.com/downloads/utils/tdsskiller.zip

Download the file TDSSKiller.zip and extract it into a folder
Execute the file TDSSKiller.exe.
Wait for the scan and disinfection process to be over.
Close all programs and press “Y” key to restart your computer.
Please post the resulting log here.

More detail TDSSKiller tutorial:
http://support.kaspersky.com/viruses/solutions?qid=208280684
0
 
Starquest321Author Commented:
So this is the first time I installed malwarebytes - and it keeps "blocking" access to potentially malicious sites. Which software is trying to access it? HOw can I tell?
0
 
Sudeep SharmaTechnical DesignerCommented:
There could be some process (created by Virus/Malware) in the background which is trying to get the access to the Malicious sites.

You would need to run the full system scan with MalwareBytes to clean the system as suggested above by various experts.
0
 
JonveeCommented:
You can trust Malwarebytes(MBAM) but remember, if you are unable to run MBAM, run Rkill or Rogue-Killer first, and do not re-boot after running either of them.

As requested earlier please post the MBAM and TDSSKiller logs here, it will help us to identify your problem.
0
 
Starquest321Author Commented:
The problem was so bad - I had to simply format the machine. What I don't understand is what advantage does the malware have over a virus? Does my computer send out spam or is it just damage?
0
 
JonveeCommented:
>Does my computer send out spam or is it just damage<

The problem can be for a number of reasons, but usually a computer can be disinfected and not require a re-format ...sorry you had to do that.

You may find that some of the explanations in these two links will be helpful>
http://en.wikipedia.org/wiki/Malware
http://en.wikipedia.org/wiki/Computer_virus
0

Featured Post

Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

  • 3
  • 2
  • 2
  • +3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now