Solved

High CPU System Process

Posted on 2011-09-30
4
883 Views
Last Modified: 2012-05-12
I have 3 domain controllers that are all running between 85-95% CPU usage. This issue started over the weekend and nothing is showing up in the logs. I've used process explorer to narrow the issue to the system service. I would also like to note, this has not affected performance or availability of any services, critical or otherwise.

Details and what I've ruled out...

Two of the DC's are Server 03 and the third is 08.
The 03 servers use Symantec and the 08 uses Mcafee.
All 3 are virtualized on 3 different hosts using VMWare.

Due to the fact that they're different OS's and they have different AV's running, I do not think it has anything to do with AV. I've also run scans to check for viruses and turned up nothing.

When I look at the threads of the process, the culprit appears to be "srv.sys+0x1a602 "

Google hasn't turned up much beyond some Microsoft hotfixes revolving around AV patches, which I am inherently skeptical of.  

Any ideas would be great! Thanks!

0
Comment
Question by:THe_Revolver
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 28

Expert Comment

by:Dr. Klahn
ID: 36894599
I have never seen a system that ran correctly with the Norton/Symantec antivirus.  Recommend you uninstall Norton/Symantec, and all its associated addons, using the freeware Revo Uninstaller.  Then see if the CPU issue is alleviated.  If it is, well and good; choose a different antivirus.  If not, other avenues can be explored.
0
 
LVL 7

Expert Comment

by:D_Vante
ID: 36897274
I have seen this when a service is constantly accesing the DCs for permission.  Could be something as simple as a copier with a scan to network service,  Have you checked the event logs
0
 

Accepted Solution

by:
THe_Revolver earned 0 total points
ID: 36919084
Turns out one of our admins pushed a script without anyone knowing. Threw a wrench in the works. Thanks!
0
 

Author Closing Comment

by:THe_Revolver
ID: 36941249
Make sure everyone on your team documents their work.
0

Featured Post

Manage your data center from practically anywhere

The KN8164V features HD resolution of 1920 x 1200, FIPS 140-2 with level 1 security standards and virtual media transmissions at twice the speed. Built for reliability, the KN series provides local console and remote over IP access, ensuring 24/7 availability to all servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question