• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1875
  • Last Modified:

tmlisten process hogging about 50% of CPU : virus malware

Around the time I installed EM YDT tool to download youtube
video on my Win XP laptop, the tmlisten process has been hogging
50% of my laptop's CPU.

I've uninstalled YDT software & rebooted laptop but it did not
help.  My laptop has 2 processor & looks like tmlisten is hogging
one of the processor.

Attached is the hijack (ver 2.05) output : let me know if there's
anything I can do to fix this CPU hog.

I've installed back YDT tool as I need to download some videos
hijackthis-17Jun13.txt
0
sunhux
Asked:
sunhux
  • 3
  • 2
3 Solutions
 
aadihCommented:
Nothing jumps out, except too many processes are running (some unneeded, i.e., should only run on demand).
0
 
kdubendorfCommented:
tmlisten is Trend Micro.  By chance, is your antivirus running an active scan?   That might account for some of the CPU usage.

Try disabling the Antivirus for 5 minutes and see if things return to normal.

If you want to do a quick check to see if you have picked up an infection, go to www.surfright.com and download Hitman Pro.   It's free for the first 30 days and will give you an indication of how clean your PC is.
0
 
sunhuxAuthor Commented:
Glad that you've identified tmlisten is Trend Micro as another of my colleague
told me he hit almost 100% CPU on Trend Micro & when he unloads Trend
Micro, it resolves his issue.

My corporate has ceased supporting Trend Micro (& I must say my TM signatures
have been outdated by a few months) & corporate wanted us to go onto McAfee
but I did not get to reinstall with McAfee.

Frankly I prefer TM over McAfee but any idea why my TM which has behaving
well suddenly turned CPU hungry?
0
Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

 
kdubendorfCommented:
I'm thinking that either it's doing some sort of a scan or it is trying to clean out a virus.  If it's doing a scan you'll see the Trend Micro icon in the lower right section of the screen having some motion in it.  Otherwise it's probably trying to fight a virus.  Of it might be fighting with another AV but that doesn't sound like the case here.

If it's not scanning, try to run a few malware tools.  I suggest:

Malwarebytes
HitMan Pro
Possibly Combofix if either one of the other programs indicates a problem.


Use these tools to remove infections that they identify.


I'm with you about TM.  Can't understand why they'd go with McAfee.  TM has some great management and control tools that allow you to centrally monitor and manage multiple installations.
0
 
sunhuxAuthor Commented:
http://esupport.trendmicro.com/solution/en-us/1059410.aspx

There's one possible answer above but in my case the link below is
closest to my issue :
http://esupport.trendmicro.com/solution/en-us/1061408.aspx

ie

The OfficeScan/WFBS client is having a hard time sending the logs to the the server. For a reason still unknown, some file/s inside the ..\Trend Micro\OfficeScan Client\HLog directory were corrupted and not being sent to the OfficeScan/WFBS server.
There is a high CPU usage because the client keeps on trying to send the corrupted file/s to the WFBS/OfficeScan server, creating a loop.
You can fix this by doing the following:
Restart the machine under Safe Mode. Follow the steps in this Microsoft article: To start the computer in safe mode.
Go to the ..\Trend Micro\OfficeScan Client\HLog directory and delete all the files inside.
Restart the machine back to normal mode.
The CPU utilization of the TmListen.exe process should be back to normal.

===================

just that my folder's name is "TrendMicro" instead of "Trend Micro"
& the HLog subfolder is missing from my laptop (Hmm, that's strange
as I never touch it) :

C:\Program Files\TrendMicro\Officescan Client>md HLog
0
 
sunhuxAuthor Commented:
http://www.experts-exchange.com/Virus_and_Spyware/Anti-Virus/Desktop_Anti-Virus/Q_24230717.html
Another link above indicated Diskeeper is the cause of it & I killed "Dkservice"
 from Taskmgr's Processes but it did not help.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now