CPU AT 100% Doing Nothing????

PC-GUY

PC-GUY

1
I went and did a friend a favor and should have just shot the pc. Turns out the pc had spywear and junk on it and after cleaning some junk off it any time you open word (XP Office) that program will crash ( words comes up not responding ) but you can burn or do anything else you want to do. Turns out the pc is and AMD chip (ASUS MB with Nvidia chip set) well for some reason the CPU Usage is always at 100% no matter what you are doing. Well turns after messing with it for hours I said time to format. Well now its formated installed all new drives new XP pro SP1 and guess what 100% junk. I don't remember cpu size or MB other than ASUS but at 3am I didn't care any more. :confused: The pc is a year old I know it has 256 ram. Well when I formated I did a quick NTFS format from the XP cd well I wondering can a trojan or spyware still be their after that? I'm reading google and what I'm find is people with the same problem they say they have a trojan or the cpu has a problem. Well I going to load a MB monitor later and see whats going on with the temp but I can tell you this the fan on the side was blowing cool air last night. One last thing is took like and hour and half to download Critical updates from MS and its a cable connection. But the pc can burn cds with out a problem. So does anyone have an Idea before I shoot it? :rolleyes:
I was under the impression on ASUS MB if the cpu gets too hot say the fan stops the MB shuts down so you can't damage the cpu from heat is that right? Thanks
 
jasmin

jasmin

1
God, had same problem on friend's notebook, forgot which virus was :( Can you see some non usual exe in C:\ (something about 4 KB)?
 
PC-GUY

PC-GUY

1
I'll have to check it out tomorrow. But your saying it could make it by the quick format? :confused: I'm about to take a hammer to it.
 
jasmin

jasmin

1
PC-GUY said:
I'll have to check it out tomorrow. But your saying it could make it by the quick format? :confused: I'm about to take a hammer to it.
Click to expand...

No, I'm not sure about quick format but few months ago I met this symptoms (processor 100% with no programs loaded) and, old senile fool, I forgot which virus caused that :confused: :confused: :confused:
 
jasmin

jasmin

1
Yep, I found it!!! On one backup CD from December! It's Trojan.Myss.B


Trojan.Myss.B is a Trojan Horse that can capture keystrokes and periodically send them to a predefined email address.
This threat is compressed with UPX.

NOTE: Virus definitions dated prior to October 3, 2003 may detect this threat as Backdoor.Avstral.


Also Known As: Backdoor.Avstral, Backdoor.Avstral [KAV], BackDoor-AWW [McAfee], MultiDropper-GP trojan [McAfee], Win32.Myss [CA]

Type: Trojan Horse
Infection Length: about 6K



Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
Systems Not Affected: DOS, Linux, Macintosh, OS/2, UNIX



Trojan.Myss.B may arrive as a dropper. When this dropper runs, it performs the following actions:


Creates the following files:

%Windir%\Mssys.exe
%Windir%\Msapin32.dll, which is detected as PWSteal.Trojan.
%Windir%\Wini.ini, which contains the text, "***Computer was successfully infected***"

NOTES:
%Windir% is a variable: The Trojan locates the Windows installation folder (by default, this is C:\Windows or C:\Winnt) and copies itself to that location.
Wini.ini is not viral by itself, and therefore, Symantec antivirus products do not detect this file.


Adds a value:

"mssys"="%Windir%\mssys.exe"
to the registry key:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

so that the Trojan runs when you restart Windows.


Executes %Windir%\Mssys.exe and registers itself as a service, if the current system is Windows 95/98/Me.


Checks the foreground window periodically. If the title of the foreground window is one of the following:

e-gold Account Access
PayPal
Welcome to Citi
GoldMoney.com
E-Bullion
Evocash the Internet currency
Bank of America
Internet Billing Company
www.4 A B I L L I N G.com
Verotel Billing Solutions

the Trojan will capture the keystrokes.


Saves the keystrokes, as well as the window title and current time, to the file Wini.ini.


Emails the file Wini.ini to the predefined email address.


Symantec's web page attached
 

Attachments

PC-GUY

PC-GUY

1
Cool I'll give that a shot, thank you. Also a friend said to format the MBR or better yet he said to refdisk then reinstall. I hate doing favors!!!!:(
 
S

scarecrow

1
Sorry, but that virus is not likely to survive a quick format.
The MBR virus theory doesn't appeal to me very much, but its certainly more likely. Boot from your XP CD, pick up recovery console mode, and use the fixmbr command to clean your master boot record.
I believe its most likely a hardware failure though, probably a malfunctioning fan, or RAM (Asus mobos may be the best around, but the non-Intel ones are quite picky on the RAM used).
 
PC-GUY

PC-GUY

1
scarecrow said:
Sorry, but that virus is not likely to survive a quick format.
The MBR virus theory doesn't appeal to me very much, but its certainly more likely. Boot from your XP CD, pick up recovery console mode, and use the fixmbr command to clean your master boot record.
I believe its most likely a hardware failure though, probably a malfunctioning fan, or RAM (Asus mobos may be the best around, but the non-Intel ones are quite picky on the RAM used).
Click to expand...
Thanks guys for the help. Turns out I tried fixmbr and no luck. I also think its hardware. So it looks like tomorrow I going to a place where I buy my parts and their going to look at it. The only thing I found funny in task manager is System not System Idle Process its like they where switched System runs around 99 for cpu use and I forgot what Sys Idle was but it was low. I'm thinking a bad cpu or ram. :eek: I'll let you know how I make out.
 
PC-GUY

PC-GUY

1
Guys do yourself a favor and never do favors!!!!! :mad: I took a 20 minute ride today just to find out they couldn't do it today. But they couldn't tell that on the phone 30 minutes earlier. :mad: And people wonder why I started charging to do things!!!! After this these people go on a pay list, they pay me first before I do anything for them!!! Even in that case I'm still better of not doing anything for them!!! I'll let you know what happens tuesday, turns out the place isn't open again till then!!!
 
PC-GUY

PC-GUY

1
It turns out the MB was bad. :eek: Like I said do yourslef a favor and don't do favors, I told him and hes wife I will charge him for now on!!! Causes he one of thoses people that doesn't know anything about pc's but he does know he isn't the one messing it up either. So I guess he'll learn to leave with spyware. More power to him.
 
MackemX

MackemX

1
PC-GUY said:
Cool I'll give that a shot, thank you. Also a friend said to format the MBR or better yet he said to refdisk then reinstall. I hate doing favors!!!!:(
Click to expand...
yep, especially favours that turn into nightmares and it looks like you just had one :(

sometimes I wish I didn't know about PC's as word soon spreads that you know about PC's and I'm the local resident PC troubleshooter :eek:

yet when people offer me money etc I feel guilty if I take it. Mostly it's worth more than the effort I've put in as it was a simple fix for me, though to them it was impossible to fix. I just hate it when I hear them saying they have paid someone else out of Yellow Pages big money to fix their PC when it was a simple fix
 
You must log in or register to reply here.
Top