pkinj.exe, gryez.exe, zubxk.exe, veoq4kf2.exe taking all CPU utilization

  • Thread starter Thread starter hal
  • Start date Start date
H

hal

I have a remote user who had tons of popups blasting their system. I
gave him a copy of Ad-Aware which has been very successful for most of
our users, and it seemed to clean up his popups and all seemed to be
working fine. Now he is experiencing very slow system performance,
and looking into his task manager (XP) shows the above processes
running in the top CPU positions and using 100% of his CPU time. The
processes can be killed, but another one just pops up. Norton AV
doesn't find anything. Running Ad-Aware doesn't either. Searching
the registry doesn't find anything. Searching the net hasn't turned
up any reference to these processes. Has anyone seen these and know
what I can do to get rid of them?

thanks

Hal
 
I have a remote user who had tons of popups blasting their system. I
gave him a copy of Ad-Aware which has been very successful for most of
our users, and it seemed to clean up his popups and all seemed to be
working fine. Now he is experiencing very slow system performance,
and looking into his task manager (XP) shows the above processes
running in the top CPU positions and using 100% of his CPU time. The
processes can be killed, but another one just pops up. Norton AV
doesn't find anything. Running Ad-Aware doesn't either. Searching
the registry doesn't find anything. Searching the net hasn't turned
up any reference to these processes. Has anyone seen these and know
what I can do to get rid of them?
Click to expand...

there's not a lot you can tell from a name, get your remote user to
send a copy of one of these files to an av developer for analysis...
 
working fine. Now he is experiencing very slow system performance,
and looking into his task manager (XP) shows the above processes
running in the top CPU positions and using 100% of his CPU time. The
processes can be killed, but another one just pops up. Norton AV
Click to expand...

Have your user try an online scan, such as http://www.ravantivirus.com/

Regards, Dave Hodgins
 
Have your user try an online scan, such as http://www.ravantivirus.com/

Regards, Dave Hodgins
Click to expand...
Spybot search & destroy, hijack this CWShredder all can be found on
majorgeeks.com under spyware tools. I'd recommend, spybot s&d, then
CWShredder, then reboot & run hijack this it'll get a log you /he can
post in http://www.spywareinfo.com/forums/

Then get his system patched, his av updated (if they aren't & 3 tools
from grc.com DCOMbobulator, shoot the messenger, & uunplug n pray. He
should also run the shields up port test to show him why he needs a
firewall.
 
I have a remote user who had tons of popups blasting their system. I
gave him a copy of Ad-Aware which has been very successful for most of
our users, and it seemed to clean up his popups and all seemed to be
working fine. Now he is experiencing very slow system performance,
and looking into his task manager (XP) shows the above processes
running in the top CPU positions and using 100% of his CPU time. The
processes can be killed, but another one just pops up. Norton AV
doesn't find anything. Running Ad-Aware doesn't either. Searching
the registry doesn't find anything. Searching the net hasn't turned
up any reference to these processes. Has anyone seen these and know
what I can do to get rid of them?

thanks

Hal
Click to expand...

You could use Process Explorer to look inside each process/program
running to see what processes/programs are running inside of them. Tell
Process Explorer to display the Dll(s) to you. And as you click on one of
the running exe(s), it will display the hidden processes the exe is
running, if any.

Then you can place the mouse pointer on each hidden process, and it will
tell you the directory the process is running out of. That may be able to
help you pin point the culprit that could lead you back to the registry
entry.

It could be that since you cannot kill the processes all at once, as you
kill one of the processes, one of the other running processes detects it
and brings the killed process back.

Process Explorer is free.

HTH

Duane :)
 
Take a good look at the Task Manager to see if he is running any
'freeware/shareware programs in his start-up which originally came with
ad-ware.
If one of his regular start-up programs came 'free' because it was loaded
with ad-ware, which has now been stripped out by Adaware or Spybot, the
program could be tying up[ the CPU in a desperate hunt for its accompanying
adverts.
 
Back
Top