Jump to content

CPU Gone Wild?

Buckwild

By Buckwild
in Spam

 Share

Recommended Posts

Buckwild Mentor

Buckwild

Posted
Posted

After installing Adobe Flash Player, I have 99% CPU usage on idle!
dkhg.png

My process finder: HiJackThis gives Me location of program startup.
o3xn.png

HDDefrag.exe sure seems to be using plenty of resourses, But I'm not defragging, Hmmm.
lxy6.png

WireShark packet sniffer.
cdug.png

2 Ips keep getting packets from My computer.
lje0.png

Destination: United Kingdom...
ce99.png

and California.
6n03.png

Let's have a look at this...
oxha.png

hddef.bat is a startup windows script.
3z9p.png

I'll rename the file extension to text to disable it.
lgrd.png

After restarting Win7, I get Script Host error.
lg4s.png

Not the most elegant fix, but it works, HDDefrag.exe doesn't run.
7iwi.png

I don't care about spyware but this program had to go,
zvb7.png

Flash Player at youtube still works.

  • Leader
RedBaird Grand Master

RedBaird

Posted
  • Leader
Posted

You're not the first with this serious problem:

http://forums.adobe.com/thread/1204185

 

I think by now you've found all kinds of references to this problem, like:

http://processchecker.com/file/HDDefrag.exe.html  with various MD5s.

 

 

 

Buckwild Mentor

Buckwild

Posted
  • Author
Posted

Thanks! I deleted reg key in: HKEY_CURRENT_USER\Software\Microsoft\Windows\Current Version\Run,

 

No more popup after starting Windows.

  • 7 months later...
Buckwild Mentor

Buckwild

Posted
  • Author
Posted

This was caused by a spyware? trojan dropping in on Flash Player, A most common appliation.

 

It was probably sending My wep-page usage to advertizers.

  • Leader
RedBaird Grand Master

RedBaird

Posted
  • Leader
Posted

I found over 900 results on google for "HDDefrag.exe" and over 1600 for "HDDefrag" this time.  Some say it is the  Artemis Trojan , with some symptoms not matching yours.  Various reports for this trojan include adding adverts to web pages you are viewing, slowing the computer and disabling the firewall, amongst others.

 

When you first posted here and I searched for the subject, I don't think that there were so many md5 hashes and addresses listed on that second site.  Now there are 46 of them.

 

I wonder if this is a "for sale" hacking tool, used by various people for different reasons, resulting in different effects upon the victims' systems.

 

The following shows your version of hddef.bat and the one I just found.  

 

HDdefrag-bat140620.jpg

 

I can appreciate why you posted a pic and not text.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

About Us

We are glad you decided to stop by our website and servers. At Fearless Assassins Gaming Community (=F|A=) we strive to bring you the best gaming experience possible. With helpful admins, custom maps and good server regulars your gaming experience should be grand! We love to have fun by playing online games especially W:ET, Call of Duty Series, Counter Strike: Series, Minecraft, Insurgency, DOI, Sandstorm, RUST, Team Fortress Series & Battlefield Series and if you like to do same then join us! Here, you can make worldwide friends while enjoying the game. Anyone from any race and country speaking any language can join our Discord and gaming servers. We have clan members from US, Canada, Europe, Sri Lanka, India, Japan, Australia, Brazil, UK, Austria, Poland, Finland, Turkey, Russia, Germany and many other countries. It doesn't matter how much good you are in the game or how much good English you speak. We believe in making new friends from all over the world. If you want to have fun and want to make new friends join up our gaming servers and our VoIP servers any day and at any time. At =F|A= we are all players first and then admins when someone needs our help or support on server.

Player Gaming Stats for =F|A= Servers.

×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.

  I accept