SVCHOST taking up 99% CPU usage

[jesterman_lol]

The otehr day my internet using programs (firefox, msn messenger) started to lagg, it was after downloading kazaa lite and kazaa lite plus plus. Neither of which really worked for me. Anyway, when my internet started to freeze up, i checked the system processes and saw that SVCHOST.exe was at 99% cpu usage! I can end the process fine and it solves the problem, but i do not want to have to do this everytime i boot my computer. adaware and symantec antivirus came up with nothing. Also, whenever i try to get inot Control Panel, windows explorer has to close...i dont know if they are related, but i have been without control panel for about a month now. Does anybody know what can help me?

[vcv]

The otehr day my internet using programs (firefox, msn messenger) started to lagg, it was after downloading kazaa lite and kazaa lite plus plus.  Neither of which really worked for me.  Anyway, when my internet started to freeze up, i checked the system processes and saw that SVCHOST.exe was at 99% cpu usage!  I can end the process fine and it solves the problem, but i do not want to have to do this everytime i boot my computer.  adaware and symantec antivirus came up with nothing.  Also, whenever i try to get inot Control Panel, windows explorer has to close...i dont know if they are related, but i have been without control panel for about a month now.  Does anybody know what can help me?

586516878[/snapback]

This is a tough one.

Here's what you can try:

- Get it to lag again

- Open services.msc

- Sort services by "Status" column, so that the "Started" ones are on top

- Take note of all the services running, right them down if you need to

- Kill the svchost.exe process that is using 99% cpu usage

- Hit the refresh button in the services toolbar, or f5

- Find which service is no longer "Started" that was before

Report back on which one it is.

[jesterman_lol]

okay, i did what you said, i wrote down everything, then ended that task, and the lit shifted when i refreshed that page...DNS Client, thats the one that wasnt in the list this time. But, it looks important, domain name mumbojumbo and the such. Computer seems to work fine without it, but i dunno, its a network service, is it possible that that may leave me open for more attackers?

[Dairyface69]

the DNS Client wont leave you open for more attackers, i doubt that if that really was the cause, it had anything to do with hackers.

You kinda need DNS Client, as this is the service that resolves DNS requests.

However I'd like to add my 2cents, if someone hacks your machine, their remote admin prog is usually called svchost.exe or explorer.exe or something that doesnt look suspicious in your task list.

Patch your machine, run a virus update, an adware update and check your firewall. If you run IIS, ensure you are secure (run iislockdown)

[dagamer34]

svchost.exe is the windows system host application for running system services for xp. It's likely that you recently installed something that was attached to a windows service and it is sucking up all your cpu cycles. Take a look at your running windows services (Control Panel -> Administrative Tools -> Services) and see if anything looks odd or out of place. Then again, since you are probably asking this, it's not exactly a good idea to messing witht hat kind of stuff.

I would check and see what you have running at start up. Some programs invoke svchost.exe on startup.

[vcv]

svchost.exe is the windows system host application for running system services for xp. It's likely that you recently installed something that was attached to a windows service and it is sucking up all your cpu cycles. Take a look at your running windows services (Control Panel -> Administrative Tools -> Services) and see if anything looks odd or out of place. Then again, since you are probably asking this, it's not exactly a good idea to messing witht hat kind of stuff.

I would check and see what you have running at start up. Some programs invoke svchost.exe on startup.

586520304[/snapback]

He already said it's the DNS client service.

[jesterman_lol]

So, what do i do now? This is pretty lame, i only got this comp 3 months ago.

[csabo2]

Alot of times script kiddies will use "rootkits" and things to take control of your PC. Its very usefull to name the executable file svchost as theres like 4 concurent copies running in windows alone. So its much more likely to go unnoticed. I would honestly format the machine if you are unable to find where the exe is located. Of course it could actually be a windows issue, and svchost is a very important file. and unfortunatly its not a file you can just replace off of the XP cd, or from someone elses computer as it has specific information related to your hardware.

[vcv]

It's not a foreign exe. It's possible it got infected, but I doubt it. I've had it happen as well, and it was not a virus/trojan.

jesterman: The only thing I can suggest is to run repair from your XP disc. All your settings and data will remain in place, it'll just replace the system files.

[CoolCatBad]

This is probably because you installed the Supertrick during the Kazaa installation, which creates a HOSTS file with many false entries for the purpose of ad blocking.

A large HOSTS file can cause DNS Client problems such as you describe.

[jesterman_lol]

This is probably because you installed the Supertrick during the Kazaa installation, which creates a HOSTS file with many false entries for the purpose of ad blocking.

A large HOSTS file can cause DNS Client problems such as you describe.

586524988[/snapback]

if i did download the supertrick thing, how would i remove that host file?

[Techy_]

Just disable the DNS Client service and it will stop. It isnt needed unless you are using internet conection sharing, unless you are.

[aSeptik]

Hi All!!!

To resolve this problem:

Svchost.exe Takes 99% of CPU memory Usage

go to my Home and read the article!

Regards,

aSeptik