| Page 1 of 1 |
|
|
 Posted: Sun, 10th Nov 2013 12:31 Post subject: System idle temperature rising |
|
 |
Yesterday, i saw some strange behaviour on my pc. Everything is working just fine, except..
When it's doing nothing, after a minute, cpu, gpu and mb temperature begin to rise. I even used HWMonitor to record the log:
           
It runs just fine, but when i leave it on, in idle or whatever, it just starts to do something which affects its temperature. Also, some voltages seem to drop at the same point..
I also recorded bandwith usage, just in case:
DU Meter Stopwatch - #2
Start time 10.11.2013. 11:21:13
Stop time 10.11.2013. 11:44:20
Elapsed time 23 min 7.7 sec
Incoming Outgoing
------------------------------------ ---------------- ----------------
Total of data transferred 41.7 KB 30.3 KB
Maximum transfer rate 30.8 kbps 17.0 kbps
Average transfer rate 0.2 kbps 0.2 kbps
Nothing strange there..
Does anyone know what could be the problem/solution?
One week ago, i installed one more modul of 2gb ddr2 ram, and cleaned the entire case, so the dust isn't the problem..
Intel Q9550 @ 3.2GHz + CM Hyper 212+ | Gigabyte P35-DS3P | 6GB DDR2 OCZ 800mhz | ASUS GTX560Ti DirectCUII | Samsung SSD 840EVO 250GB + Seagate Barracuda 1TB | OCZ StealthXStream 500W
|
|
| Back to top |
|
|
|
|
| Posted: Sun, 10th Nov 2013 12:37 Post subject: |
|
|
sneaky bitcoin miner maybe?
better list your processes, just in case
afaik bitcoin mining has very low bandwidth usage (<10mb/day)
and many AV don't detect them
|
|
| Back to top |
|
|
sausje
Banned
Posts: 17716
Location: Limboland, Netherlands
|
| Posted: Sun, 10th Nov 2013 12:57 Post subject: |
|
|
And just temps won't tell us anything, you need to check usage on cpu/gpu at those moments
Proud member of Frustrated Association of International Losers Failing Against the Gifted and Superior (F.A.I.L.F.A.G.S)
|
|
| Back to top |
|
|
|
|
| Posted: Sun, 10th Nov 2013 13:10 Post subject: |
|
|
|
|
|
| Back to top |
|
|
|
|
| Posted: Sun, 10th Nov 2013 13:16 Post subject: |
|
|
end conhost.exe and check again. You can use GPU-z to check GPU usage and temps.
|
|
| Back to top |
|
|
sausje
Banned
Posts: 17716
Location: Limboland, Netherlands
|
| Posted: Sun, 10th Nov 2013 13:36 Post subject: |
|
|
http://www.howtogeek.com/howto/4996/what-is-conhost.exe-and-why-is-it-running/
I see nothing odd in that list.. can't you keep taskmanager minimized running in the background and after that happened pull it up and check the cpu usage on it? Same with gpu-z.
Proud member of Frustrated Association of International Losers Failing Against the Gifted and Superior (F.A.I.L.F.A.G.S)
|
|
| Back to top |
|
|
|
|
|
| Back to top |
|
|
|
|
| Posted: Sun, 10th Nov 2013 13:43 Post subject: |
|
|
| sausje wrote: | http://www.howtogeek.com/howto/4996/what-is-conhost.exe-and-why-is-it-running/
I see nothing odd in that list.. can't you keep taskmanager minimized running in the background and after that happened pull it up and check the cpu usage on it? Same with gpu-z. |
?
I know what conhost does. It's also a known target for bitcoin virusses.
@Neo_McKane: while looking at GPU-z kill conhost.exe in task manager and see whether the load goes down.
|
|
| Back to top |
|
|
|
|
| Posted: Sun, 10th Nov 2013 13:46 Post subject: |
|
|
Even when the taskmanager is minimized, everything performs normal. No load/usage issues.
It's kinda tricky because, as soon as i move the mouse, the load/usage goes to 0.
Intel Q9550 @ 3.2GHz + CM Hyper 212+ | Gigabyte P35-DS3P | 6GB DDR2 OCZ 800mhz | ASUS GTX560Ti DirectCUII | Samsung SSD 840EVO 250GB + Seagate Barracuda 1TB | OCZ StealthXStream 500W
|
|
| Back to top |
|
|
|
|
| Posted: Sun, 10th Nov 2013 13:46 Post subject: |
|
|
the msdn.exe is kinda suspicious.
it has no description set and I'm pretty sure its not a part of Windows
|
|
| Back to top |
|
|
|
|
|
| Back to top |
|
|
sausje
Banned
Posts: 17716
Location: Limboland, Netherlands
|
| Posted: Sun, 10th Nov 2013 13:54 Post subject: |
|
|
@Neo_McKane
Well it's defo a bitcoin miner, now to find the exe..
Try installing some alternatives to taskmanager, i don't know which ones has better logging but you could try them out:
http://www.techrepublic.com/blog/five-apps/five-task-managers-that-improve-on-the-windows-default/
Hopefully you can find what exe it is.
Proud member of Frustrated Association of International Losers Failing Against the Gifted and Superior (F.A.I.L.F.A.G.S)
|
|
| Back to top |
|
|
|
|
|
| Back to top |
|
|
|
|
|
| Back to top |
|
|
sausje
Banned
Posts: 17716
Location: Limboland, Netherlands
|
|
| Back to top |
|
|
|
|
| Posted: Sun, 10th Nov 2013 14:20 Post subject: |
|
|
I had another bitcoin miner recently, two times within 2 months. it came with game related stuff.
the one that installs itself as service "Time" into ProgramData\Microsoft\Windows\Time
I initially thought Neo_McKane had that one but its not showing up in his task list.
Still haven't identified the source because it always took me a few hours to notice but I suspect some joker is uploading working releases on Usenet that stealth install this specific bitcoin miner.
|
|
| Back to top |
|
|
|
|
| Posted: Sun, 10th Nov 2013 14:21 Post subject: |
|
|
Ok, apparently, this file/process uses download and upload bandwith when the pc is idle:
c:\users\user\appdata\local\temp\pfafpukllnbnsllk\rekrfmnmgc.exe
But i can't seem to find it there. Anyways, i've deleted that msdn.exe file, so i'll try some more monitoring later..
Intel Q9550 @ 3.2GHz + CM Hyper 212+ | Gigabyte P35-DS3P | 6GB DDR2 OCZ 800mhz | ASUS GTX560Ti DirectCUII | Samsung SSD 840EVO 250GB + Seagate Barracuda 1TB | OCZ StealthXStream 500W
|
|
| Back to top |
|
|
|
|
| Posted: Sun, 10th Nov 2013 14:24 Post subject: |
|
|
its maybe flagged and hidden as a system file or randomly generated by the master process and automatically deleted after doing its job
|
|
| Back to top |
|
|
|
|
|
| Back to top |
|
|
|
|
|
| Back to top |
|
|
| Page 1 of 1 |
All times are GMT + 1 Hour |
MSDN.exe doesn't exist as part of Windows *or* WinAMP. I think that's your miner and you can find out by right-clicking the EXE and "open file location" -- it's a nasty little shit that likes to install itself in "normal" folders to fool you into thinking it's part of that app.
Take a look through registry, especially at the RUN entries and see if anything shows up - that may well be the trigger install. Also, again, take a GOOD LONG look through Task Scheduler, especially "Task Scheduler (LOCAL)"
