I (or rather my father) have been botnetted. There is something that will start PING.exe, which then proceeds to consume 75% of the CPU. If I shut down the PING.exe process, it will restart again a few minutes later. I take this as indication that the computer has been infected and made part of a botnet used for some sort of DDoS attack. Spybot finds nothing, nor do any other anti spy- and malware scanners Ive tried. I also tried running the rootkit scanner, but it didnt turn up any results that didnt look legit. What to do?

The only indication I have that something is wrong, is the starting of PING.exe. I have no idea where the bugger is hiding or what it's called or anything like that, other than it is something that Spybot is unable to detect. I also dont know what my father was doing when the infection was contracted (it may also have been someone else using the computer at the time anyway).

Any help would be appreciated.

Cheers,
Tor

Hello GroovingPict,

For someone to take a look at the system please start a topic in the Malware Removal Forum (http://forums.spybot.info/forumdisplay.php?f=22) and a volunteer analyst will advise when available.

First see that forum's FAQ which also includes instructions in post #2 on how to provide DDS logs, which are the logs used for first contact analysis.
"BEFORE You POST"(Please read this Procedure Before Requesting Assistance) (http://forums.spybot.info/showthread.php?t=288)

If the DDS won't run please start a new topic anyway and make note of the issue.

Best regards. :)