Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

7month old HP Computer lags

HP Windows10 internet

  • Please log in to reply

#16
Lady_Rocker

Lady_Rocker

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 168 posts
07/30/2016 01:45
Scan of C:
 
Scan of *STARTUP
 
File C:\Users\NiTa\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52237b2a77463293\120712-0049\Mail\cc\20005d03_b970e318b3df7c.eml|>PartNo_0#1606494077|>1 - Anita's Personal Budget Net-Budget.xlsx#2252230601|>EncryptedPackage Error 42144 {OLE archive is corrupted.}
Number of searched folders: 57600
Number of tested files: 1089967
Number of infected files: 0

  • 0

Advertisements


#17
Lady_Rocker

Lady_Rocker

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 168 posts

BTW, was looking thru the mobile posts regarding best Internet security and found this recommendation regarding "360 Security" 

http://www.geekstogo...-you-recommend/

 

Lucky123, on 28 Mar 2015 - 03:53 AM, said:

You should give 360 Security a try - http://360safe.com/mobile-security.html


Edited by Lady_Rocker, 29 July 2016 - 04:43 PM.

  • 0

#18
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

OK.  Nothing there except what looks like a bad email.

 

Let's see what Process Explorer looks like in Safe Mode:

 

Go in to safe mode:

 

See: http://www.digitalci...mode-windows-10

 

Run process explorer as before and post the log.

 

You will need to boot back into regular mode to post so go bck in to msconfig and make sure Safe Mode is not checked then reboot.


  • 0

#19
Lady_Rocker

Lady_Rocker

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 168 posts
  • Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
    System Idle Process 86.08 0 K 4 K 0
    explorer.exe 6.25 28,088 K 83,740 K 1440 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
    procexp64.exe 5.84 12,160 K 32,644 K 2656 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
    dwm.exe 1.05 41,212 K 61,936 K 804 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows
    System 0.32 140 K 8,612 K 4
    Interrupts 0.31 0 K 0 K n/a Hardware Interrupts and DPCs
    csrss.exe 0.12 1,584 K 6,872 K 476
    services.exe 0.01 1,988 K 5,408 K 576
    svchost.exe 0.01 6,400 K 18,572 K 668 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
    svchost.exe 0.01 2,476 K 7,676 K 356 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
    WmiPrvSE.exe 1,868 K 7,592 K 2608 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
    winlogon.exe 1,788 K 8,716 K 536 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows
    wininit.exe 1,048 K 4,792 K 464
    svchost.exe 6,980 K 19,436 K 992 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
    svchost.exe 5,124 K 17,864 K 372 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
    svchost.exe 8,428 K 11,896 K 916 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
    svchost.exe 2,676 K 7,004 K 716 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
    svchost.exe 1,216 K 4,928 K 352 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
    svchost.exe 1,040 K 4,852 K 940 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
    smss.exe 376 K 1,196 K 324
    sihost.exe 4,324 K 20,276 K 1312 Shell Infrastructure Host Microsoft Corporation (Verified) Microsoft Windows
    ShellExperienceHost.exe 26,660 K 59,760 K 1716 Windows Shell Experience Host Microsoft Corporation (Verified) Microsoft Windows
    SearchUI.exe Suspended 20,004 K 62,324 K 1808 Search and Cortana application Microsoft Corporation (Verified) Microsoft Windows
    RuntimeBroker.exe 2,728 K 17,668 K 1760 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
    procexp.exe 3,044 K 9,340 K 2544 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
    lsass.exe 3,488 K 12,620 K 592 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows Publisher
    HelpPane.exe 3,196 K 20,444 K 956 Microsoft Help and Support Microsoft Corporation (Verified) Microsoft Windows
    dllhost.exe 1,868 K 9,380 K 1916 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
    dllhost.exe 3,304 K 10,628 K 1960 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
    ctfmon.exe 992 K 5,436 K 1584 CTF Loader Microsoft Corporation (Verified) Microsoft Windows
    csrss.exe 1,048 K 3,496 K 408
    ApplicationFrameHost.exe 4,036 K 19,012 K 2332 Application Frame Host Microsoft Corporation (Verified) Microsoft Windows
     

  • 0

#20
Lady_Rocker

Lady_Rocker

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 168 posts

FYI: I updated my MalwareBytes and ran a scan... it removed several items..

 

===============================================================================

 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 7/30/2016
Scan Time: 9:06 AM
Logfile: MalwarebytesScan2016-07-30.txt
Administrator: Yes
 
Version: 2.2.1.1043
Malware Database: v2016.07.29.11
Rootkit Database: v2016.05.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 10
CPU: x64
File System: NTFS
User: NiTa
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 391449
Time Elapsed: 20 min, 0 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 85
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\adapter, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\abstractbutton, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\abstractbutton\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\alert, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\alert\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\embedhtml, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\embedhtml\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\embedhtml\html, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\embedhtml\js, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\embedscript, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\embedscript\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\embedscript\html, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\embedscript\js, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\flare, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\flare\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\flare\icons, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\generic, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\generic\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\link, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\link\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\menu, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\menu\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\menu\css, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\menu\html, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\menu\images, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\menu\js, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\rss, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\rss\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\thirdparty, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\thirdparty\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\uninstall, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\uninstall\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\weather, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\components\weather\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\js, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\common, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\radio, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\radio\css, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\radio\js, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\rss, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\rss\js, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\test, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\topapps, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\topapps\css, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\topapps\js, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\weather, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\weather\css, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\common\widget-api\widgets\weather\js, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\api, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\api\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\api\window, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\defaultSearch, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\defaultSearch\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\defaultSearch\foreground, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\moviereviews, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\moviereviews\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\moviereviews\css, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\moviereviews\html, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\moviereviews\js, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\radio, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\radio\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\radio\css, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\radio\foreground, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\radio\radioWrapper, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\search, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\search\background, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\search\html, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\supertab, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\supertab\css, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\supertab\html, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\components\supertab\js, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\icons, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\images, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\js, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\native, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\native\libs, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\shared, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf\12.41.9.64004_0\_metadata, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
PUP.Optional.MindSpark, C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf, Quarantined, [656a3cedd3c7d660834debafc4408f71], 
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)

  • 0

#21
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

The thing that MBAM found, MindSpark, is just some adware that attached itself to Chrome.  Doubt it would have slowed the whole computer down.

 

That was this extension in case you were wondering:

CHR Extension: (MyScrapNook) - C:\Users\NiTa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbapdklahcjljfincdglncfpdgfhckcf [2016-06-25]

 

Your last Process Explorer log looks much better.  Something which doesn't run in  Safe Mode is causing the problem.  Hopefully it's something we can control from msconfig.

 

Go back into msconfig

 

Go to Services tab and click on the box to hide Microsoft Services then uncheck

everything that remains.  Go to Startup tab and uncheck everything.  OK and
reboot.  
 
Then run Process Explorer and create the log as before.  Look at the log:  If System Idle Process is at the top with 80% or better then something you unchecked is the problem.  Go back in to msconfig and recheck about 1/2 of the items you unchecked.  OK and Reboot.  Look at Process Explorer or its log to see if System Idle Process has dropped sharply.  If so then one of the items you just checked is the problem.  If not then it's in the 1/2 you have checked so check 1/2 of the remaining, OK and reboot.  I think you get the idea.  We need to isolate the problem down to one or two entries.
 
If unchecking everything in msconfig doesn't help then post the process explorer log and go back into msconfig and recheck everything.

  • 0

#22
Lady_Rocker

Lady_Rocker

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 168 posts

Ok.. I think I can manage one "check" at a time LOL.. it's the weekend now, so this would keep me busy... 


  • 0

#23
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

It's not as bad as it sounds.  If you do 1/2 at a time then 1/2 of the remainder it's doable.  Sorry I can't just say that's the one but all of your programs look normal.


  • 0

#24
Lady_Rocker

Lady_Rocker

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 168 posts

With only the Avast checked and the Xbox unchecked... here is the Process Exporer Log...
I'm beginning to think my computer lag is either a Windows program or hardware problem...

My internet speed is supposed to be 50mbps+, instead it reads 20mbps- which my ISP totally ruled out their end.. 

my son's laptop reads 50mbps+ using the ethernet connection, but my computer rarely reaches the 20mbps.. at least it's cleaned.. 

 

===========================================

 

Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 78.18 0 K 4 K 0
procexp64.exe 10.25 15,492 K 30,876 K 4624 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
svchost.exe 3.21 45,468 K 76,924 K 564 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.57 55,948 K 75,812 K 408 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
System 1.34 144 K 8,636 K 4
dwm.exe 1.12 34,304 K 32,664 K 992
csrss.exe 0.93 4,340 K 5,544 K 660
Interrupts 0.93 0 K 0 K n/a Hardware Interrupts and DPCs
TrustedInstaller.exe 0.75 1,596 K 6,196 K 6356
sihost.exe 0.55 4,972 K 18,836 K 3828 Shell Infrastructure Host Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.34 4,520 K 9,504 K 888 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
WmiPrvSE.exe 0.21 6,040 K 15,288 K 2296
svchost.exe 0.20 11,096 K 22,924 K 848 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
explorer.exe 0.19 73,328 K 111,620 K 4192 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
AvastSvc.exe 0.09 78,396 K 39,984 K 1588 avast! Service AVAST Software (Verified) AVAST Software a.s.
svchost.exe 0.06 11,148 K 30,888 K 532 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
WmiApSrv.exe 0.03 1,304 K 7,016 K 3820 WMI Performance Reverse Adapter Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 0.03 13,168 K 20,596 K 3412
avastui.exe 0.01 13,280 K 11,844 K 6076 avast! Antivirus AVAST Software (Verified) AVAST Software a.s.
svchost.exe 0.01 4,548 K 14,568 K 2100 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 19,868 K 48,544 K 5136 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
afwServ.exe < 0.01 13,864 K 14,440 K 2400 avast! firewall service AVAST Software (Verified) AVAST Software a.s.
WUDFHost.exe 1,700 K 8,160 K 1120
wuapihost.exe 1,508 K 7,280 K 6000 wuapihost Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 2,524 K 7,988 K 3856
wlanext.exe 1,472 K 5,844 K 1760
winlogon.exe 1,856 K 9,160 K 724
wininit.exe 1,104 K 4,680 K 652
unsecapp.exe 1,180 K 6,340 K 4556 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation (Verified) Microsoft Windows
TiWorker.exe 1,984 K 8,112 K 6912
taskhostw.exe 5,512 K 14,236 K 108 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 18,824 K 35,108 K 1212 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,572 K 12,880 K 956 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,928 K 22,576 K 2468 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 6,656 K 16,156 K 1440 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 15,276 K 28,424 K 588 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,532 K 18,188 K 2536 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,856 K 10,100 K 2460 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,152 K 8,724 K 2520 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,548 K 6,424 K 3384 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,676 K 8,620 K 5132 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
sppsvc.exe 3,020 K 12,932 K 6572 Microsoft Software Protection Platform Service Microsoft Corporation (Verified) Microsoft Windows
spoolsv.exe 6,684 K 16,532 K 1740 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
smss.exe 392 K 1,108 K 376
SkypeHost.exe Suspended 11,324 K 14,708 K 4444 Microsoft Skype Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
ShellExperienceHost.exe 30,416 K 61,224 K 4884 Windows Shell Experience Host Microsoft Corporation (Verified) Microsoft Windows
SettingSyncHost.exe 7,456 K 17,760 K 5828 Host Process for Setting Synchronization Microsoft Corporation (Verified) Microsoft Windows
services.exe 3,204 K 7,472 K 768
SearchUI.exe 41,188 K 86,768 K 4980 Search and Cortana application Microsoft Corporation (Verified) Microsoft Windows
SearchProtocolHost.exe 1,324 K 5,360 K 2140 Microsoft Windows Search Protocol Host Microsoft Corporation (Verified) Microsoft Windows
SearchIndexer.exe 27,716 K 30,912 K 5812 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
SearchFilterHost.exe 1,132 K 5,456 K 5992
RuntimeBroker.exe 11,804 K 32,864 K 3900 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RemindersServer.exe 8,768 K 12,188 K 4420 Reminders WinRT OOP Server Microsoft Corporation (Verified) Microsoft Windows
procexp.exe 3,112 K 9,776 K 6920 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
opvapp.exe 1,920 K 7,600 K 5756
OPBHOBrokerDsktop.exe 2,260 K 1,264 K 736 HP SimplePass BHO Broker Hewlett-Packard (Verified) Softex Incorporated
lsass.exe 5,896 K 16,256 K 784 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows Publisher
fontdrvhost.exe 728 K 2,868 K 6116
dasHost.exe 4,224 K 12,816 K 2212
csrss.exe 1,368 K 4,060 K 536
conhost.exe 1,108 K 4,968 K 1768
ActionUriServer.exe 3,524 K 16,884 K 4532 ActionUri OOP Server Microsoft Corporation (Verified) Microsoft Windows

  • 0

#25
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

These are the three key items to watch:

 

System Idle Process 78.18 0 K 4 K 0
 
System 1.34 144 K 8,636 K 4
 
Interrupts 0.93 0

 

 

If you see System Idle go down or one of the other two shoot up then you have found the culprit.  I expect if we run speedtest as it stands you will get a lot better than 20 meg.

 

Go to http://www.speedtest.net/and click on Begin Test
 
When the Test finishes click on Share This Result and then select Forum then Copy then move to a reply and Ctrl + v
 

  • 0

Advertisements


#26
Lady_Rocker

Lady_Rocker

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 168 posts

5516142538.png

 

When I run Process Explorer, System Idle Process is mostly below 20, I just hit the space bar after 1 minute when it went to a higher number.  As you mentioned, either the System or the Interrupts are usually on top.

 

Hope this will help me finally figure out how to get my computer up to par with what I'm paying for.


Edited by Lady_Rocker, 30 July 2016 - 03:47 PM.

  • 0

#27
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

I guess I'm confused.  Do you have anything unchecked in msconfig?  Are you saying that the last process explorer log was a fluke?  


  • 0

#28
Lady_Rocker

Lady_Rocker

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 168 posts

No, I left only the Avast checked along with the standard Windows.  then I ran the Process Explorer, but as I was watching the numbers go up and down continuously for a minute,

After one minute, I save as a text right?  Just go straight to "Save As", right?


  • 0

#29
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

That's exactly the way to do it.  The last log looked really good so it appeared that we were on the right track.   Does System Idle drop down significantly if you keep watching it past the minute?  The minute wait is just to let procexp.exe  settle down a bit.  When it first starts up it takes most of the CPU time so it's hard to see what else is using the CPU.  By waiting we give it time to get its startup work done.  There is a WmiPrvSE.exe process that uses about 10% of the CPU every 10 seconds or so.  That's usually what make it jump around so much.  You can search for 

services.msc

and hit Enter.  That should open the services window.  scroll down to and click on Windows Management Instrumentation and Stop the service.  That should make things settle down some.  WMI is just measuring performance.  It's not critical.  Sometimes it gets 3rd party monitoring programs added to it during an install and some of these are poorly written and cause it to eat up too much CPU.


  • 0

#30
Lady_Rocker

Lady_Rocker

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 168 posts

I ran another Process Explorer after disabling the WmiPrvSE

 

=======================================================
 

Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 77.04 0 K 4 K 0
System 0.68 188 K 16,916 K 4
procexp64.exe 14.24 22,900 K 52,684 K 5080 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
dwm.exe 2.71 34,384 K 32,960 K 984
csrss.exe 0.88 2,808 K 5,696 K 656
Interrupts 0.85 0 K 0 K n/a Hardware Interrupts and DPCs
AvastSvc.exe 0.05 69,636 K 40,960 K 1552 avast! Service AVAST Software (Verified) AVAST Software a.s.
svchost.exe < 0.01 17,208 K 46,008 K 568 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
explorer.exe 3.05 77,204 K 114,952 K 904 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 9,248 K 29,676 K 560 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
avastui.exe 0.02 13,324 K 10,976 K 5500 avast! Antivirus AVAST Software (Verified) AVAST Software a.s.
svchost.exe 17,844 K 33,988 K 1172 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 0.01 10,456 K 22,744 K 848 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,424 K 14,528 K 1612 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 58,708 K 77,380 K 448 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
afwServ.exe < 0.01 6,704 K 5,696 K 2488 avast! firewall service AVAST Software (Verified) AVAST Software a.s.
wlanext.exe 1,528 K 5,840 K 1752
winlogon.exe 1,864 K 9,236 K 720
wininit.exe 992 K 4,748 K 648
taskhostw.exe < 0.01 5,260 K 14,000 K 4012 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.26 4,600 K 9,536 K 884 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 19,480 K 48,472 K 4728 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 6,436 K 15,984 K 1272 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 19,180 K 32,240 K 8 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 6,252 K 24,060 K 2664 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 0.01 5,288 K 19,016 K 2816 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,212 K 9,184 K 2808 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,856 K 10,028 K 2656 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,948 K 11,340 K 756 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
spoolsv.exe 6,676 K 16,428 K 1720 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
smss.exe 356 K 952 K 372
SkypeHost.exe Suspended 24,824 K 15,376 K 3496 Microsoft Skype Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
sihost.exe 0.01 4,768 K 18,688 K 3972 Shell Infrastructure Host Microsoft Corporation (Verified) Microsoft Windows
ShellExperienceHost.exe Suspended 24,404 K 59,920 K 4280 Windows Shell Experience Host Microsoft Corporation (Verified) Microsoft Windows
SettingSyncHost.exe 4,944 K 6,136 K 5224 Host Process for Setting Synchronization Microsoft Corporation (Verified) Microsoft Windows
services.exe 2,600 K 7,080 K 776
SearchUI.exe Suspended 41,908 K 85,900 K 4368 Search and Cortana application Microsoft Corporation (Verified) Microsoft Windows
SearchIndexer.exe 0.14 27,652 K 31,280 K 3760 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe < 0.01 11,580 K 31,872 K 3924 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RemindersServer.exe Suspended 8,524 K 21,196 K 1244 Reminders WinRT OOP Server Microsoft Corporation (Verified) Microsoft Windows
procexp.exe 3,152 K 9,796 K 1964 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
opvapp.exe 1,912 K 7,604 K 5016
OPBHOBrokerDsktop.exe 0.04 2,232 K 1,852 K 4004 HP SimplePass BHO Broker Hewlett-Packard (Verified) Softex Incorporated
lsass.exe 5,884 K 16,724 K 784 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows Publisher
fontdrvhost.exe 748 K 2,876 K 5716
dasHost.exe 3,280 K 12,272 K 1120
csrss.exe 1,312 K 3,992 K 536
conhost.exe 1,104 K 4,980 K 1760
audiodg.exe 14,896 K 18,692 K 4152

  • 0






Similar Topics


Also tagged with one or more of these keywords: HP, Windows10, internet

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP