Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Very slow computer now blocking security updates and scans


  • Please log in to reply

#31
Bruce42

Bruce42

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

I ran the FRST scan withput any hang this time. The log is as follows :-Fix result of Farbar Recovery Scan Tool (x64) Version: 18-01-2017
Ran by Bruce (21-01-2017 20:18:22) Run:2
Running from C:\Users\Bruce\Desktop
Loaded Profiles: Bruce (Available Profiles: Bruce & Frances)
Boot Mode: Normal
==============================================

fixlist content:
*****************
CloseProcesses:
BootExecute: autocheck autochk * PCloudBroom64.exe \systemroot\system32\BroomData.bitPCloudBroom64.exe \systemroot\system32\BroomData.bitPCloudBroom64.exe \systemroot\system32\BroomData.bitPCloudBroom64.exe \systemroot\system32\BroomData.bitPCloudBroom64.exe \systemroot\system32\BroomData.bitPCloudBroom64.exe \systemroot\system32\BroomData.bitPCloudBroom64.exe \systemroot\system32\BroomData.bitPCloudBroom64.exe \systemroot\system32\BroomData.bit
GroupPolicy\User: Restriction <======= ATTENTION
GroupPolicyUsers\S-1-5-21-1479852311-1289031698-2712840260-1001\User: Restriction <======= ATTENTION
HKU\S-1-5-21-1479852311-1289031698-2712840260-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1479852311-1289031698-2712840260-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01192017163833996\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01192017163833583 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01192017163833817 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1479852311-1289031698-2712840260-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01192017163837895 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1479852311-1289031698-2712840260-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01192017163837895 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> No File
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-12] (Oracle Corporation)
Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-12] (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -  No File
Toolbar: HKU\S-1-5-21-1479852311-1289031698-2712840260-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01192017163837895 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
FF Extension: (Search Incognito) - C:\Users\Bruce\AppData\Roaming\Mozilla\Firefox\Profiles\1jh29tqu.default-1478699463908\Extensions\@searchincognito.xpi [2016-12-30]
FF Extension: (AVG SafePrice) - C:\Users\Bruce\AppData\Roaming\Mozilla\Firefox\Profiles\1jh29tqu.default-1478699463908\Extensions\[email protected] [2016-11-14]
FF Extension: (Skype Click to Call) - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2016-10-21] [not signed]
FF Extension: (Skype Click to Call) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2016-10-21] [not signed]
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-1479852311-1289031698-2712840260-1000: @acestream.net/acestreamplugin,version=2.1.10.1 -> C:\Users\Bruce\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
FF Plugin HKU\S-1-5-21-1479852311-1289031698-2712840260-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01192017163833996: @acestream.net/acestreamplugin,version=2.1.10.1 -> C:\Users\Bruce\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
CustomCLSID: HKU\S-1-5-21-1479852311-1289031698-2712840260-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01192017163833996_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Bruce\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1479852311-1289031698-2712840260-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Bruce\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
Task: {02BB3D65-19BE-4E90-A83D-36E48BA25ABE} - System32\Tasks\{1E1E7784-29D0-42B6-91D4-F15F14205168} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {0757CC30-ADB2-42DF-A691-3AD80DAE16DA} - System32\Tasks\{7C0E046C-CBFF-4F9B-8E46-B933F880C9D7} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {0B19BA51-0471-4409-B685-AFD193C643CD} - System32\Tasks\{18CD543F-4424-4487-9A8C-08892755D502} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {0F0C5856-5A58-4CEE-861D-ACFC5C209C7A} - System32\Tasks\{A6B36F1D-5C04-4B3F-AA2E-1F729F4052FD} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {1180CE4B-10FF-4692-ACD7-F5F1F3C44475} - System32\Tasks\{077F4826-690F-435B-8288-C2599237049A} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {1397CD0A-6D8A-4403-BB56-FE124B871EA5} - System32\Tasks\{BE21D7C2-AAC0-49F9-BD3F-2D47A51F7F83} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {146F8FD6-6D1C-4805-89C3-124E83BE93F1} - System32\Tasks\{CC4EFB50-A60D-40D3-A7BC-88BD5CEC1462} => C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exe [2016-09-12] ()
Task: {150A6F14-25B1-4E4B-8D6B-97BEE9F451F3} - System32\Tasks\{0153A337-4205-4BF8-9C39-6B3C2576FDB9} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {1510AA62-D6ED-4819-8B31-3C001E2DB429} - System32\Tasks\{2F1E8C35-E3DF-4A82-B8FB-339711D502F3} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {15E14268-5EDB-42F4-A3AD-2E45EC5DD8D2} - System32\Tasks\{A5C7FB21-E9B0-4157-8A6E-C5E0FE82CB8A} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {17DCD81C-F075-4090-8255-2423D30132EB} - System32\Tasks\{1040F714-03E2-43C0-9886-4490154F3017} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {1B875FB2-547E-49D1-9453-392CF4F60FA8} - System32\Tasks\{9DE36E4C-CFC8-4007-B259-AD67E28402C4} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {1DD30930-3721-464A-A65A-6C0085A4006E} - System32\Tasks\{B97F9829-467F-4D13-B115-2758E8B62D0E} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {236FAC65-BD79-45DF-AB4B-9B3425F0013C} - System32\Tasks\{E2906F7F-52C7-454C-857C-9459C723FE31} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {23C3BD4D-38DE-4F8A-BC26-B63BC35DE9CA} - System32\Tasks\{2CBF4F9B-B0A9-490D-94A6-858999B4CABF} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {26872C7F-C53B-43EF-BA28-81D389897683} - System32\Tasks\{04950F8E-B05F-4BFC-9843-C066FCEE9ED6} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {2873CC6C-663A-4F9F-ADA1-825651700AF1} - System32\Tasks\{42AB5E33-BB15-4DCC-BFF3-7AA71681D404} => C:\Program Files (x86)\AOL Desktop 9.7\aol.exe [2014-07-02] (AOL Inc.)
Task: {2BC46CC6-6119-44D1-8220-54CD21BE4857} - System32\Tasks\{C652315A-9ADD-40EB-A34F-3641F0209125} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {2E06650B-2104-4636-90AC-453F5B106DDF} - System32\Tasks\{DD7C71E9-4984-4350-B7E4-08CE855D2578} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {2EA8ACA4-9A6E-4630-BD58-99FA394331DD} - System32\Tasks\{01B6BBA8-CB44-40BD-81A7-5BFDE4B1C339} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {2EEEE7B8-4479-4DA1-9DF0-FDE2F5431E91} - System32\Tasks\{F745A42A-FC38-4287-B770-63E5F8C7A013} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {30767B76-8438-4FA8-9ADC-B6E763038D75} - System32\Tasks\{F854DA57-FE9A-4E4D-9A9D-8DE8EBA9B3D7} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {31F31F69-5702-482E-A154-7A83800776C4} - System32\Tasks\{96BC8096-AF17-4542-B280-D59DEFEE566D} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {3691F861-542A-482B-A2B2-0700654A2197} - System32\Tasks\{D9A47C95-C072-4221-9917-FBDB406A09F3} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {37CA6698-4107-4A9D-991E-DAE16E226508} - System32\Tasks\{7DF98E04-8810-4EB6-A900-52181C105C52} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {3F75F252-B615-41CC-BA0F-E0CCB5DBB03F} - System32\Tasks\{9446CA5C-9E95-41AF-8AFC-99CE24AC13A7} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {413E4985-7801-40CD-8BEB-0DBEA0258EBE} - System32\Tasks\{6F9DAE44-576B-452E-BC5A-762B57583ABA} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {43CDDFF5-7CC6-46D4-8B96-1C03CA3DB6C5} - System32\Tasks\{6F756E2A-7435-4607-B789-F4858DAF3EE0} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {44EB95A2-F9B5-42AA-9DD9-F0125ECF0AA4} - System32\Tasks\{6943F5FD-BF22-46AC-8EBC-85BDA5911663} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {46EA21CD-4B70-46BF-A83B-1BAC44C23F49} - System32\Tasks\{AE7FC8B9-A1BC-4E42-BD12-5FF172E3AEC2} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {498F1C28-B66B-4C08-A762-B76571C4159A} - System32\Tasks\{4887780A-8CFE-4C9D-B015-AEB51767DBF9} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {4AF56FFB-F471-4065-992C-AC645A095D78} - System32\Tasks\{D136421D-98D8-4467-99C3-9982890110EB} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {4B6512D8-06C0-4541-8F62-3A58ED478C8F} - System32\Tasks\{B59DA54F-1923-474A-BAF4-AB0F360DC8A6} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {4D6C2C7A-C90E-4E39-A85C-8C73709AA734} - System32\Tasks\{B79A6727-8DD3-4A51-A67D-FD3FC327779B} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {4FAD9543-CED1-4971-B9E6-70709264ED90} - System32\Tasks\{88A644D1-C931-4441-B33D-651964EDDE8D} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {5123955E-B39B-47FA-95DC-6B221F6E0858} - System32\Tasks\{E0E3F584-E78D-4965-984F-09D1A846ECC2} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {517C8452-71BF-47B4-99D9-F925384AB097} - System32\Tasks\{5DB6D197-C506-4BF9-AF45-74D709945977} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {543ECAF9-4515-4B2B-87B6-16F2D3E02529} - System32\Tasks\{F0919D05-0903-48DF-8A80-09D66EC596D9} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {5584B9CB-0E77-45B2-92A3-EB4AC4EB6345} - System32\Tasks\{EDCEF980-9E8C-482D-BEEE-0DD6B5CDE540} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {5A326088-6D50-48F2-927F-7C42556BFC15} - System32\Tasks\{507C4835-5A84-425F-BA42-9AD2D0B644A8} => C:\Program Files (x86)\AOL Desktop 9.7c\aol.exe [2015-03-18] (AOL Inc.)
Task: {5B790327-4112-4A53-A8AD-7E2D2127C6D8} - System32\Tasks\{CDF4FD45-EA33-4DE7-8171-6FA42176A2DC} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {5BBA60AF-B969-47F1-A132-BA50A9E4CCCA} - System32\Tasks\{25C040ED-9506-4C70-B9A1-6499BBB741EE} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {638832F4-1E55-40B9-874B-A4A66E1C3028} - System32\Tasks\{AE0A14D6-12DB-4623-B9F7-4490023F9E63} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {64814359-DAB1-4EAF-A55D-A26345C67ED0} - System32\Tasks\{74E2077A-3E51-45D5-ACE3-B6E7C27D2768} => C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exe [2016-09-12] ()
Task: {67C60CA0-07BB-41DE-AEAE-0E82484313DB} - System32\Tasks\{2A1BC305-1828-4BBE-8769-378A0BAFC970} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {69793BDF-61CB-45F2-8E0F-A079E282F303} - System32\Tasks\{582547EF-0556-4AB6-8AA0-3086784A2BB3} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {6C203CA7-935E-4316-BDE9-A486FFBCBE19} - System32\Tasks\{F2E2B51E-D1D2-49D5-84DD-EF803F5C710E} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {6D0196DD-C1E2-427A-ADB4-F3E57FFCD108} - System32\Tasks\{94C6F751-F272-487B-95B6-479CB22CE859} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {72A788D7-D1E2-483E-B707-8253C6332219} - System32\Tasks\{0D1D6B21-8BFC-4219-BC4A-7DB21FF3BE84} => c:\Program Files (x86)\AOL Desktop 9.7\aol.exe [2014-07-02] (AOL Inc.)
Task: {72AE0048-23C5-46E6-B405-14EF26BFB980} - System32\Tasks\{01FBC8C2-737A-47FB-8DF1-F7A050287183} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {737DF108-AFA5-4182-9FAD-AA9678B1040A} - System32\Tasks\{FDF8E07A-D4B2-40CD-90C9-C0705C603CBB} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {755F6C1A-704F-42A5-97DE-31972BDE6001} - System32\Tasks\{AA410913-6EE3-4B7D-BB20-E4728AC4C58B} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {807EA712-868D-4A27-989C-854D92FFDA95} - System32\Tasks\{46BF5734-C206-43F7-8200-BEB9A99B8A43} => pcalua.exe -a E:\setup.exe -d E:\
Task: {840B5C4C-6610-4896-91D4-5C9D82F992CE} - System32\Tasks\{B4DCC82A-C108-4040-B37E-09BA7415EE3E} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {89DCDC54-04F1-47C4-A9A8-8DC9D8F1A64C} - System32\Tasks\{7D892B5D-A499-4B51-B5E7-D9010305D7F3} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {8AB6C35B-D8F4-4C6C-9788-5E85C4DD07E1} - System32\Tasks\{2141BE8D-C6B8-44D4-9A22-535B7E84814C} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {8BF7F36A-310B-48F8-B4FC-7026029173EF} - System32\Tasks\{AC6431B1-B272-4D7B-92F5-E1ADEE640723} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {8EC71E25-AF7B-4603-9F14-70550AEFF9F5} - System32\Tasks\{C51F4C76-5078-4F7B-A4A2-F68775BD08A3} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {90C78D7C-F072-4939-BC35-D5187D1BFDAE} - System32\Tasks\{7CFC8E3E-EA64-481E-B99B-C6586C81AC60} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {9512DBA5-1931-422A-ADBE-926B2CFA6E08} - System32\Tasks\{D82D6A5F-6F84-43C9-947D-AC52AA0E5546} => C:\Program Files (x86)\AOL Desktop 9.7b\aol.exe [2015-03-18] (AOL Inc.)
Task: {9C89882C-C904-4125-9949-E625E074CE21} - System32\Tasks\{EF7BADE5-6FAB-46B4-AE5F-26DE7FE157DC} => C:\Program Files (x86)\AOL Desktop 9.7\aol.exe [2014-07-02] (AOL Inc.)
Task: {9EA971D6-93D0-4568-9443-7A1484EFB484} - System32\Tasks\{4401F783-E480-43DD-9004-3001A9A5A314} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {A112ABF6-E729-4646-85B4-82C52BB5E455} - System32\Tasks\{4F129584-DB9A-40F3-A0FA-14BFD8FFF808} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {A4721BDD-C72B-4EB4-9363-F22E29FE0FEB} - System32\Tasks\{820E08BD-63C0-4D92-B424-31A204BDC8BF} => C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exe [2016-09-12] ()
Task: {A7FDE5A5-43F5-4214-9212-347AE26CE0C6} - System32\Tasks\{B98F02E8-E710-4BD8-97D4-0F513CC13B62} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {A978C119-F943-4D2F-824D-8179EC59393D} - System32\Tasks\{3B45BA47-4CDB-4369-B8A6-421A393974BC} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {A9DD49DB-CB00-4F9D-8AF5-138F1CAB2125} - System32\Tasks\{364252E8-621D-4ED1-9F14-BAA6C1DFA602} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {AB2F894F-D070-4FFD-A9B1-A26ABBD1F1BF} - System32\Tasks\{117B543C-4983-4060-9E09-A61607A112F5} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {AD9274C7-84B6-4545-9290-99FBB803E4F6} - System32\Tasks\{2CDE3539-F50D-4C6E-848D-CFF2017B4EEB} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {AF34F34B-F553-4077-A6B6-2003C3E11FF0} - System32\Tasks\{31473EDE-3C48-4552-BF03-4C519F438C26} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {B589D9D0-4004-42C3-9813-111161B7A400} - System32\Tasks\{B703000E-1D68-4E1E-838E-C122E0C58ACD} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {B5E04A94-37CB-435A-A901-D31E8CE20463} - System32\Tasks\{D2736A2F-4E24-4A58-9A4A-252122D221A3} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {B87DDEF5-F226-4875-A2D0-0339ECAE360B} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {B8F78473-1599-4A93-AA01-8285C0A23A81} - System32\Tasks\{F935A272-1FAC-4E29-B78F-73D66773B98B} => C:\Program Files (x86)\AOL Desktop 9.7c\aol.exe [2015-03-18] (AOL Inc.)
Task: {BA080F7A-72EF-4F19-A52C-504A87018D88} - System32\Tasks\{066386FB-ABC2-4EA3-AABA-9C8A3FFEA9F6} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {BA29CEB0-9D66-44A1-8C20-C16A037881F9} - System32\Tasks\{6CC5FDED-A277-4045-8FEA-2BED51A7F2F0} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {BB34C0DC-399A-4AF2-B643-55D22AC11430} - System32\Tasks\{9415565F-7E5A-49F9-8AA9-0A8BCA430EAC} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {BB667C7E-9E55-4E41-970B-15A96712AC35} - System32\Tasks\{415EB7D0-B13F-4BB8-B61C-7DBA7274D2EC} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {BBAFE3DF-0743-4128-AC85-39C5157044F8} - System32\Tasks\{419BF509-140B-4504-98B2-555F497CB749} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {BF257A44-21DB-4BFD-98D6-8C4C4883B68C} - System32\Tasks\{E09BE143-8CE2-4651-8F44-4F3FCA5A9885} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {BFA62B7C-6A4D-4A49-81D9-893A33E59F06} - System32\Tasks\{D464F35B-5096-4359-A433-E2E0A4F52599} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {C4FA7BE9-BDDA-4C9B-83ED-0954596EAD26} - System32\Tasks\{5529E500-E5EA-4DAD-ADD4-255C524EA930} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {C568BA1D-4BED-486E-83A0-645999814D53} - System32\Tasks\{FB2AC198-A404-4E76-B97E-E674A52A4157} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {C6E7004B-A93E-4068-A319-24B02306ABEC} - System32\Tasks\{2D8E857C-3D2C-4FD7-8F0D-AD926AF5833D} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {C7D7408E-BAEE-45BA-994F-9476C16727A1} - System32\Tasks\{1B0319B5-8E92-4FEF-9BAC-87FD27801AB2} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {C9BA2B27-F714-4A28-B3C1-CBC9011E5175} - System32\Tasks\{6466DA6C-D3B3-49C8-8916-176A662B6473} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {CBCF7108-FBBF-487D-BD67-430618B18F13} - System32\Tasks\{50FE3B3D-AF7D-444D-A7AB-96E1A6C67E13} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {CE09CB71-4A64-485D-9019-E69B6F22AC88} - System32\Tasks\{AEFC7C3A-E176-491F-884A-6DCF72834661} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {CE50F8B6-C959-4C39-A32C-435819DAD001} - System32\Tasks\{30698D33-F1C4-451A-B4B9-DC2D87F78BE1} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {D1656B1E-2B3D-42AF-A85A-E18C446788DB} - System32\Tasks\{E70504FC-FEDD-4411-9377-05324A25061A} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {D1D52484-3D54-4240-9A98-90AB351380D4} - System32\Tasks\{DBBFBC89-D3BD-4AB9-B81D-E82FA03F4494} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {D3E424D6-38DE-478D-BCBF-42E5C8226392} - System32\Tasks\{2068950A-44CA-4FEF-9FCD-7D42EAA812FF} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {D3E5C563-6A35-4DF5-9E59-10DDA9A4013D} - System32\Tasks\{7DB3A216-A86C-4D08-A950-7782BBD4D567} => pcalua.exe -a E:\SETUP.EXE -d E:\
Task: {D573E836-02F6-4011-8B20-745EE17DCA78} - System32\Tasks\{F471AA8C-6290-4263-BDCA-196AA8507224} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {D81D153E-0EEE-4E22-8384-7357F3D2162A} - System32\Tasks\{F776DCFF-0135-48D5-B4BD-68A63C965DCD} => C:\Program Files (x86)\AOL Desktop 9.7\aol.exe [2014-07-02] (AOL Inc.)
Task: {DA211E34-C72F-4BC5-933E-642C017094F6} - System32\Tasks\{8911CF6F-49D0-4DF5-BDA8-FE1F995CC115} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {E75C4F56-78E7-438D-AF06-FBD93CB9F5C9} - System32\Tasks\{6373226F-DFED-4A57-8D34-A83B5C89E947} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {EAC39978-FF71-45A1-95DB-0B29B1FF8343} - System32\Tasks\HPCeeScheduleForBruce => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {ECC1E4A7-FCB2-495E-A0C4-CCACB96C5FA2} - System32\Tasks\{23073BA2-44FF-4BF2-BE93-073394C29C07} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {ED3EFDF8-8DA4-4187-A470-641CCD1460FD} - System32\Tasks\{D04E40EB-693E-42F6-8042-8C4AB357C5C5} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {EDAAB4F9-9993-4A07-92B7-609487BC3636} - System32\Tasks\{D4CA91F1-BE4E-4850-BBE9-91771B27411D} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {EDB8ED83-F189-43A4-8E2E-83FE46B581D4} - System32\Tasks\{EECC8825-4973-44AB-B2C5-AC6CD9F8BF79} => C:\Program Files (x86)\AOL Desktop 9.7c\aol.exe [2015-03-18] (AOL Inc.)
Task: {F1253407-3075-40A0-B4DC-CE6F54654A72} - System32\Tasks\{0A9FBFAA-E1C5-40BF-A808-6F1A957DFB1D} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {F21E3342-6105-4ACB-A6CB-3526E56DABB2} - System32\Tasks\{928C5F9C-7EA7-4095-8B78-D6A717CCBB3C} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {F4B1555B-4865-4123-9A8F-56D532B49650} - System32\Tasks\{CBC47437-F8DE-4ADC-AD6B-B90E1304BCE0} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {F4BF3ED6-ED36-4AC3-9109-9AF76B691744} - System32\Tasks\{DD9586CA-AF20-4D22-81E8-606FB254A1B6} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {F5F62D3A-32D5-4F09-84A2-981A944A569C} - System32\Tasks\{0E57CF4C-C805-4CA6-9E98-A2679340235B} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {F925843C-A811-41EC-ABD3-61DA8B6E1E02} - System32\Tasks\{AC836028-A91E-4127-BB4C-AAB659B92EF6} => C:\Program Files (x86)\AOL Desktop 9.7c\aol.exe [2015-03-18] (AOL Inc.)
Task: {FA119425-579B-4000-868D-25515F60BDAF} - System32\Tasks\{D4631943-737A-4D29-A777-A687CDDA79D4} => C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exe [2016-09-12] ()
Task: {FAFD8CC7-4970-40D6-982F-F043CD0EB90E} - System32\Tasks\{80F73C29-1B33-4B06-BC01-26E43EB71009} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {FD0614C8-8590-487A-80AF-4CB1B0115DB0} - System32\Tasks\{4C5302A3-FE42-47FA-AA13-49CBB1A61B4C} => C:\Program Files (x86)\AOL Desktop 9.7c\aol.exe [2015-03-18] (AOL Inc.)
Task: {FDC78D52-3726-4064-835D-CB6172D5A603} - System32\Tasks\{CA4BDC68-E11B-4413-A439-B06FD288B8A3} => C:\Program Files (x86)\AOL Desktop 9.7\aol.exe [2014-07-02] (AOL Inc.)
Task: {FEF7C0AA-8FBB-44D3-B25C-2594F2D93C9F} - System32\Tasks\{F0BB31E1-6BAC-4547-8C28-A06BB2160BC5} => C:\Program Files (x86)\AOL Desktop 9.8.0a\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: {FFF636DE-63B7-48A0-A90D-9A36B1E34719} - System32\Tasks\{A775A737-8166-41D0-BB78-2702D7966C4C} => C:\Program Files (x86)\AOL Desktop 9.8.0\aol.exe [2015-08-06] (AOL (UK) Limited)
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_194_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\HPCeeScheduleForBruce.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
AlternateDataStreams: C:\ProgramData\Temp:041C0562 [119]
AlternateDataStreams: C:\ProgramData\Temp:0B4227B4 [133]
AlternateDataStreams: C:\ProgramData\Temp:2CB9631F [134]
AlternateDataStreams: C:\ProgramData\Temp:373E1720 [126]
CMD: for /F "tokens=*" %1 in ('wevtutil.exe el') DO wevtutil.exe cl "%1"


*****************

Processes closed successfully.
HKLM\System\CurrentControlSet\Control\Session Manager\\BootExecute => value restored successfully
C:\Windows\system32\GroupPolicy\User => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\system32\GroupPolicyUsers\S-1-5-21-1479852311-1289031698-2712840260-1001\User => moved successfully
HKU\S-1-5-21-1479852311-1289031698-2712840260-1000\SOFTWARE\Policies\Microsoft\Internet Explorer => key not found.
HKU\S-1-5-21-1479852311-1289031698-2712840260-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01192017163833996\SOFTWARE\Policies\Microsoft\Internet Explorer => key not found.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page => value not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value not found.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value not found.
 


  • 0

Advertisements


#32
Bruce42

Bruce42

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

The process Explorer Text is as follows:-

 

Process    CPU    Private Bytes    Working Set    PID    Description    Company Name    Verified Signer
audiodg.exe        20,152 K    18,848 K    3044    Windows Audio Device Graph Isolation     Microsoft Corporation    
avgemca.exe        2,676 K    16,760 K    4544    AVG E-mail Scanner    AVG Technologies CZ, s.r.o.    
avgsvca.exe        10,900 K    27,792 K    6972    AVG Service Process    AVG Technologies CZ, s.r.o.    
avguix.exe        7,360 K    21,164 K    3056    AVG User Interface    AVG Technologies CZ, s.r.o.    
dwm.exe        1,868 K    19,616 K    3176    Desktop Window Manager    Microsoft Corporation    
lsass.exe        12,060 K    27,064 K    728    Local Security Authority Process    Microsoft Corporation    
lsm.exe        2,624 K    10,656 K    468    Local Session Manager Service    Microsoft Corporation    
mbamtray.exe        20,688 K    20,812 K    4024    Malwarebytes Tray Application    Malwarebytes    
procexp.exe        2,664 K    7,828 K    3984    Sysinternals Process Explorer    Sysinternals - www.sysinternals.com    
services.exe        5,784 K    19,160 K    720    Services and Controller app    Microsoft Corporation    
smss.exe        544 K    1,964 K    292    Windows Session Manager    Microsoft Corporation    
spoolsv.exe        8,056 K    14,120 K    4948    Spooler SubSystem App    Microsoft Corporation    
svchost.exe        7,060 K    25,452 K    2176    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        2,044 K    17,692 K    2676    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        1,988 K    5,384 K    5828    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        3,552 K    20,188 K    1560    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        5,696 K    24,036 K    1052    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        10,844 K    22,292 K    1936    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        2,908 K    16,084 K    4920    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        27,152 K    43,200 K    1352    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        5,312 K    24,420 K    1136    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        158,500 K    179,724 K    1384    Host Process for Windows Services    Microsoft Corporation    
VSSVC.exe        2,384 K    7,152 K    5252    Microsoft® Volume Shadow Copy Service    Microsoft Corporation    
wininit.exe        1,952 K    9,904 K    528    Windows Start-Up Application    Microsoft Corporation    
winlogon.exe        3,364 K    14,320 K    644    Windows Logon Application    Microsoft Corporation    
WLIDSVCM.EXE        1,712 K    3,844 K    6712    Microsoft® Windows Live ID Service Monitor    Microsoft Corp.    
WmiPrvSE.exe        2,984 K    6,812 K    2368    WMI Provider Host    Microsoft Corporation    
WUDFHost.exe        2,320 K    16,808 K    4908    Windows Driver Foundation - User-mode Driver Framework Host Process    Microsoft Corporation    
avgui.exe    < 0.01    8,184 K    50,236 K    1516    AVG User Interface    AVG Technologies CZ, s.r.o.    
csrss.exe    < 0.01    2,576 K    15,136 K    428    Client Server Runtime Process    Microsoft Corporation    
WLIDSVC.EXE    < 0.01    7,468 K    16,848 K    4792    Microsoft® Windows Live ID Service    Microsoft Corp.    
svchost.exe    < 0.01    14,820 K    32,452 K    1424    Host Process for Windows Services    Microsoft Corporation    
avgidsagent.exe    < 0.01    34,736 K    75,568 K    1844    AVG Identity Protection Service    AVG Technologies CZ, s.r.o.    
svchost.exe    < 0.01    16,328 K    29,132 K    1676    Host Process for Windows Services    Microsoft Corporation    
dllhost.exe    < 0.01    7,024 K    9,816 K    6124    COM Surrogate    Microsoft Corporation    
RapportMgmtService.exe    < 0.01    38,172 K    41,452 K    1192    RapportMgmtService    IBM Corp.    
avgfws.exe    < 0.01    9,160 K    59,256 K    1600    AVG Firewall Service    AVG Technologies CZ, s.r.o.    
avgwdsvc.exe    < 0.01    16,788 K    57,076 K    2108    AVG Watchdog Service    AVG Technologies CZ, s.r.o.    
wmpnetwk.exe    0.01    14,836 K    9,744 K    6320    Windows Media Player Network Sharing Service    Microsoft Corporation    
AppleMobileDeviceService.exe    0.01    4,200 K    10,848 K    2436    MobileDeviceService    Apple Inc.    
svchost.exe    0.01    6,784 K    30,728 K    5116    Host Process for Windows Services    Microsoft Corporation    
RapportService.exe    0.01    72,676 K    83,720 K    3628    RapportService    IBM Corp.    
explorer.exe    0.02    55,568 K    95,692 K    3192    Windows Explorer    Microsoft Corporation    
csrss.exe    0.02    15,112 K    22,704 K    568    Client Server Runtime Process    Microsoft Corporation    
avgcsrva.exe    0.02    31,436 K    414,264 K    920    AVG Scanning Core Module - Server Part    AVG Technologies CZ, s.r.o.    
avgrsa.exe    0.03    15,712 K    45,360 K    796    AVG Resident Shield Service    AVG Technologies CZ, s.r.o.    
fsssvc.exe    0.05    23,136 K    33,240 K    1764    Windows Live Family Safety Service    Microsoft Corporation    
MBAMService.exe    0.05    344,004 K    329,912 K    2872    Malwarebytes Service    Malwarebytes    
avgnsa.exe    0.05    12,544 K    44,848 K    4488    AVG Online Shield Service    AVG Technologies CZ, s.r.o.    
System    0.24    516 K    45,968 K    4            
procexp64.exe    0.34    25,192 K    44,332 K    5764    Sysinternals Process Explorer    Sysinternals - www.sysinternals.com    
Interrupts    0.40    0 K    0 K    n/a    Hardware Interrupts and DPCs        
firefox.exe    4.24    761,392 K    768,388 K    1724    Firefox    Mozilla Corporation    
svchost.exe    24.91    50,068 K    53,160 K    1448    Host Process for Windows Services    Microsoft Corporation    
System Idle Process    65.20    0 K    24 K    0            
 


  • 0

#33
Bruce42

Bruce42

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

I copied you two lines Tasklist etc into an Administrator Command Prompt, but it just displayed' windows cannot find the specified path'


  • 0

#34
Bruce42

Bruce42

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

I have downloaded SPECCY but it simply gives a comprehensive analysis of every component of the computer - I don't see any way additionally that it can 'RUN' ????


  • 0

#35
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,017 posts
  • MVP

tasklist.exe should be in the folder:

c:\windows\system32\

which is where the admin command prompt starts from so it should be able to find it.

 

If that won't fork then start up process explorer again and find the svchost with the largest %CPU.

 

In the last log is what:

 

System    0.24    516 K    45,968 K    4            
procexp64.exe    0.34    25,192 K    44,332 K    5764    Sysinternals Process Explorer    Sysinternals - www.sysinternals.com    
Interrupts    0.40    0 K    0 K    n/a    Hardware Interrupts and DPCs        
firefox.exe    4.24    761,392 K    768,388 K    1724    Firefox    Mozilla Corporation    
svchost.exe    24.91    50,068 K    53,160 K    1448    Host Process for Windows Services    Microsoft Corporation    <=========
System Idle Process    65.20    0 K    24 K    0      

 

 

Hover over svchost.exe  and it will tell you what services are involved.  

 

I just want a log from Speccy as it tells me the temperature that your PC is running and also the condition of your hard drive.  Both of which influence the speed.  

 

Tho it looks like the svchost is the culprit.  Tasklist /svc would tell us exactly what services are running under each svchost.exe.  I have to have a process explorer log taken at the same time because the only way to tell the svchost.exes apart is by the process ID number which I have highlighted in the quoted text.


  • 0

#36
Bruce42

Bruce42

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

I have gone to c:\windows\system32\ and found the tasklist.exe but when opened the command prompt runs a list and closes again at such speed it is merely a blur.

So I have process explorer opened again and the largest % user is Firefox but it has no svchost.exe beneath it.  The next largest is MBAMService.exe at 24.9%. The svchost.exe beneath it when hovered over displays a long list of details but I don't know how to copy this conveniently. I will copy by hand and list it for you if that is the way ???

 

I do appreciate it is very frustrating for you trying to work with such uninformed information. Sincere apologies.


Edited by Bruce42, 22 January 2017 - 05:26 AM.

  • 0

#37
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,017 posts
  • MVP

It sounds like things have changed since the last process explorer.  Please post a new log.  Remember to wait at least a minute after you start process explorer before you mkae the log.

 

 

 

So if task list is there then

tasklist  /svc  >  \junk .txt

should work so try typing that in.  What this does is send the output to a text file called junk.txt located in C:\ If that works then you should be able to open the file in notepad with the command

notepad  \junk.txt

which you can then copy and paste to a REPLY.

 

Alternatively, you can hand copy out the info.


  • 0

#38
Bruce42

Bruce42

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

HEY !!!!!! It worked - just wish I understood what I am doing. The list produced is as follows:-

 

Image Name                     PID Services                                    
========================= ======== ============================================
System Idle Process              0 N/A                                         
System                           4 N/A                                         
smss.exe                       288 N/A                                         
avgrsa.exe                     600 N/A                                         
avgcsrva.exe                   740 N/A                                         
csrss.exe                      820 N/A                                         
wininit.exe                    940 N/A                                         
csrss.exe                      984 N/A                                         
winlogon.exe                   392 N/A                                         
services.exe                   508 N/A                                         
lsass.exe                      484 EFS, SamSs                                  
lsm.exe                        864 N/A                                         
svchost.exe                   1044 DcomLaunch, PlugPlay, Power                 
svchost.exe                   1132 RpcEptMapper, RpcSs                         
RapportMgmtService.exe        1184 RapportMgmtService                          
svchost.exe                   1332 AudioSrv, Dhcp, eventlog, lmhosts, wscsvc   
svchost.exe                   1368 AudioEndpointBuilder, hidserv, IPBusEnum,   
                                   Netman, PcaSvc, SysMain, TrkWks, UxSms,     
                                   WPDBusEnum, wudfsvc                         
svchost.exe                   1400 EventSystem, fdPHost, FontCache, netprofm,  
                                   nsi, WinHttpAutoProxySvc                    
svchost.exe                   1424 Appinfo, BITS, Browser, IKEEXT, iphlpsvc,   
                                   LanmanServer, MMCSS, ProfSvc, Schedule,     
                                   seclogon, SENS, ShellHWDetection, Themes,   
                                   Winmgmt, wuauserv                           
svchost.exe                   1520 gpsvc                                       
svchost.exe                   1636 CryptSvc, Dnscache, LanmanWorkstation,      
                                   NlaSvc                                      
spoolsv.exe                   1860 Spooler                                     
svchost.exe                   1900 BFE, DPS, MpsSvc                            
armsvc.exe                    1996 AdobeARMservice                             
AppleMobileDeviceService.     2044 Apple Mobile Device Service                 
avgfws.exe                    1760 avgfws                                      
avgidsagent.exe               1816 AVGIDSAgent                                 
avgsvca.exe                   1776 avgsvc                                      
avgwdsvc.exe                  2084 avgwd                                       
mDNSResponder.exe             2124 Bonjour Service                             
svchost.exe                   2148 DiagTrack                                   
ezSharedSvcHost.exe           2208 ezSharedSvc                                 
fsssvc.exe                    2284 fsssvc                                      
LVPrcSrv.exe                  2376 LVPrcS64                                    
LVPrS64H.exe                  2432 N/A                                         
ogmservice.exe                2460 ogmservice                                  
pdfsvc.exe                    2524 pdfcDispatcher                              
RealPlayerUpdateSvc.exe       2592 RealPlayerUpdateSvc                         
WLIDSVC.EXE                   2752 wlidsvc                                     
MBAMService.exe               2848 MBAMService                                 
WLIDSVCM.EXE                  3064 N/A                                         
svchost.exe                   3464 PolicyAgent                                 
avgnsa.exe                    1264 N/A                                         
svchost.exe                   1752 SSDPSRV, upnphost, wcncsvc                  
avgemca.exe                   3128 N/A                                         
WUDFHost.exe                  4536 N/A                                         
HPSA_Service.exe              4380 HP Support Assistant Service                
wmpnetwk.exe                  1128 WMPNetworkSvc                               
taskhost.exe                  4292 N/A                                         
dwm.exe                       4088 N/A                                         
explorer.exe                  2688 N/A                                         
RapportService.exe            5080 N/A                                         
mbamtray.exe                  1020 N/A                                         
SpotifyWebHelper.exe          4980 N/A                                         
avguix.exe                    4960 N/A                                         
avgui.exe                     5116 N/A                                         
ctfmon.exe                    6020 N/A                                         
firefox.exe                   5272 N/A                                         
audiodg.exe                   6336 N/A                                         
taskeng.exe                   1260 N/A                                         
cmd.exe                       3672 N/A                                         
conhost.exe                   6732 N/A                                         
tasklist.exe                  4564 N/A                                         
WmiPrvSE.exe                  2952 N/A                                         
 


  • 0

#39
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,017 posts
  • MVP

I need a new process explorer log to go with the above.  If you haven't rebooted just create a new Process Explorer log.  If you have rebooted then I need a new tasklist too.


  • 0

#40
Bruce42

Bruce42

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

and the NEW process Exporer log requested after a full minute as follows:-

 

Process    CPU    Private Bytes    Working Set    PID    Description    Company Name    Verified Signer
System Idle Process    46.90    0 K    24 K    0            
svchost.exe    24.87    142,652 K    72,508 K    1424    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
avgidsagent.exe    24.72    40,868 K    44,288 K    1816    AVG Identity Protection Service    AVG Technologies CZ, s.r.o.    (Verified) AVG Technologies CZ
procexp64.exe    1.11    30,236 K    50,284 K    7100    Sysinternals Process Explorer    Sysinternals - www.sysinternals.com    (Verified) Microsoft Corporation
firefox.exe    0.61    843,592 K    862,316 K    5272    Firefox    Mozilla Corporation    (Verified) Mozilla Corporation
System    0.55    512 K    45,476 K    4            
Interrupts    0.49    0 K    0 K    n/a    Hardware Interrupts and DPCs        
MBAMService.exe    0.29    316,388 K    326,460 K    2848    Malwarebytes Service    Malwarebytes    (Verified) Malwarebytes Corporation
svchost.exe    0.26    140,756 K    141,316 K    1368    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
csrss.exe    0.11    15,660 K    16,264 K    984    Client Server Runtime Process    Microsoft Corporation    (Verified) Microsoft Windows
RapportMgmtService.exe    0.02    43,936 K    31,400 K    1184    RapportMgmtService    IBM Corp.    (Verified) IBM
explorer.exe    0.02    54,012 K    71,616 K    2688    Windows Explorer    Microsoft Corporation    (Verified) Microsoft Windows
AppleMobileDeviceService.exe    0.01    4,120 K    9,204 K    2044    MobileDeviceService    Apple Inc.    (Verified) Apple Inc.
RapportService.exe    0.01    60,216 K    40,256 K    5080    RapportService    IBM Corp.    (Verified) IBM
fsssvc.exe    0.01    39,532 K    47,884 K    2284    Windows Live Family Safety Service    Microsoft Corporation    (Verified) Microsoft Corporation
wmpnetwk.exe    0.01    15,188 K    8,924 K    1128    Windows Media Player Network Sharing Service    Microsoft Corporation    (Verified) Microsoft Windows
avgwdsvc.exe    < 0.01    16,932 K    31,796 K    2084    AVG Watchdog Service    AVG Technologies CZ, s.r.o.    (Verified) AVG Technologies CZ
taskhost.exe    < 0.01    13,708 K    14,984 K    4292    Host Process for Windows Tasks    Microsoft Corporation    (Verified) Microsoft Windows
WLIDSVC.EXE    < 0.01    7,320 K    13,480 K    2752    Microsoft® Windows Live ID Service    Microsoft Corp.    (Verified) Microsoft Corporation
lsass.exe    < 0.01    7,412 K    13,524 K    484    Local Security Authority Process    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe    < 0.01    11,196 K    17,376 K    1400    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
ezSharedSvcHost.exe    < 0.01    1,552 K    4,940 K    2208    Shared EasyBits services for Windows    EasyBits Software AS    (Verified) EasyBits Software AS
svchost.exe    < 0.01    15,744 K    16,660 K    1636    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
avgrsa.exe    < 0.01    14,836 K    30,808 K    600    AVG Resident Shield Service    AVG Technologies CZ, s.r.o.    (Verified) AVG Technologies CZ
csrss.exe    < 0.01    2,640 K    4,828 K    820    Client Server Runtime Process    Microsoft Corporation    (Verified) Microsoft Windows
avgui.exe    < 0.01    22,024 K    11,404 K    5116    AVG User Interface    AVG Technologies CZ, s.r.o.    (Verified) AVG Technologies CZ
WUDFHost.exe        2,340 K    5,508 K    4536    Windows Driver Foundation - User-mode Driver Framework Host Process    Microsoft Corporation    (Verified) Microsoft Windows
WmiPrvSE.exe        3,068 K    6,792 K    6428    WMI Provider Host    Microsoft Corporation    (Verified) Microsoft Windows
WLIDSVCM.EXE        1,616 K    3,520 K    3064    Microsoft® Windows Live ID Service Monitor    Microsoft Corp.    (Verified) Microsoft Corporation
winlogon.exe        3,348 K    6,620 K    392    Windows Logon Application    Microsoft Corporation    (Verified) Microsoft Windows
wininit.exe        1,692 K    4,336 K    940    Windows Start-Up Application    Microsoft Corporation    (Verified) Microsoft Windows
taskeng.exe        2,384 K    6,052 K    6988    Task Scheduler Engine    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        26,044 K    19,964 K    1332    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        6,608 K    12,100 K    1752    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        5,048 K    9,024 K    1132    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        11,608 K    13,184 K    1900    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        4,876 K    9,948 K    1044    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        3,576 K    7,620 K    1520    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        2,788 K    5,876 K    3464    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        7,088 K    12,088 K    2148    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
SpotifyWebHelper.exe        1,812 K    5,044 K    4980    SpotifyWebHelper    Spotify Ltd    (Verified) Spotify AB
spoolsv.exe        7,740 K    11,052 K    1860    Spooler SubSystem App    Microsoft Corporation    (Verified) Microsoft Windows
smss.exe        600 K    1,300 K    288    Windows Session Manager    Microsoft Corporation    (Verified) Microsoft Windows
services.exe        7,064 K    12,496 K    508    Services and Controller app    Microsoft Corporation    (Verified) Microsoft Windows
RealPlayerUpdateSvc.exe        2,176 K    7,220 K    2592            (Verified) RealNetworks
procexp.exe        2,676 K    7,828 K    5128    Sysinternals Process Explorer    Sysinternals - www.sysinternals.com    (Verified) Microsoft Corporation
pdfsvc.exe        1,996 K    6,248 K    2524    Dispatcher    PDF Complete Inc    (Verified) PDF Complete
ogmservice.exe        2,136 K    5,512 K    2460    Online Games Manager    RealNetworks, Inc.    (Verified) GameHouse Europe B.V.
mDNSResponder.exe        2,348 K    5,368 K    2124    Bonjour Service    Apple Inc.    (Verified) Apple Inc.
mbamtray.exe        19,476 K    25,880 K    1020    Malwarebytes Tray Application    Malwarebytes    (Verified) Malwarebytes Corporation
LVPrS64H.exe        1,340 K    4,416 K    2432    Logitech LVPrS64H Module.    Logitech Inc.    (Verified) Logitech Inc
LVPrcSrv.exe        3,196 K    6,112 K    2376    Logitech LVPrcSrv Module.    Logitech Inc.    (Verified) Logitech Inc
lsm.exe        2,700 K    4,320 K    864    Local Session Manager Service    Microsoft Corporation    (Verified) Microsoft Windows
HPSA_Service.exe        23,920 K    11,868 K    4380    HP Support Assistant Service    Hewlett-Packard Company    (Verified) Hewlett-Packard Company
dwm.exe        1,996 K    5,368 K    4088    Desktop Window Manager    Microsoft Corporation    (Verified) Microsoft Windows
ctfmon.exe        2,244 K    4,316 K    6020    CTF Loader    Microsoft Corporation    (Verified) Microsoft Windows
avguix.exe        7,800 K    13,488 K    4960    AVG User Interface    AVG Technologies CZ, s.r.o.    (Verified) AVG Technologies CZ
avgsvca.exe        10,840 K    23,220 K    1776    AVG Service Process    AVG Technologies CZ, s.r.o.    (Verified) AVG Technologies CZ
avgnsa.exe        17,712 K    23,972 K    1264    AVG Online Shield Service    AVG Technologies CZ, s.r.o.    (Verified) AVG Technologies CZ
avgfws.exe        8,988 K    18,912 K    1760    AVG Firewall Service    AVG Technologies CZ, s.r.o.    (Verified) AVG Technologies CZ
avgemca.exe        2,668 K    6,836 K    3128    AVG E-mail Scanner    AVG Technologies CZ, s.r.o.    (Verified) AVG Technologies CZ
avgcsrva.exe        32,104 K    190,000 K    740    AVG Scanning Core Module - Server Part    AVG Technologies CZ, s.r.o.    (Verified) AVG Technologies CZ
audiodg.exe        18,780 K    17,716 K    5840    Windows Audio Device Graph Isolation     Microsoft Corporation    (Verified) Microsoft Windows
armsvc.exe        1,220 K    3,696 K    1996    Adobe Acrobat Update Service    Adobe Systems Incorporated    (Verified) Adobe Systems
 


  • 0

Advertisements


#41
Bruce42

Bruce42

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

.


Edited by Bruce42, 22 January 2017 - 09:12 AM.

  • 0

#42
Bruce42

Bruce42

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

.


Edited by Bruce42, 22 January 2017 - 09:12 AM.

  • 0

#43
Bruce42

Bruce42

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

 


Edited by Bruce42, 22 January 2017 - 09:11 AM.

  • 0

#44
Bruce42

Bruce42

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

 


Edited by Bruce42, 22 January 2017 - 09:09 AM.

  • 0

#45
Bruce42

Bruce42

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

So Sorry for the repeats above which I have now deleted - it looked for all the world like there was no response when I pressed 'post'. I checked the Geeks page and nothing there so I was pressing again and again - and then they all posted !!!!


Edited by Bruce42, 22 January 2017 - 09:13 AM.

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP