RK
I've attached all 3 log files. Tha
My laptop has become erratic, v. slow and frequently freezes up
Started by
chris271
, Mar 26 2020 01:08 PM
#17
Posted 30 March 2020 - 08:34 AM
chris271
- Topic Starter
-
- Member
-
- 25 posts
Member
RK
I've attached first two log files. Thanks so much for your help. Machine seems be be running better today.....
Process expLorer to follow
chris
Attached Files
-
Fixlog.txt 100.9KB
169 downloads
-
FRST.txt 223.88KB
170 downloads
#18
Posted 30 March 2020 - 08:39 AM
RKinner
-
- Expert
-
- 24,625 posts
Malware Expert
Doesn't look like the fixlist worked. Did you forget to right click on FRST and Run as Admin? Please try again - you will probably need to redownload the fixlist as FRST removes it once you hit Fix.
#19
Posted 30 March 2020 - 08:40 AM
chris271
- Topic Starter
-
- Member
-
- 25 posts
Member
RK
Here's the Process explorer text of 3-30.
I just sent you the other two as attachments but I don't see the post. Let me know if you do not receive.
Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 20.92 60 K 8 K 0
MBAMService.exe 11.33 294,896 K 313,176 K 12792 Malwarebytes Service Malwarebytes
agent.exe 4,088 K 17,236 K 15324 FLEXnet Connect Agent Flexera Software LLC.
ISUSPM.exe 5,040 K 16,652 K 13260 Common Software Manager Flexera Software LLC.
dwm.exe 3.96 82,380 K 104,960 K 1284
WmiPrvSE.exe 6.19 23,056 K 35,572 K 6232
procexp64.exe 4.75 42,288 K 77,980 K 18392 Sysinternals Process Explorer Sysinternals - www.sysinternals.com
explorer.exe 0.30 66,588 K 139,372 K 10120 Windows Explorer Microsoft Corporation
SnagitEditor.exe 4.67 92,612 K 133,908 K 17604 Snagit Editor TechSmith Corporation
System 3.44 192 K 148 K 4
NEOPro.exe 2.80 122,104 K 181,688 K 16912 Nelson Email Organizer PRO Caelo Software BV.
svchost.exe 2.93 280,180 K 230,808 K 15548 Host Process for Windows Services Microsoft Corporation
svchost.exe 1.99 8,480 K 18,060 K 1604 Host Process for Windows Services Microsoft Corporation
Interrupts 1.65 0 K 0 K n/a Hardware Interrupts and DPCs
chrome.exe 0.56 178,276 K 209,420 K 16016 Google Chrome Google LLC
csrss.exe 0.86 3,324 K 6,204 K 848
svchost.exe 0.92 14,448 K 25,828 K 3268 Host Process for Windows Services Microsoft Corporation
chrome.exe 0.87 119,516 K 179,500 K 8704 Google Chrome Google LLC
CCleaner64.exe 0.58 4,780 K 3,616 K 18564 CCleaner Piriform Ltd
esrv_svc.exe 0.44 107,124 K 45,324 K 17932 Intel® System Usage Report
ClipMate.exe 0.47 31,092 K 24,796 K 14428 ClipMate 7 Thornsoft Development, Inc.
NPDFLM.exe 0.49 16,504 K 8,560 K 12612 NPdflm.exe Nuance Communications, Inc.
chrome.exe 0.02 35,396 K 60,448 K 16232 Google Chrome Google LLC
rf-chrome-nm-host.exe 0.96 12,328 K 24,848 K 16768 rf-chrome-nm-host Siber Systems Inc.
CarboniteService.exe 24.70 18,124 K 25,204 K 4580 Carbonite Secure Backup Engine Carbonite, Inc. (www.carbonite.com)
robotaskbaricon.exe 0.71 20,532 K 34,820 K 13772 RoboForm TaskBar Icon Siber Systems
lsass.exe 0.41 8,412 K 20,640 K 1004 Local Security Authority Process Microsoft Corporation
dllhost.exe 0.56 2,000 K 8,192 K 6160 COM Surrogate Microsoft Corporation
MfeAVSvc.exe 0.24 32,936 K 57,572 K 9368
svchost.exe 0.19 5,304 K 17,684 K 3976 Host Process for Windows Services Microsoft Corporation
FRST64.exe 0.21 363,760 K 390,528 K 19036 Farbar Recovery Scan Tool Farbar
ReiSystem.exe 0.15 6,104 K 15,216 K 6632
svchost.exe 0.21 10,236 K 18,408 K 1108 Host Process for Windows Services Microsoft Corporation
taskhostw.exe 0.20 10,852 K 21,764 K 8144 Host Process for Windows Tasks Microsoft Corporation
chrome.exe 0.11 102,124 K 131,016 K 2576 Google Chrome Google LLC
WUDFHost.exe 0.13 2,396 K 7,496 K 488
Snagit32.exe 0.11 52,264 K 88,432 K 17372 Snagit TechSmith Corporation
csrss.exe 0.09 1,976 K 5,616 K 764
chrome.exe 32,676 K 57,152 K 15556 Google Chrome Google LLC
svchost.exe 0.06 2,836 K 10,312 K 1796 Host Process for Windows Services Microsoft Corporation
servicehost.exe 0.06 14,448 K 28,684 K 5088 McAfee WebAdvisor McAfee, LLC
mcapexe.exe 0.07 4,976 K 12,284 K 10200 McAfee Access Protection McAfee, LLC
GladinetClient.exe 0.04 29,024 K 40,612 K 4320 Gladinet Cloud Suite Gladinet, INC
sqlservr.exe 0.05 507,524 K 355,672 K 5112 SQL Server Windows NT - 64 Bit Microsoft Corporation
chrome.exe 0.05 18,708 K 38,168 K 15960 Google Chrome Google LLC
svchost.exe 0.05 1,412 K 6,020 K 2216 Host Process for Windows Services Microsoft Corporation
svchost.exe 0.04 2,816 K 8,740 K 1160 Host Process for Windows Services Microsoft Corporation
chrome.exe 0.05 26,568 K 46,876 K 832 Google Chrome Google LLC
svchost.exe 4,760 K 12,784 K 2544 Host Process for Windows Services Microsoft Corporation
GameBar.exe 0.03 27,244 K 66,304 K 10512
svchost.exe 0.05 16,848 K 33,720 K 4588 Host Process for Windows Services Microsoft Corporation
svchost.exe 0.02 4,612 K 10,764 K 5656 Host Process for Windows Services Microsoft Corporation
uihost.exe 0.03 13,156 K 43,100 K 7320 McAfee WebAdvisor McAfee, LLC
svchost.exe 0.02 14,204 K 33,740 K 768 Host Process for Windows Services Microsoft Corporation
services.exe 0.01 6,084 K 11,268 K 980
mfemms.exe 0.01 4,476 K 12,500 K 5080 McAfee Management Service McAfee, LLC
Lenovo.Modern.ImController.PluginHost.Device.exe 0.02 23,368 K 39,272 K 20296 Lenovo.Modern.ImController.PluginHost Lenovo Group Ltd.
ReiGuard.exe 0.01 127,696 K 136,912 K 5388 Reimage Real Time Protection Reimage®
hamachi-2.exe 0.01 3,972 K 16,028 K 4792 Hamachi Client Tunneling Engine LogMeIn Inc.
unsecapp.exe 0.01 2,220 K 9,808 K 13084
AppleMobileDeviceService.exe 0.03 3,200 K 12,704 K 4572 MobileDeviceService Apple Inc.
TeamViewer_Service.exe 0.01 5,276 K 18,900 K 5484 TeamViewer 12 TeamViewer GmbH
PDFProFiltSrvPP.exe < 0.01 2,496 K 9,948 K 5256 PDFPro IFilter Service Nuance Communications, Inc.
svchost.exe 16,944 K 26,192 K 4036 Host Process for Windows Services Microsoft Corporation
w3dbsmgr.exe < 0.01 62,896 K 28,628 K 4052 Database Service Manager Actian Corporation
chrome.exe < 0.01 168,972 K 177,148 K 9456 Google Chrome Google LLC
svchost.exe < 0.01 3,396 K 12,256 K 6840 Host Process for Windows Services Microsoft Corporation
svchost.exe < 0.01 22,112 K 29,144 K 4624 Host Process for Windows Services Microsoft Corporation
conhost.exe < 0.01 6,728 K 13,184 K 4948
OfficeClickToRun.exe 35,260 K 56,996 K 4636 Microsoft Office Click-to-Run (SxS) Microsoft Corporation
svchost.exe 17,556 K 18,484 K 2068 Host Process for Windows Services Microsoft Corporation
SearchIndexer.exe 0.01 39,224 K 46,932 K 5672 Microsoft Windows Search Indexer Microsoft Corporation
svchost.exe 10,188 K 27,140 K 7188 Host Process for Windows Services Microsoft Corporation
SynTPEnh.exe < 0.01 7,064 K 21,184 K 6260 Synaptics TouchPad 64-bit Enhancements Synaptics Incorporated
svchost.exe 3,740 K 22,412 K 11408 Host Process for Windows Services Microsoft Corporation
GladFileMonSvc.exe < 0.01 2,924 K 9,608 K 4744 Gladinet Cloud Suite Gladinet, INC
OUTLOOK.EXE 139,260 K 261,752 K 14652 Microsoft Outlook Microsoft Corporation
SynLenovoHelper.exe 2,748 K 9,484 K 7084 SynLenovo Helper tool Synaptics
ibmpmsvc.exe 1,864 K 7,368 K 1976 Lenovo Power Management Service Lenovo.
LMIGuardianSvc.exe < 0.01 1,976 K 9,236 K 4940 LMIGuardianSvc LogMeIn, Inc.
ZPSTray.exe 22,036 K 31,428 K 3704 Zoner Photo Studio Autoupdate ZONER software
WUDFHost.exe 1,660 K 6,032 K 2140
WOSVSSSvr.exe 1,104 K 5,116 K 5228
wmpnetwk.exe 8,112 K 27,560 K 9188 Windows Media Player Network Sharing Service Microsoft Corporation
WmiPrvSE.exe 11,632 K 20,212 K 7276
WmiPrvSE.exe 4,708 K 11,836 K 15180
winlogon.exe 2,472 K 11,680 K 956
wininit.exe 1,432 K 6,884 K 840
WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe 0.03 14,180 K 39,908 K 1576 WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe Microsoft Corporation
wermgr.exe 3,032 K 2,060 K 21492
Video.UI.exe Suspended 23,748 K 56,540 K 3336
UploaderService.exe 2,348 K 10,772 K 5472 TechSmith Uploader Service TechSmith Corporation
unsecapp.exe 2,076 K 9,808 K 4556 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation
tposd.exe 2,476 K 13,988 K 8288 On screen display drawer Lenovo Group Limited
tpnumlkd.exe 2,516 K 8,500 K 9132
tphkload.exe 3,508 K 13,208 K 5444 ThinkPad Message Client Loader Lenovo Group Limited
SynTPLpr.exe 1,952 K 8,320 K 7072 TouchPad Driver Helper Application Synaptics Incorporated
SynTPHelper.exe 1,064 K 4,884 K 10980
SynTPEnhService.exe 1,640 K 6,972 K 5452 64-bit Synaptics Pointing Enhance Service Synaptics Incorporated
svchost.exe 6,524 K 10,788 K 2112 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,540 K 15,036 K 2360 Host Process for Windows Services Microsoft Corporation
svchost.exe 8,268 K 42,168 K 7624 Host Process for Windows Services Microsoft Corporation
svchost.exe 5,560 K 19,788 K 11772 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,872 K 11,636 K 17584 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,112 K 7,656 K 3020 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,684 K 12,920 K 3840 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,740 K 15,360 K 6532 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,256 K 8,536 K 2608 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,532 K 7,872 K 2260 Host Process for Windows Services Microsoft Corporation
svchost.exe 6,684 K 15,256 K 2032 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,404 K 9,168 K 4912 Host Process for Windows Services Microsoft Corporation
svchost.exe 7,820 K 27,572 K 14216 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,128 K 9,084 K 1448 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,532 K 6,180 K 4024 Host Process for Windows Services Microsoft Corporation
svchost.exe 7,684 K 16,320 K 4548 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,420 K 8,028 K 17332 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,424 K 13,596 K 13700 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,872 K 14,208 K 3248 Host Process for Windows Services Microsoft Corporation
svchost.exe 6,116 K 18,848 K 3628 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,752 K 10,320 K 3360 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,428 K 9,912 K 2828 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,720 K 11,188 K 1480 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,912 K 6,824 K 3352 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,700 K 13,576 K 2192 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,600 K 8,148 K 2964 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,688 K 6,780 K 1936 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,832 K 7,324 K 8512 Host Process for Windows Services Microsoft Corporation
svchost.exe 7,536 K 9,452 K 10596 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,832 K 11,992 K 18320 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,880 K 12,096 K 12920 Host Process for Windows Services Microsoft Corporation
svchost.exe 4,712 K 21,184 K 5640 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,780 K 6,312 K 1716 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,120 K 8,492 K 3768 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,856 K 8,128 K 8472 Host Process for Windows Services Microsoft Corporation
svchost.exe 4,152 K 14,836 K 3404 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,092 K 10,824 K 20356 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,040 K 8,068 K 2160 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,868 K 8,268 K 2668 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,416 K 13,580 K 13896 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,444 K 11,668 K 3676 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,224 K 12,516 K 1548 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,564 K 11,704 K 1432 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,776 K 11,316 K 1376 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,004 K 9,576 K 11456 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,788 K 7,872 K 2172 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,468 K 5,884 K 8316 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,296 K 5,744 K 5532 Host Process for Windows Services Microsoft Corporation
svchost.exe 4,032 K 14,340 K 4836 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,644 K 6,792 K 5340 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,336 K 5,580 K 5292 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,500 K 7,556 K 4168 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,876 K 9,100 K 4292 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,496 K 11,052 K 3040 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,316 K 10,472 K 3096 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,600 K 7,460 K 3032 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,944 K 8,228 K 2660 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,280 K 9,804 K 2336 Host Process for Windows Services Microsoft Corporation
svchost.exe 2,792 K 12,444 K 1668 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,840 K 8,140 K 1368 Host Process for Windows Services Microsoft Corporation
svchost.exe 1,988 K 7,016 K 1360 Host Process for Windows Services Microsoft Corporation
svchost.exe 972 K 3,948 K 740 Host Process for Windows Services Microsoft Corporation
svchost.exe 3,488 K 11,896 K 20096 Host Process for Windows Services Microsoft Corporation
SurSvc.exe 24,632 K 33,288 K 5436 Intel® System Usage Report
StartMenuExperienceHost.exe 47,040 K 86,792 K 12420
sqlwriter.exe 1,684 K 8,036 K 5648 SQL Server VSS Writer - 64 Bit Microsoft Corporation
sqlbrowser.exe 1,440 K 4,584 K 5540 SQL Browser Service EXE Microsoft Corporation
spoolsv.exe 6,136 K 16,904 K 3924 Spooler SubSystem App Microsoft Corporation
SnagPriv.exe 1,652 K 7,708 K 15500
smss.exe 1,160 K 1,196 K 416
smartscreen.exe 7,880 K 22,420 K 13388 Windows Defender SmartScreen Microsoft Corporation
SkypeBridge.exe 38,792 K 62,344 K 20608 SkypeBridge Microsoft Corporation
SkypeBackgroundHost.exe Suspended 1,988 K 11,972 K 13728 Microsoft Skype Microsoft Corporation
SkypeApp.exe Suspended 201,092 K 194,440 K 13752 SkypeApp Microsoft Corporation
sihost.exe 6,888 K 27,080 K 7000 Shell Infrastructure Host Microsoft Corporation
shtctky.exe 2,724 K 9,532 K 8720
SgrmBroker.exe 4,808 K 7,132 K 20020 System Guard Runtime Monitor Broker Service Microsoft Corporation
SettingSyncHost.exe 6,024 K 6,244 K 14136 Host Process for Setting Synchronization Microsoft Corporation
SetPoint.exe 7,636 K 24,808 K 14820 Logitech SetPoint Event Manager (UNICODE) Logitech, Inc.
SecurityHealthService.exe 2,856 K 11,508 K 17824 Windows Security Health Service Microsoft Corporation
SearchUI.exe Suspended 74,904 K 130,488 K 10372 Search and Cortana application Microsoft Corporation
SearchProtocolHost.exe 2,540 K 12,612 K 12608
SearchFilterHost.exe 1,464 K 6,572 K 7972
RuntimeBroker.exe 4,056 K 21,764 K 18900 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 2,396 K 9,212 K 15536 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 7,852 K 24,568 K 13596 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 7,728 K 28,356 K 9588 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 3,816 K 21,452 K 16420 Runtime Broker Microsoft Corporation
RuntimeBroker.exe 6,992 K 27,188 K 12664 Runtime Broker Microsoft Corporation
RemindersServer.exe Suspended 8,408 K 23,408 K 13856 Reminders WinRT OOP Server Microsoft Corporation
ReimageApp.exe < 0.01 1,544 K 7,096 K 1308 Reimage Application reimage
Registry 12,244 K 227,352 K 96
RAVCpl64.exe 4,252 K 14,324 K 12704 Realtek HD Audio Manager Realtek Semiconductor
RAVBg64.exe 5,848 K 14,604 K 13536 HD Audio Background Process Realtek Semiconductor
RAVBg64.exe 5,832 K 14,608 K 14668 HD Audio Background Process Realtek Semiconductor
ProtectedModuleHost.exe 5,160 K 16,696 K 8536
ProductUpdater.exe 29,772 K 42,592 K 14036 ProductUpdater
procexp.exe 4,624 K 10,980 K 2568 Sysinternals Process Explorer Sysinternals - www.sysinternals.com
PrintIsolationHost.exe 1,368 K 6,860 K 11084
PresentationFontCache.exe 25,304 K 20,788 K 7636 PresentationFontCache.exe Microsoft Corporation
PowerMgr.exe 5,460 K 7,576 K 9844 Lenovo Power Manager Host Lenovo
PEFService.exe 1,632 K 7,964 K 5276 McAfee PEF Service McAfee, LLC.
ONENOTEM.EXE 2,464 K 2,452 K 14184 Send to OneNote Tool Microsoft Corporation
nssm-x64.exe 1,888 K 6,296 K 4532 The non-sucking service manager
notepad.exe 4,064 K 17,344 K 20200 Notepad Microsoft Corporation
notepad.exe 3,308 K 16,912 K 13552 Notepad Microsoft Corporation
notepad.exe 3,428 K 16,872 K 20712 Notepad Microsoft Corporation
node.exe 48,452 K 52,064 K 10164
ModuleCoreService.exe 10,804 K 33,988 K 14244 McAfee Module Core Service McAfee, LLC.
ModuleCoreService.exe 24,376 K 56,988 K 5096 McAfee Module Core Service McAfee, LLC.
micmute.exe 2,656 K 11,072 K 4852 Microphone Mute Controll Service for ThinkPad Lenovo Group Limited
mfevtps.exe 7,492 K 13,844 K 8272
Memory Compression < 0.01 148 K 25,348 K 2316
McUICnt.exe 9,196 K 4,824 K 4800 McAfee McAfee, LLC.
mcshield.exe 46,288 K 19,764 K 11584
McCSPServiceHost.exe 7,092 K 22,836 K 10548 McAfee CSP Service Host McAfee, LLC.
mbamtray.exe < 0.01 30,964 K 46,548 K 20236 Malwarebytes Tray Application Malwarebytes
LSCNotify.exe 1,428 K 1,472 K 10344 Lenovo Solution Center Notifications Lenovo
Lenovo.Modern.ImController.exe 32,496 K 56,172 K 4780 Lenovo.Modern.ImController Lenovo Group Ltd.
KHALMNPR.exe 3,976 K 12,416 K 14992 Logitech KHAL Main Process Logitech, Inc.
jusched.exe 2,440 K 16,244 K 16784 Java Update Scheduler Oracle Corporation
jucheck.exe 3,304 K 15,408 K 21460 Java Update Checker Oracle Corporation
Jing.exe 119,032 K 79,956 K 15140
ISUSPM.exe 2,208 K 9,848 K 9908 Common Software Manager Flexera Software LLC.
ISUSPM.exe 2,140 K 9,824 K 10148 Common Software Manager Flexera Software LLC.
ISUSPM.exe 2,060 K 9,816 K 2088 Common Software Manager Flexera Software LLC.
ISPA.exe 4,608 K 13,700 K 15184 ISPA
igfxHK.exe 5,532 K 11,100 K 9392 igfxHK Module Intel Corporation
igfxEM.exe 6,656 K 14,324 K 9328 igfxEM Module Intel Corporation
igfxCUIService.exe 2,260 K 10,608 K 2516 igfxCUIService Module Intel Corporation
GoogleCrashHandler64.exe 1,728 K 1,004 K 10972
GoogleCrashHandler.exe 1,724 K 1,016 K 3944
GameBarFT.exe 3,188 K 18,672 K 16888
FreemakeUtilsService.exe 15,604 K 29,864 K 4704 FreemakeUtilsService Freemake
fontdrvhost.exe 4,612 K 11,216 K 1216
fontdrvhost.exe 1,900 K 4,232 K 72
DSAUpdateService.exe 30,900 K 48,912 K 8664 DSAUpdateService Intel
DSATray.exe 46,692 K 60,912 K 10656 Intel Driver & Support Assistant Tray Intel
DSAService.exe 20,196 K 45,720 K 4668 DSAService Intel
DropboxUpdate.exe 2,128 K 1,564 K 8152
dllhost.exe 2,680 K 11,356 K 4396 COM Surrogate Microsoft Corporation
dllhost.exe 2,132 K 11,436 K 15788 COM Surrogate Microsoft Corporation
dllhost.exe 3,712 K 10,856 K 10612
DbxSvc.exe 2,540 K 6,752 K 4600 Dropbox Service Dropbox, Inc.
dasHost.exe 7,136 K 18,732 K 2428
ctfmon.exe 0.06 4,280 K 24,480 K 8784
conhost.exe 6,884 K 12,860 K 16152 Console Window Host Microsoft Corporation
conhost.exe 6,920 K 12,904 K 5588 Console Window Host Microsoft Corporation
conhost.exe 6,552 K 11,440 K 5316
conhost.exe 6,536 K 11,104 K 14280 Console Window Host Microsoft Corporation
cmd.exe 4,432 K 7,496 K 15376 Windows Command Processor Microsoft Corporation
cmd.exe 4,696 K 7,812 K 13064 Windows Command Processor Microsoft Corporation
chrome.exe 26,076 K 51,492 K 6620 Google Chrome Google LLC
chrome.exe 24,520 K 50,688 K 19744 Google Chrome Google LLC
chrome.exe 20,792 K 43,120 K 15880 Google Chrome Google LLC
chrome.exe 30,272 K 55,584 K 15632 Google Chrome Google LLC
chrome.exe 24,284 K 48,908 K 16132 Google Chrome Google LLC
chrome.exe 34,604 K 64,512 K 18844 Google Chrome Google LLC
chrome.exe 6,636 K 16,064 K 5360 Google Chrome Google LLC
chrome.exe 6,740 K 15,432 K 3080 Google Chrome Google LLC
chrome.exe 8,716 K 17,820 K 19336 Google Chrome Google LLC
chrome.exe 13,204 K 23,236 K 6084 Google Chrome Google LLC
BtwRSupportService.exe 2,072 K 8,428 K 4540 Bluetooth Radio Management Support Broadcom Corporation.
browserhost.exe 4,440 K 8,980 K 15504 McAfee WebAdvisor McAfee, LLC
BmkBuddy.exe 2,768 K 13,328 K 5628 Bookmark Buddy Edward Leigh
backgroundTaskHost.exe Suspended 7,456 K 24,684 K 10716 Background Task Host Microsoft Corporation
audiodg.exe 11,560 K 19,744 K 3564
atashost.exe 1,328 K 5,496 K 4612 WebEx Host for Support Center Cisco WebEx LLC
act.web.api.hosting.exe 74,204 K 85,308 K 16452 act.web.api.hosting
Act.Server.Host.exe 33,760 K 54,628 K 4520 Act.Server.Host Microsoft
Act!.Integration.exe 40,940 K 66,476 K 15972 ACT.Integration Swiftpage ACT! LLC
CCleaner64.exe 0.59 4,524 K 3,408 K 668 CCleaner Piriform Ltd
#21
Posted 30 March 2020 - 09:20 AM
chris271
- Topic Starter
-
- Member
-
- 25 posts
Member
Fixlog.txt 73.16KB
167 downloads
first file was before reboot.
Here is after reboot in case there is an y diff.
#23
Posted 30 March 2020 - 11:32 AM
RKinner
-
- Expert
-
- 24,625 posts
Malware Expert
You need to rerun the FRST scan. Make sure you start FRST by right click and Run As admin. Also make sure the Addition.txt box is checked. Post both logs.
Process Explorer said MBAM may have been running a scan or something so when you finish the FRST scan, please do another Process Explorer log.
#25
Posted 30 March 2020 - 04:28 PM
chris271
- Topic Starter
-
- Member
-
- 25 posts
Member
just noticed you wanted the procexp lof after the frst scan. so ignore above please''
#27
Posted 30 March 2020 - 04:59 PM
chris271
- Topic Starter
-
- Member
-
- 25 posts
Member
I have trouble saving the file to me D esktop. It doesn't fdisplay there. so I'm pasting
Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
Act!.Integration.exe 42,312 K 67,772 K 15396 ACT.Integration Swiftpage ACT! LLC (No signature was present in the subject) Swiftpage ACT! LLC
agent.exe 4,284 K 17,016 K 9812 FLEXnet Connect Agent Flexera Software LLC. (Verified) Flexera Software LLC
atashost.exe 1,612 K 5,644 K 5316 WebEx Host for Support Center Cisco WebEx LLC (Verified) Cisco WebEx LLC
audiodg.exe 11,008 K 19,488 K 3724 Windows Audio Device Graph Isolation Microsoft Corporation (Verified) Microsoft Windows
BmkBuddy.exe 3,240 K 14,868 K 17196 Bookmark Buddy Edward Leigh (No signature was present in the subject) Edward Leigh
browserhost.exe 4,064 K 8,868 K 13204 McAfee WebAdvisor McAfee, LLC (Verified) McAfee, LLC
BtwRSupportService.exe 2,176 K 8,580 K 5344 Bluetooth Radio Management Support Broadcom Corporation. (Verified) Broadcom Corporation
chrome.exe 26,368 K 53,224 K 15740 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 21,568 K 42,980 K 13896 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 17,136 K 32,700 K 16668 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 21,304 K 42,692 K 16196 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 28,996 K 54,484 K 15992 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 13,400 K 23,836 K 20436 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 6,720 K 15,404 K 1436 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 6,744 K 16,112 K 9948 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 25,740 K 45,300 K 15524 Google Chrome Google LLC (Verified) Google LLC
cmd.exe 4,684 K 7,808 K 1892 Windows Command Processor Microsoft Corporation (Verified) Microsoft Windows
cmd.exe 4,688 K 7,800 K 15456 Windows Command Processor Microsoft Corporation (Verified) Microsoft Windows
conhost.exe 6,572 K 11,144 K 15172 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
conhost.exe 6,580 K 11,460 K 6296 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
conhost.exe 6,880 K 12,872 K 16008 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
conhost.exe 6,928 K 12,908 K 17488 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
conhost.exe 6,588 K 11,488 K 18576 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
ctfmon.exe 4,280 K 24,304 K 4488 CTF Loader Microsoft Corporation (Verified) Microsoft Windows
dasHost.exe 7,940 K 19,028 K 2404 Device Association Framework Provider Host Microsoft Corporation (Verified) Microsoft Windows
DbxSvc.exe 2,596 K 6,768 K 5464 Dropbox Service Dropbox, Inc. (Verified) Dropbox, Inc
dllhost.exe 3,732 K 11,712 K 2632 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 1,896 K 11,192 K 16152 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 3,604 K 11,452 K 19936 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 3,244 K 10,856 K 11248 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
DropboxUpdate.exe 2,216 K 2,764 K 4076 Dropbox Update Dropbox, Inc. (Verified) Dropbox, Inc
DSAService.exe 20,048 K 45,440 K 5520 DSAService Intel (Verified) IDSA Production signing key
DSATray.exe 46,372 K 60,752 K 10512 Intel Driver & Support Assistant Tray Intel (Verified) IDSA Production signing key
DSAUpdateService.exe 31,100 K 49,044 K 10904 DSAUpdateService Intel (Verified) IDSA Production signing key
fontdrvhost.exe 2,132 K 5,080 K 852 Usermode Font Driver Host Microsoft Corporation (Verified) Microsoft Windows
fontdrvhost.exe 4,316 K 10,288 K 1240 Usermode Font Driver Host Microsoft Corporation (Verified) Microsoft Windows
FreemakeUtilsService.exe 16,004 K 30,064 K 5552 FreemakeUtilsService Freemake (Verified) Mixbyte Inc
GameBarFT.exe 3,232 K 19,564 K 16856 (No signature was present in the subject)
GoogleCrashHandler.exe 1,828 K 500 K 2028 Google Crash Handler Google LLC (Verified) Google LLC
GoogleCrashHandler64.exe 1,784 K 456 K 6004 Google Crash Handler Google LLC (Verified) Google LLC
igfxCUIService.exe 2,420 K 10,696 K 2812 igfxCUIService Module Intel Corporation (Verified) Intel® pGFX
igfxEM.exe 6,764 K 14,356 K 4292 igfxEM Module Intel Corporation (Verified) Intel® pGFX
igfxHK.exe 5,628 K 11,160 K 4372 igfxHK Module Intel Corporation (Verified) Intel® pGFX
ISPA.exe 4,612 K 13,776 K 15552 ISPA (No signature was present in the subject)
ISUSPM.exe 2,228 K 9,888 K 2892 Common Software Manager Flexera Software LLC. (Verified) Flexera Software LLC
ISUSPM.exe 2,220 K 9,876 K 4340 Common Software Manager Flexera Software LLC. (Verified) Flexera Software LLC
ISUSPM.exe 4,312 K 15,524 K 3388 Common Software Manager Flexera Software LLC. (Verified) Flexera Software LLC
Jing.exe 44,252 K 61,060 K 1784 Jing TechSmith Corporation (Verified) TechSmith Corporation
jucheck.exe 3,468 K 15,508 K 17680 Java Update Checker Oracle Corporation (Verified) Oracle America, Inc.
jusched.exe 2,720 K 16,332 K 15560 Java Update Scheduler Oracle Corporation (Verified) Oracle America, Inc.
KHALMNPR.exe 4,124 K 12,352 K 15300 Logitech KHAL Main Process Logitech, Inc. (Verified) Logitech
Lenovo.Modern.ImController.exe 33,092 K 56,164 K 5624 Lenovo.Modern.ImController Lenovo Group Ltd. (Verified) Lenovo
Lenovo.Modern.ImController.PluginHost.Device.exe 26,144 K 40,948 K 12836 Lenovo.Modern.ImController.PluginHost Lenovo Group Ltd. (Verified) Lenovo
Lenovo.Modern.ImController.PluginHost.Device.exe 29,136 K 40,320 K 19744 Lenovo.Modern.ImController.PluginHost Lenovo Group Ltd. (Verified) Lenovo
LockApp.exe Suspended 16,020 K 47,184 K 10456 LockApp.exe Microsoft Corporation (Verified) Microsoft Windows
LSCNotify.exe 1,492 K 1,048 K 6232 Lenovo Solution Center Notifications Lenovo (Verified) Lenovo
McCSPServiceHost.exe 6,952 K 22,756 K 3364 McAfee CSP Service Host McAfee, LLC. (Verified) McAfee, LLC.
mcshield.exe 42,868 K 34,076 K 11528 McAfee Scanner service McAfee LLC. (Verified) McAfee, Inc.
McUICnt.exe 10,016 K 6,760 K 11388 McAfee McAfee, LLC. (Verified) McAfee, LLC.
Memory Compression 168 K 32,784 K 2688
mfevtps.exe 6,828 K 12,908 K 8344 McAfee Process Validation Service McAfee, LLC (Verified) McAfee, Inc.
micmute.exe 2,860 K 10,960 K 5712 Microphone Mute Controll Service for ThinkPad Lenovo Group Limited (Verified) Lenovo
ModuleCoreService.exe 24,920 K 58,808 K 6012 McAfee Module Core Service McAfee, LLC. (Verified) McAfee, LLC
node.exe 49,468 K 52,564 K 10784 Node.js: Server-side JavaScript Node.js (Verified) Node.js Foundation
nssm-x64.exe 1,968 K 6,372 K 5256 The non-sucking service manager (No signature was present in the subject)
OfficeClickToRun.exe 35,080 K 56,640 K 5404 Microsoft Office Click-to-Run (SxS) Microsoft Corporation (Verified) Microsoft Corporation
ONENOTEM.EXE 2,608 K 2,380 K 17360 Send to OneNote Tool Microsoft Corporation (Verified) Microsoft Corporation
PEFService.exe 1,696 K 8,040 K 6092 McAfee PEF Service McAfee, LLC. (Verified) McAfee, LLC.
PowerMgr.exe 4,564 K 5,312 K 7860 Lenovo Power Manager Host Lenovo (Verified) Lenovo
PrintIsolationHost.exe 1,488 K 6,956 K 5004 PrintIsolationHost Microsoft Corporation (Verified) Microsoft Windows
procexp (4).exe 4,460 K 10,996 K 15376 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
ProductUpdater.exe 28,844 K 41,148 K 16812 ProductUpdater (Verified) Mixbyte Inc
ProtectedModuleHost.exe 5,228 K 16,544 K 8568 McAfee Protected Module Host McAfee, LLC. (Verified) McAfee, LLC.
RAVBg64.exe 5,968 K 14,636 K 764 HD Audio Background Process Realtek Semiconductor (Verified) Realtek Semiconductor Corp
RAVCpl64.exe 4,376 K 14,396 K 14796 Realtek HD Audio Manager Realtek Semiconductor (Verified) Realtek Semiconductor Corp
Registry 7,408 K 135,872 K 96
RemindersServer.exe Suspended 3,264 K 15,200 K 19340 Reminders WinRT OOP Server Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 8,048 K 27,200 K 12560 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 4,116 K 21,708 K 14652 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 7,708 K 23,704 K 2176 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 1,724 K 7,496 K 14668 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 3,052 K 17,876 K 14552 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 9,576 K 31,660 K 9532 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
SearchUI.exe Suspended 78,212 K 135,128 K 12148 Search and Cortana application Microsoft Corporation (Verified) Microsoft Windows
SecurityHealthService.exe 2,168 K 9,548 K 19660 Windows Security Health Service Microsoft Corporation (Verified) Microsoft Windows Publisher
SettingSyncHost.exe 6,280 K 10,332 K 11472 Host Process for Setting Synchronization Microsoft Corporation (Verified) Microsoft Windows
SgrmBroker.exe 4,772 K 7,628 K 16204 System Guard Runtime Monitor Broker Service Microsoft Corporation (Verified) Microsoft Windows Publisher
sihost.exe 7,124 K 28,036 K 3688 Shell Infrastructure Host Microsoft Corporation (Verified) Microsoft Windows
SkypeApp.exe Suspended 145,228 K 56,212 K 13568 SkypeApp Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
SkypeBackgroundHost.exe Suspended 2,008 K 11,872 K 10060 Microsoft Skype Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
smartscreen.exe 8,784 K 25,728 K 15020 Windows Defender SmartScreen Microsoft Corporation (Verified) Microsoft Windows
smss.exe 1,212 K 1,184 K 416 Windows Session Manager Microsoft Corporation (Verified) Microsoft Windows Publisher
SnagPriv.exe 1,840 K 8,040 K 16324 Snagit RPC Helper TechSmith Corporation (Verified) TechSmith Corporation
spoolsv.exe 6,752 K 17,156 K 4216 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
sqlbrowser.exe 1,656 K 4,656 K 6104 SQL Browser Service EXE Microsoft Corporation (Verified) Microsoft Corporation
sqlwriter.exe 1,856 K 8,076 K 6084 SQL Server VSS Writer - 64 Bit Microsoft Corporation (Verified) Microsoft Corporation
StartMenuExperienceHost.exe 48,724 K 83,828 K 4088 (Verified) Microsoft Windows
SurSvc.exe 24,296 K 33,132 K 6148 Intel® System Usage Report (Verified) Intel® Software Development Products
svchost.exe 2,108 K 8,356 K 2764 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 952 K 3,904 K 712 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,700 K 6,252 K 1832 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,876 K 7,876 K 2932 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,964 K 6,920 K 1388 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,784 K 6,784 K 2084 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,180 K 8,280 K 2920 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,664 K 7,632 K 2092 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,124 K 8,204 K 1444 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,456 K 9,872 K 2712 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,928 K 12,600 K 1752 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,860 K 8,124 K 4320 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,640 K 7,460 K 2656 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,812 K 10,696 K 3176 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,660 K 11,140 K 2432 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,948 K 9,192 K 5040 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,328 K 5,740 K 6240 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,700 K 6,812 K 6060 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,564 K 11,700 K 4384 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,256 K 14,888 K 5668 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,576 K 5,940 K 9192 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,252 K 10,784 K 18344 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,868 K 10,092 K 1880 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,892 K 7,324 K 8964 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,936 K 6,804 K 3516 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,284 K 10,524 K 3528 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,296 K 9,172 K 2204 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,880 K 7,872 K 9848 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,264 K 9,636 K 8432 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 8,568 K 15,996 K 15612 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,064 K 11,320 K 1536 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,856 K 11,316 K 1476 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,672 K 11,732 K 1468 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,868 K 22,116 K 6452 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,264 K 12,508 K 1636 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,428 K 10,208 K 2844 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,384 K 8,256 K 2588 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,992 K 14,092 K 3356 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,128 K 8,516 K 4460 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,072 K 12,100 K 12828 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,380 K 13,572 K 13496 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,700 K 15,768 K 16772 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,568 K 8,860 K 14088 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 8,524 K 16,976 K 2180 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,448 K 15,964 K 16836 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,996 K 18,596 K 3944 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,440 K 7,712 K 2188 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,932 K 15,096 K 2800 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 12,708 K 19,764 K 5528 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 7,180 K 15,208 K 8972 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,684 K 14,272 K 5416 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,548 K 6,132 K 1868 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,440 K 9,212 K 4968 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,344 K 13,032 K 2340 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,652 K 24,168 K 10448 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 6,768 K 22,500 K 13576 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,716 K 7,964 K 2012 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,712 K 13,572 K 2580 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,300 K 8,480 K 2304 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 21,312 K 21,600 K 1668 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,572 K 19,848 K 1488 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,956 K 11,616 K 17924 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,096 K 17,220 K 4016 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 9,988 K 31,464 K 3716 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,268 K 8,496 K 3076 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 17,524 K 26,460 K 4444 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,140 K 12,020 K 308 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,064 K 9,784 K 14724 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
SynTPEnhService.exe 1,732 K 7,032 K 5168 64-bit Synaptics Pointing Enhance Service Synaptics Incorporated (Verified) Synaptics Incorporated
SynTPHelper.exe 1,092 K 4,872 K 9776 Synaptics Pointing Device Helper Synaptics Incorporated (Verified) Synaptics Incorporated
SynTPLpr.exe 2,048 K 8,356 K 7840 TouchPad Driver Helper Application Synaptics Incorporated (Verified) Synaptics Incorporated
tphkload.exe 3,700 K 13,228 K 6156 ThinkPad Message Client Loader Lenovo Group Limited (Verified) Lenovo
tpnumlkd.exe 2,628 K 8,652 K 9484 NumLock on screen display for ThinkPad Lenovo Group Limited (Verified) Lenovo
tposd.exe 2,612 K 14,040 K 9628 On screen display drawer Lenovo Group Limited (Verified) Lenovo
unsecapp.exe 2,088 K 9,792 K 8856 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation (Verified) Microsoft Windows
UploaderService.exe 2,616 K 10,916 K 6164 TechSmith Uploader Service TechSmith Corporation (Verified) TechSmith Corporation
WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe 14,108 K 39,676 K 5356 WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe Microsoft Corporation (Verified) Microsoft Windows
wininit.exe 1,692 K 6,880 K 840 Windows Start-Up Application Microsoft Corporation (Verified) Microsoft Windows Publisher
winlogon.exe 2,900 K 11,948 K 1016 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 4,184 K 11,048 K 7904 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 24,096 K 28,760 K 8152 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
wmpnetwk.exe 8,348 K 28,256 K 9120 Windows Media Player Network Sharing Service Microsoft Corporation (Verified) Microsoft Windows
WOSVSSSvr.exe 1,140 K 5,132 K 4568 (Verified) Gladinet, Inc.
WUDFHost.exe 1,548 K 5,908 K 1188 Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation (Verified) Microsoft Windows
YourPhone.exe Suspended 15,632 K 29,104 K 13624 (No signature was present in the subject)
ZPSTray.exe 22,460 K 31,948 K 12956 Zoner Photo Studio Autoupdate ZONER software (Verified) ZONER software, a.s.
svchost.exe < 0.01 2,872 K 13,012 K 3096 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
SynLenovoHelper.exe < 0.01 2,832 K 9,520 K 7848 SynLenovo Helper tool Synaptics (Verified) Synaptics Incorporated
svchost.exe < 0.01 3,712 K 12,412 K 7560 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
ibmpmsvc.exe < 0.01 1,788 K 7,224 K 2468 Lenovo Power Management Service Lenovo. (Verified) Lenovo
LMIGuardianSvc.exe < 0.01 2,120 K 9,320 K 5720 LMIGuardianSvc LogMeIn, Inc. (Verified) LogMeIn, Inc.
chrome.exe < 0.01 26,588 K 52,576 K 18416 Google Chrome Google LLC (Verified) Google LLC
chrome.exe < 0.01 8,744 K 17,896 K 15248 Google Chrome Google LLC (Verified) Google LLC
chrome.exe < 0.01 22,216 K 45,568 K 17940 Google Chrome Google LLC (Verified) Google LLC
GladFileMonSvc.exe < 0.01 2,988 K 9,576 K 5564 Gladinet Cloud Suite Gladinet, INC (Verified) Gladinet, Inc.
svchost.exe < 0.01 9,484 K 36,760 K 3864 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
SetPoint.exe < 0.01 7,896 K 30,304 K 15092 Logitech SetPoint Event Manager (UNICODE) Logitech, Inc. (Verified) Logitech Inc
ModuleCoreService.exe < 0.01 12,568 K 36,500 K 15148 McAfee Module Core Service McAfee, LLC. (Verified) McAfee, LLC
OUTLOOK.EXE < 0.01 144,216 K 266,756 K 16640 Microsoft Outlook Microsoft Corporation (Verified) Microsoft Corporation
shtctky.exe < 0.01 2,640 K 9,588 K 9640 ThinkPad Message Receiver for Shortcut Hot Keys Lenovo Group Limited (Verified) Lenovo
chrome.exe < 0.01 183,776 K 186,484 K 15424 Google Chrome Google LLC (Verified) Google LLC
ReimageApp.exe < 0.01 1,572 K 7,092 K 1336 Reimage Application reimage (Verified) Reimage Ltd.
SynTPEnh.exe < 0.01 7,032 K 20,856 K 7064 Synaptics TouchPad 64-bit Enhancements Synaptics Incorporated (Verified) Synaptics Incorporated
RAVBg64.exe < 0.01 5,968 K 14,664 K 13296 HD Audio Background Process Realtek Semiconductor (Verified) Realtek Semiconductor Corp
mbamtray.exe < 0.01 30,628 K 46,404 K 12496 Malwarebytes Tray Application Malwarebytes (Verified) Malwarebytes Inc
conhost.exe < 0.01 6,788 K 13,232 K 5392 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
SearchFilterHost.exe < 0.01 3,548 K 13,688 K 17612 Microsoft Windows Search Filter Host Microsoft Corporation (Verified) Microsoft Windows
PDFProFiltSrvPP.exe < 0.01 2,728 K 10,188 K 6068 PDFPro IFilter Service Nuance Communications, Inc. (Verified) Nuance Communications, Inc.
mfemms.exe < 0.01 4,808 K 12,700 K 5968 McAfee Management Service McAfee, LLC (Verified) McAfee, Inc.
w3dbsmgr.exe 0.01 62,668 K 25,504 K 18440 Database Service Manager Actian Corporation (Verified) Actian Corporation
hamachi-2.exe 0.01 3,484 K 14,712 K 5592 Hamachi Client Tunneling Engine LogMeIn Inc. (Verified) LogMeIn, Inc.
TeamViewer_Service.exe 0.01 5,648 K 18,992 K 6172 TeamViewer 12 TeamViewer GmbH (Verified) TeamViewer GmbH
chrome.exe 0.01 28,012 K 53,652 K 17476 Google Chrome Google LLC (Verified) Google LLC
unsecapp.exe 0.01 2,032 K 9,576 K 12940 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.01 14,952 K 33,420 K 456 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
Lenovo.Modern.ImController.PluginHost.Device.exe 0.01 23,220 K 38,856 K 20176 Lenovo.Modern.ImController.PluginHost Lenovo Group Ltd. (Verified) Lenovo
AppleMobileDeviceService.exe 0.01 3,280 K 12,836 K 5288 MobileDeviceService Apple Inc. (Verified) Apple Inc.
chrome.exe 0.01 34,300 K 58,536 K 1576 Google Chrome Google LLC (Verified) Google LLC
svchost.exe 0.02 2,872 K 8,740 K 1124 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 0.02 1,448 K 5,628 K 6200 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
services.exe 0.02 6,136 K 11,100 K 916 Services and Controller app Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 0.02 16,880 K 35,800 K 5488 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 0.02 4,792 K 10,796 K 6112 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
IntelSoftwareAssetManagerService.exe 0.02 25,388 K 36,300 K 14512 IntelSoftwareAssetManagerService.exe Intel Corporation (Verified) Intel® Software Development Products
GameBar.exe 0.02 27,292 K 64,652 K 4436 (No signature was present in the subject)
svchost.exe 0.02 1,400 K 6,024 K 2604 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 0.03 2,968 K 10,420 K 1992 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
csrss.exe 0.03 1,988 K 5,584 K 756 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows Publisher
chrome.exe 0.03 175,732 K 206,512 K 18316 Google Chrome Google LLC (Verified) Google LLC
uihost.exe 0.04 17,460 K 49,548 K 7872 McAfee WebAdvisor McAfee, LLC (Verified) McAfee, LLC
chrome.exe 0.04 71,756 K 108,412 K 16628 Google Chrome Google LLC (Verified) Google LLC
GladinetClient.exe 0.04 26,812 K 42,096 K 14936 Gladinet Cloud Suite Gladinet, INC (Verified) Gladinet, Inc.
Act.Server.Host.exe 0.04 35,280 K 54,984 K 5268 Act.Server.Host Microsoft (No signature was present in the subject) Microsoft
SearchProtocolHost.exe 0.04 100,132 K 7,972 K 16692 Microsoft Windows Search Protocol Host Microsoft Corporation (Verified) Microsoft Windows
chrome.exe 0.05 19,256 K 38,392 K 16312 Google Chrome Google LLC (Verified) Google LLC
servicehost.exe 0.06 14,092 K 27,916 K 5904 McAfee WebAdvisor McAfee, LLC (Verified) McAfee, LLC
sqlservr.exe 0.07 512,668 K 316,928 K 4164 SQL Server Windows NT - 64 Bit Microsoft Corporation (Verified) Microsoft Corporation
mcapexe.exe 0.07 4,620 K 12,332 K 9912 McAfee Access Protection McAfee, LLC (Verified) McAfee, LLC.
taskhostw.exe 0.07 8,728 K 19,408 K 3420 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
ClipMate.exe 0.08 28,976 K 20,504 K 12792 ClipMate 7 Thornsoft Development, Inc. (Verified) Thornsoft Development, Inc.
MfeAVSvc.exe 0.10 31,008 K 55,932 K 9496 McAfee Cloud AV McAfee, LLC. (Verified) McAfee, LLC.
WUDFHost.exe 0.12 2,688 K 7,492 K 1064 Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation (Verified) Microsoft Windows
esrv.exe 0.12 57,004 K 25,488 K 18572 Intel® System Usage Report (Verified) Intel® Software Development Products
ReiSystem.exe 0.12 6,168 K 15,264 K 6948 Reimage System Reimage (Verified) Reimage Ltd.
explorer.exe 0.13 76,924 K 157,016 K 9432 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
Snagit32.exe 0.14 53,420 K 92,600 K 17084 Snagit TechSmith Corporation (Verified) TechSmith Corporation
svchost.exe 0.16 10,512 K 18,432 K 1040 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
lsass.exe 0.17 8,280 K 20,384 K 924 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 0.18 5,292 K 17,688 K 4300 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
esrv_svc.exe 0.23 105,128 K 43,404 K 18380 Intel® System Usage Report (Verified) Intel® Software Development Products
SearchIndexer.exe 0.33 67,804 K 73,632 K 6388 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
CarboniteService.exe 0.39 16,596 K 247,228 K 5384 Carbonite Secure Backup Engine Carbonite, Inc. (www.carbonite.com) (Verified) Carbonite
NPDFLM.exe 0.43 16,604 K 8,472 K 16232 NPdflm.exe Nuance Communications, Inc. (Verified) Nuance Communications, Inc.
csrss.exe 0.47 3,428 K 6,216 K 848 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows Publisher
robotaskbaricon.exe 0.58 19,080 K 33,236 K 5352 RoboForm TaskBar Icon Siber Systems (Verified) Siber Systems
dllhost.exe 0.63 2,088 K 8,292 K 18132 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.66 7,904 K 17,032 K 1680 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 0.95 12,672 K 24,028 K 3312 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
chrome.exe 1.12 121,416 K 183,292 K 2888 Google Chrome Google LLC (Verified) Google LLC
Interrupts 1.20 0 K 0 K n/a Hardware Interrupts and DPCs
CCleaner.exe 1.33 4,940 K 9,016 K 2824
CCleaner64.exe 1.40 5,672 K 9,816 K 4820
rf-chrome-nm-host.exe 1.51 12,464 K 24,160 K 17892 rf-chrome-nm-host Siber Systems Inc. (Verified) Siber Systems
SnagitEditor.exe 1.69 96,048 K 135,036 K 17452 Snagit Editor TechSmith Corporation (Verified) TechSmith Corporation
NEOPro.exe 2.13 91,732 K 162,464 K 15512 Nelson Email Organizer PRO Caelo Software BV. (Verified) Caelo Software B.V.
dwm.exe 2.15 84,736 K 107,064 K 1312 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 2.75 267,704 K 231,148 K 15924 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
System 4.14 196 K 128 K 4
procexp (4)64.exe 4.58 51,272 K 90,684 K 17116 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
WmiPrvSE.exe 6.02 11,240 K 19,132 K 7028 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
System Idle Process 19.92 60 K 8 K 0
MBAMService.exe 20.03 301,296 K 318,908 K 5832 Malwarebytes Service Malwarebytes (Verified) Malwarebytes Inc
ReiGuard.exe 24.50 163,292 K 171,260 K 6120 Reimage Real Time Protection Reimage® (Verified) Reimage Ltd.
#28
Posted 30 March 2020 - 09:06 PM
RKinner
-
- Expert
-
- 24,625 posts
Malware Expert
We are missing the addition.txt file.
Also you appear to be running ReImage software. This is not recommended and is causing major slowdowns. Please uninstall it.
If you won't uninstall McAfee then uninstall MBAM. They appear to be fighting each other.
Then give me a new process explorer
#29
Posted 31 March 2020 - 10:07 AM
chris271
- Topic Starter
-
- Member
-
- 25 posts
Member
Reimage uninstalled.
where do I find MBAM?
#30
Posted 31 March 2020 - 10:17 AM
RKinner
-
- Expert
-
- 24,625 posts
Malware Expert
MBAM = Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Post a new Process Explore log when done. Also haven't seen a new Addition.txt log in a long time.
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Sign In
Create Account
