>>Hi everybody,
>>
>>Something is going on on my computer. I'd like to import all currently running processes and send to someone to examine. I'm wondering how can I save the currently running processes from the Task Manager?
>>
>>Thanks in advance.
>
>You can use WMI for this if you want to do it from a program, but one easy way is to use
Process Explorer, you can save all the information about the running processes to a file.
This is the list of processes - anything jumps as wrong?
-----------------------------------------------
Process PID CPU Description Company Name
System Idle Process 0 85.89
Interrupts n/a 0.77 Hardware Interrupts
DPCs n/a 0.77 Deferred Procedure Calls
System 4 1.55
smss.exe 528 Windows Session Manager Microsoft Corporation
csrss.exe 616 Client Server Runtime Process Microsoft Corporation
wininit.exe 660 Windows Start-Up Application Microsoft Corporation
services.exe 716 Services and Controller app Microsoft Corporation
svchost.exe 924 Host Process for Windows Services Microsoft Corporation
ehmsas.exe 3988 Media Center Media Status Aggregator Service Microsoft Corporation
unsecapp.exe 3420 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation
WmiPrvSE.exe 3460 WMI Provider Host Microsoft Corporation
WmiPrvSE.exe 1548 WMI Provider Host Microsoft Corporation
SkypeNames.exe 3648 SkypeNames Skype Technologies S.A.
VBoxSVC.exe 5328 VirtualBox Interface Sun Microsystems, Inc.
VirtualBox.exe 4516 3.87 VirtualBox GUI Sun Microsystems, Inc.
dexplore.exe 4112 Microsoft Document Explorer Microsoft Corporation
^^^^^^^^^^^^^^^ Don't remember running
OfficeLiveSignIn.exe 6300 Microsoft Office Live Add-in Sign-in Microsoft Corp.
^^^^^^^^^^^^ ?
nvvsvc.exe 968 NVIDIA Driver Helper Service, Version 175.30 NVIDIA Corporation
rundll32.exe 1396 Windows host process (Rundll32) Microsoft Corporation
svchost.exe 996 Host Process for Windows Services Microsoft Corporation
MsMpEng.exe 340 AntiMalware Service Executable Microsoft Corporation
svchost.exe 604 Host Process for Windows Services Microsoft Corporation
audiodg.exe 1148 Windows Audio Device Graph Isolation Microsoft Corporation
svchost.exe 916 0.77 Host Process for Windows Services Microsoft Corporation
dwm.exe 3164 3.10 Desktop Window Manager Microsoft Corporation
svchost.exe 980 Host Process for Windows Services Microsoft Corporation
taskeng.exe 1988 Task Scheduler Engine Microsoft Corporation
taskeng.exe 2820 Task Scheduler Engine Microsoft Corporation
svchost.exe 1172 Host Process for Windows Services Microsoft Corporation
SLsvc.exe 1192 Microsoft Software Licensing Service Microsoft Corporation
svchost.exe 1228 Host Process for Windows Services Microsoft Corporation
svchost.exe 1384 Host Process for Windows Services Microsoft Corporation
spoolsv.exe 1640 Spooler SubSystem App Microsoft Corporation
svchost.exe 1664 Host Process for Windows Services Microsoft Corporation
svchost.exe 1704 Host Process for Windows Services Microsoft Corporation
ETService.exe 1860 Acer Empowering Technology Framework Service
^^^^^^^^^^^^ What is this ?
McciCMService.exe 1928 mcci+McciCMService Motive Communications, Inc.
???????????????? This may be a virus?
sqlservr.exe 124 SQL Server Windows NT - 64 Bit Microsoft Corporation
svchost.exe 1056 Host Process for Windows Services Microsoft Corporation
ReportingServicesService.exe 1940 Reporting Services Service Microsoft Corporation
SeaPort.exe 2328 Microsoft SeaPort Search Enhancement Broker Microsoft Corporation
sqlwriter.exe 2380 SQL Server VSS Writer - 64 Bit Microsoft Corporation
svchost.exe 2392 Host Process for Windows Services Microsoft Corporation
svchost.exe 2432 Host Process for Windows Services Microsoft Corporation
svchost.exe 2448 Host Process for Windows Services Microsoft Corporation
WLIDSVC.EXE 2504 Microsoft® Windows Live ID Service Microsoft Corporation
WLIDSVCM.EXE 3040 Microsoft® Windows Live ID Service Monitor Microsoft Corporation
SearchIndexer.exe 2580 Microsoft Windows Search Indexer Microsoft Corporation
XAudio64.exe 2668 Modem Audio Service Conexant Systems, Inc.
fdlauncher.exe 3000 SQL Full-text Filter Daemon Launch Service Microsoft Corporation
VSSVC.exe 1376 Microsoft® Volume Shadow Copy Service Microsoft Corporation
svchost.exe 3960 Host Process for Windows Services Microsoft Corporation
WPFFontCache_v0400.exe 6904 wpffontcache_v0400.exe Microsoft Corporation
lsass.exe 732 Local Security Authority Process Microsoft Corporation
lsm.exe 740 Local Session Manager Service Microsoft Corporation
csrss.exe 680 Client Server Runtime Process Microsoft Corporation
winlogon.exe 840 Windows Logon Application Microsoft Corporation
explorer.exe 3240 Windows Explorer Microsoft Corporation
rundll32.exe 3692 Windows host process (Rundll32) Microsoft Corporation
RAVCpl64.exe 3700 HD Audio Control Panel Realtek Semiconductor
msseces.exe 3724 Microsoft Security Essentials User Interface Microsoft Corporation
ehtray.exe 3740 Media Center Tray Applet Microsoft Corporation
Skype.exe 3748 Skype Skype Technologies S.A.
skypePM.exe 3684 Skype Extras Manager Skype Technologies
iexplore.exe 4152 Internet Explorer Microsoft Corporation
iexplore.exe 4188 3.10 Internet Explorer Microsoft Corporation
iexplore.exe 4160 Internet Explorer Microsoft Corporation
iexplore.exe 5072 Internet Explorer Microsoft Corporation
iexplore.exe 4764 Internet Explorer Microsoft Corporation
iexplore.exe 1260 Internet Explorer Microsoft Corporation
iexplore.exe 5080 Internet Explorer Microsoft Corporation
iexplore.exe 5348 Internet Explorer Microsoft Corporation
iexplore.exe 3144 Internet Explorer Microsoft Corporation
iexplore.exe 2788 Internet Explorer Microsoft Corporation
iexplore.exe 6020 Internet Explorer Microsoft Corporation
pidgin.exe 4448 Pidgin The Pidgin developer community
OUTLOOK.EXE 4508 Microsoft Office Outlook Microsoft Corporation
Ssms.exe 4976 SSMS - SQL Server Management Studio Microsoft Corporation
firefox.exe 5436 Firefox Mozilla Corporation
jp2launcher.exe 7152 Java(TM) Platform SE binary Sun Microsystems, Inc.
java.exe 7000 Java(TM) Platform SE binary Sun Microsystems, Inc.
VirtualBox.exe 5912 VirtualBox GUI Sun Microsystems, Inc.
WINWORD.EXE 5136 Microsoft Office Word Microsoft Corporation
procexp.exe 6440 Sysinternals Process Explorer Sysinternals - www.sysinternals.com
procexp64.exe 7052 0.77 Sysinternals Process Explorer Sysinternals - www.sysinternals.com
CNYHKey.exe 3780 Creative Multimedia Driver Creative
ButtonMonitor.exe 3796 ButtonMonitor IOI
jusched.exe 3824 Java(TM) Platform SE binary Sun Microsystems, Inc.
mHotkey.exe 3948 Multimedia Keyboard Driver
ChiFuncExt.exe 3384 Input Assistant Software Kernel Chicony
ModLEDKey.exe 3964 AccessL Chicony
conime.exe 4028 Console IME Microsoft Corporation
splwow64.exe 4468 Thunking Spooler APIS from 32 to 64 Process Microsoft Corporation
AdobeUpdater.exe 5712 Adobe Updater Adobe Systems Incorporated
If it's not broken, fix it until it is.
My Blog