Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Issue with Edge and Browser Broker


  • Please log in to reply
8 replies to this topic

#1 Zanadoon

Zanadoon

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Midwest
  • Local time:06:27 PM

Posted 01 February 2017 - 02:44 PM

My computer seizes up and not able to use even mouse to be able to reboot.  Multiple windows are not visable in Edge but I can see in TCPView multiple active IP addresses and an established IP to Browser_broker.exe

I ran RKILL

Malwarebyes

Adwcleaner

Webroot Secure

nothing came up with all that then I ran 

Hitman and it removed some cookies.   I rebooted and still having same issue.     Thank you for your help.



BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,118 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:27 PM

Posted 01 February 2017 - 03:11 PM

From the web:

When you run Microsoft Edge browser and see task manager, you can notice Browser_Broker.exe process also running under Background Processes, if you close Edge browser, this process also disappears.

 

Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the

Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of toolbars....especially Google.

After install, open CCleaner and run by clicking on the Run Cleaner button in the bottom right corner.

CCleaner - PC Optimization and Cleaning - Free Download

 

Post the three lists mentioned below using CCleaner.

Open CCleaner and click on Tools. Choose Startups. On that page you will see a list of Windows Startups and at the top tabs for each browser and Scheduled Tasks.

At the bottom right of that page you will see a button when clicked will allow you to Copy and Paste the list of Windows Startups and Scheduled Tasks into your next

post. Please do that.

 

Open CCleaner and click on Tools. Choose Uninstall. On that page you will see a list of programs installed on your computer and at the bottom right of that page you

will see a button when clicked will allow you to Copy and Paste that list in your next post. Please do that.


Edited by buddy215, 01 February 2017 - 03:15 PM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 Zanadoon

Zanadoon
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Midwest
  • Local time:06:27 PM

Posted 01 February 2017 - 04:08 PM

Thank you for your help.

 

CC Startup

 

Yes HKCU:Run CCleaner Monitoring Piriform Ltd Dogbone "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
No HKCU:Run Skype Skype Technologies S.A. Dogbone "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
Yes HKCU:RunOnce Uninstall C:\Users\Dogbone\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64 Microsoft Corporation Dogbone C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Dogbone\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"
No HKLM:Run AdobeAAMUpdater-1.0 Adobe Systems Incorporated All users "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
Yes HKLM:Run BackupNowEZtray NTI Corporation All users "C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZtray.exe" -k
No HKLM:Run BeatsOSDApp Hewlett-Packard  All users C:\Program Files\IDT\WDM\beats64.exe
No HKLM:Run HPSYSDRV Hewlett-Packard All users C:\Program Files (x86)\Hewlett-Packard\HP Odometer\HPSYSDRV.EXE
No HKLM:Run PDF Complete PDF Complete Inc All users C:\Program Files (x86)\PDF Complete\pdfsty.exe
Yes HKLM:Run Razer Synapse Razer Inc. All users "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
No HKLM:Run SunJavaUpdateSched Oracle Corporation All users "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Yes HKLM:Run SysTrayApp  All users C:\Program Files\IDT\WDM\sttray64.exe
Yes HKLM:Run WRSVC Webroot All users "C:\Program Files\Webroot\WRSA.exe" -ul
No Startup Common Bluetooth.lnk  All users C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
No Startup Common Install LastPass FF RunOnce.lnk Webroot Software, Inc. All users C:\Program Files (x86)\Common Files\wruninstall.exe
No Startup Common Install LastPass IE RunOnce.lnk Webroot Software, Inc. All users C:\Program Files (x86)\Common Files\wruninstall.exe
 

 

CC Scheduled Tasks

 

Yes Task Adobe Flash Player Updater Adobe Systems Incorporated All users C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes Task AdobeAAMUpdater-1.0-VOYAGER-HP-Dogbone Adobe Systems Incorporated Dogbone C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
Yes Task CCleanerSkipUAC Piriform Ltd Dogbone "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes Task HPCeeScheduleForDogbone Hewlett-Packard Dogbone C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForDogbone (null)
Yes Task {314114F8-D33E-46A5-B036-D8AC3B09659E} Microsoft Corporation Users "c:\windows\system32\launchwinapp.exe" http://ui.skype.com/ui/0/5.6.0.110.399/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;disabled
 

 

​CC  'Uninstall'

 

3D Builder Microsoft Corporation 12/1/2016  12.0.3131.0 All users
Adobe AIR Adobe Systems Incorporated 10/27/2016 23.4 MB 19.0.0.241 All users
Adobe Community Help Adobe Systems Incorporated. 10/27/2016 249 MB 3.5.23 All users
Adobe Flash Player 11 ActiveX (x64) Adobe Systems Incorporated 4/12/2013 16.6 MB 11.2.202.222 All users
Adobe Photoshop Elements 10 Adobe Systems Incorporated 10/27/2016 249 MB 10.0 All users
Adobe Premiere Elements 10 Adobe Systems Incorporated 10/27/2016 514 MB 10.0 All users
Adobe Premiere Elements 10  8/18/2015 528 MB  All users
Alarms & Clock Microsoft Corporation 12/13/2016  10.1612.3343.0 All users
App connector Microsoft Corporation 10/27/2016  1.3.3.0 All users
App Installer Microsoft Corporation 10/27/2016  1.0.2181.0 All users
Battle.net Blizzard Entertainment 2/1/2017 589 MB  All users
Blio K-NFB Reading Technology, Inc. 4/12/2013 133 MB 3.0.9482 All users
Broadcom Bluetooth Software Broadcom Corporation 4/12/2013 410 MB 6.5.1.2700 All users
Calculator Microsoft Corporation 12/13/2016  10.1612.3341.0 All users
Camera Microsoft Corporation 12/13/2016  2016.1101.20.0 All users
CCleaner Piriform 2/1/2017  5.26 All users
Facebook Hewlett-Packard 4/12/2013 22.8 MB 1.1.0004 All users
Facebook for HP TouchSmart Hewlett-Packard 4/12/2013 22.8 MB 1.1.0004 All users
Feedback Hub Microsoft Corporation 1/5/2017  1.1611.3471.0 All users
Get Office Microsoft Corporation 11/16/2016  17.7608.23501.0 All users
Get Started Microsoft Corporation 12/14/2016  4.2.29.0 All users
Groove Music Microsoft Corporation 12/16/2016  10.16112.10211.0 All users
HP Application Assistant  8/18/2015   All users
HP Calendar Hewlett-Packard 4/12/2013 11.1 MB 5.1.4245.23508 All users
HP Clock Hewlett-Packard 4/12/2013 696 KB 5.1.4281.27332 All users
HP Explore Hewlett-Packard Company 10/27/2016  0.1.50.0 All users
HP Imaging Device Functions 14.0 HP 10/27/2016  14.0 All users
HP LinkUp Hewlett-Packard 4/12/2013 136 MB 2.01.029 All users
HP Magic Canvas  8/18/2015   All users
HP Notes Hewlett-Packard 4/12/2013 45.4 MB 5.1.4274.30382 All users
HP Odometer Hewlett-Packard 4/12/2013 96.0 KB 2.10.0000 All users
HP Photo Creations HP Photo Creations Powered by RocketLife 10/27/2016 1.97 MB 1.0.0.2024 All users
HP Photosmart Officejet and Deskjet All-In-One Driver Software HP 10/27/2016  14.0 All users
HP RSS Hewlett-Packard 4/12/2013 4.77 MB 5.1.4289.23799 All users
HP Setup Hewlett-Packard Company 4/12/2013 67.7 MB 9.1.15430.4033 All users
HP Solution Center 14.0 HP 10/27/2016  14.0 All users
HP Support Assistant  8/19/2015   All users
HP Support Information Hewlett-Packard 4/12/2013 1.71 MB 11.00.0001 All users
HP Support Solutions Framework HP Inc. 8/15/2016 13.2 MB 12.5.32.203 All users
HP TouchSmart RecipeBox Hewlett-Packard 4/12/2013  3.0.3830.27730 All users
HP TouchSmart RecipeBox Hewlett-Packard 4/12/2013 27.2 MB 3.0.3830.27730 All users
HP Update Hewlett-Packard 8/21/2015 7.99 MB 5.005.002.002 All users
HP Weather Hewlett-Packard 4/12/2013 4.12 MB 5.1.4245.22595 All users
Intel® Management Engine Components Intel Corporation 8/18/2015  8.0.0.1351 All users
Intel® USB 3.0 eXtensible Host Controller Driver Intel Corporation 8/18/2015  1.0.0.199 All users
Java 8 Update 66 Oracle Corporation 12/10/2015 177 MB 8.0.660.18 All users
LabelPrint CyberLink Corp. 4/12/2013 165 MB 2.5.4507 All users
Mail and Calendar Microsoft Corporation 1/10/2017  17.7805.42277.0 All users
Malwarebytes Anti-Malware version 2.2.1.1043 Malwarebytes 3/23/2016 56.7 MB 2.2.1.1043 All users
Maps Microsoft Corporation 12/14/2016  5.1611.3342.0 All users
Messaging Microsoft Corporation 10/27/2016  3.19.1001.0 All users
Microsoft ASP.NET MVC 4 Runtime Microsoft Corporation 4/30/2016 2.47 MB 4.0.40804.0 All users
Microsoft Mathematics Microsoft Corporation 8/18/2015 27.6 MB 4.0 All users
Microsoft Office 365 - en-us Microsoft Corporation 2/1/2017 951 MB 16.0.7571.2109 All users
Microsoft Silverlight  11/1/2016 93.0 MB  All users
Microsoft Solitaire Collection Microsoft Studios 12/13/2016  3.12.12120.0 All users
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 4/12/2013 3.39 MB 3.1.0000 All users
Microsoft Sticky Notes Microsoft Corporation 12/15/2016  1.3.0.0 All users
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 12/9/2015 5.38 MB 8.0.61001 All users
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2/11/2011 1.38 MB 8.0.61000 All users
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2/11/2011 1.48 MB 9.0.30729 All users
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 4/12/2013 1.47 MB 9.0.30729.4148 All users
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 12/9/2015 680 KB 9.0.30729.6161 All users
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2/11/2011 1.16 MB 9.0.30729 All users
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 4/12/2013 1.15 MB 9.0.30729.4148 All users
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 4/30/2016 2.31 MB 9.0.30729.6161 All users
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 Microsoft Corporation 12/9/2015 17.9 MB 10.0.40219 All users
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 Microsoft Corporation 12/9/2015 16.4 MB 10.0.40219 All users
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 Microsoft Corporation 10/27/2016 20.5 MB 12.0.21005.1 All users
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 Microsoft Corporation 10/27/2016 18.7 MB 14.0.23918.0 All users
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 10/28/2016 2.42 MB 10.0.50903 All users
Microsoft Wi-Fi Microsoft Corporation 10/27/2016  1.1604.4.0 All users
Movies & TV Microsoft Corporation 12/14/2016  10.16112.10221.0 All users
NTI Backup Now EZ NTI Corporation 12/15/2016 59.2 MB 3.0.2.55 All users
NVIDIA 3D Vision Controller Driver 369.04 NVIDIA Corporation 10/27/2016 8.58 MB 369.04 All users
NVIDIA 3D Vision Driver 375.63 NVIDIA Corporation 10/27/2016 32.7 MB 375.63 All users
NVIDIA Graphics Driver 375.63 NVIDIA Corporation 10/27/2016 590 MB 375.63 All users
NVIDIA HD Audio Driver 1.3.34.17 NVIDIA Corporation 10/27/2016 8.68 MB 1.3.34.17 All users
NVIDIA PhysX System Software 9.16.0318 NVIDIA Corporation 10/12/2016 406 MB 9.16.0318 All users
OCR Software by I.R.I.S. 14.0 HP 10/27/2016  14.0 All users
OneNote Microsoft Corporation 1/13/2017  17.7766.57671.0 All users
Paid Wi-Fi & Cellular Microsoft Corporation 10/27/2016  1.1607.6.0 All users
PDF Complete Corporate Edition PDF Complete, Inc 10/28/2016 116 MB 4.2.9 All users
People Microsoft Corporation 12/8/2016  10.1.3160.0 All users
Phone Microsoft Corporation 10/27/2016  2.17.27003.0 All users
Phone Companion Microsoft Corporation 10/27/2016  10.1609.2561.0 All users
Photos Microsoft Corporation 11/23/2016  16.1118.10000.0 All users
PlayReady PC Runtime amd64 Microsoft Corporation 4/12/2013 4.11 MB 1.3.0 All users
PlayReady PC Runtime x86 Microsoft Corporation 4/12/2013 3.30 MB 1.3.0 All users
Power2Go CyberLink Corp. 4/12/2013 131 MB 6.1.6207 All users
Razer Synapse Razer Inc. 12/31/2016 32.6 MB 2.20.15.1104 All users
Remote Graphics Receiver Hewlett-Packard 4/12/2013 31.8 MB 5.4.5 All users
Shop for HP Supplies HP 10/27/2016  14.0 All users
Skype™ 7.23 Skype Technologies S.A. 5/14/2016 155 MB 7.23.105 All users
SmartSound Common Data SmartSound Software Inc. 4/12/2013 13.4 MB 1.1.0 All users
SmartSound Premiere Elements 10 x64 Plugin SmartSound Software Inc. 4/12/2013 24.2 MB 5.70.0001 All users
SmartSound Sonicfire Pro 5 SmartSound Software Inc. 4/12/2013 14.8 MB 5.7.1 All users
Sports Microsoft Corporation 12/16/2016  4.18.37.0 All users
Store Microsoft Corporation 12/14/2016  11610.1001.23.0 All users
Store Purchase App Microsoft Corporation 10/27/2016  11608.1000.2431.0 All users
Sway Microsoft Corporation 12/8/2016  17.7668.45141.0 All users
Ventrilo Client for Windows x64 Flagship Industries, Inc. 10/27/2016 10.4 MB 3.0.8.0 Dogbone
Voice Recorder Microsoft Corporation 12/13/2016  10.1612.3352.0 All users
Vulkan Run Time Libraries 1.0.26.0 LunarG, Inc. 10/27/2016 1.66 MB 1.0.26.0 All users
Weather Microsoft Corporation 12/16/2016  4.18.37.0 All users
Webroot SecureAnywhere Webroot 2/1/2017 968 KB 9.0.15.40 All users
Windows Driver Package - NVIDIA (nvlddmkm) Display  (07/22/2015 10.18.13.5362) NVIDIA 10/27/2016  07/22/2015 10.18.13.5362 All users
Windows DVD Player Microsoft Corporation 10/27/2016  3.6.13291.0 All users
Windows Live Essentials Microsoft Corporation 4/12/2013  15.4.3538.0513 All users
Windows Live Mesh ActiveX Control for Remote Connections Microsoft Corporation 4/12/2013 11.1 MB 15.4.5722.2 All users
World of Warcraft Blizzard Entertainment 2/1/2017 97.3 GB  All users
Xbox Microsoft Corporation 12/22/2016  24.24.20004.0 All users
Xbox Identity Provider Microsoft Corporation 10/27/2016  11.19.19003.0 All users
 

 

---- I see a lot of stuff I don't and will never use, like Xbox

I didn't run anything yet.   Also, though I don't the see    'Browser_Broker'


Edited by Zanadoon, 01 February 2017 - 04:09 PM.


#4 buddy215

buddy215

  • Moderator
  • 13,118 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:27 PM

Posted 01 February 2017 - 06:25 PM

Suggest Disabling these Startups: Use CCleaner by clicking on each item and choosing Disable on the right.

Yes HKCU:Run CCleaner Monitoring Piriform Ltd Dogbone "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

Yes HKCU:RunOnce Uninstall C:\Users\Dogbone\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64 Microsoft Corporation Dogbone C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Dogbone\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"

 

Disable these Tasks: Use CCleaner by clicking on each item and choosing Disable on the right.

Yes Task Adobe Flash Player Updater Adobe Systems Incorporated All users C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes Task AdobeAAMUpdater-1.0-VOYAGER-HP-Dogbone Adobe Systems Incorporated Dogbone C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
Yes Task CCleanerSkipUAC Piriform Ltd Dogbone "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes Task HPCeeScheduleForDogbone Hewlett-Packard Dogbone C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForDogbone (null)
Yes Task {314114F8-D33E-46A5-B036-D8AC3B09659E} Microsoft Corporation Users "c:\windows\system32\launchwinapp.exe" http://ui.skype.com/ui/0/5.6.0.110.399/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;disabled
 

Uninstall these programs:

Adobe AIR Adobe Systems Incorporated 10/27/2016 23.4 MB 19.0.0.241 All users
Adobe Community Help Adobe Systems Incorporated. 10/27/2016 249 MB 3.5.23 All users
Adobe Flash Player 11 ActiveX (x64) Adobe Systems Incorporated 4/12/2013 16.6 MB 11.2.202.222 All users (Use instructions at Uninstall Flash Player for Windows
Facebook Hewlett-Packard 4/12/2013 22.8 MB 1.1.0004 All users
Facebook for HP TouchSmart Hewlett-Packard 4/12/2013 22.8 MB 1.1.0004 All users

HP Application Assistant  8/18/2015   All users

Java 8 Update 66 Oracle Corporation 12/10/2015 177 MB 8.0.660.18 All users

Windows Live Mesh ActiveX Control for Remote Connections Microsoft Corporation 4/12/2013 11.1 MB 15.4.5722.2 All users

 

Browser broker is part of the only browser you are using...Edge

From the web:

When you run Microsoft Edge browser and see task manager, you can notice Browser_Broker.exe process also running under Background Processes, if you close Edge browser, this process also disappears.

 

After doing the above let me know if you are still having the problem.

 

Did you purchase Webroot?


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#5 Zanadoon

Zanadoon
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Midwest
  • Local time:06:27 PM

Posted 01 February 2017 - 07:23 PM

 Unable to Uninstall      Facebook Hewlett-Packard 4/12/2013 22.8 MB 1.1.0004 All users   - The popup stated 'unable to locate uninstall file'       but it seemed to be gone from the Uninstall file on CC when I restarted the computer.

 

I do have a question, please.   If I uninstall Active X  will I still be able to run my computer game?    Thank you for your help.



#6 buddy215

buddy215

  • Moderator
  • 13,118 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:27 PM

Posted 01 February 2017 - 08:10 PM

Removal shouldn't affect your game playing

 

Windows Live Mesh ActiveX Control for Remote Connections by Microsoft - Should I Remove It?

What is Windows Live Mesh ActiveX Control for Remote Connections?
Windows Live Mesh was a free-to-use Internet-based file synchronization application by Microsoft designed to allow files and folders between two or more computers be in sync with each other on Windows (Vista and later) or the Web via SkyDrive. Windows Live Mesh also enabled remote desktop access via the Internet. Only an administrator can allow remote connections to this computer. If you're prompted for an administrator password or confirmation, type the password or provide confirmation.

Live Mesh has been officially replaced with Microsoft's SkyDrive service.
About  (from Microsoft)
Windows Live Mesh was retired on February 13, 2013, and remote desktop and peer-to-peer syncing have stopped working. If you still have Mesh installed on a computer, you might see the message, "Sorry, there is a problem with the Windows Live Mesh servers." If you still have files in your Mesh online storage (called “Me...  Read more

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#7 Zanadoon

Zanadoon
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Midwest
  • Local time:06:27 PM

Posted 02 February 2017 - 12:56 PM

Hi.  I performed all steps and was able to remove Flash Player Active X.

 

After opening the Browser this is a picture of the cut and past of TCP View. 

 

OfficeClickToRun.exe 2508 TCP voyager-hp.viasatdomain 50575 a23-44-161-102.deploy.static.akamaitechnologies.com http ESTABLISHED 9 1,515 9 2,400      
OfficeClickToRun.exe 2508 TCP voyager-hp.viasatdomain 50576 199.117.103.155 http ESTABLISHED 9 1,641 25 52,870      
OfficeClickToRun.exe 2508 TCP voyager-hp.viasatdomain 50577 a23-3-96-235.deploy.static.akamaitechnologies.com http ESTABLISHED 1 202 2 6,873      
 

 

MicrosoftEdge.exe 4964 TCP voyager-hp.viasatdomain 50685 icy-veins.com http CLOSE_WAIT 1 306 5 5,229      
MicrosoftEdge.exe 4964 TCP voyager-hp.viasatdomain 50686 icy-veins.com http CLOSE_WAIT          
MicrosoftEdgeCP.exe 8604 TCP voyager-hp.viasatdomain 50581 104.43.203.255 https ESTABLISHED 6 2,498 8 6,770      
MicrosoftEdgeCP.exe 8604 TCP voyager-hp.viasatdomain 50582 a23-3-96-130.deploy.static.akamaitechnologies.com https CLOSE_WAIT 2 373 5 3,959      
MicrosoftEdgeCP.exe 8604 TCP voyager-hp.viasatdomain 50583 a23-3-96-130.deploy.static.akamaitechnologies.com https CLOSE_WAIT 2 373 5 3,960      
MicrosoftEdgeCP.exe 8604 TCP voyager-hp.viasatdomain 50586 104.43.203.255 https ESTABLISHED 3 2,387 6 6,104      
MicrosoftEdgeCP.exe 8604 TCP voyager-hp.viasatdomain 50587 104.43.203.255 https ESTABLISHED 2 430 5 5,491      
MicrosoftEdgeCP.exe 8604 TCP voyager-hp.viasatdomain 50588 104.43.203.255 https ESTABLISHED 4 1,496 6 5,960      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50589 icy-veins.com http CLOSE_WAIT          
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50590 icy-veins.com http CLOSE_WAIT 1 387 16 19,882      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50592 hwcdn.net http CLOSE_WAIT          
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50593 hwcdn.net http CLOSE_WAIT 1 422 36 46,023      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50594 icy-veins.com http CLOSE_WAIT 5 2,516 18 13,470      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50595 icy-veins.com http CLOSE_WAIT 5 2,471 36 41,118      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50596 icy-veins.com http CLOSE_WAIT 5 2,514 19 15,710      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50597 icy-veins.com http CLOSE_WAIT 4 1,989 48 58,552      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50598 icy-veins.com http CLOSE_WAIT 4 1,893 127 170,944      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50599 icy-veins.com http CLOSE_WAIT 4 1,977 122 166,902      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50600 den03s09-in-f2.1e100.net http CLOSE_WAIT          
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50601 den03s09-in-f2.1e100.net http CLOSE_WAIT 1 429 3 1,596      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50602 104.16.84.211 http CLOSE_WAIT 1 428 4 3,903      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50603 104.16.84.211 http CLOSE_WAIT 1 446 5 5,693      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50605 icy-veins.com http CLOSE_WAIT 5 2,653 13 8,230      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50606 icy-veins.com http CLOSE_WAIT 5 2,644 40 42,217      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50607 icy-veins.com http CLOSE_WAIT 5 2,509 10 6,419      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50608 icy-veins.com http CLOSE_WAIT 5 2,658 59 71,996      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50609 67-217-177-126.ash01.latisys.net http CLOSE_WAIT 1 3,144 2 932      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50610 67-217-177-126.ash01.latisys.net http CLOSE_WAIT 1 491 2 1,778      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50611 adtechus-ads-adtech-scd-blue-a.evip.aol.com http CLOSE_WAIT 2 1,072 2 1,068      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50612 adtechus-ads-adtech-scd-blue-a.evip.aol.com http CLOSE_WAIT 2 1,070 3 1,067      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50613 144.bm-nginx-loadbalancer.mgmt.lax1.adnexus.net http CLOSE_WAIT 3 1,782 8 4,462      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50614 144.bm-nginx-loadbalancer.mgmt.lax1.adnexus.net http CLOSE_WAIT 4 2,250 8 4,409      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50615 144.bm-nginx-loadbalancer.mgmt.lax1.adnexus.net http CLOSE_WAIT 3 1,782 10 6,101      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50616 144.bm-nginx-loadbalancer.mgmt.lax1.adnexus.net http CLOSE_WAIT 3 1,782 9 3,533      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50617 144.bm-nginx-loadbalancer.mgmt.lax1.adnexus.net http CLOSE_WAIT 3 1,781 8 3,532      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50618 144.bm-nginx-loadbalancer.mgmt.lax1.adnexus.net http CLOSE_WAIT 3 1,784 9 4,465      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50619 162.248.16.31 http CLOSE_WAIT 1 849 3 1,460      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50620 162.248.16.31 http CLOSE_WAIT 1 848 3 1,473      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50621 162.248.16.31 http CLOSE_WAIT 1 848 2 1,476      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50622 ox-173-241-242-220.xv.dc.openx.org http CLOSE_WAIT 3 2,030 3 1,927      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50623 ox-173-241-242-220.xv.dc.openx.org http CLOSE_WAIT 3 2,036 4 1,945      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50624 162.248.16.31 http CLOSE_WAIT 1 848 2 1,458      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50625 162.248.16.31 http CLOSE_WAIT 1 848 2 1,459      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50626 adtechus-ads-adtech-scd-blue-a.evip.aol.com http CLOSE_WAIT 2 1,072 3 1,068      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50627 adtechus-ads-adtech-scd-blue-a.evip.aol.com http CLOSE_WAIT 2 1,072 3 1,068      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50628 adtechus-ads-adtech-scd-blue-a.evip.aol.com http CLOSE_WAIT 2 1,072 3 1,071      
MicrosoftEdgeCP.exe 13928 TCP voyager-hp.viasatdomain 50634 ox-173-241-242-220.xv.dc.openx.org http CLOSE_WAIT 3 2,050 3 1,948  

    

 

 

-----------This is still the problem I was having when it keeps knocking me offline.  Everytime I do a search.           

-----------I did not capture it All but it's at 200 and keeps going until I close out the browser or it knocks me offline

   Is it safe to use my secure sites like my bank?

-----------Task Manager Background Processes  shows duplicate MS Edge; and MS Edge Content Process

 

 

Yes,  I purchased both Webroot, and also Malwarebytes.    I'm not sure if there is a firewall.

 

 

Thank you


Edited by Zanadoon, 02 February 2017 - 01:05 PM.


#8 buddy215

buddy215

  • Moderator
  • 13,118 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:27 PM

Posted 02 February 2017 - 01:45 PM

I think it best for you to start a new topic in malware removal forum for further analysis.

 

Please follow the instructions in the Malware Removal and Log Section Preparation Guide starting at Step 6.

  • If you cannot complete a step, then skip it and continue with the next.
  • In Step 6 there are instructions for downloading and running FRST which will create two logs.

When you have done that, post your logs in the Virus, Trojan, Spyware, and Malware Removal Logs forum, NOT here, for assistance by the Malware Response Team.

Start a new topic, give it a relevant title and post your log(s) along with a brief description of your problem, a summary of any anti-malware tools you have used and a summary of any steps that you have performed on your own. If you cannot produce any of the required logs...start the new topic anyway. Explain that you followed the Prep. Guide, were unable to create the logs, and describe what happened when you tried to create them. A member of the Malware Removal Team will walk you through, step by step, on how to clean your computer.

After doing this, please reply back in this thread with a link to the new topic so we can close this one.

 

DO NOT bump your new topic. Wait for a response from one of the Team Members.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#9 Zanadoon

Zanadoon
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Midwest
  • Local time:06:27 PM

Posted 02 February 2017 - 04:21 PM

As directed, I moved this and opened new topic.  See link below

 

 

https://www.bleepingcomputer.com/forums/t/638936/multiple-msedge-opening-in-tcp-view-until-i-get-disconnected/

 

 

Thank you for all your help






3 user(s) are reading this topic

0 members, 3 guests, 0 anonymous users