I have been having issues with my system after running firstly, an EAM custom scan - see here Secondly, HMP scans - see here and here Following, these scans, I started to notice that my system started having excessive CPU for SYSTEM 'interrupts'. I decided to restore to a date before I did the EAM scan, using ERUNT. That, fixed up the CPU% 'interrupt' problem. Tonight, a scheduled WSA scan has made 9 detections, but only 8 are quarantined. I somehow think that, those earlier EAM and HMP scans that I did has led to this current result, that is now found with WSA. Do I just delete those 8 detections in quarantine, or leave them there? Also, those new blocked files have appeared, too, which seem to be related to the quarantined items. I think it interesting. Perhaps, someone will say 'what do you expect', if using a combination of EAM, HMP and WSA. However, EAM and HMP are both on demand, and WSA is running live.