Bitsadmin window pops up in every hour/50 minutes and immediately disappear which is very annoying. I've run KasperskyTotal Security and Malwarebytes but they have not found the problem. I made a screenshot from the problem. Any help would be appreciated.
Can anyone help me with this issue? Thanks in advance
Can anyone help me with this issue? Thanks in advance
Hi:
I can't provide specific help, but perhaps this recent thread has some advice?
Bitsadmin pops up randomly and immediately disappears. - Windows 10 blog
HTH,
MM
Thanks, your help MoxieMomma. I've asked for help under that thread, but I was advised to open a new thread.
Oh, I see.Thanks, your help MoxieMomma. I've asked for help under that thread, but I was advised to open a new thread.
OOPS.
My bad.
Sorry -- I didn't read the entire thread or notice that you had posted there.
I merely mentioned it because the topic was the same.
Yes, it is best to start one's own topic for such matters.
I hope someone will be able to assist you.
Good luck,
MM
Hopefully @Superfly will pop in here to help. This is a bit greek to me.
It would be fantastic
Your system mightbe compromised.
For those that don't know, bitsadmin.exe is a part of the Windows operating system. It's used for downloading or uploading things from remote servers.
It's pretty much useless for and will never once be used directly by most users. It has in the past been a very popular target for a type of malware known as a "dropper". This malware is usually a very small executable which is designed first the evade anti-virus, and second to download the "payload" of malware which does the real damage.
Since bitsadmin.exe is a legitimate system executable, it can slip past the firewall, and not raise any alarms since the unsigned malware executable isn't actually downloading anything, bitsadmin.exe is.
This method is far less common today than it was 5 years ago, which makes me think that you might have a dropper on your machine but it's remote servers do not exists anymore and as such, it cannot download payload. (this is just a guess based on only the very limited information available in this thread.)
So for us to be sure, I'm writing a program which I will post here when I'm done. This program will actively monitor your system's processes until be finds bitsadmin.exe being executed, at which point it will freeze that process, determine the parent process, and if it is not a critical process, suspend that one too. Then it will gather up a bunch of info and dump it into a .txt file for you to post back here. Then at least we'll have a little more info and hopefully determine if you're compromised or not.
Just give me minute to finish writing it.
Thanks for your reply Hydranix. Hopefully, you're right, and this malware didn't download the payload. Since my first thread, bitsadmin.exe popped up at least 50 times, and I didn't notice any other issue but I'm concerned that neither of my anti-virus programs did not find a relatively well-known malware.
I'm looking forward to downloading your program and find out whether my system is compromised or not.
