Location:
State:
Carrier
Country
Status
Home » Windows » Bitsjobs cmd prompt random pop ups

Bitsjobs cmd prompt random pop ups


Hi all,

After an attack of intrusive software which I have now resolved I keep getting command prompt popping up for a split second. I managed to capture the command with a screen recorder and slow motion play back..

After reading a thread from 2014 on here I followed the advice given and tried to list the jobs but it reads listed jobs 0.

Any advice. this pop up is driving me crazy!


I have also checked task scheduler and it doesn't register.

It happens every hour 04:02 05:02 etc.

Thanks

I have also checked task scheduler and it doesn't register.

It happens every hour 04:02 05:02 etc.

Thanks
Hi nicpo and welcome to windowssh blog.

We've got a few threads on this problem. Basically you need to see what, if anything it's downloading. Then if there are errors, we would need to troubleshoot for infection.

Here are the threads:
Solved Bitsadmin pops up randomly and immediately disappears. - Page 2 - Windows 10 blog
(see post #17)

Bitsadmin pops up randomly and immediately disappears. - Windows 10 blog

Bitsadmin pops up for just a second and vanishes. - Windows 10 blog
@Superfly is the one to help with the BITS information. I can help with cleaning.

It would help to know if you identified exactly what infection you had on the system as well.

Yup, as @simrick suggested - check those threads out - one of the methods should rid you of the remnants of whatever infection was there.

I ran ADWcleaner this is the log

Code:
# AdwCleaner v5.201 - Logfile created 12/08/2016 at 17:15:03  # Updated 30/06/2016 by ToolsLib  # Database : 2016-08-12.1 [Server]  # Operating system : Windows 10 Home  (X64)  # Username : Alex - ALEX  # Running from : C:UsersAlexDownloadsadwcleaner_5.201.exe  # Option : Scan  # Support : ToolsLib - Forum: Ask for help or share your experience.      ***** [ Services ] *****      Service Found : SMUpd      ***** [ Folders ] *****      Folder Found : C:Program Files (x86)elansurfer  Folder Found : C:Program Files (x86)35444335-1470682019-4E35-5433-D0BF9C9BFD0A  Folder Found : C:UsersAlexAppDataLocalTempMPC  Folder Found : C:UsersAlexAppDataLocalLow{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}  Folder Found : C:UsersAlexAppDataRoamingMCorp  Folder Found : C:UsersAlexAppDataRoamingMicrosoftWindowsStart MenuProgramsYSPackage  Folder Found : C:Program FilesCommon FilesNoobzo  Folder Found : C:UsersAlexAppDataRoamingMCorp  Folder Found : C:uninst  Folder Found : C:Program Files (x86)host      ***** [ Files ] *****      File Found : C:END  File Found : C:UsersAlexAppDataLocalTempzdengine.log  File Found : C:UsersAlexAppDataLocalTempziengine.ini.log      ***** [ DLL ] *****          ***** [ WMI ] *****          ***** [ Shortcuts ] *****          ***** [ Scheduled tasks ] *****          ***** [ Registry ] *****      Key Found : HKLMSOFTWAREClassesAppIDNCTAudioCDGrabber2.DLL  Key Found : HKLMSYSTEMCurrentControlSetControlClass{0C95ABFE-4FB6-49DB-B22F-0E1F5FC4BEEC}  Key Found : HKLMSYSTEMCurrentControlSetControlClass{EEEFACB3-729F-4484-B66D-E7A7917BBFC1}  Key Found : HKLMSYSTEMCurrentControlSetControlSafeBootNetworkzdwfp  Key Found : HKLMSOFTWARECLASSESAPPID56BF5154-0B48-4ADB-902A-6C8B12E270D9  Key Found : HKCUSoftwareGoogleChromeExtensionsjlcgehabolcakkjhgmgpkagpolbjlhfa  Key Found : HKLMSOFTWAREClassesOCComSDK.ComSDK  Key Found : HKLMSOFTWAREClassesOCComSDK.ComSDK.1  Key Found : HKLMSOFTWAREClassesAppID{425F4ABF-B8E4-402D-9E49-06E494EB8DBF}  Key Found : HKLMSOFTWAREClassesCLSID{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}  Key Found : HKLMSOFTWAREClassesCLSID{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}  Key Found : HKLMSOFTWAREClassesCLSID{6E993643-8FBC-44FE-BC85-D318495C4D96}  Key Found : HKLMSOFTWAREClassesCLSID{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}  Key Found : HKLMSOFTWAREClassesCLSID{7D8DAE88-BC05-4578-8C29-E541FFBA5757}  Key Found : HKLMSOFTWAREClassesCLSID{B9D64D3B-BE75-4FA2-B94A-C4AE772A0146}  Key Found : HKLMSOFTWAREClassesCLSID{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}  Key Found : HKLMSOFTWAREClassesInterface{2BEF239C-752E-4001-8048-F256E0D8CD93}  Key Found : HKLMSOFTWAREClassesInterface{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}  Key Found : HKLMSOFTWAREClassesInterface{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}  Key Found : HKLMSOFTWAREClassesInterface{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}  Key Found : HKLMSOFTWAREClassesInterface{DE34CD67-F1C8-4001-9A23-B8A68F63F377}  Key Found : HKLMSOFTWAREClassesInterface{FE0273D1-99DF-4AC0-87D5-1371C6271785}  Key Found : HKLMSOFTWAREClassesTypeLib{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}  Key Found : HKLMSOFTWAREClassesTypeLib{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}  Key Found : HKCUSoftwarepowerpack  Key Found : HKCUSoftwarePRODUCTSETUP  Key Found : HKCUSoftwareMICROSOFTOTUT  Key Found : HKCUSoftwareWizzlabs  Key Found : HKCUSoftwareMICROSOFTIDSC  Key Found : HKCUSoftwareINSTALLPATHSTATUS  Key Found : HKCUSoftwareAppDataLowSoftwareadawarebp  Key Found : HKLMSOFTWARESearchModule  Key Found : HKLMSOFTWAREOtherSearch  Key Found : [x64] HKLMSOFTWARESearchModule  Key Found : HKUS-1-5-21-3941189269-3556359273-2650678083-1001Softwarepowerpack  Key Found : HKUS-1-5-21-3941189269-3556359273-2650678083-1001SoftwarePRODUCTSETUP  Key Found : HKUS-1-5-21-3941189269-3556359273-2650678083-1001SoftwareMICROSOFTOTUT  Key Found : HKUS-1-5-21-3941189269-3556359273-2650678083-1001SoftwareWizzlabs  Key Found : HKUS-1-5-21-3941189269-3556359273-2650678083-1001SoftwareMICROSOFTIDSC  Key Found : HKUS-1-5-21-3941189269-3556359273-2650678083-1001SoftwareINSTALLPATHSTATUS  Key Found : HKUS-1-5-21-3941189269-3556359273-2650678083-1001SoftwareAppDataLowSoftwareadawarebp  Key Found : HKCUSoftwareMicrosoftInternet ExplorerSearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}  Data Found : HKCUSoftwareMicrosoftInternet ExplorerSearchScopes [DefaultScope] - {0633EE93-D776-472f-A0FF-E1416B8B2E3A}  Key Found : [x64] HKLMSOFTWAREMicrosoftInternet ExplorerSearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}  Data Found : [x64] HKLMSOFTWAREMicrosoftInternet ExplorerSearchScopes [DefaultScope] - {0633EE93-D776-472f-A0FF-E1416B8B2E3A}  Key Found : HKUS-1-5-21-3941189269-3556359273-2650678083-1001SoftwareMicrosoftInternet ExplorerSearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}  Data Found : HKUS-1-5-21-3941189269-3556359273-2650678083-1001SoftwareMicrosoftInternet ExplorerSearchScopes [DefaultScope] - {0633EE93-D776-472f-A0FF-E1416B8B2E3A}  Key Found : HKCUSoftwareClassesLocal SettingsSoftwareMicrosoftWindowsCurrentVersionAppContainerStoragemicrosoft.microsoftedge_8wekyb3d8bbweChildren