Why is CMD booting by itself and how do I fix it?

Question

Hello, I have a problem with the cmd popup notoriously popping up. Tried looking for some application curves but unfortunately in vain. I am enclosing...

Dra98 · Accepted Answer

Please attach the FRST logs in the attachment https://www.elektroda.pl/rtvforum/topic3815619.html

ThethaETX · Accepted Answer

Odinstaluj:Advanced SystemCareDriver Booster 9Fixlist.txt:Code: text Expand Select all Copy to clipboardCreateRestorePoint:
CloseProcesses:
Task: {374541A0-BF9E-4C74-B9E6-39B2C3E88F05} - System32\Tasks\Firefox Default Browser Agent 5D70162C3D5039D2 => C:\Users\beazz\AppData\Roaming\sffavsg [65440 2021-12-29] (Microsoft Corporation -> Microsoft Corporation)  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-1797310711-2800616238-3334939676-1001\...\Run: [Advanced SystemCare] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [3779152 2021-09-28] (IObit CO., LTD -> IObit)
Task: {00DFB6D3-9A45-4651-921A-CF39D581EF10} - System32\Tasks\Driver Booster SkipUAC (beazz) => C:\Program Files (x86)\IObit\Driver Booster\9.1.0\DriverBooster.exe [8625176 2021-12-14] (IObit CO., LTD -> IObit)
Task: {26F53271-3FAC-458F-8631-256D6ECDD5BA} - System32\Tasks\Opera GX scheduled Autoupdate 1640790371 => C:\Users\beazz\AppData\Local\Programs\Opera GX\launcher.exe [2192592 2021-12-22] (Opera Software AS -> Opera Software)
Task: {4294786C-6B9A-4E08-8090-35CF3B6310A6} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\9.1.0\Scheduler.exe [156696 2021-11-10] (IObit CO., LTD -> IObit)
Task: {5925A61D-2112-4D7A-A597-177F6B3FFC30} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [4813392 2021-12-16] (IObit CO., LTD -> IObit)
Task: {60AEFF2D-BA29-4BFA-9D42-72F5537E5240} - System32\Tasks\ASC_SkipUac_beazz => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [10708048 2021-12-16] (IObit CO., LTD -> IObit)
Task: {C3C8ED05-D72A-4764-BF81-7E968EE805C6} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\9.1.0\AutoUpdate.exe [2462744 2021-11-10] (IObit CO., LTD -> IObit)
Edge Notifications: Default -> hxxps://1.luronews.com
StartMenuInternet: (HKU\S-1-5-21-1797310711-2800616238-3334939676-1001) Opera GXStable - "C:\Users\beazz\AppData\Local\Programs\Opera GX\Launcher.exe"
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit)
ContextMenuHandlers3: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit)
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [6558]
EmptyTemp:

Kolobos · Accepted Answer

Odinstaluj Advanced SystemCare, Driver Booster

Wykonaj Fixlist.txt dla FRST:
CloseProcesses:
HKU\S-1-5-21-1797310711-2800616238-3334939676-1001\...\Run: [MicrosoftEdgeAutoLaunch_46A566DD18387FA1888C3838B245157B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-1797310711-2800616238-3334939676-1001\...\Run: [Advanced SystemCare] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [3779152 2021-09-28] (IObit CO., LTD -> IObit)
Task: {00DFB6D3-9A45-4651-921A-CF39D581EF10} - System32\Tasks\Driver Booster SkipUAC (beazz) => C:\Program Files (x86)\IObit\Driver Booster\9.1.0\DriverBooster.exe [8625176 2021-12-14] (IObit CO., LTD -> IObit)
Task: {26F53271-3FAC-458F-8631-256D6ECDD5BA} - System32\Tasks\Opera GX scheduled Autoupdate 1640790371 => C:\Users\beazz\AppData\Local\Programs\Opera GX\launcher.exe [2192592 2021-12-22] (Opera Software AS -> Opera Software)
Task: {374541A0-BF9E-4C74-B9E6-39B2C3E88F05} - System32\Tasks\Firefox Default Browser Agent 5D70162C3D5039D2 => C:\Users\beazz\AppData\Roaming\sffavsg [65440 2021-12-29] (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\IObit\Driver Booster\9.1.0\Scheduler.exe [156696 2021-11-10] (IObit CO., LTD -> IObit)
Task: {5925A61D-2112-4D7A-A597-177F6B3FFC30} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [4813392 2021-12-16] (IObit CO., LTD -> IObit)
Task: {60AEFF2D-BA29-4BFA-9D42-72F5537E5240} - System32\Tasks\ASC_SkipUac_beazz => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [10708048 2021-12-16] (IObit CO., LTD -> IObit)
Task: {C3C8ED05-D72A-4764-BF81-7E968EE805C6} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\9.1.0\AutoUpdate.exe [2462744 2021-11-10] (IObit CO., LTD -> IObit)
R2 AdvancedSystemCareService15; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1873488 2021-08-21] (IObit CO., LTD -> IObit)
R3 AscFileFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [46552 2021-07-07] (IObit CO., LTD -> IObit)
R3 AscRegistryFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [46552 2021-07-07] (IObit CO., LTD -> IObit)
R3 iobit_monitor_server2021; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [33256 2021-08-11] (IObit CO., LTD -> IObit)
2022-01-04 15:33 - 2022-01-04 15:33 - 000003302 _____ C:\Windows\system32\Tasks\ASC_PerformanceMonitor
2022-01-04 15:32 - 2022-01-04 15:32 - 000003092 _____ C:\Windows\system32\Tasks\ASC_SkipUac_beazz
2022-01-04 15:32 - 2022-01-04 15:32 - 000001302 _____ C:\Users\Public\Desktop\Advanced SystemCare.lnk
2022-01-04 15:32 - 2022-01-04 15:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2022-01-04 15:32 - 2022-01-04 15:32 - 000000000 ____D C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
2022-01-04 15:27 - 2022-01-04 15:28 - 056164864 _____ (IObit ) C:\Users\beazz\Downloads\advanced-systemcare-setup.exe
2021-12-29 15:22 - 2021-12-29 15:22 - 000003192 _____ C:\Windows\system32\Tasks\Driver Booster Scheduler
2021-12-29 15:22 - 2021-12-29 15:22 - 000003178 _____ C:\Windows\system32\Tasks\Driver Booster Update
2021-12-29 15:22 - 2021-12-29 15:22 - 000002952 _____ C:\Windows\system32\Tasks\Driver Booster SkipUAC (beazz)
2021-12-29 15:22 - 2021-12-29 15:22 - 000002367 _____ C:\Users\Public\Desktop\Driver Booster 9.lnk
2021-12-29 15:22 - 2021-12-29 15:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 9
2021-12-29 14:48 - 2021-12-29 14:49 - 000000000 ____D C:\ProgramData\TJN23NHPN5RMP0UWJFUD8OCI1
2021-12-29 14:12 - 2022-01-04 15:32 - 000000000 ____D C:\Users\beazz\AppData\LocalLow\IObit
2021-12-29 14:12 - 2022-01-04 15:32 - 000000000 ____D C:\Program Files (x86)\IObit
2021-12-29 14:11 - 2022-01-04 15:45 - 000000000 ____D C:\ProgramData\IObit
2021-12-29 14:11 - 2022-01-04 15:33 - 000000000 ____D C:\Users\beazz\AppData\Roaming\IObit
2021-12-29 01:52 - 2021-12-29 01:52 - 000065440 ___SH (Microsoft Corporation) C:\Users\beazz\AppData\Roaming\sffavsg
EmptyTemp:

Kolobos · Accepted Answer

The reason for the problem is that you are infecting the system and the programs are redundant and useless.

Kolobos · Accepted Answer

You can scan with mbam and AdwCleaner.

beazzy · Answer

Here you are.

beazzy · Answer

Are these two programs a problem for this? And what rather reinstallation also falls off or something can be done? Advanced comes in handy at times.

beazzy · Answer

My guess is that taking the easy way with such programs just hurts, I understand it is good to know in the future. Just out of curiosity, was the rest in this scanning okay or any other steps would be worth taking?

beazzy · Answer

Thanks for the help resolved.

[Solved] Why is CMD booting by itself and how do I fix it?