Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › Command prompt questions
New Posts  All Forums:Forum Nav:

Command prompt questions

post #1 of 9
Thread Starter 
The command prompt seems to pop and then disappear after i finished connecting to the internet or logging in Windows when i just turned my PC on. I promise you there are no viruses in my system. I currently use Windows 7 Home Premium. I ran malwarebytes and there is nothing there. It makes me think someone is hacking me but i wanna find a way how to locate those logs and find out what is doing this. Can someone show me a way to do this step by step?

Have any of you experienced this? Do you think something is running in the background that causes that daily when i turn on my pc and log in windows and connect to the net? I just want it to stop. I almost thought of reformatting but the thought of updating windows which is gonna take forever which i dislike. I even considered buying Windows 10. I'm just paranoid and would like some advice. I thought of testing this when i turn on my pc and keep my internet disconnected and see if it's windows or something else. I still think it's something else.

Has anyone experience this?

Can you give me a full tutorial how to locate the information on what causes the command prompt? I can use event viewer but i really don't know how it works. I would like some help. Thanks!
post #2 of 9
Thread Starter 
"Bump"
post #3 of 9
Thread Starter 
It only does it once when i am on windows and connected to the internet. It just does it everyday when i turn on my PC. I just wonder what is the cause of this.
post #4 of 9
Thread Starter 
No respond? Anyone help? :S
post #5 of 9
Thread Starter 
19 views and no respond.. disappointed. Please someone help.
post #6 of 9
Ok so I don't know the solution to your problem sorry but I'm after assistance for a very similar problem and I'm not sure if I should start a new thread or not so if I should I apologise, let me know and I will.

Problem I'm having (not me, but whatever) is that CMD pops up for a split second randomly, and if I'm in-game it minimizes it which is annoying. I've ran several virus scans (yes, there were infections) and I'm pretty confident the PC is now clean. I ran a SFC scan and it reported that there are issues/errors/corrupt files (I can't remember the exact wording) and to check the log for details because it can't be automatically fixed. I have no idea how to read the log, but if I link the file would someone be able to tell me how to fix the problem/s? I'm hoping this will fix the random CMD pop-up because I've read it can be a program or process failing to start causing it, so if there's corrupt windows files that would make sense.
And so OP sorry I don't have a solution but perhaps you could try running the scan also? I'm running windows 10 btw. Thanks in advanced
    
CPUMotherboardGraphicsRAM
i5 2500k  Asus P8z77-I Deluxe/wd EVGA GTX 770 4GB SC G.Skill 8GB 
Hard DriveHard DriveCoolingOS
Crucual M500 120GB Crucial MX100 250GB ex120+st30 280 w/ noctua LNA Windows 8.1 Pro 
MonitorKeyboardPowerCase
Dell U2713hm  Microsoft POS SilverStone SFX 450w-G Custom 
MouseAudio
TT eSports Black 4000DPI Audio-technica ATH-A900X 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
i5 2500k  Asus P8z77-I Deluxe/wd EVGA GTX 770 4GB SC G.Skill 8GB 
Hard DriveHard DriveCoolingOS
Crucual M500 120GB Crucial MX100 250GB ex120+st30 280 w/ noctua LNA Windows 8.1 Pro 
MonitorKeyboardPowerCase
Dell U2713hm  Microsoft POS SilverStone SFX 450w-G Custom 
MouseAudio
TT eSports Black 4000DPI Audio-technica ATH-A900X 
  hide details  
Reply
post #7 of 9
The following are a couple ways to find running processes and their associated network connections. Use your google-foo to find out how to use the information these tools will give you as a thorough explanation of what could and should be done would be extensive. The following is not a complete list of methods.

Run "netstat -b" in an elevated command prompt. This will list network connections and the program using it. You can then use who.is to find the owner of the IP address. If it's a connection you're sure you don't need, block it at your router or Windows Firewall (I think) will work.

Check the Startup tab in task manager for anything starting that may be running CMD.

Use Process Explorer with "Check Virustotal.com" checked to see if anything out of the ordinary is running. Process Explorer is a Sysinternals tool that was acquired by Microsoft some time ago. Wiki page for your information - https://en.wikipedia.org/wiki/Process_Explorer and download link - https://technet.microsoft.com/en-us/sysinternals/processexplorer.aspx

Use Network tab of Resource Monitor to view processes with network activity.

You can use MD5summer or another hashing utility to take a hash of every file on your PC before and after CMD runs to find out what was has changed to narrow down the cause.

You can also use DiskAndRegAlert and/or regshot to compare before and after to find out what has changed.

If you find a file that you suspect is malicious, running it against Virustotal.com will check it against 5x different anti-virus programs. EDIT: You can also quiet your machines normal network traffic and use Wireshark to see where and what (if it's plain text traffic) is communicating.
Edited by Trogdor - 4/9/17 at 9:22pm
So Quiet
(16 items)
 
Router
(10 items)
 
 
CPUMotherboardGraphicsRAM
5820K X99-A EVGA GTX 1060 6GB SSC GSkill Ripjaw V 4x8GB 
Hard DriveCoolingOSMonitor
Samsung 950 Pro 512GB Noctua NH-D15S 10 EDU 2x Dell U2715H 
KeyboardPowerCaseMouse
CM Storm gunmetal and browns Cooler Master V850 Cooler Master XB EVO Logitech G403 
Mouse PadAudioAudioOther
TECKNET Fluance SX6  S.M.S.L SA-60 Intel PRO/1000 PT Quad Port 
CPUMotherboardRAMHard Drive
Pentium G3240 Gigabyte H81M-DS2V Crucial Ballistix Sport 2X2GB  Hitachi Deskstar 320GB 
CoolingOSPowerCase
Stock pfSense 2.3.2 Capstone 450W Rosewill RSV-L4500 
OtherOther
Intel 9301CT Intel 9301CT 
CPUMotherboardGraphicsRAM
Intel Xeon E3-1225 V3 Asrock Rack C226 WS HD P4600 Crucial 16GB ECC  
Hard DriveHard DriveHard DriveOptical Drive
Crucial MX100  4 WD Red 2TB RAID 0+1 HGST Deskstar NAS 4TB Yep 
CoolingOSPowerCase
Stock Windows Server 2012 R2 Standard Seasonic 450RM Rosewill RSV-L4500 
Other
Intel PRO/1000 PT Quad Port 
  hide details  
Reply
So Quiet
(16 items)
 
Router
(10 items)
 
 
CPUMotherboardGraphicsRAM
5820K X99-A EVGA GTX 1060 6GB SSC GSkill Ripjaw V 4x8GB 
Hard DriveCoolingOSMonitor
Samsung 950 Pro 512GB Noctua NH-D15S 10 EDU 2x Dell U2715H 
KeyboardPowerCaseMouse
CM Storm gunmetal and browns Cooler Master V850 Cooler Master XB EVO Logitech G403 
Mouse PadAudioAudioOther
TECKNET Fluance SX6  S.M.S.L SA-60 Intel PRO/1000 PT Quad Port 
CPUMotherboardRAMHard Drive
Pentium G3240 Gigabyte H81M-DS2V Crucial Ballistix Sport 2X2GB  Hitachi Deskstar 320GB 
CoolingOSPowerCase
Stock pfSense 2.3.2 Capstone 450W Rosewill RSV-L4500 
OtherOther
Intel 9301CT Intel 9301CT 
CPUMotherboardGraphicsRAM
Intel Xeon E3-1225 V3 Asrock Rack C226 WS HD P4600 Crucial 16GB ECC  
Hard DriveHard DriveHard DriveOptical Drive
Crucial MX100  4 WD Red 2TB RAID 0+1 HGST Deskstar NAS 4TB Yep 
CoolingOSPowerCase
Stock Windows Server 2012 R2 Standard Seasonic 450RM Rosewill RSV-L4500 
Other
Intel PRO/1000 PT Quad Port 
  hide details  
Reply
post #8 of 9
Thread Starter 
Is that post for that guy? Cuz my situation is just different.
post #9 of 9
Quote:
Originally Posted by 78@pwnt4lif3 View Post

Is that post for that guy? Cuz my situation is just different.

Those tools would work for either of your problems.
So Quiet
(16 items)
 
Router
(10 items)
 
 
CPUMotherboardGraphicsRAM
5820K X99-A EVGA GTX 1060 6GB SSC GSkill Ripjaw V 4x8GB 
Hard DriveCoolingOSMonitor
Samsung 950 Pro 512GB Noctua NH-D15S 10 EDU 2x Dell U2715H 
KeyboardPowerCaseMouse
CM Storm gunmetal and browns Cooler Master V850 Cooler Master XB EVO Logitech G403 
Mouse PadAudioAudioOther
TECKNET Fluance SX6  S.M.S.L SA-60 Intel PRO/1000 PT Quad Port 
CPUMotherboardRAMHard Drive
Pentium G3240 Gigabyte H81M-DS2V Crucial Ballistix Sport 2X2GB  Hitachi Deskstar 320GB 
CoolingOSPowerCase
Stock pfSense 2.3.2 Capstone 450W Rosewill RSV-L4500 
OtherOther
Intel 9301CT Intel 9301CT 
CPUMotherboardGraphicsRAM
Intel Xeon E3-1225 V3 Asrock Rack C226 WS HD P4600 Crucial 16GB ECC  
Hard DriveHard DriveHard DriveOptical Drive
Crucial MX100  4 WD Red 2TB RAID 0+1 HGST Deskstar NAS 4TB Yep 
CoolingOSPowerCase
Stock Windows Server 2012 R2 Standard Seasonic 450RM Rosewill RSV-L4500 
Other
Intel PRO/1000 PT Quad Port 
  hide details  
Reply
So Quiet
(16 items)
 
Router
(10 items)
 
 
CPUMotherboardGraphicsRAM
5820K X99-A EVGA GTX 1060 6GB SSC GSkill Ripjaw V 4x8GB 
Hard DriveCoolingOSMonitor
Samsung 950 Pro 512GB Noctua NH-D15S 10 EDU 2x Dell U2715H 
KeyboardPowerCaseMouse
CM Storm gunmetal and browns Cooler Master V850 Cooler Master XB EVO Logitech G403 
Mouse PadAudioAudioOther
TECKNET Fluance SX6  S.M.S.L SA-60 Intel PRO/1000 PT Quad Port 
CPUMotherboardRAMHard Drive
Pentium G3240 Gigabyte H81M-DS2V Crucial Ballistix Sport 2X2GB  Hitachi Deskstar 320GB 
CoolingOSPowerCase
Stock pfSense 2.3.2 Capstone 450W Rosewill RSV-L4500 
OtherOther
Intel 9301CT Intel 9301CT 
CPUMotherboardGraphicsRAM
Intel Xeon E3-1225 V3 Asrock Rack C226 WS HD P4600 Crucial 16GB ECC  
Hard DriveHard DriveHard DriveOptical Drive
Crucial MX100  4 WD Red 2TB RAID 0+1 HGST Deskstar NAS 4TB Yep 
CoolingOSPowerCase
Stock Windows Server 2012 R2 Standard Seasonic 450RM Rosewill RSV-L4500 
Other
Intel PRO/1000 PT Quad Port 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Windows
Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › Command prompt questions