PDA

View Full Version : Get a LOAD of these entries I found in my Windows 7 Task Scheduler



.seVered.][
06-02-2016, 10:42 AM
I bolded the entries that I was extremely concerned about (since I didn't make them) and ENLARGED the ones that FREAKED me out.


Windows 7 Task Scheduler [C:\Windows\Tasks]

Yes Task AitAgent aitagent \Microsoft\Windows\Application Experience
Yes Task AnalyzeSystem Microsoft Corporation %SystemRoot%\System32\powercfg.exe -energy -auto \Microsoft\Windows\Power Efficiency Diagnostics
Yes Task AutomaticBackup Microsoft Corporation %systemroot%\system32\rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup \Microsoft\Windows\WindowsBackup
Yes Task AutoWake \Microsoft\Windows\SideShow
No Task ConfigNotification Microsoft Corporation %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION \Microsoft\Windows\WindowsBackup
Yes Task ConfigureInternetTimeService Microsoft Corporation %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService \Microsoft\Windows\Media Center
Yes Task DispatchRecoveryTasks Microsoft Corporation %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) \Microsoft\Windows\Media Center
Yes Task ehDRMInit Microsoft Corporation %SystemRoot%\ehome\ehPrivJob.exe /DRMInit \Microsoft\Windows\Media Center
Yes Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c \
Yes Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler \
Yes Task HiveUploadTask \Microsoft\Windows\User Profile Service
Yes Task InstallPlayReady Microsoft Corporation %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) \Microsoft\Windows\Media Center
Yes Task LPRemove Microsoft Corporation %windir%\system32\lpremove.exe \Microsoft\Windows\MUI
Yes Task mcupdate %SystemRoot%\ehome\mcupdate $(Arg0) \Microsoft\Windows\Media Center
Yes Task mcupdate_scheduled %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15 \Microsoft\Windows\Media Center
Yes Task MediaCenterRecoveryTask Microsoft Corporation %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask \Microsoft\Windows\Media Center
Yes Task MobilityManager \Microsoft\Windows\Ras
Yes Task Norton Error Analyzer Symantec Corporation C:\Program Files (x86)\Norton Security Suite\Engine\22.6.0.142\SymErr.exe /analyze \Norton 360
Yes Task Norton Error Processor Symantec Corporation C:\Program Files (x86)\Norton Security Suite\Engine\22.6.0.142\SymErr.exe /submit \Norton 360
Yes Task ObjectStoreRecoveryTask Microsoft Corporation %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask \Microsoft\Windows\Media Center
Yes Task OCURActivate Microsoft Corporation %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate \Microsoft\Windows\Media Center
Yes Task OCURDiscovery Microsoft Corporation %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) \Microsoft\Windows\Media Center
Yes Task PBDADiscovery Microsoft Corporation %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery \Microsoft\Windows\Media Center
Yes Task PBDADiscoveryW1 Microsoft Corporation %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery \Microsoft\Windows\Media Center
Yes Task PBDADiscoveryW2 Microsoft Corporation %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery \Microsoft\Windows\Media Center
No Task PeriodicScanRetry Microsoft Corporation %windir%\ehome\MCUpdate.exe -pscn 0 \Microsoft\Windows\Media Center
Yes Task PolicyConverter Microsoft Corporation %windir%\system32\appidpolicyconverter.exe \Microsoft\Windows\AppID
Yes Task ProgramDataUpdater Microsoft Corporation %windir%\system32\compattelrunner.exe -maintenance \Microsoft\Windows\Application Experience
Yes Task Proxy Microsoft Corporation %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations \Microsoft\Windows\Autochk
Yes Task PvrRecoveryTask Microsoft Corporation %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask \Microsoft\Windows\Media Center
Yes Task PvrScheduleTask Microsoft Corporation %SystemRoot%\ehome\mcupdate.exe -PvrSchedule \Microsoft\Windows\Media Center
No Task RecordingRestart %SystemRoot%\ehome\ehrec /RestartRecording \Microsoft\Windows\Media Center
Yes Task refreshgwxconfig Microsoft Corporation %windir%\system32\GWX\GWXConfigManager.exe /RefreshConfig \Microsoft\Windows\Setup\gwx
Yes Task refreshgwxconfig-B Microsoft Corporation %windir%\system32\GWX\GWXConfigManager.exe /RefreshConfigAndContent \Microsoft\Windows\Setup\GWXTriggers
Yes Task refreshgwxconfigandcontent Microsoft Corporation %windir%\system32\GWX\GWXConfigManager.exe /RefreshConfigAndContent \Microsoft\Windows\Setup\gwx
Yes Task refreshgwxcontent Microsoft Corporation %windir%\system32\GWX\GWXConfigManager.exe /RefreshContent \Microsoft\Windows\Setup\gwx
Yes Task RegisterSearch Microsoft Corporation %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) \Microsoft\Windows\Media Center
Yes Task ReindexSearchRoot Microsoft Corporation %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot \Microsoft\Windows\Media Center
Yes Task rundetector Microsoft Corporation %windir%\system32\GWX\GWXDetector.exe \Microsoft\Windows\Setup\gwx
No Task ScheduledDefrag Microsoft Corp. %windir%\system32\defrag.exe -c \Microsoft\Windows\Defrag
Yes Task ScheduleUpgradeReminderTime Microsoft Corporation %windir%\system32\GWX\GWXUXWorker.exe /ScheduleUpgradeReminderTime \Microsoft\Windows\Setup\GWXTriggers
Yes Task ScheduleUpgradeTime Microsoft Corporation %windir%\system32\GWX\GWXUXWorker.exe /ScheduleUpgradeTime \Microsoft\Windows\Setup\GWXTriggers
Yes Task SqlLiteRecoveryTask Microsoft Corporation %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask \Microsoft\Windows\Media Center
Yes Task SR Microsoft Corporation %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation \Microsoft\Windows\SystemRestore
Yes Task StartRecording %SystemRoot%\ehome\ehrec /StartRecording \Microsoft\Windows\Media Center
Yes Task SynchronizeTime Microsoft Corporation %windir%\system32\sc.exe start w32time task_started \Microsoft\Windows\Time Synchronization
No Task SystemDataProviders \Microsoft\Windows\SideShow
Yes Task SystemTask \Microsoft\Windows\CertificateServicesClient
Yes Task UninstallDeviceTask Microsoft Corporation BthUdTask.exe $(Arg0) \Microsoft\Windows\Bluetooth
Yes Task UpdateRecordPath Microsoft Corporation %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) \Microsoft\Windows\Media Center
Yes Task UPnPHostConfig Microsoft Corporation sc.exe config upnphost start= auto \Microsoft\Windows\UPnP
Yes Task VerifiedPublisherCertStoreCheck Microsoft Corporation %windir%\system32\appidcertstorecheck.exe \Microsoft\Windows\AppID
Yes Task WinSAT \Microsoft\Windows\Maintenance
Yes Task {3D037475-F0AF-4D04-848D-A63CB5B180DC} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "C:\CDi\eMachine EL1200\Microsoft Windows 7\amdsetup.exe" -d "C:\CDi\eMachine EL1200\Microsoft Windows 7" \
Yes Task {C0F78A16-4CA1-456F-9069-F6E353A6712E} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}\setup.exe" -c -runfromtemp -l0x0409 -removeonly \

RTG`
06-02-2016, 12:37 PM
Rofl

Higor
06-02-2016, 01:16 PM
Dude, don't you have a Windows Server license? If it's a bulk one then use it on desktop pc's with hacked motherboard drivers.
It's far better than the actual mainstream Windows system.

Chamberly
06-02-2016, 03:12 PM
I got almost nothing. Win 7 Ultimate here.

seabass
06-02-2016, 03:24 PM
Just out of curiosity, have you tried disabling Windows Media Center (http://www.howtogeek.com/howto/15530/uninstall-disable-or-remove-windows-7-media-center/)?

I only have Dropbox and Chrome in my tasks folder (Win10.)

edit: and BthUdTask.exe seems pretty harmless after consulting with google.

.seVered.][
06-02-2016, 10:36 PM
Dude, don't you have a Windows Server license? If it's a bulk one then use it on desktop pc's with hacked motherboard drivers.
It's far better than the actual mainstream Windows system.

SHHHH... dammit, that was a secret .. Now everyone is going to know how to do that ... LOL .:)

Of course, i do have 255 server licences to pick from; however; these entries are from my Troubleshooting workstation in the Tech department. Since I DO want to keep tabs on my technicians; I figured I'd just find out where the stream was posting to and clone it.

- - - Updated - - -


Just out of curiosity, have you tried disabling Windows Media Center (http://www.howtogeek.com/howto/15530/uninstall-disable-or-remove-windows-7-media-center/)?

I only have Dropbox and Chrome in my tasks folder (Win10.)

edit: and BthUdTask.exe seems pretty harmless after consulting with google.

DISABLE it? nah; I want to find out how he got those entries installed without me KNOWING about it... THAT is a more interesting question.

*TechTip: The more things you try to disable in windows the longer it will take for you to boot LINUX!

- - - Updated - - -


Rofl


Thank you RTG` .. this was the end result I was aiming for :)

- - - Updated - - -


I got almost nothing. Win 7 Ultimate here.

ROFL! .. and thank you too Chamberfly .. err I mean Chamberly.

- - - Updated - - -

Another interesting and amusing event of the day! This day JUST keeps getting better the more I laugh :)

https://dl.dropboxusercontent.com/u/124859421/Media/MySpace.png

Chamberly
06-03-2016, 02:21 AM
Also got an email from Adobe watchlist about account being hacked. Few days before Myspace sent that. But my account is deleted anyway so I don't have to worry. Don't use it anymore lol.