Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Popups appearing from mshta.exe


  • Please log in to reply
13 replies to this topic

#1 kroghm

kroghm

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 24 October 2016 - 05:38 AM

Hi,

 

A popup is beginning to appear every time i use my computer. The exe file is located in C:\Windows\SysWOW64.

What do i do?

 

- Kroghm



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:58 PM

Posted 24 October 2016 - 10:31 AM

Hello please run these2next.

3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
51a46ae42d560-malwarebytes_anti_malware.Malwarebytes Anti-Malware
  • Download MalwareBytes Anti-Malware to your desktop.
  • Double-click mbam-setup-2.0.exe to start the installation of Malwarebytes Anti-Malware.
  • Follow the instructions on your screen to complete the installation. You can find the complete installation procedure here.
  • Click the Scan Now button, a threat scan will start automatically.
  • MalwareBytes Anti-Malware will now check for the latest updates. Click Update Now if new updates are available.
  • Your computer is now being scanned, please do not use your computer during the scan.
    • If no threats were found, click View detailed log.
      • Click Export and save the log as a .txt file on your Desktop or another location.
    • If the scan detected any threats, click Apply Actions.
      • To complete any actions taken you will be prompted to restart your computer...click on Yes.
      • After reboot, start Malwarebytes Anti-Malware again and click the History Tab at the top and select Application Logs.
      • Check the box next to Scan Log. Choose the most current scan and click View.
      • Click Export and save the log as a .txt file on your Desktop or another location.
  • Providing the MalwareBytes' Anti-Malware log file
    • Attach the log file you just saved to your next reply for further review.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 kroghm

kroghm
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 24 October 2016 - 11:42 AM

I didn't really know how to attach a file but here is the text directly from the files

 

The result from MiniToolBox:

----------------------------------------

MiniToolBox by Farbar  Version: 17-06-2016
Ran by mikkel (administrator) on 24-10-2016 at 18:16:04
Running from "M:\"
Microsoft Windows 8.1  (X64)
Model: All Series Manufacturer: ASUS
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
========================= IP Configuration: ================================
 
Realtek PCIe GBE Family Controller = Ethernet (Connected)
Bluetooth Personal Area Network Device = Bluetooth-netværksforbindelse (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="LAN-forbindelse* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="other_0" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth-netv‘rksforbindelse" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Mikkel
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Bluetooth-netv‘rksforbindelse:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Bluetooth Personal Area Network Device
   Physical Address. . . . . . . . . : 00-1B-DC-06-C1-AB
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Ethernet:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 74-D0-2B-A3-56-61
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::3458:d8d0:f7e4:425d%3(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.40(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 24. oktober 2016 11:40:04
   Lease Expires . . . . . . . . . . : 27. oktober 2016 11:40:04
   Default Gateway . . . . . . . . . : 2620:9b::1900:1
                                       fe80::2a0:a50f:fc78:e400%3
                                       fe80::2a0:a50f:fc78:e401%3
                                       192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 57987115
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-2E-38-64-74-D0-2B-A3-56-61
   DNS Servers . . . . . . . . . . . : 89.150.129.22
                                       89.150.129.10
                                       89.150.129.22
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.{134CB4B5-C1DD-4558-9D2D-2C57FB014886}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP-netv‘rkskort
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:20ce:91c8:a547:65c4(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::20ce:91c8:a547:65c4%4(Preferred) 
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 67108864
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-2E-38-64-74-D0-2B-A3-56-61
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  ge0.ns1.dk.ip.fullrate.dk
Address:  89.150.129.22
 
Name:    google.com
Addresses:  2a00:1450:400f:808::200e
 216.58.209.142
 
 
Pinging google.com [216.58.209.142] with 32 bytes of data:
Reply from 216.58.209.142: bytes=32 time=29ms TTL=54
Reply from 216.58.209.142: bytes=32 time=29ms TTL=54
 
Ping statistics for 216.58.209.142:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 29ms, Maximum = 29ms, Average = 29ms
Server:  ge0.ns1.dk.ip.fullrate.dk
Address:  89.150.129.22
 
Name:    yahoo.com
Addresses:  2001:4998:c:a06::2:4008
 2001:4998:44:204::a7
 2001:4998:58:c02::a9
 98.138.253.109
 98.139.183.24
 206.190.36.45
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=137ms TTL=49
Reply from 98.138.253.109: bytes=32 time=136ms TTL=49
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 136ms, Maximum = 137ms, Average = 136ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  7...00 1b dc 06 c1 ab ......Bluetooth Personal Area Network Device
  3...74 d0 2b a3 56 61 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
  6...00 00 00 00 00 00 00 e0 Microsoft ISATAP-netv‘rkskort
  4...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.40     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.40    266
     192.168.1.40  255.255.255.255         On-link      192.168.1.40    266
    192.168.1.255  255.255.255.255         On-link      192.168.1.40    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.40    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.40    266
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  3   9010 ::/0                     2620:9b::1900:1
  4    306 ::/0                     On-link
  3    266 ::/0                     fe80::2a0:a50f:fc78:e400
  3    266 ::/0                     fe80::2a0:a50f:fc78:e401
  1    306 ::1/128                  On-link
  4    306 2001::/32                On-link
  4    306 2001:0:5ef5:79fd:20ce:91c8:a547:65c4/128
                                    On-link
  3    266 fe80::/64                On-link
  4    306 fe80::/64                On-link
  4    306 fe80::20ce:91c8:a547:65c4/128
                                    On-link
  3    266 fe80::3458:d8d0:f7e4:425d/128
                                    On-link
  1    306 ff00::/8                 On-link
  3    266 ff00::/8                 On-link
  4    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0   9000 ::/0                     2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================
 
Catalog5 01 C:\windows\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (10/24/2016 06:13:30 PM) (Source: Application Error) (User: )
Description: Navn på program med fejl: chrome.exe, version: 53.0.2785.143, tidsstempel: 0x57e73b52
Navn på modul med fejl: pepflashplayer.dll, version: 23.0.0.185, tidsstempel: 0x57e5ccbd
Undtagelseskode: 0xc0000409
Forskydning med fejl 0x0085a9be
Proces-id 0x718
Programmets starttidspunkt 0xchrome.exe0
Programsti: chrome.exe1
Modulsti: chrome.exe2
Rapport-id: chrome.exe3
Fuldt navn på program med fejl: chrome.exe4
Relativt program-id for program med fejl: chrome.exe5
 
Error: (10/24/2016 06:03:01 PM) (Source: Application Error) (User: )
Description: Navn på program med fejl: chrome.exe, version: 53.0.2785.143, tidsstempel: 0x57e73b52
Navn på modul med fejl: pepflashplayer.dll, version: 23.0.0.185, tidsstempel: 0x57e5ccbd
Undtagelseskode: 0xc0000409
Forskydning med fejl 0x0085a9be
Proces-id 0x1870
Programmets starttidspunkt 0xchrome.exe0
Programsti: chrome.exe1
Modulsti: chrome.exe2
Rapport-id: chrome.exe3
Fuldt navn på program med fejl: chrome.exe4
Relativt program-id for program med fejl: chrome.exe5
 
Error: (10/24/2016 05:47:05 PM) (Source: Application Error) (User: )
Description: Navn på program med fejl: chrome.exe, version: 53.0.2785.143, tidsstempel: 0x57e73b52
Navn på modul med fejl: pepflashplayer.dll, version: 23.0.0.185, tidsstempel: 0x57e5ccbd
Undtagelseskode: 0xc0000409
Forskydning med fejl 0x0085a9be
Proces-id 0x20a4
Programmets starttidspunkt 0xchrome.exe0
Programsti: chrome.exe1
Modulsti: chrome.exe2
Rapport-id: chrome.exe3
Fuldt navn på program med fejl: chrome.exe4
Relativt program-id for program med fejl: chrome.exe5
 
Error: (10/24/2016 03:45:34 PM) (Source: Application Error) (User: )
Description: Navn på program med fejl: chrome.exe, version: 53.0.2785.143, tidsstempel: 0x57e73b52
Navn på modul med fejl: pepflashplayer.dll, version: 23.0.0.185, tidsstempel: 0x57e5ccbd
Undtagelseskode: 0xc0000409
Forskydning med fejl 0x0085a9be
Proces-id 0x24ec
Programmets starttidspunkt 0xchrome.exe0
Programsti: chrome.exe1
Modulsti: chrome.exe2
Rapport-id: chrome.exe3
Fuldt navn på program med fejl: chrome.exe4
Relativt program-id for program med fejl: chrome.exe5
 
Error: (10/24/2016 02:12:54 PM) (Source: Application Error) (User: )
Description: Navn på program med fejl: chrome.exe, version: 53.0.2785.143, tidsstempel: 0x57e73b52
Navn på modul med fejl: pepflashplayer.dll, version: 23.0.0.185, tidsstempel: 0x57e5ccbd
Undtagelseskode: 0xc0000409
Forskydning med fejl 0x0085a9be
Proces-id 0x1f6c
Programmets starttidspunkt 0xchrome.exe0
Programsti: chrome.exe1
Modulsti: chrome.exe2
Rapport-id: chrome.exe3
Fuldt navn på program med fejl: chrome.exe4
Relativt program-id for program med fejl: chrome.exe5
 
Error: (10/24/2016 02:06:57 PM) (Source: Application Error) (User: )
Description: Navn på program med fejl: chrome.exe, version: 53.0.2785.143, tidsstempel: 0x57e73b52
Navn på modul med fejl: pepflashplayer.dll, version: 23.0.0.185, tidsstempel: 0x57e5ccbd
Undtagelseskode: 0xc0000409
Forskydning med fejl 0x0085a9be
Proces-id 0x1674
Programmets starttidspunkt 0xchrome.exe0
Programsti: chrome.exe1
Modulsti: chrome.exe2
Rapport-id: chrome.exe3
Fuldt navn på program med fejl: chrome.exe4
Relativt program-id for program med fejl: chrome.exe5
 
Error: (10/24/2016 01:59:25 PM) (Source: Application Error) (User: )
Description: Navn på program med fejl: chrome.exe, version: 53.0.2785.143, tidsstempel: 0x57e73b52
Navn på modul med fejl: pepflashplayer.dll, version: 23.0.0.185, tidsstempel: 0x57e5ccbd
Undtagelseskode: 0xc0000409
Forskydning med fejl 0x0085a9be
Proces-id 0x1d68
Programmets starttidspunkt 0xchrome.exe0
Programsti: chrome.exe1
Modulsti: chrome.exe2
Rapport-id: chrome.exe3
Fuldt navn på program med fejl: chrome.exe4
Relativt program-id for program med fejl: chrome.exe5
 
Error: (10/24/2016 01:55:17 PM) (Source: Application Error) (User: )
Description: Navn på program med fejl: chrome.exe, version: 53.0.2785.143, tidsstempel: 0x57e73b52
Navn på modul med fejl: pepflashplayer.dll, version: 23.0.0.185, tidsstempel: 0x57e5ccbd
Undtagelseskode: 0xc0000409
Forskydning med fejl 0x0085a9be
Proces-id 0xf4c
Programmets starttidspunkt 0xchrome.exe0
Programsti: chrome.exe1
Modulsti: chrome.exe2
Rapport-id: chrome.exe3
Fuldt navn på program med fejl: chrome.exe4
Relativt program-id for program med fejl: chrome.exe5
 
Error: (10/24/2016 01:40:04 PM) (Source: Application Error) (User: )
Description: Navn på program med fejl: chrome.exe, version: 53.0.2785.143, tidsstempel: 0x57e73b52
Navn på modul med fejl: pepflashplayer.dll, version: 23.0.0.185, tidsstempel: 0x57e5ccbd
Undtagelseskode: 0xc0000409
Forskydning med fejl 0x0085a9be
Proces-id 0x1ff8
Programmets starttidspunkt 0xchrome.exe0
Programsti: chrome.exe1
Modulsti: chrome.exe2
Rapport-id: chrome.exe3
Fuldt navn på program med fejl: chrome.exe4
Relativt program-id for program med fejl: chrome.exe5
 
Error: (10/24/2016 11:49:54 AM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073418154
 
 
System errors:
=============
Error: (10/24/2016 01:59:58 PM) (Source: volsnap) (User: )
Description: Øjebliksbillederne af diskenheden C: blev afbrudt, fordi øjebliksbilledelageret ikke kunne øges på grund af en brugerangivet grænse.
 
Error: (10/23/2016 09:16:15 PM) (Source: DCOM) (User: MIKKEL)
Description: programspecifikkeLokalAktivering{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MikkelmikkelS-1-5-21-4143238798-3907526775-848208118-1002LocalHost (via LRPC)Ikke tilgængeligS-1-15-2-2318191127-2930859309-4223144190-3154924849-131512816-2453163610-3569364497
 
Error: (10/23/2016 07:33:16 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installationsfejl: Der opstod en fejl, da Windows skulle installere følgende opdatering 0x80070003: Opdatering til Windows 8.1 til x64-baserede systemer (KB3000850).
 
Error: (10/23/2016 07:31:06 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installationsfejl: Der opstod en fejl, da Windows skulle installere følgende opdatering 0x80070003: Opdatering til Windows 8.1 til x64-baserede systemer (KB3038936).
 
Error: (10/23/2016 07:30:50 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installationsfejl: Der opstod en fejl, da Windows skulle installere følgende opdatering 0x80070003: Sikkerhedsopdatering til Windows 8.1 til x64-baserede systemer (KB3046017).
 
Error: (10/22/2016 07:08:43 PM) (Source: Service Control Manager) (User: )
Description: Tjenesten Steam Client Service kunne ikke starte pga. følgende fejl: 
%%1053 = Tjenesten svarede ikke på en start- eller kontrolanmodning inden for det forventede tidsinterval.
 
 
Error: (10/22/2016 07:08:43 PM) (Source: Service Control Manager) (User: )
Description: Der opstod timeout (30000 millisekunder), mens systemet ventede på, at der blev oprettet forbindelse til tjenesten Steam Client Service.
 
Error: (10/21/2016 09:40:34 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installationsfejl: Der opstod en fejl, da Windows skulle installere følgende opdatering 0x80070003: Opdatering til Windows 8.1 til x64-baserede systemer (KB3000850).
 
Error: (10/21/2016 09:39:15 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installationsfejl: Der opstod en fejl, da Windows skulle installere følgende opdatering 0x80070003: Opdatering til Windows 8.1 til x64-baserede systemer (KB3038936).
 
Error: (10/21/2016 09:39:15 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installationsfejl: Der opstod en fejl, da Windows skulle installere følgende opdatering 0x80070003: Sikkerhedsopdatering til Windows 8.1 til x64-baserede systemer (KB3046017).
 
 
Microsoft Office Sessions:
=========================
Error: (10/24/2016 06:13:30 PM) (Source: Application Error)(User: )
Description: chrome.exe53.0.2785.14357e73b52pepflashplayer.dll23.0.0.18557e5ccbdc00004090085a9be71801d22e112d237431C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\mikkel\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.185\pepflashplayer.dllcd0af87e-9a04-11e6-8324-74d02ba35661
 
Error: (10/24/2016 06:03:01 PM) (Source: Application Error)(User: )
Description: chrome.exe53.0.2785.14357e73b52pepflashplayer.dll23.0.0.18557e5ccbdc00004090085a9be187001d22e0e69196eb2C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\mikkel\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.185\pepflashplayer.dll5619c005-9a03-11e6-8324-74d02ba35661
 
Error: (10/24/2016 05:47:05 PM) (Source: Application Error)(User: )
Description: chrome.exe53.0.2785.14357e73b52pepflashplayer.dll23.0.0.18557e5ccbdc00004090085a9be20a401d22e0d93e47932C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\mikkel\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.185\pepflashplayer.dll1c88c1b0-9a01-11e6-8324-74d02ba35661
 
Error: (10/24/2016 03:45:34 PM) (Source: Application Error)(User: )
Description: chrome.exe53.0.2785.14357e73b52pepflashplayer.dll23.0.0.18557e5ccbdc00004090085a9be24ec01d22dfb74f7cbedC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\mikkel\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.185\pepflashplayer.dll229003b4-99f0-11e6-8324-74d02ba35661
 
Error: (10/24/2016 02:12:54 PM) (Source: Application Error)(User: )
Description: chrome.exe53.0.2785.14357e73b52pepflashplayer.dll23.0.0.18557e5ccbdc00004090085a9be1f6c01d22defb180eda3C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\mikkel\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.185\pepflashplayer.dll3099331e-99e3-11e6-8324-74d02ba35661
 
Error: (10/24/2016 02:06:57 PM) (Source: Application Error)(User: )
Description: chrome.exe53.0.2785.14357e73b52pepflashplayer.dll23.0.0.18557e5ccbdc00004090085a9be167401d22dee12014bbdC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\mikkel\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.185\pepflashplayer.dll5bb7e446-99e2-11e6-8324-74d02ba35661
 
Error: (10/24/2016 01:59:25 PM) (Source: Application Error)(User: )
Description: chrome.exe53.0.2785.14357e73b52pepflashplayer.dll23.0.0.18557e5ccbdc00004090085a9be1d6801d22dedccd57149C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\mikkel\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.185\pepflashplayer.dll4eb76353-99e1-11e6-8324-74d02ba35661
 
Error: (10/24/2016 01:55:17 PM) (Source: Application Error)(User: )
Description: chrome.exe53.0.2785.14357e73b52pepflashplayer.dll23.0.0.18557e5ccbdc00004090085a9bef4c01d22debbf1073c7C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\mikkel\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.185\pepflashplayer.dllbae23148-99e0-11e6-8324-74d02ba35661
 
Error: (10/24/2016 01:40:04 PM) (Source: Application Error)(User: )
Description: chrome.exe53.0.2785.14357e73b52pepflashplayer.dll23.0.0.18557e5ccbdc00004090085a9be1ff801d22deaf25ae404C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\mikkel\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.185\pepflashplayer.dll9a71f415-99de-11e6-8324-74d02ba35661
 
Error: (10/24/2016 11:49:54 AM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073418154
 
 
CodeIntegrity Errors:
===================================
  Date: 2016-10-24 16:32:54.614
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-10-24 16:32:54.277
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-10-24 16:32:53.871
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-10-24 16:32:49.458
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-10-24 16:32:49.148
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-10-24 16:32:48.791
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-10-24 16:32:48.484
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-10-24 16:32:46.157
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-10-24 16:32:45.850
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-10-24 16:32:44.333
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
=========================== Installed Programs ============================
 
µTorrent (HKCU\...\uTorrent) (Version: 3.4.8.42449 - BitTorrent Inc.)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.185 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10)  MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 372.70 - NVIDIA Corporation) Hidden
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.10.0 - Asmedia Technology)
Autodesk Fusion 360 (HKCU\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.1045 - Autodesk, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bing Powered Search (HKLM-x32\...\BingPoweredSearch) (Version:  - )
Brawlhalla (HKLM\...\Steam App 291550) (Version:  - Blue Mammoth Games)
CSR Harmony Wireless Software Stack (HKLM\...\{17DEA095-8EE1-49A2-AC5A-9663DB098FA9}) (Version: 2.1.63.0 - Cambridge Silicon Radio Limited.)
Cube World version 0.0.1 (HKLM-x32\...\{D692A0E0-1BBB-4E9C-826E-4254EE330830}_is1) (Version: 0.0.1 - Picroma)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Discord (HKCU\...\Discord) (Version: 0.0.296 - Hammer & Chisel, Inc.)
Double Action: Boogaloo (HKLM-x32\...\Steam App 317360) (Version:  - Double Action Factory)
Dropbox (HKCU\...\Dropbox) (Version: 12.4.22 - Dropbox, Inc.)
Dust: An Elysian Tail (HKLM-x32\...\Steam App 236090) (Version:  - Humble Hearts LLC)
Dying Light (HKLM-x32\...\Steam App 239140) (Version:  - Techland)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Fable Anniversary (HKLM-x32\...\Steam App 288470) (Version:  - Lionhead Studios)
Fallout 4 (HKLM-x32\...\Steam App 377160) (Version:  - Bethesda Game Studios)
Fotogalleri (HKLM-x32\...\{E354D495-5DA4-4CCF-AB39-080F6A4141BE}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalleriet (HKLM-x32\...\{9F470E17-4FC3-4091-A508-D5347A16A2B9}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Garry's Mod (HKLM\...\Steam App 4000) (Version:  - Facepunch Studios)
GeoGebra 4.4 (HKLM-x32\...\GeoGebra 4.4) (Version: 4.4.10.0 - International GeoGebra Institute)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.143 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.31.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4264 - Intel Corporation)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Korrekturredskaber til Microsoft Office 15 – Dansk (HKLM\...\{90150000-001F-0406-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MathType 6 (HKLM-x32\...\DSMT6) (Version: 6.9 - Design Science, Inc.)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{0E8670B8-3965-4930-ADA6-570348B67153}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DAN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DAN) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Web Deploy 3.0 (HKLM\...\{AA72C306-30BE-4BB1-9E42-59552BAD2CDF}) (Version: 3.1236.1631 - Microsoft Corporation)
Microsoft Web Platform Installer 5.0 (HKLM\...\{4D84C195-86F0-4B34-8FDE-4A17EB41306A}) (Version: 5.0.50430.0 - Microsoft Corporation)
Microsoft WebMatrix 3 (HKLM-x32\...\{4C1CB8FA-89A5-476A-89B6-C69BDC668A9F}) (Version: 2.0.1932 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MotioninJoy Gamepad tool 0.7.0000 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.0000 - www.motioninjoy.com)
Movie Maker (HKLM-x32\...\{306C7AEF-16C7-428D-93AA-99D4A4090243}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{36BEC461-B58A-414D-993E-E2BDD1F1A14B}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{5BABDA39-61CF-41EE-992D-4054B6649A9B}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{7E63F102-A9E9-4F4C-8004-BC62974736BF}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{ED6C77F9-4D7E-447C-9EC0-9A212D075535}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.1 - Black Tree Gaming)
No Man's Sky (HKLM\...\Steam App 275850) (Version:  - Hello Games)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.9 - Notepad++ Team)
NVIDIA 3D Vision Controllerdriver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision-driver 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.70 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.1 - NVIDIA Corporation)
NVIDIA Grafikdriver 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.70 - NVIDIA Corporation)
NVIDIA HD-lyddriver 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation)
NVIDIA Miracast virtuel lyd 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 372.70 - NVIDIA Corporation)
NVIDIA PhysX-systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.5.20.5318 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 5.5.0.0 - Popcorn Time)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.9.6 - Rockstar Games)
Seagate DiscWizard (HKLM-x32\...\{AC5BFE42-B72A-467C-B9B2-8BF77C6D4D70}) (Version: 16.0.5840 - Seagate)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0015-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0016-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0018-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0019-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001A-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001B-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0406-1000-0000000FF1CE}_Office15.PROPLUS_{5FB9CAC7-7C88-434C-A463-06414F0E904E}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0407-1000-0000000FF1CE}_Office15.PROPLUS_{DABB9E2A-F054-4F97-9EB2-6992316C6EC7}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}_Office15.PROPLUS_{835E4BED-E265-4103-AE14-0B4C70CF3FE8}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-041D-1000-0000000FF1CE}_Office15.PROPLUS_{9967EE60-57CD-4DFC-B461-045A292444F5}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-002C-0406-1000-0000000FF1CE}_Office15.PROPLUS_{A25EF22A-B9A0-442A-B0FF-A012E01090FC}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0044-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-006E-0406-1000-0000000FF1CE}_Office15.PROPLUS_{D8CA8648-3336-4655-A391-FF01B28BF2CF}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0090-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00A1-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00BA-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1931508C-C004-4983-81E3-70BE6252904B}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00C1-0406-1000-0000000FF1CE}_Office15.PROPLUS_{3806FAE5-9B9B-4E8C-B138-1CDCF3F2E499}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00E1-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00E2-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-012B-0406-1000-0000000FF1CE}_Office15.PROPLUS_{54787DC9-343F-480B-9D70-E8FE6850CDC9}) (Version:  - Microsoft) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
SketchUp 2015 (HKLM\...\{350488A4-1540-4103-8F01-B27503891EB0}) (Version: 15.3.331 - Trimble Navigation Limited)
Skype™ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.)
Starbound (HKLM-x32\...\Steam App 211820) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
SteelSeries Engine 3.6.5.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.6.5.1 - SteelSeries ApS)
Sublime Text Build 3083 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
The Elder Scrolls V: Skyrim (HKLM\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Sims 4 (HKLM-x32\...\VGhlU2ltczQ=_is1) (Version: 1 - )
The Sims™ 3 (HKLM\...\Steam App 47890) (Version:  - The Sims Studio)
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.0.732.20 - Electronic Arts Inc.)
Towns (HKLM-x32\...\Steam App 221020) (Version:  - Xavi Canal, Ben Palgi)
TrackMania Nations Forever (HKLM\...\Steam App 11020) (Version:  - Nadeo)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.3f3 - Unity Technologies ApS)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0406-1000-0000000FF1CE}_Office15.PROPLUS_{A37F1435-ECFF-4BCA-89A9-F0FBCF2658DA}) (Version:  - Microsoft)
ViewRight Web PC (HKLM-x32\...\{0AEF5F93-DE30-4D0A-A879-B3BB72000F52}) (Version: 2.1.2.3 - Verimatrix, Inc.)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Windows Driver Package - ASUSTeK Computer Inc. (WUDFRd) System  (11/08/2012 12.14.17.909) (HKLM\...\A1BF7BD5D910FCF6F31CC2FB09507E077413EC93) (Version: 11/08/2012 12.14.17.909 - ASUSTeK Computer Inc.)
Windows Driver Package - ASUSTeK Computer Inc. (WUDFRd) System  (11/08/2012 12.14.17.909) (HKLM\...\DCBD4F5D2EE41B3ECF0E3111842DD0D6C3B0DB0C) (Version: 11/08/2012 12.14.17.909 - ASUSTeK Computer Inc.)
Windows Driver Package - Intel (MEIx64) System  (12/17/2012 9.0.0.1287) (HKLM\...\AB25C12A73EF7334D5E8C882872BE30B5035BA60) (Version: 12/17/2012 9.0.0.1287 - Intel)
Windows Driver Package - Intel Corporation (iaStorA) HDC  (09/20/2013 12.8.6.1000) (HKLM\...\53FF088664AA2CFB56492415E4CCBF4812583B75) (Version: 09/20/2013 12.8.6.1000 - Intel Corporation)
Windows Driver Package - Intel hdc  (07/25/2013 9.4.0.1023) (HKLM\...\BEF4C12F02CF6630DE998A20B5494DE3AD55E0F2) (Version: 07/25/2013 9.4.0.1023 - Intel)
Windows Driver Package - Intel System  (07/25/2013 9.4.0.1023) (HKLM\...\0F7865367BA0A38457A9066A5019007172736FED) (Version: 07/25/2013 9.4.0.1023 - Intel)
Windows Driver Package - Intel System  (07/25/2013 9.4.0.1023) (HKLM\...\269FABA273CFCBAD56CAC4B3CBC11AFDF04AEA2B) (Version: 07/25/2013 9.4.0.1023 - Intel)
Windows Driver Package - Intel System  (07/25/2013 9.4.0.1023) (HKLM\...\7A08E0F82E6B7E34AD605134BD923E903C893BF4) (Version: 07/25/2013 9.4.0.1023 - Intel)
Windows Driver Package - Intel USB  (07/31/2013 9.4.0.1025) (HKLM\...\4AC0FF1CA4CEC00C49C2C3ED599D94F8680DEA5D) (Version: 07/31/2013 9.4.0.1025 - Intel)
Windows Driver Package - Realtek (RTL8168) Net  (07/26/2013 8.019.0726.2013) (HKLM\...\913FEE9E247A10241207AE12F24D2A926FD3F2B8) (Version: 07/26/2013 8.019.0726.2013 - Realtek)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (11/05/2013 6.0.1.7083) (HKLM\...\48F26E07C1C62B9D8D1C7A4B3C091B4713DD429C) (Version: 11/05/2013 6.0.1.7083 - Realtek Semiconductor Corp.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 69%
Total physical RAM: 8065.36 MB
Available physical RAM: 2424.33 MB
Total Virtual: 10862.22 MB
Available Virtual: 3997.07 MB
 
========================= Partitions: =====================================
 
1 Drive c: (Windows) (Fixed) (Total:103.46 GB) (Free:7.42 GB) NTFS
2 Drive m: (Swag) (Fixed) (Total:1863.01 GB) (Free:1618.6 GB) NTFS
 
========================= Users: ========================================
 
Brugerkonti for \\MIKKEL
 
Administrator            G‘st                     mikkel                   
Kommandoen blev udf›rt.
 
 
**** End of log ****


#4 kroghm

kroghm
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 24 October 2016 - 11:43 AM

Here is the log from Malwarebytes:

--------------------------------------------------

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 24-10-2016
Scan Time: 18:19
Logfile: Malware-log.txt
Administrator: Yes
 
Version: 2.2.1.1043
Malware Database: v2016.10.24.08
Rootkit Database: v2016.09.26.02
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 8.1
CPU: x64
File System: NTFS
User: mikkel
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 316996
Time Elapsed: 4 min, 10 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 2
PUP.Optional.InstallCore, HKU\S-1-5-21-4143238798-3907526775-848208118-1002\SOFTWARE\csastats, Quarantined, [8187dfbe5b3f0a2c3b3439c1cb38e719], 
PUP.Optional.WinYahoo, HKU\S-1-5-21-4143238798-3907526775-848208118-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\BFREPORT, Quarantined, [e02877268a10d363ea7ee915b84b47b9], 
 
Registry Values: 1
PUP.Optional.WinYahoo, HKU\S-1-5-21-4143238798-3907526775-848208118-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\BFREPORT|filename, C:\Users\mikkel\AppData\Roaming\{84BCB207-A1EE-DF71-CAD8-F8A3160A059D}\SynHelper.exe, Quarantined, [e02877268a10d363ea7ee915b84b47b9]
 
Registry Data: 0
(No malicious items detected)
 
Folders: 6
PUP.Optional.Conduit, C:\Users\mikkel\AppData\Local\Conduit, Quarantined, [a860821b9efcd06606d7ac1a15edab55], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\Local\Conduit\Chrome, Quarantined, [a860821b9efcd06606d7ac1a15edab55], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
 
Files: 37
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075.130064539389933152.search.selectedEngineId.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075.130064539389933152.search.settings.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075.appOptions.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075.installUsage.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075.installUsageEarly.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075.NotificationSettings.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075.NOTIFICATION_ID.notifications-repository.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075.NOTIFICATION_ID.notifications-servicemap.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075.NOTIFICATION_ID.notifications-service_1774143.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_10.22.3.18.serviceLayer_services_appsMetadata.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_10.22.3.18.serviceLayer_services_appTrackingFirstTime.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_10.22.3.18.serviceLayer_services_Configuration.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_10.22.3.18.serviceLayer_services_gottenAppsContextMenu.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_10.22.3.18.serviceLayer_services_login.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_10.22.3.18.serviceLayer_services_otherAppsContextMenu.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_10.22.3.18.serviceLayer_services_searchAPI.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_10.22.3.18.serviceLayer_services_serviceMap.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_10.22.3.18.serviceLayer_services_toolbarContextMenu.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_10.22.3.18.serviceLayer_services_translation.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_RAW.serviceLayer_services_appsMetadata.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_RAW.serviceLayer_services_appTrackingFirstTime.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_RAW.serviceLayer_services_Configuration.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_RAW.serviceLayer_services_gottenAppsContextMenu.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_RAW.serviceLayer_services_login.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_RAW.serviceLayer_services_otherAppsContextMenu.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_RAW.serviceLayer_services_searchAPI.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_RAW.serviceLayer_services_serviceMap.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_RAW.serviceLayer_services_toolbarContextMenu.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_RAW.serviceLayer_services_toolbarSettings.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_RAW.serviceLayer_services_translation.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\ToolbarFullUserID.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\ToolbarUserId.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\toolbar_initializing_logger.txt.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\uninstallData.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\uninstallUrl.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075.searchProtectorData.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
PUP.Optional.Conduit, C:\Users\mikkel\AppData\LocalLow\Conduit\ChromeExtData\cflheckfmhopnialghigdlggahiomebp\Repository\CT3289075_10.22.3.18.serviceLayer_services_toolbarSettings.txt, Quarantined, [d236336ae0bac571fae4d1f508fa06fa], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:58 PM

Posted 24 October 2016 - 12:22 PM

Thank you

Run MBAM again..When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.

 

Edit: BTW you can only copy/paste in this section.


Edited by boopme, 24 October 2016 - 12:23 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 kroghm

kroghm
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 24 October 2016 - 12:51 PM

Okay, 

Nothing was detected!

 

-Kroghm



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:58 PM

Posted 24 October 2016 - 01:45 PM

Good. now two more and I think tou'll be good.

 

zcMPezJ.pngAdwCleaner

  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

 


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 kroghm

kroghm
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 24 October 2016 - 02:38 PM

Okay here is the Adwcleaner text:

-----------------------------------------------

# AdwCleaner v6.030 - Logfile created 24/10/2016 at 21:32:11
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-10-23.2 [Server]
# Operating System : Windows 8.1  (X64)
# Username : mikkel - MIKKEL
# Running from : M:\AdwCleaner.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support
 
 
 
***** [ Services ] *****
 
[-] Service deleted: Update service
 
 
***** [ Folders ] *****
 
[-] Folder deleted: C:\Users\mikkel\AppData\Local\NativeMessaging
[-] Folder deleted: C:\Users\mikkel\AppData\Local\WhiteListing
[-] Folder deleted: C:\ProgramData\Thunder Network
[#] Folder deleted on reboot: C:\ProgramData\Application Data\Thunder Network
[-] Folder deleted: C:\Program Files (x86)\Conduit
[-] Folder deleted: C:\Users\mikkel\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_cflheckfmhopnialghigdlggahiomebp_0
[-] Folder deleted: C:\Users\mikkel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl
 
 
***** [ Files ] *****
 
[-] File deleted: C:\Users\mikkel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nonjdcjchghhkdoolnlbekcfllmednbl_0.localstorage
[-] File deleted: C:\Users\mikkel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nonjdcjchghhkdoolnlbekcfllmednbl_0.localstorage-journal
 
 
***** [ DLL ] *****
 
 
 
***** [ WMI ] *****
 
 
 
***** [ Shortcuts ] *****
 
[-] Shortcut disinfected: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seagate\Seagate DiscWizard\Tools and Utilities\Mount Image.lnk
 
 
***** [ Scheduled Tasks ] *****
 
 
 
***** [ Registry ] *****
 
[-] Key deleted: HKU\S-1-5-21-4143238798-3907526775-848208118-1002\Software\Conduit
[#] Key deleted on reboot: HKCU\Software\Conduit
[-] Key deleted: HKLM\SOFTWARE\Conduit
[#] Key deleted on reboot: [x64] HKCU\Software\Conduit
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
 
 
***** [ Web browsers ] *****
 
[-] [C:\Users\mikkel\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: cflheckfmhopnialghigdlggahiomebp
[-] [C:\Users\mikkel\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: nonjdcjchghhkdoolnlbekcfllmednbl
 
 
*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C0].txt - [2670 Bytes] - [24/10/2016 21:32:11]
C:\AdwCleaner\AdwCleaner[S0].txt - [2776 Bytes] - [24/10/2016 21:29:40]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2816 Bytes] ##########

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Here is the JRT:

--------------------------

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 8.1 x64 
Ran by mikkel (Administrator) on 24-10-2016 at 21:36:19,55
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 6 
 
Successfully deleted: C:\Users\mikkel\AppData\Local\crashrpt (Folder) 
Successfully deleted: C:\Users\mikkel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio (Folder) 
Successfully deleted: C:\Users\mikkel\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gkojfkhlekighikafcpjkiklfbnlmeio (Folder) 
Successfully deleted: C:\Users\mikkel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gkojfkhlekighikafcpjkiklfbnlmeio_0.localstorage-journal (File) 
Successfully deleted: C:\Users\mikkel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gkojfkhlekighikafcpjkiklfbnlmeio_0.localstorage (File) 
Successfully deleted: C:\Users\Public\thunder network (Folder) 
 
 
 
Registry: 1 
 
Successfully deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_5A3D5A2C263D227C3DEB52B28C0147DD (Registry Value) 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 24-10-2016 at 21:37:02,48
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Edited by kroghm, 24 October 2016 - 02:40 PM.


#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:58 PM

Posted 24 October 2016 - 03:18 PM

Give it a run now for a couple days and see how it is.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 kroghm

kroghm
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 24 October 2016 - 04:04 PM

Okay! 

Thanks



#11 kroghm

kroghm
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 01 November 2016 - 06:53 PM

My computer made another popup window today  <_<


Edited by kroghm, 01 November 2016 - 06:54 PM.


#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:58 PM

Posted 02 November 2016 - 10:28 AM

We need to get a deeper look. Please follow this Preparation Guide and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 kroghm

kroghm
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 07 November 2016 - 08:51 AM

Everything went well, and i think the problem is solved. Thanks for the help :)

 

-Kroghm



#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:58 PM

Posted 07 November 2016 - 11:43 AM

Great!! they are good there.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users