får massa reklam hela tiden

[lordi]

hej. min dator har blivit lite konstig... jag rensade den i förrgår(använder CCleaner om det har betydelse). jag rensade den ju inte så mycket då, utan bara sådana saker man hela tiden 'sparar' när man är på internet, som man inte behöver spara, osv.

nu idag (använde den inte igår) så är det jättemycket reklamer överallt! i texter och länkar t.ex. så är det ord som är färgade gröna med understrykning. om man håller musen över orden så visas det upp en reklamskylt vid ordet. grymt irriterande.

ibland när man klickar på t.ex. ny flik, enter(när man t.ex. skrivit in en webbadress) eller går in på en annan sida/tråd så kommer ibland en reklam ruta (nytt fönster) upp. har kommit upp ett par gånger någon sån här BOT chatt med personer som kommer från samma stad, för att locka till sig folk att bli medlemmar på någon dejting sida, de flesta gånger har det varit reklam för spel, sådana som t.ex. WoW och empire nånting.. och sådana 'vuxen spel', t.ex. som jackpot joy eller liknande.

hur får jag bort detta? rensade datorn igen nyss men funkade inte att få bort reklamen.

det blir även segare för den att ladda in t.ex. bilder.

[Cecilia]

Hej!

 

Följ anvisningarna i tråden Till dig med virus eller andra skadliga program i datorn så gott det går. Säg till om du har problem med att utföra något av det.

[Degerslatten]

Bumpar denna då jag inte kan beskriva mina bekymmer mer exakt än trådstartaren. Har dock bara reklamen i IE(V10).
 
Har kört DDS men fattar inte hur man bifogar filer här...

Här är iaf DDS filen:
 
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16537
Run by Erik at 13:38:01 on 2014-02-13
Microsoft Windows 8  6.2.9200.0.1252.46.1053.18.8078.4279 [GMT 1:00]
.
AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\dwm.exe
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\atieclxx.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
C:\windows\system32\dashost.exe
C:\Program Files\Elantech\ETDService.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files\Windows Defender\MsMpEng.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\wbem\unsecapp.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\windows\system32\taskhostex.exe
C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\windows\Explorer.EXE
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\windows\system32\igfxext.exe
C:\Program Files (x86)\Samsung\Settings\sSettings.exe
C:\Program Files (x86)\Samsung\SW Update\SWMAgent.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Users\Erik\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Personal\bin\Personal.exe
C:\Program Files (x86)\OnecomCloudDrive\Dlls\OnecomCloudDrive.exe
C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe
C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\updateui.exe
C:\Users\Erik\AppData\Roaming\Spotify\spotify.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\windows\system32\taskhost.exe
C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
C:\Program Files (x86)\Remote Mouse\miniweb.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\program files (x86)\torntv 2\torntv 2-bg.exe
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Windows\System32\WWAHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\windows\WinStore\WSHost.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.conduit.com/?ctid=CT3317740&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPE6CBE29C-2381-445C-98CF-F103604A3B67&SSPV=
uDefault_Page_URL = hxxp://samsung13.msn.com
mStart Page = hxxp://mysearch.sweetpacks.com/?src=10&st=12&crg=3.5000006.10059&did=10703&barid=283822348804261452189752334435138891169
mWinlogon: Userinit = userinit.exe
BHO: Torntv 2: {11111111-1111-1111-1111-110311551178} - C:\Program Files (x86)\Torntv 2\Torntv 2-bho.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
uRun: [One.com] C:\Program Files (x86)\OnecomCloudDrive\Dlls\AppLauncher.exe
uRun: [spotify] "C:\Users\Erik\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
uRun: [spotify Web Helper] "C:\Users\Erik\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
uRun: [uTorrent] "C:\Users\Erik\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
uRun: [Remote Mouse] C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
uRunOnce: [FlashPlayerUpdate] C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_Plugin.exe -update plugin
mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
mRun: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
mRun: [fst_se_10] <no file>
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\Personal.lnk - C:\Program Files (x86)\Personal\bin\Personal.exe
IE: Skicka till Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{869DD0A7-11DB-4E62-AA63-4304F6536BF7} : DHCPNameServer = 172.22.146.23 172.22.146.22 172.22.146.21
TCP: Interfaces\{EDF6451C-B5B0-4020-97C9-14124B12776A} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{EDF6451C-B5B0-4020-97C9-14124B12776A}\3596475636F6D6 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{EDF6451C-B5B0-4020-97C9-14124B12776A}\752425D263030323 : DHCPNameServer = 192.168.1.1
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [bTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
x64-Run: [igfxTray] C:\windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\windows\System32\igfxpers.exe
x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\
FF - prefs.js: browser.search.defaulturl -
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Personal\bin\np_prsnl.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}\plugins\npGarmin.dll
FF - plugin: C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\extensions\2020Player@2020Technologies.com\plugins\NP2020Player.dll
FF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll
FF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll
.
============= SERVICES / DRIVERS ===============
.
R0 amdkmpfd;AMD PCI Root Bus Lower Filter;C:\windows\System32\Drivers\amdkmpfd.sys [2012-10-17 36520]
R0 iaStorA;iaStorA;C:\windows\System32\Drivers\iaStorA.sys [2012-11-13 645952]
R1 ccSet_NARA;NARA Settings Manager;C:\windows\System32\Drivers\NARAx64\0401000.00E\ccSetx64.sys [2012-11-14 168608]
R2 AMD External Events Utility;AMD External Events Utility;C:\windows\System32\atiesrxx.exe [2012-10-17 239616]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-9-12 731688]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-8-27 1112000]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-9-5 1124288]
R2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-8-15 135984]
R2 Easy Launcher;Easy Launcher;C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [2012-10-19 1593976]
R2 ETDService;Elan Service;C:\Program Files\Elantech\ETDService.exe [2012-10-18 90992]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]
R2 Intel® ME Service;Intel® ME Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2012-11-13 128896]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2012-11-13 165760]
R2 NOBU;Norton Online Backup;C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2012-8-15 3943104]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-11-13 364416]
R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-8-28 3378416]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtuellt kort;C:\windows\System32\Drivers\AmpPal.sys [2012-9-12 162344]
R3 BthLEEnum;Lågenergidrivrutin för Bluetooth;C:\windows\System32\Drivers\BthLEEnum.sys [2012-7-26 202752]
R3 btmaux;Intel Bluetooth Auxiliary Service;C:\windows\System32\Drivers\btmaux.sys [2012-8-27 121728]
R3 btmhsf;btmhsf;C:\windows\System32\Drivers\btmhsf.sys [2012-8-29 857472]
R3 ETD;Samsung PS/2 Port Input Device;C:\windows\System32\Drivers\ETD.sys [2012-10-18 325488]
R3 ibtfltcoex;ibtfltcoex;C:\windows\System32\Drivers\iBtFltCoex.sys [2012-8-6 68136]
R3 IntcDAud;Intel® bildskärmsljud;C:\windows\System32\Drivers\IntcDAud.sys [2012-6-19 342528]
R3 NETwNe64;Kortdrivrutin för Windows 8 64-bitars Intel® Wireless WiFi Link 5000-serien;C:\windows\System32\Drivers\NETwew00.sys [2013-10-8 3345376]
R3 RadioHIDMini;Radio HID Mini-driver;C:\windows\System32\Drivers\RadioHIDMini.sys [2012-8-5 23408]
R3 RTL8168;Realtek 8168 NT Driver;C:\windows\System32\Drivers\Rt630x64.sys [2012-11-13 719504]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed-protokoll;C:\windows\System32\Drivers\AmpPal.sys [2012-9-12 162344]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\windows\System32\Drivers\ssudbus.sys [2014-1-22 108800]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-8-28 273136]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\Drivers\rdpvideominiport.sys [2013-8-7 27880]
S3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);C:\windows\System32\Drivers\ssudmdm.sys [2014-1-22 206080]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
.
=============== Created Last 30 ================
.
2014-02-13 12:33:12    10315576    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2F62079F-51AE-4675-8A5F-B53422081B89}\mpengine.dll
2014-02-12 11:46:19    10315576    ------w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2014-02-04 15:16:56    240816    ----a-w-    C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10232.bin
2014-01-22 07:52:10    206080    ----a-w-    C:\windows\System32\drivers\ssudmdm.sys
2014-01-22 07:52:10    108800    ----a-w-    C:\windows\System32\drivers\ssudbus.sys
.
==================== Find3M  ====================
.
2014-01-19 07:33:29    270496    ------w-    C:\windows\System32\MpSigStub.exe
2014-01-09 08:02:07    78296    ----a-w-    C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-01-09 08:02:07    694240    ----a-w-    C:\windows\SysWow64\FlashPlayerApp.exe
2013-11-23 06:43:58    420864    ----a-w-    C:\windows\System32\WMPhoto.dll
2013-11-23 05:05:01    368640    ----a-w-    C:\windows\SysWow64\WMPhoto.dll
.
============= FINISH: 13:39:13,17 ===============

[Cecilia]

Spara AdwCleaner av Xplode på Skrivbordet: http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner

 

Stäng alla program, inklusive webbläsare.

Dubbelklicka på AdwCleaner för att starta programmet.

 

Klicka på Scan-knappen.

Vänta tills sökningen är klar.

Klicka på Report-knappen.

En rapport kommer upp, kopiera innehållet och klistra in i ditt svar.

Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner[R0].txt

[Degerslatten]

# AdwCleaner v3.018 - Report created 13/02/2014 at 19:05:08
# Updated 28/01/2014 by Xplode
# Operating System : Windows 8  (64 bits)
# Username : Erik - ELING
# Running from : C:\Users\Erik\Downloads\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Found : C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\searchplugins\Askcom.xml
File Found : C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\searchplugins\Conduit.xml
File Found : C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\searchplugins\conduit-search.xml
File Found : C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\searchplugins\SweetIm.xml
File Found : C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\searchplugins\Sweetpacks Search.xml
File Found : C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\user.js
File Found : C:\Users\Erik\Desktop\TornTV.lnk
File Found : C:\windows\System32\roboot64.exe
File Found : C:\windows\System32\Tasks\Torntv 2-codedownloader
File Found : C:\windows\System32\Tasks\Torntv 2-enabler
File Found : C:\windows\System32\Tasks\Torntv 2-updater
File Found : C:\windows\Tasks\Torntv 2-codedownloader.job
File Found : C:\windows\Tasks\Torntv 2-enabler.job
File Found : C:\windows\Tasks\Torntv 2-updater.job
Folder Found : C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\Extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
Folder Found : C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\Extensions\toolbar@ask.com
Folder Found C:\Program Files (x86)\Movdap
Folder Found C:\Program Files (x86)\MyPC Backup
Folder Found C:\Program Files (x86)\MyPC Backup
Folder Found C:\Program Files (x86)\Torntv 2
Folder Found C:\Program Files (x86)\TornTV.com
Folder Found C:\Program Files (x86)\WinZip Registry Optimizer
Folder Found C:\ProgramData\boost_interprocess
Folder Found C:\ProgramData\Tarma Installer
Folder Found C:\Users\Erik\AppData\Roaming\Betcat
Folder Found C:\Users\Erik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Found C:\Users\Erik\AppData\Roaming\Movdap
Folder Found C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\Conduit
Folder Found C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\CT2504091

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\Software\Torntv 2
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\installedbrowserextensions
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311551178}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA}
Key Found : HKCU\Software\Tutorials
Key Found : HKCU\Software\TutoTag
Key Found : [x64] HKCU\Software\1ClickDownload
Key Found : [x64] HKCU\Software\IM
Key Found : [x64] HKCU\Software\ImInstaller
Key Found : [x64] HKCU\Software\installedbrowserextensions
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Found : [x64] HKCU\Software\Tutorials
Key Found : [x64] HKCU\Software\TutoTag
Key Found : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311551178}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DF84E609-C3A4-49CB-A160-61767DAF8899}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035578.BHO
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035578.BHO.1
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035578.Sandbox
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035578.Sandbox.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{0AFD55C8-ADF8-4A33-A6E1-DEDB7A36AEB4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555578}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556678}
Key Found : HKLM\SOFTWARE\Classes\Interface\{DF84E609-C3A4-49CB-A160-61767DAF8899}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344554478}
Key Found : HKLM\Software\FreeSoftToday
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bicnnkjibmphdeigoodpjlcklcnaobdj
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551178}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Torntv 2
Key Found : HKLM\Software\Torntv 2
Key Found : HKLM\Software\Updater By Sweetpacks
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555578}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556678}
Key Found : [x64] HKLM\SOFTWARE\Tarma Installer
Key Found : [x64] HKLM\SOFTWARE\Updater By Sweetpacks
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{8E9E3331-D360-4f87-8803-52DE43566502}]
Value Found : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{8E9E3331-D360-4f87-8803-52DE43566502}]

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537

Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [start Page] - hxxp://search.conduit.com/?ctid=CT3317740&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPE6CBE29C-2381-445C-98CF-F103604A3B67&SSPV=
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [start Page] - hxxp://mysearch.sweetpacks.com/?src=10&st=12&crg=3.5000006.10059&did=10703&barid=283822348804261452189752334435138891169

-\\ Mozilla Firefox v27.0 (en-US)

[ File : C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\yz758kmi.default\prefs.js ]

Line Found : user_pref("CT2504091..clientLogIsEnabled", true);
Line Found : user_pref("CT2504091..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2504091..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2504091.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT2504091.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT2504091.BrowserCompStateIsOpen_129707804829376918", true);
Line Found : user_pref("CT2504091.CTID", "CT2504091");
Line Found : user_pref("CT2504091.CurrentServerDate", "23-10-2012");
Line Found : user_pref("CT2504091.DialogsAlignMode", "LTR");
Line Found : user_pref("CT2504091.DialogsGetterLastCheckTime", "Mon Oct 22 2012 22:26:53 GMT+0200");
Line Found : user_pref("CT2504091.DownloadReferralCookieData", "");
Line Found : user_pref("CT2504091.EMailNotifierPollDate", "Mon Dec 06 2010 22:16:04 GMT+0100");
Line Found : user_pref("CT2504091.FeedLastCount129079840422964131", 11);
Line Found : user_pref("CT2504091.FeedPollDate128891351169457140", "Mon Dec 06 2010 21:59:38 GMT+0100");
Line Found : user_pref("CT2504091.FeedPollDate129079840422964131", "Mon Dec 06 2010 21:59:38 GMT+0100");
Line Found : user_pref("CT2504091.FeedTTL128891351169457140", 40);
Line Found : user_pref("CT2504091.FirstServerDate", "25-9-2010");
Line Found : user_pref("CT2504091.FirstTime", true);
Line Found : user_pref("CT2504091.FirstTimeFF3", true);
Line Found : user_pref("CT2504091.FirstTimeSettingsDone", true);
Line Found : user_pref("CT2504091.FixPageNotFoundErrors", true);
Line Found : user_pref("CT2504091.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT2504091.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT2504091.HasUserGlobalKeys", true);
Line Found : user_pref("CT2504091.Initialize", true);
Line Found : user_pref("CT2504091.InitializeCommonPrefs", true);
Line Found : user_pref("CT2504091.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT2504091.InstallationType", "UnknownIntegration");
Line Found : user_pref("CT2504091.InstalledDate", "Fri Sep 24 2010 23:50:14 GMT+0200");
Line Found : user_pref("CT2504091.IsGrouping", false);
Line Found : user_pref("CT2504091.IsMulticommunity", false);
Line Found : user_pref("CT2504091.IsOpenThankYouPage", false);
Line Found : user_pref("CT2504091.IsOpenUninstallPage", false);
Line Found : user_pref("CT2504091.LanguagePackLastCheckTime", "Mon Oct 22 2012 22:26:53 GMT+0200");
Line Found : user_pref("CT2504091.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT2504091.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT2504091.LastLogin_2.7.2.0", "Mon Dec 06 2010 21:58:36 GMT+0100");
Line Found : user_pref("CT2504091.LastLogin_3.12.2.3", "Thu Jun 07 2012 09:34:33 GMT+0200");
Line Found : user_pref("CT2504091.LastLogin_3.13.0.6", "Thu Jul 19 2012 10:00:54 GMT+0200");
Line Found : user_pref("CT2504091.LastLogin_3.14.1.0", "Thu Aug 23 2012 22:41:47 GMT+0200");
Line Found : user_pref("CT2504091.LastLogin_3.15.1.0", "Tue Oct 23 2012 16:42:58 GMT+0200");
Line Found : user_pref("CT2504091.LatestVersion", "3.15.1.0");
Line Found : user_pref("CT2504091.Locale", "en-us");
Line Found : user_pref("CT2504091.LoginCache", 4);
Line Found : user_pref("CT2504091.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT2504091.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT2504091.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT2504091.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT2504091.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2504091&octid=EB_ORIGINAL_CTID&SearchSource=1");
Line Found : user_pref("CT2504091.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT2504091.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&q=");
Line Found : user_pref("CT2504091.SearchInNewTabEnabled", true);
Line Found : user_pref("CT2504091.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT2504091.SearchInNewTabLastCheckTime", "Mon Oct 22 2012 22:26:53 GMT+0200");
Line Found : user_pref("CT2504091.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2504091.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2504091.SearchProtectorToolbarDisabled", true);
Line Found : user_pref("CT2504091.ServiceMapLastCheckTime", "Mon Oct 22 2012 22:26:53 GMT+0200");
Line Found : user_pref("CT2504091.SettingsCheckIntervalMin", 120);
Line Found : user_pref("CT2504091.SettingsLastCheckTime", "Tue Oct 23 2012 16:43:02 GMT+0200");
Line Found : user_pref("CT2504091.SettingsLastUpdate", "1350318800");
Line Found : user_pref("CT2504091.ThirdPartyComponentsInterval", 504);
Line Found : user_pref("CT2504091.ThirdPartyComponentsLastCheck", "Sun Nov 28 2010 18:17:23 GMT+0100");
Line Found : user_pref("CT2504091.ThirdPartyComponentsLastUpdate", "1246790578");
Line Found : user_pref("CT2504091.ToolbarDisabled", true);
Line Found : user_pref("CT2504091.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT2504091.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2504091");
Line Found : user_pref("CT2504091.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT2504091.UserID", "UN40812449796598146");
Line Found : user_pref("CT2504091.ValidationData_Toolbar", 2);
Line Found : user_pref("CT2504091.alertChannelId", "897164");
Line Found : user_pref("CT2504091.backendstorage.cbfirsttime", "546875204F637420303420323031322031373A35303A303820474D542B30323030");
Line Found : user_pref("CT2504091.backendstorage.shoppingapp.gk.exipres", "547565204F637420303920323031322031373A35303A303520474D542B30323030");
Line Found : user_pref("CT2504091.backendstorage.shoppingapp.gk.geolocation", "73776564656E");
Line Found : user_pref("CT2504091.clientLogIsEnabled", false);
Line Found : user_pref("CT2504091.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2504091.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT2504091.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT2504091.initDone", true);
Line Found : user_pref("CT2504091.myStuffEnabled", true);
Line Found : user_pref("CT2504091.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT2504091.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT2504091.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT2504091.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT2504091.revertSettingsEnabled", true);
Line Found : user_pref("CT2504091.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT2504091.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT2504091.testingCtid", "");
Line Found : user_pref("CT2504091.toolbarAppMetaDataLastCheckTime", "Mon Oct 22 2012 22:26:53 GMT+0200");
Line Found : user_pref("CT2504091.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2504091.usagesFlag", 2);
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2504091/CT2504091", "\"d59ddb766ff6e1d55587ad33f51172573\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2504091", "\"1326306883\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"4ead38b3e6bcd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"0d648794549cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0e0a4327275cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2504091", "\"f1c77625c0e9bd1c80a2fd6901845fa9\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en-us", "\"21130dcc7cf0264c95ee8c570b34acbf\"");
Line Found : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Line Found : user_pref("CommunityToolbar.ToolbarsList", "CT2504091");
Line Found : user_pref("CommunityToolbar.ToolbarsList2", "CT2504091");
Line Found : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Line Found : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Mon Dec 06 2010 13:34:37 GMT+0100");
Line Found : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.locale", "en");
Line Found : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Line Found : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sun Dec 05 2010 23:06:36 GMT+0100");
Line Found : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1291052234");
Line Found : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Line Found : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Line Found : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Line Found : user_pref("CommunityToolbar.alert.userId", "{ded15fe3-5664-432b-af40-0c21bbbca3b4}");
Line Found : user_pref("CommunityToolbar.globalUserId", "ac240a61-6737-4135-885e-fc21a5c76ddc");
Line Found : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2504091");
Line Found : user_pref("browser.search.defaultengine", "Ask.com");
Line Found : user_pref("browser.search.defaultenginename", "Conduit Search");
Line Found : user_pref("browser.search.order.1", "Ask.com");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&SearchSource=3&q={searchTerms}");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Found : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&q=");
Line Found : user_pref("sweetim.toolbar.urls.homepage", "hxxp://mysearch.sweetpacks.com/?src=10&st=12&crg=3.5000006.10059&did=10703&barid=283822348804261452189752334435138891169");

*************************

AdwCleaner[R0].txt - [18521 octets] - [13/02/2014 19:03:25]
AdwCleaner[R1].txt - [18392 octets] - [13/02/2014 19:05:08]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [18453 octets] ##########
 

[Cecilia]

1. Avinstallera i Kontrollpanelen följande om det går:

 

Torn TV pga http://www.systemlookup.com/CLSID/78097-Torntv_2_bho_dll.html

Movdap

Ask Toolbar

Conduit

SweetIM toolbar

Community Toolbar

WinZip Registry Optimizer

 

2. Stäng alla program, inklusive webbläsare.

Dubbelklicka på AdwCleaner för att starta programmet.

 

Klicka på Scan-knappen.

Vänta tills sökningen är klar.

 

Klicka på Clean-knappen.

Tryck på OK.

Tryck på OK fler gånger om det kommer upp meddelanden.

 

Datorn kommer att startas om.

En rapport kommer upp, kopiera innehållet och klistra in i ditt svar.

Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner[s0].txt

 

3. Ladda ner Malwarebytes Anti-Malware Free (MBAM) från http://www.malwarebytes.org/

Dubbelklicka på mbam-setup för att installera programmet.

 

Se till i slutet av installationen att det är bockar för:

Uppdatera Malwarebytes' Anti-Malware

Starta Malwarebytes' Anti-Malware

Klicka på Slutför

Om det finns någon uppdatering så kommer den att laddas ner och installeras.

 

När programmet startar så välj Utför fullständig skanning och klicka på Skanna.

Skanningen tar ett tag.

När den är klar så klicka på OK och sedan Visa resultat.

Bocka för allt och tryck sedan Ta bort markerade.

När borttagningen är klar så öppnar Anteckningar med en logg.

 

Eventuellt så kommer det upp en begäran om att starta om datorn (Restart). I så fall gör det.

Om det blir ett felmeddelande Error loading... efter omstarten så starta om datorn än en gång.

Om programmet inte kommer igång efter omstarten så starta det.

 

Om loggen inte kommer upp själv i Anteckningar så hittar du loggen på fliken Loggar i MBAM.

Kopiera loggen och klistra in den i ditt svar.

 

4. Kör FRST igen och klistra in den nya loggen så får vi se vad som återstår.

 

5. Skanna datorn online på http://www.eset.com/onlinescan/

För att inte skannern ska ta för lång tid på sig stäng av ditt antivirusprogram under tiden.

 

Avbocka alternativet Remove found threats

Bocka för Scan Archives

 

Klicka på Advanced Settings

Bocka för:

Scan for potentially unwanted applications

Scan for potentially unsafe applications

Enable Anti-Stealth Technology

 

Klicka på Scan

 

När skanningen är klar klicka på List of threats found, följt av Export to a text file. Spara till en fil på skrivbordet, öppna filen, kopiera resultatet och klistra sedan in det i ditt svar.

[hottiz]

Hade samma skit i min dator...

Gjorde en enkel onlinescanning på

http://www.pandasoftware.com

 

Den städade bort massa infekterade filer

och vips var allt borta utan att man behöver

göra en massa jobb själv

[Cecilia]

Hade samma skit i min dator...

Gjorde en enkel onlinescanning på

http://www.pandasoftware.com

 

Den städade bort massa infekterade filer

och vips var allt borta utan att man behöver

göra en massa jobb själv

Reklam i webbläsaren kan ju bero på många väldigt olika orsaker. Så det är ju inte säkert att Pandas program hittar just det som en annan dator drabbas av.