VIRUS?

prøv et 'hjemmebesøg' fra Trend
http://housecall.trendmicro.com/
De er ret gode til (gratis) at rydde op mht vira.

Ja, tak, men ville helst turen igennem med HiJackThis m. logfiler osv.

Man kan ikke åbne internetsider uden at siderne bliver hijacket af reklamer og konkurrencer.

ok - det er så 'bare' generende - men er ikke virus.
se på http://www.eksperten.dk/spm/1000512#reply_8165489
den kommentar giver en stor del af løsningen.

Tak men jeg kan ikke rigtigt bruge det da jeg slet ikke kan manøvrere rundt på nettet uden at der kommer underlige reklamesider frem samt konkurrencer. Comp er blevet umulig at arbejde med. Det er bla. denne side der dukker op:http://denmark.surveygenieonline.com/gift/valdk12157.html?country=DK&domain=www.eksperten.dk&voluumdata=vid..00000005-0a94-43db-8000-000000000000__vpid..1ce1d000-1733-11e5-84bb-71d651e4efac__caid..011736b6-443f-42f7-96ff-3e95f05edd57__rt..D__lid..5d37cbdc-10eb-4433-8509-767d97a25128__oid1..ed3d98f1-4583-4f7e-b719-9516bcf2cb89__oid2..d13b7f33-958a-4a9a-a952-904ae6d6df1e__var1..0%5C.%5C006__var2..%5C.%5Cdk__var3..4768923__var4..106905__var5..%5C.%5Cdk__var6..www%5C.%5Ceksperten%5C.%5Cdk__rd..www%5C.%5Ceksperten%5C.%5Cdk&bid=0.006&keyword=.dk&keyword_id=4768923&creative_id=106905&target=.dk

her er loggen fra Anti Malware:

# AdwCleaner v4.206 - Logfile created 20/06/2015 at 12:12:30
# Updated 01/06/2015 by Xplode
# Database : 2015-06-17.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Peter - PETER-HP
# Running from : C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QAVIK04C\adwcleaner_4.206.exe
# Option : Cleaning

***** [ Services ] *****

[#] Service Deleted : e15b56b7

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\d022f08c00002d40
Folder Deleted : C:\Program Files (x86)\CouponXplorer
Folder Deleted : C:\Program Files (x86)\offerddeal
Folder Deleted : C:\Program Files (x86)\ofFerdeal
Folder Deleted : C:\Program Files (x86)\offoerdeaLL
Folder Deleted : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgdcgnnjenhecpdnhpnhpmgndjenmnnk
File Deleted : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mgdcgnnjenhecpdnhpnhpmgndjenmnnk_0.localstorage
File Deleted : C:\Users\Peter\AppData\Local\Chromium\User Data\Default\Local Storage\chrome-extension_ihokndmjeombjojnfkmapfnjeghjohim_0.localstorage
File Deleted : C:\Windows\Reimage.ini

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo
Key Deleted : HKCU\Software\Google\Chrome\Extensions\ihokndmjeombjojnfkmapfnjeghjohim
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ihokndmjeombjojnfkmapfnjeghjohim
Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\ihokndmjeombjojnfkmapfnjeghjohim
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Classes\P04F31832_8423_4C04_904B_14FF2FCE91ED_.P04F31832_8423_4C04_904B_14FF2FCE91ED_
Key Deleted : HKLM\SOFTWARE\Classes\P04F31832_8423_4C04_904B_14FF2FCE91ED_.P04F31832_8423_4C04_904B_14FF2FCE91ED_.9
Key Deleted : HKLM\SOFTWARE\Classes\P88A39712_3933_4585_B01E_16263F190C24_.P88A39712_3933_4585_B01E_16263F190C24_
Key Deleted : HKLM\SOFTWARE\Classes\P88A39712_3933_4585_B01E_16263F190C24_.P88A39712_3933_4585_B01E_16263F190C24_.9
Key Deleted : HKLM\SOFTWARE\6f11c1d1-9597-cb13-33cd-70debe6cb38e
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{e15b56b7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{04F31832-8423-4C04-904B-14FF2FCE91ED}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{88A39712-3933-4585-B01E-16263F190C24}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74CA59B5-0066-48C3-9D1A-84E0C0BB9AD7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{04F31832-8423-4C04-904B-14FF2FCE91ED}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88A39712-3933-4585-B01E-16263F190C24}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{04F31832-8423-4C04-904B-14FF2FCE91ED}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{88A39712-3933-4585-B01E-16263F190C24}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{04F31832-8423-4C04-904B-14FF2FCE91ED}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{88A39712-3933-4585-B01E-16263F190C24}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{04F31832-8423-4C04-904B-14FF2FCE91ED}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{88A39712-3933-4585-B01E-16263F190C24}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{04F31832-8423-4C04-904B-14FF2FCE91ED}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{88A39712-3933-4585-B01E-16263F190C24}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{04F31832-8423-4C04-904B-14FF2FCE91ED}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88A39712-3933-4585-B01E-16263F190C24}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EC29EDF6-AD3C-4E1C-A087-D6CB81400C43}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EC29EDF6-AD3C-4E1C-A087-D6CB81400C43}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B3DE0765-F703-40D9-AC2C-04FBAF887E15}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
Key Deleted : HKCU\Software\Super Optimizer
Key Deleted : HKCU\Software\PRODUCTSETUP
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{BC799F5F-37C9-ACBB-BE51-805992C10610}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17840


-\\ Mozilla Firefox v


-\\ Google Chrome v43.0.2357.124

[C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
[C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYDK&apn_uid=37B47B82-22A4-452E-A5FD-7D98E46A1411&apn_sauid=A6E43FE3-8D7C-4737-969E-1BBB82CF7536
[C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.dregol.com/results.php?f=4&q={searchTerms}&a=drg_ggbg_15_22&cd=2XzuyEtN2Y1L1Qzu0B0E0ByBtD0D0DyB0EtDtCtCtAzz0E0AtN0D0Tzu0StCtByEtAtN1L2XzutAtFtCtDtFtCtDtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StC0EtAtDtAzz0AtCtGtC0C0ByEtG0CyE0AyCtGyE0CtC0AtGyEyB0CtDyE0Fzz0A0E0A0CyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0FyDzytC0EyByBtG0B0AtDyBtGyEzyzy0CtG0BtDzyyDtG0C0EyCtBtByC0FtBtCzztDyC2QtN0A0LzuyE&cr=1085975813&ir=
[C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Homepage] : hxxp://www.dregol.com/?f=1&a=drg_ggbg_15_22&cd=2XzuyEtN2Y1L1Qzu0B0E0ByBtD0D0DyB0EtDtCtCtAzz0E0AtN0D0Tzu0StCtByEtAtN1L2XzutAtFtCtDtFtCtDtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StC0EtAtDtAzz0AtCtGtC0C0ByEtG0CyE0AyCtGyE0CtC0AtGyEyB0CtDyE0Fzz0A0E0A0CyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0FyDzytC0EyByBtG0B0AtDyBtGyEzyzy0CtG0BtDzyyDtG0C0EyCtBtByC0FtBtCzztDyC2QtN0A0LzuyE&cr=1085975813&ir=
[C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Startup_URLs] : 7940F1BE4ABE1945DD2243D730210D5472CFC047B9063FAC46B1BDD83F1CB62C"},"software_reporter":{"prompt_reason":"CCCBF961F893349BED1185B386E4ADC041D404F2D55BCD692326D48C6EDF7F3A","prompt_seed":"2022A36E8AC34D22A03542D28AA0874BF07071EC14EF5696C32998D01B66F1CE","prompt_version":"34FF5B2948ADF516E71145E6EC82516D72EBF245641DAE2B0824CCF0F7A9F4D5"},"sync":{"remaining_rollback_tries":"8640C31589739034A771CD1DC7F308899044EB86BA65EFB333071FE585F84587"}},"super_mac":"453BE98369206D8BC734B6B60B1B61DEA4D6994EC40BFEC72ACE3141A8E686CA"},"safebrowsing":{"incidents_sent":{"2":{"chrome.dll":"3774509266","chrome_child.dll":"3743713718"}}},"session":{"restore_on_startup":5,"startup_urls":["hxxp://www.dregol.com/?f=7&a=drg_ggbg_15_22&cd=2XzuyEtN2Y1L1Qzu0B0E0ByBtD0D0DyB0EtDtCtCtAzz0E0AtN0D0Tzu0StCtByEtAtN1L2XzutAtFtCtDtFtCtDtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StC0EtAtDtAzz0AtCtGtC0C0ByEtG0CyE0AyCtGyE0CtC0AtGyEyB0CtDyE0Fzz0A0E0A0CyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0FyDzytC0EyByBtG0B0AtDyBtGyEzyzy0CtG0BtDzyyDtG0C0EyCtBtByC0FtBtCzztDyC2QtN0A0LzuyE&cr=1085975813&ir=

-\\ Chromium v

[C:\Users\Peter\AppData\Local\Chromium\User Data\Default\Secure Preferences] - Deleted [Homepage] : hxxp://www.dregol.com/?f=1&a=drg_ggbg_15_22&cd=2XzuyEtN2Y1L1Qzu0B0E0ByBtD0D0DyB0EtDtCtCtAzz0E0AtN0D0Tzu0StCtByEtAtN1L2XzutAtFtCtDtFtCtDtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StC0EtAtDtAzz0AtCtGtC0C0ByEtG0CyE0AyCtGyE0CtC0AtGyEyB0CtDyE0Fzz0A0E0A0CyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0FyDzytC0EyByBtG0B0AtDyBtGyEzyzy0CtG0BtDzyyDtG0C0EyCtBtByC0FtBtCzztDyC2QtN0A0LzuyE&cr=1085975813&ir=&uref=chmm
[C:\Users\Peter\AppData\Local\Chromium\User Data\Default\Secure Preferences] - Deleted [Startup_URLs] : 158E101600CFCCA5BE88A9E6A3CF184CA22F79B1C1590500B9ECEBAC03AE3E53"},"software_reporter":{"prompt_reason":"5A1EEE6610B0E60FAD44D731D9768B67743F2307846BA8C85E4A6884DBA2CC78","prompt_seed":"D12521B12F27ED8D55846D6FE25154BD22242084A3546A89F2435F0D6575A92E","prompt_version":"565C7DC33789AA140A0FFC230B569B2F592F494FD1FE1EF8BAEA97F43DB5B49E"},"sync":{"remaining_rollback_tries":"330199A48C5F90321D74BF4A3B8CAD4B7FF7FA5817F414DCBE4E6C2F52FBDA56"}},"super_mac":"AD23D2B23CED820132FF14807EA009C9AFFB3C36C1C2D535A7883125A5AC401B"},"search_provider_overrides":[{"encoding":"UTF-8","favicon_url":"hxxp://www.dregol.com/favicon.ico

*************************

AdwCleaner[R0].txt - [12239 bytes] - [20/06/2015 12:08:54]
AdwCleaner[S0].txt - [11294 bytes] - [20/06/2015 12:12:30]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [11354  bytes] ##########

det må have hjulpet - evt kan du køre (midlertidigt) med Internet Explorer  - start den med 'InPrivate browsing' - så er alt ekstra-gejl slået fra.

Men du kar køre adwcleaner - og mangler malwarebytes fra mit første indlæg.

Enig ^^^ !!!