Problem strong signal

**Posty:** 2 · przez **jacz27** 16 Mar 2015, 19:56

Pojawiły się reklamy Strong Signal.
Proszę o pomoc.
Pliki z FRST w załączeniu.

**Posty:** 4765 · przez **ordynat** 16 Mar 2015, 21:34

1) Użyj Adw-Cleaner http://www.programosy.pl/program,adwcleaner.html
najpierw kliknij na SZUKAJ, a dopiero po zakończeniu skanowania, gdy uaktywni się przycisk USUŃ, to kliknij na niego.

2) Otwórz Notatnik i wklej w nim:

FF Extension: Strong Signal - C:\Users\Komputer\AppData\Roaming\Mozilla\Firefox\Profiles\fuemsavv.default\Extensions\{9d204d90-67ed-4674-ad22-ac0bd52d6ba6}.xpi [2015-02-16]
CHR Extension: (Strong Signal) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\lchgpdbcbebecigcoclaoebchenjbgak [2015-02-11]
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.qone8.com/web/?type=ds&ts=1400689431&from=cvs1&uid=ST3500418AS_6VM6R4P9XXXX6VM6R4P9&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.qone8.com/web/?type=ds&ts=1400689431&from=cvs1&uid=ST3500418AS_6VM6R4P9XXXX6VM6R4P9&q={searchTerms}
URLSearchHook: HKLM - Babylon-English Toolbar - {ce18769b-c7fa-42d2-860d-17c4662c70ad} - C:\Program Files\Babylon-English\prxtbBab0.dll (Conduit Ltd.)
URLSearchHook: HKU\S-1-5-21-2015103931-2554732263-2938047944-1000 - Babylon-English Toolbar - {ce18769b-c7fa-42d2-860d-17c4662c70ad} - C:\Program Files\Babylon-English\prxtbBab0.dll (Conduit Ltd.)
SearchScopes: HKLM -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2405280
SearchScopes: HKU\S-1-5-21-2015103931-2554732263-2938047944-1000 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=14542
SearchScopes: HKU\S-1-5-21-2015103931-2554732263-2938047944-1000 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=kw&q={searchTerms}&locale=en_US&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^PL&apn_uid=5ADB151F-C506-4627-B75E-90D479A93CCC&apn_sauid=A3E0177A-96ED-4F65-9B15-D481B95EF86F
SearchScopes: HKU\S-1-5-21-2015103931-2554732263-2938047944-1000 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2405280
Toolbar: HKLM - Babylon-English Toolbar - {ce18769b-c7fa-42d2-860d-17c4662c70ad} - C:\Program Files\Babylon-English\prxtbBab0.dll [2011-01-17] (Conduit Ltd.)
Toolbar: HKLM - Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-01-17] (Conduit Ltd.)
Toolbar: HKU\S-1-5-21-2015103931-2554732263-2938047944-1000 -> Babylon-English Toolbar - {CE18769B-C7FA-42D2-860D-17C4662C70AD} - C:\Program Files\Babylon-English\prxtbBab0.dll [2011-01-17] (Conduit Ltd.)
Toolbar: HKU\S-1-5-21-2015103931-2554732263-2938047944-1000 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C}
FF SearchPlugin: C:\Users\Komputer\AppData\Roaming\Mozilla\Firefox\Profiles\fuemsavv.default\searchplugins\askcom.xml [2013-02-08]
FF SearchPlugin: C:\Users\Komputer\AppData\Roaming\Mozilla\Firefox\Profiles\fuemsavv.default\searchplugins\askcomsearch.xml [2013-04-10]
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3322197&octid=EB_ORIGINAL_CTID&ISID=M848082D9-ED23-48D4-BC06-B14C4120C573&SearchSource=55&CUI=&UM=5&UP=SP4BEB0DF1-F4FF-4564-BE9E-17F4300F20A6&SSPV="
CHR DefaultSearchKeyword: Default -> trovi.search
CHR DefaultSearchURL: Default -> http://www.trovi.com/Results.aspx?gd=&ctid=CT3322197&octid=EB_ORIGINAL_CTID&ISID=M848082D9-ED23-48D4-BC06-B14C4120C573&SearchSource=58&CUI=&UM=5&UP=SP4BEB0DF1-F4FF-4564-BE9E-17F4300F20A6&q={searchTerms}&SSPV=
CHR Plugin: (Babylon Chrome Plugin) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.0_0\BabylonChromePI.dll No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X]
S3 ABWFP; \??\C:\Program Files\ArcaBit\ArcaVir\ABWFP.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
C:\Users\Komputer\Downloads\Malwarebytes-AntiMalware(13117)-dp.exe
C:\Users\Komputer\AppData\Local\Temp*.html
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST.
Uruchom FRST i kliknij przycisk Fix.

----------------------
Jeśli będzie OK, to będziemy kończyć:
Otwórz Notatnik i wklej w nim:

DeleteQuarantine:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST. Uruchom FRST i kliknij w Fix.
przez SHIFT+DEL usuń pozostały folder C:\FRST.

W Adw-Cleaner kliknij na przycisk Odinstaluj (UNINSTALL).
.

**Posty:** 2 · przez **jacz27** 16 Mar 2015, 22:23

Dzięki wielkie.
Wszystko zadziałało.
Reklamy zniknęły.