Strong signal proszę o pomoc

[blek007]

Witam,niestety i ja stałem się jego celem....
Nie wiem czy dobrze wszystko zrobiłem ale oto logi...
Przeprasza jeśli coś źle ale nie znam się na komputerach zbytnio i nie działa mi większość stron bo mnie przerzuca z jednej na drugą...

[ordynat]

1) Adw-Cleaner:
najpierw kliknij na SZUKAJ, a dopiero po zakończeniu skanowania, gdy uaktywni się przycisk USUŃ, to kliknij na niego.

2) Otwórz Notatnik i wklej w nim:

FF Extension: Strong Signal - C:\Users\Wydym2\AppData\Roaming\Mozilla\Firefox\Profiles\gtlxcefl.default\Extensions\{b773dee1-9f00-4f96-afa2-f2e074859dd1}.xpi [2015-03-01]
CHR Extension: (Strong Signal) - C:\Users\Wydym2\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmhomcalmmnbglbkfphoacdohjfpoki [2015-03-01]
R2 Service Mgr StrongSignal; C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugincontainer.exe [581368 2015-03-01] ()
R2 Update Mgr StrongSignal; C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\updater.exe [388856 2015-03-01] ()
Reg: reg delete "HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes" /f
Reg: reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes" /f
Reg: reg delete "HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes" /f
Reg: reg delete "HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes" /f
Task: {63C8AE6A-3F14-4406-9989-5ACC875B01CF} - \DTReg No Task File <==== ATTENTION
Task: {976D23FF-9332-496F-A96F-D1E807C6FB3F} - \EPUpdater No Task File <==== ATTENTION
Task: {9A6232B7-8964-4170-ABE0-B567C76DF75B} - \QtraxPlayer No Task File <==== ATTENTION
Task: {DE99CF8C-1DAF-420F-8306-D069695F7709} - System32\Tasks\DTChk => C:\Users\Public\Util\DTChk.exe [2014-05-14] (Search Results, LLC) <==== ATTENTION
C:\Users\Public\Util
C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce
HKLM-x32\...\Run: [] => [X]
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.key-find.com/?type=hp&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.key-find.com/?type=hp&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.key-find.com/web/?type=ds&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.key-find.com/web/?type=ds&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.key-find.com/?type=hp&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.key-find.com/?type=hp&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.key-find.com/web/?type=ds&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.key-find.com/web/?type=ds&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98&q={searchTerms}
HKU\S-1-5-21-1523849689-2838620533-1838848159-1173\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.key-find.com/?type=hp&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98
HKU\S-1-5-21-1523849689-2838620533-1838848159-1173\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.key-find.com/?type=hp&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98
HKU\S-1-5-21-1523849689-2838620533-1838848159-1173\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.key-find.com/web/?type=ds&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98&q={searchTerms}
HKU\S-1-5-21-1523849689-2838620533-1838848159-1173\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.key-find.com/web/?type=ds&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98&q={searchTerms}
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.key-find.com/web/?type=ds&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98&q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.key-find.com/web/?type=ds&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1523849689-2838620533-1838848159-1173 -> DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=ST9500325AS_S2WH3Z98&ts=1425133304&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1523849689-2838620533-1838848159-1173 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=ST9500325AS_S2WH3Z98&ts=1425133304&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1523849689-2838620533-1838848159-1173 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=ST9500325AS_S2WH3Z98&ts=1425133304&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1523849689-2838620533-1838848159-1173 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=ST9500325AS_S2WH3Z98&ts=1425133304&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1523849689-2838620533-1838848159-1173 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=ST9500325AS_S2WH3Z98&ts=1425133304&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1523849689-2838620533-1838848159-1173 -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=ST9500325AS_S2WH3Z98&ts=1425133304&type=default&q={searchTerms}
BHO-x32: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files (x86)\XTab\SupTab.dll (Thinknice Co. Limited)
C:\Program Files (x86)\XTab
FF SelectedSearchEngine: key-find
C:\ProgramData\WindowsMangerProtect
FF Extension: Fast Start - C:\Users\Wydym2\AppData\Roaming\Mozilla\Firefox\Profiles\gtlxcefl.default\Extensions\faststartff@gmail.com [2014-07-12]
FF Extension: Fast Start - C:\Users\Wydym2\AppData\Roaming\Mozilla\Firefox\Profiles\gtlxcefl.default\Extensions\istart_ffnt@gmail.com [2015-02-28]
FF Extension: Search Enginer - C:\Users\Wydym2\AppData\Roaming\Mozilla\Firefox\Profiles\gtlxcefl.default\Extensions\searchengine@gmail.com [2015-02-28]
FF Extension: shortcut - C:\Users\Wydym2\AppData\Roaming\Mozilla\Firefox\Profiles\gtlxcefl.default\Extensions\shortcutff@gmail.com [2014-07-28]
FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\Wydym2\AppData\Roaming\Mozilla\Firefox\Profiles\gtlxcefl.default\extensions\faststartff@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [shortcutff@gmail.com] - C:\Users\Wydym2\AppData\Roaming\Mozilla\Firefox\Profiles\gtlxcefl.default\extensions\shortcutff@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [searchengine@gmail.com] - C:\Users\Wydym2\AppData\Roaming\Mozilla\Firefox\Profiles\gtlxcefl.default\extensions\searchengine@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [istart_ffnt@gmail.com] - C:\Users\Wydym2\AppData\Roaming\Mozilla\Firefox\Profiles\gtlxcefl.default\extensions\istart_ffnt@gmail.com
CHR StartupUrls: Default -> "hxxp://www.key-find.com/?type=hp&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98"
CHR DefaultSearchKeyword: Default -> key-find
CHR DefaultSearchURL: Default -> http://www.key-find.com/web/?type=ds&ts=1425133256&from=cor&uid=ST9500325AS_S2WH3Z98&q={searchTerms}
R2 IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [158896 2015-01-16] (XTab system)
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [487056 2015-02-28] (SysTool PasSame LIMITED) [File not signed]
C:\Program Files (x86)\Strong Signal
C:\ProgramData\IHProtectUpDate
C:\Users\Wydym2\Downloads\Pazera-Free-MP4-to-AVI-Converter(29081)-dp.exe
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST. Uruchom FRST i kliknij przycisk Fix.

----------------------
Jeśli będzie OK, to będziemy kończyć:
Otwórz Notatnik i wklej w nim:

DeleteQuarantine:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST. Uruchom FRST i kliknij w Fix.
przez SHIFT+DEL usuń pozostały folder C:\FRST.

W Adw-Cleaner kliknij na przycisk Odinstaluj (UNINSTALL).
.

Autor postu otrzymał pochwałę

[blek007]

Chyba jest już ok bo nic mi nie wyskakuje....dzieki bardzo...
A czy jest może jakieś zabezpieczenie przed tym ustrojstwem na przyszłość ??

[ordynat]

Strong Signal instaluje się z jakimś programem pobieranym z "Dobrych Programów", więc wystarczy unikać ściągania programów z ich vortalu.

Przejrzyj ten temat http://www.fixitpc.pl/topic/19809-portale-z-oprogramowaniem-instalatory-na-co-uwa%C5%BCa%C4%87/