Goveme - jak go usunąć?

Przyplątło mi sie dziadostwo i nie mogę sobie z nim poradzić.Jest jeszcze coś taiego jak sweet page też nie chciane. Przesyłam link do skanu przez Hijack - potrzebuję podpowiedzi co wyrzucić lub ewentualnie innego sposobu. Od razu przyznaję się, że nie jestem zbyt biegły w tym temacie więc jeżeli mogę prosić o przystępne wyjaśnienie. Z gory dziękuję....

http://www.wklej.eu/index.php?id=50f47fa61d

Wrzuć komplet logów z FRST otl-gmer-i-inne-poradnik-t13967-15.html#p164179 i Gmer otl-gmer-silent-runners-sdfix-i-inne-poradnik-t13967.html#p88736

Hijack nadaje się jedynie do odinstalowania...

Da się coś z tym zrobić?

http://www.wklej.eu/index.php?id=0135a45e0c

http://www.wklej.eu/index.php?id=1eb4496649

http://www.wklej.eu/index.php?id=a3cf5a2872

OTL

http://www.wklej.eu/index.php?id=1748fc5631


http://www.wklej.eu/index.php?id=85ad27b261

Dziękuję...

Nie podałeś logu z Gmer.

Odinstaluj: Ask Toolbar, MSN Search Toolbar, MyAshampoo Toolbar, Plus-HD-4.9. Następnie wklej do notatnika:

Task: C:\WINDOWS\Tasks\Plus-HD-4.9-chromeinstaller.job => C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-chromeinstaller.exeŹ/installcrx /agentregpath='Plus-HD-4.9' /extensionfilepath C:\Program Files\Plus-HD-4.9\45918.crx' /appid=45918 /srcid='000957' /subid='0' /zdata='0' /bic=B99BE260A4704C029A9924B33FC12E15IE /verifier=cae76cc841fbe8ac6288e85b77ec80cf /installerversion=1_34_1_21 /installerfullversion=1.34.1.21 /installationtime=1390411877 /statsdomain=http:/stats.srvstatsdata.com /errorsdomain=http:/errors.srvstatsdata.com /waitforbrowser=300 /extensionid=jjflmfkjppbmejlfbhlpgjnomdoefkfa /extensionversion=1.26.71 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCsOTRu7paUms3AYVei3zXFT5PTGGqPKkF1VYLLBwSfExMWGI7Bdm/DqDEZH5FzLf5DRmd8Z92j2jPqiIeIxXDLrC8ZLON8zH4VjNGUKs7mrFmckRTxUc1RNL1kpHFp9wxYUCHIA49dzSNLb0ArYWz9MlBTiL9oiMt/nZP/zPSXNQIDAQAB /defbro=ff /allusers /allprofiles /autoupdateulr='http:/update.srvstatsdata.com/ch_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-codedownloader.job => C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-codedownloader.exe5/reinstallapp /runfrom=task /agentregpath='Plus-HD-4.9' /appid=45918 /srcid='000957' /subid='0' /zdata='0' /bic=B99BE260A4704C029A9924B33FC12E15IE /verifier=cae76cc841fbe8ac6288e85b77ec80cf /installerversion=1_34_1_21 /installerfullversion=1.34.1.21 /installationtime=1390411877 /statsdomain=http:/stats.srvstatsdata.com /errorsdomain=http:/errors.srvstatsdata.com /codedownloaddomain=http:/app-static.crossrider.com /defbro=ff /allusers /autoupdateulr='http:/update.srvstatsdata.com/ie_code_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-enabler.job => C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-enabler.exe˙
/enablebho /agentregpath='Plus-HD-4.9' /appid=45918 /srcid='000957' /subid='0' /zdata='0' /bic=B99BE260A4704C029A9924B33FC12E15IE /verifier=cae76cc841fbe8ac6288e85b77ec80cf /installerversion=1_34_1_21 /installationtime=1390411877 /statsdomain=http:/stats.srvstatsdata.com /errorsdomain=http:/errors.srvstatsdata.com /bhoguid=11111111-1111-1111-1111-110411591118 /defbro=ff /allusers /autoupdateulr='http:/update.srvstatsdata.com/ie_enable_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-firefoxinstaller.job => C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-firefoxinstaller.exeÜ/installxpi /agentregpath='Plus-HD-4.9' /extensionfilepath C:\Program Files\Plus-HD-4.9\45918.xpi' /appid=45918 /srcid='000957' /subid='0' /zdata='0' /bic=B99BE260A4704C029A9924B33FC12E15IE /verifier=cae76cc841fbe8ac6288e85b77ec80cf /installerversion=1_34_1_21 /installerfullversion=1.34.1.21 /installationtime=1390411877 /statsdomain=http:/stats.srvstatsdata.com /errorsdomain=http:/errors.srvstatsdata.com /waitforbrowser=300 /extensionid=d019febe-eb2b-4057-a3f2-7def88f2c9cd@1cced8ec-0ffe-43ea-b4b2-fbce5de8e9a4.com /extensionversion=0.93 /prefsbranch=ad019febeeb2b4057a3f27def88f2c9cd1cced8ec0ffe43eab4b2fbce5de8e9a4com45918 /updateurl=https:/w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/45918.rdf /extensionname='Plus-HD-4.9' /extensiondesc='Turn YouTube videos to High Definition by default' /publishername='Plus HD' /defbro=ff /allusers /allprofiles /checkfflist /autoupdateulr='http:/update.srvstatsdata.com/ff_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-updater.job => C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-updater.exeU/runupdater /agentregpath='Plus-HD-4.9' /appid=45918 /srcid='000957' /subid='0' /zdata='0' /bic=B99BE260A4704C029A9924B33FC12E15IE /verifier=cae76cc841fbe8ac6288e85b77ec80cf /installerversion=1_34_1_21 /installationtime=1390411877 /statsdomain=http:/stats.srvstatsdata.com /errorsdomain=http:/errors.srvstatsdata.com /geoserviceurl=http:/ipgeoapi.com/ /updatejsondomain=http:/update.srvstatsdata.com /updaterversion=2 /monetizationdomain=http:/stats.syncstatsdata.com /autoupdateulr='http:/update.srvstatsdata.com/updater_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION
HKLM\...\Run: [SSBkgdUpdate] => C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.)
HKLM\...\Run: [OpwareSE4] => C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [79400 2007-02-04] (Nuance Communications, Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49152 2005-02-16] (Hewlett-Packard Co.)
HKLM\...\Run: [UpdatePDRShortCut] => C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2011-02-01] (CyberLink Corp.)
HKU\S-1-5-21-3018241164-4175285309-1630219102-1007\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1427186189&from=cor&uid=FUJITSUXMHV2040AH_NT43T5927MH8T5927MH8X&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1427186189&from=cor&uid=FUJITSUXMHV2040AH_NT43T5927MH8T5927MH8X&q={searchTerms}
URLSearchHook: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 - (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} - No File
URLSearchHook: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 - Free Lunch Design Toolbar - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files\Free_Lunch_Design\prxtbFre2.dll No File
URLSearchHook: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 - MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\prxtbMyA0.dll (Conduit Ltd.)
SearchScopes: HKU\.DEFAULT DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1708250
SearchScopes: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?client=ie&tb=YLC&o=102408&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=QC&apn_dtid=YYYYYYYYPL&apn_uid=72B06B53-E2DA-4241-A2B4-0CCB0CEE2756&apn_sauid=BB1D9174-3ADE-4282-877E-8318D775AB42
SearchScopes: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1708250
BHO: Conduit Engine {30F9B915-B755-4826-820B-08FBA6BD249D} C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-01-17] (Conduit Ltd.)
BHO: Free Lunch Design Toolbar {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} C:\Program Files\Free_Lunch_Design\prxtbFre2.dll No File
C:\Program Files\ConduitEngine
Toolbar: HKLM - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKLM - Free Lunch Design Toolbar - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files\Free_Lunch_Design\prxtbFre2.dll No File
Toolbar: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 No Name - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
Toolbar: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 No Name - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No File
Toolbar: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 Free Lunch Design Toolbar - {57CC715D-37CA-44E4-9EC2-8C2CBDDB25EC} - C:\Program Files\Free_Lunch_Design\prxtbFre2.dll No File
Toolbar: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 MyAshampoo Toolbar - {A1E75A0E-4397-4BA8-BB50-E19FB66890F4} - C:\Program Files\MyAshampoo\prxtbMyA0.dll [2011-01-17] (Conduit Ltd.)
Toolbar: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
FF DefaultSearchEngine: sweet-page
FF SelectedSearchEngine: sweet-page
FF SearchPlugin: C:\Documents and Settings\abc\Dane aplikacji\Mozilla\Firefox\Profiles\1l5zey54.default-1415217125709\searchplugins\sweet-page.xml [2015-03-27]
CHR StartupUrls: Default "hxxp://www.sweet-page.com/?type=hp&ts=1427186189&from=cor&uid=FUJITSUXMHV2040AH_NT43T5927MH8T5927MH8X"
S2 AdvancedSystemCareService6; No ImagePath
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
R2 WindowsMangerProtect; C:\Documents and Settings\All Users\Dane aplikacji\WindowsMangerProtect\ProtectWindowsManager.exe [493712 2015-03-24] (SysTool PasSame LIMITED)
S2 EAPPkt; system32\DRIVERS\EAPPkt.sys [X]
S3 filtertdidriver; system32\drivers\ewfiltertdidriver.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S4 IntelIde; No ImagePath
S3 k750bus; system32\DRIVERS\k750bus.sys [X]
S3 k750mdfl; system32\DRIVERS\k750mdfl.sys [X]
S3 k750mdm; system32\DRIVERS\k750mdm.sys [X]
S3 k750mgmt; system32\DRIVERS\k750mgmt.sys [X]
S3 k750obex; system32\DRIVERS\k750obex.sys [X]
U4 TlntSvr; No ImagePath
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
U4 RemoteRegistry; No ImagePath
2015-03-27 10:30 - 2014-01-22 18:32 - 00001498 _____ () C:\WINDOWS\Tasks\Plus-HD-4.9-updater.job
2015-03-27 10:30 - 2014-01-22 18:31 - 00002298 _____ () C:\WINDOWS\Tasks\Plus-HD-4.9-firefoxinstaller.job
2015-03-27 10:30 - 2014-01-22 18:31 - 00002142 _____ () C:\WINDOWS\Tasks\Plus-HD-4.9-chromeinstaller.job
2015-03-27 10:30 - 2014-01-22 18:31 - 00001326 _____ () C:\WINDOWS\Tasks\Plus-HD-4.9-enabler.job
EmptyTemp:

Plik zapisujesz pod nazwą fixlist.txt i umieszczasz obok FRST. Uruchom FRST i kliknij w nim Fix. Powstanie plik fixlog.txt, który podajesz na forum.
Następnie podaj nowe logi z FRST.

Przepraszam, nie było mnie przez weekend, musiałem wyjechać.
Nie mogę kompletnie odinstalować Ask Toolbar - w tym przypadku pokazuje: Error 1316 a w przypadku PlusHD- 4.9 IOit Uninstaller 4.2 pokazuje jeszcze duże pozostałości, których też nie usuwa - są zagnieżdżone w rejestrze - pokazuje 577 pozycji
Czy można wymusić deinstalację - usunąć na ostro po zaznaczeniu czy trzeba to inaczej rozwiązać - nie wklejałem przesłanego pliku bo nie wiem czy nie usunięte pozostałości z tych pasożytów nie będą przeszkadzać....
Dziekuję

Jeszcze uzupełniam logi z GMER:
http://www.wklej.eu/index.php?id=eae69c2c0b

i ponownie dziękuje,

To inaczej:
Użyj AdwCleaner frst-otl-gmer-i-inne-poradnik-t13967-15.html#p139531 z opcji Usuń i podaj utworzony log.
Następnie podaj nowe logi z FRST.

Witam,
Wcześniej użyłem AdwCleanera w nowszej wersji i przekopiowałem zapisane logi po skanowaniu. Usunęło wszystko a może nawet więcej. Przesyłam świeże logi z FRST, Gmer i AdwCleanera po skanowaniu.
Czy można coś z tym jeszcze zrobić? Brak mi wiedzy w tym temacie ale nie poddaję się i traktuję to jako wyzwanie dlatego jestem wdzięczny za pomoc.

Shortcut
http://www.wklej.eu/index.php?id=e28361288e

Addition
http://www.wklej.eu/index.php?id=e0a68664f1

FRST
http://www.wklej.eu/index.php?id=0dc2c32cd6

GMER
http://www.wklej.eu/index.php?id=c50858b8fa

Adw Cleaner po skanowaniu
http://www.wklej.eu/index.php?id=d8e0812e71

AdwCleaner po usunięciu
http://www.wklej.eu/index.php?id=12808c0897

Dziękuję i pozdrawiam.

W AdwCleaner Uninstall

Wklej do notatnika:

Task: C:\WINDOWS\Tasks\Plus-HD-4.9-chromeinstaller.job => C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-chromeinstaller.exeŹ/installcrx /agentregpath='Plus-HD-4.9' /extensionfilepath C:\Program Files\Plus-HD-4.9\45918.crx' /appid=45918 /srcid='000957' /subid='0' /zdata='0' /bic=B99BE260A4704C029A9924B33FC12E15IE /verifier=cae76cc841fbe8ac6288e85b77ec80cf /installerversion=1_34_1_21 /installerfullversion=1.34.1.21 /installationtime=1390411877 /statsdomain=http:/stats.srvstatsdata.com /errorsdomain=http:/errors.srvstatsdata.com /waitforbrowser=300 /extensionid=jjflmfkjppbmejlfbhlpgjnomdoefkfa /extensionversion=1.26.71 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCsOTRu7paUms3AYVei3zXFT5PTGGqPKkF1VYLLBwSfExMWGI7Bdm/DqDEZH5FzLf5DRmd8Z92j2jPqiIeIxXDLrC8ZLON8zH4VjNGUKs7mrFmckRTxUc1RNL1kpHFp9wxYUCHIA49dzSNLb0ArYWz9MlBTiL9oiMt/nZP/zPSXNQIDAQAB /defbro=ff /allusers /allprofiles /autoupdateulr='http:/update.srvstatsdata.com/ch_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-codedownloader.job => C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-codedownloader.exe5/reinstallapp /runfrom=task /agentregpath='Plus-HD-4.9' /appid=45918 /srcid='000957' /subid='0' /zdata='0' /bic=B99BE260A4704C029A9924B33FC12E15IE /verifier=cae76cc841fbe8ac6288e85b77ec80cf /installerversion=1_34_1_21 /installerfullversion=1.34.1.21 /installationtime=1390411877 /statsdomain=http:/stats.srvstatsdata.com /errorsdomain=http:/errors.srvstatsdata.com /codedownloaddomain=http:/app-static.crossrider.com /defbro=ff /allusers /autoupdateulr='http:/update.srvstatsdata.com/ie_code_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-enabler.job => C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-enabler.exe˙
/enablebho /agentregpath='Plus-HD-4.9' /appid=45918 /srcid='000957' /subid='0' /zdata='0' /bic=B99BE260A4704C029A9924B33FC12E15IE /verifier=cae76cc841fbe8ac6288e85b77ec80cf /installerversion=1_34_1_21 /installationtime=1390411877 /statsdomain=http:/stats.srvstatsdata.com /errorsdomain=http:/errors.srvstatsdata.com /bhoguid=11111111-1111-1111-1111-110411591118 /defbro=ff /allusers /autoupdateulr='http:/update.srvstatsdata.com/ie_enable_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-firefoxinstaller.job => C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-firefoxinstaller.exeÜ/installxpi /agentregpath='Plus-HD-4.9' /extensionfilepath C:\Program Files\Plus-HD-4.9\45918.xpi' /appid=45918 /srcid='000957' /subid='0' /zdata='0' /bic=B99BE260A4704C029A9924B33FC12E15IE /verifier=cae76cc841fbe8ac6288e85b77ec80cf /installerversion=1_34_1_21 /installerfullversion=1.34.1.21 /installationtime=1390411877 /statsdomain=http:/stats.srvstatsdata.com /errorsdomain=http:/errors.srvstatsdata.com /waitforbrowser=300 /extensionid=d019febe-eb2b-4057-a3f2-7def88f2c9cd@1cced8ec-0ffe-43ea-b4b2-fbce5de8e9a4.com /extensionversion=0.93 /prefsbranch=ad019febeeb2b4057a3f27def88f2c9cd1cced8ec0ffe43eab4b2fbce5de8e9a4com45918 /updateurl=https:/w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/45918.rdf /extensionname='Plus-HD-4.9' /extensiondesc='Turn YouTube videos to High Definition by default' /publishername='Plus HD' /defbro=ff /allusers /allprofiles /checkfflist /autoupdateulr='http:/update.srvstatsdata.com/ff_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-updater.job => C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-updater.exeU/runupdater /agentregpath='Plus-HD-4.9' /appid=45918 /srcid='000957' /subid='0' /zdata='0' /bic=B99BE260A4704C029A9924B33FC12E15IE /verifier=cae76cc841fbe8ac6288e85b77ec80cf /installerversion=1_34_1_21 /installationtime=1390411877 /statsdomain=http:/stats.srvstatsdata.com /errorsdomain=http:/errors.srvstatsdata.com /geoserviceurl=http:/ipgeoapi.com/ /updatejsondomain=http:/update.srvstatsdata.com /updaterversion=2 /monetizationdomain=http:/stats.syncstatsdata.com /autoupdateulr='http:/update.srvstatsdata.com/updater_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION
C:\Program Files\Plus-HD-4.9
HKLM\...\Run: [SSBkgdUpdate] => C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.)
HKLM\...\Run: [OpwareSE4] => C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [79400 2007-02-04] (Nuance Communications, Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49152 2005-02-17] (Hewlett-Packard Co.)
HKLM\...\Run: [UpdatePDRShortCut] => C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2011-02-01] (CyberLink Corp.)
HKU\S-1-5-21-3018241164-4175285309-1630219102-1007\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 - (No Name) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - No File
SearchScopes: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1708250
SearchScopes: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1708250
BHO: No Name {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} No File
Toolbar: HKLM - No Name - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - No File
Toolbar: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 No Name - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
Toolbar: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 No Name - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No File
Toolbar: HKU\S-1-5-21-3018241164-4175285309-1630219102-1007 No Name - {57CC715D-37CA-44E4-9EC2-8C2CBDDB25EC} - No File
FF Extension: Plus-HD-4.9c - C:\Documents and Settings\abc\Dane aplikacji\Mozilla\Firefox\Profiles\1l5zey54.default-1415217125709\Extensions\[email protected] [2015-03-30]
CHR StartupUrls: Default "hxxp://www.sweet-page.com/?type=hp&ts=1427186189&from=cor&uid=FUJITSUXMHV2040AH_NT43T5927MH8T5927MH8X"
S2 AdvancedSystemCareService6; No ImagePath
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
U4 TlntSvr; No ImagePath
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
U4 RemoteRegistry; No ImagePath
S2 EAPPkt; system32\DRIVERS\EAPPkt.sys [X]
S3 filtertdidriver; system32\drivers\ewfiltertdidriver.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S4 IntelIde; No ImagePath
S3 k750bus; system32\DRIVERS\k750bus.sys [X]
S3 k750mdfl; system32\DRIVERS\k750mdfl.sys [X]
S3 k750mdm; system32\DRIVERS\k750mdm.sys [X]
S3 k750mgmt; system32\DRIVERS\k750mgmt.sys [X]
S3 k750obex; system32\DRIVERS\k750obex.sys [X]
2015-03-30 08:52 - 2015-03-30 08:52 - 00000000 ___DC () C:\TDSSKiller_Quarantine
2015-04-06 19:55 - 2014-01-22 19:32 - 00001498 _____ () C:\WINDOWS\Tasks\Plus-HD-4.9-updater.job
2015-04-06 19:55 - 2014-01-22 19:31 - 00002298 _____ () C:\WINDOWS\Tasks\Plus-HD-4.9-firefoxinstaller.job
2015-04-06 19:55 - 2014-01-22 19:31 - 00002142 _____ () C:\WINDOWS\Tasks\Plus-HD-4.9-chromeinstaller.job
2015-04-06 19:55 - 2014-01-22 19:31 - 00001448 _____ () C:\WINDOWS\Tasks\Plus-HD-4.9-codedownloader.job
2015-04-06 19:55 - 2014-01-22 19:31 - 00001326 _____ () C:\WINDOWS\Tasks\Plus-HD-4.9-enabler.job
EmptyTemp:

Plik zapisujesz pod nazwą fixlist.txt i umieszczasz obok FRST. Uruchom FRST i kliknij w nim Fix. Powstanie plik fixlog.txt, który podajesz na forum.
Następnie podaj nowe logi z FRST.

Mam nadzieję, że to tak miało być.
Fixlog.txt
http://www.wklej.eu/index.php?id=7a279db603

Shortcut
http://www.wklej.eu/index.php?id=4de751835d

Adittion
http://www.wklej.eu/index.php?id=259eb3e901

FRST
http://www.wklej.eu/index.php?id=bf8a56344d

Dziękuję, pozdrawiam.

Kroki końcowe:
Wklej do notatnika:

HKU\S-1-5-21-3018241164-4175285309-1630219102-1007\Software\Classes\.exe: => <===== ATTENTION!
DeleteQuarantine:

Plik zapisujesz pod nazwą fixlist.txt i umieszczasz obok FRST. Uruchom FRST i kliknij w nim Fix

Przeczyść dysk oraz rejestr CCleaner (zakładka Cleaner i Rejestr)

Zainstaluj http://www.instalki.pl/programy/downloa ... hecky.html

Serdecznie dziękuję za pomoc, śmiecie wyrzucone i nawet internet zaczął szybciej chodzić. Pozdrawiam i życzę wszystkiego dobrego.