Witam.
Problem dotyczy wyskakujących wszędzie reklam których są miliony. Poza reklamami wpychającymi się na strony występują przekierowania na strony reklamowe uniemożliwiające przeglądanie internetu.
Pojawia się przy tym najczęściej dopisek “Ad by SalePlus”.
Domyślna wyszukiwarka została zmieniona na “mystartsearch”
Proszę o pomoc, kolejny program 
antywirusowy nie może sobie z tym poradzić.
Logi:
Z góry dziękuję!
Wit
Odinstaluj ASUS WebStorage.Otwórz notatnik systemowy i wklej:
HKLM\...\Run: [RtHDVBg] = C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2226280 2011-05-17] (Realtek Semiconductor)
HKLM-x32\...\Run: [ASUSWebStorage] = C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [731472 2011-02-23] (ecareme)
HKLM-x32\...\Run: [UpdateLBPShortCut] = C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] = C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type=dsts=1427558239from=wpcuid=WDCXWD5000BPVT-80HXZT3_WD-WXH1A91V8997V8997q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type=dsts=1427558239from=wpcuid=WDCXWD5000BPVT-80HXZT3_WD-WXH1A91V8997V8997q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type=dsts=1427558239from=wpcuid=WDCXWD5000BPVT-80HXZT3_WD-WXH1A91V8997V8997q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type=dsts=1427558239from=wpcuid=WDCXWD5000BPVT-80HXZT3_WD-WXH1A91V8997V8997q={searchTerms}
HKU\S-1-5-21-1358194102-1008838803-2234743365-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hpts=1427558239from=wpcuid=WDCXWD5000BPVT-80HXZT3_WD-WXH1A91V8997V8997
HKU\S-1-5-21-1358194102-1008838803-2234743365-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hpts=1427558239from=wpcuid=WDCXWD5000BPVT-80HXZT3_WD-WXH1A91V8997V8997
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=dsts=1427558239from=wpcuid=WDCXWD5000BPVT-80HXZT3_WD-WXH1A91V8997V8997q={searchTerms}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}form=ASUTDFpc=NP06src=IE-SearchBox
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=dsts=1427558239from=wpcuid=WDCXWD5000BPVT-80HXZT3_WD-WXH1A91V8997V8997q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=dsts=1427558239from=wpcuid=WDCXWD5000BPVT-80HXZT3_WD-WXH1A91V8997V8997q={searchTerms}
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}form=ASUTDFpc=NP06src=IE-SearchBox
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=dsts=1427558239from=wpcuid=WDCXWD5000BPVT-80HXZT3_WD-WXH1A91V8997V8997q={searchTerms}
SearchScopes: HKU\S-1-5-21-1358194102-1008838803-2234743365-1002 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=dsts=1427558239from=wpcuid=WDCXWD5000BPVT-80HXZT3_WD-WXH1A91V8997V8997q={searchTerms}
SearchScopes: HKU\S-1-5-21-1358194102-1008838803-2234743365-1002 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=dsts=1427558239from=wpcuid=WDCXWD5000BPVT-80HXZT3_WD-WXH1A91V8997V8997q={searchTerms}
SearchScopes: HKU\S-1-5-21-1358194102-1008838803-2234743365-1002 - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={D5D6B5CA-4D79-49B7-A8CC-50348A0921D1}mid=a43c73a3c5d847cda4b4a5662e38aa41-8bf4cdd5d3fc11765980e9076c07afac6e7a1989lang=plds=AVGcoid=avgtbavgcmpid=0215pitpr=frd=2015-03-26 16:11:44v=4.1.0.411pid=wtusg=sap=dspq={searchTerms}
FF DefaultSearchEngine: mystartsearch
FF SelectedSearchEngine: mystartsearch
FF SearchPlugin: C:\Users\Pawel\AppData\Roaming\Mozilla\Firefox\Profiles\sntksjqa.default\searchplugins\avg-secure-search.xml [2015-03-26]
FF SearchPlugin: C:\Users\Pawel\AppData\Roaming\Mozilla\Firefox\Profiles\sntksjqa.default\searchplugins\mystartsearch.xml [2015-04-05]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\wtu-secure-search.xml [2015-03-26]
FF Extension: AVG Web TuneUp - C:\Users\Pawel\AppData\Roaming\Mozilla\Firefox\Profiles\sntksjqa.default\Extensions\avg@toolbar [2015-03-26]
FF Extension: SaolEPulus - C:\Users\Pawel\AppData\Roaming\Mozilla\Firefox\Profiles\sntksjqa.default\Extensions\I6v@KU.org [2015-03-28]
FF Extension: Search Enginer - C:\Users\Pawel\AppData\Roaming\Mozilla\Firefox\Profiles\sntksjqa.default\Extensions\searchengine@gmail.com [2015-03-28]
FF HKLM-x32\...\Firefox\Extensions: [searchengine@gmail.com] - C:\Users\Pawel\AppData\Roaming\Mozilla\Firefox\Profiles\sntksjqa.default\extensions\searchengine@gmail.com
R2 vToolbarUpdater18.4.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe [1875480 2015-03-26] (AVG Secure Search)
2015-03-28 17:56 - 2015-03-28 17:56 - 00000000 ____ D () C:\Program Files (x86)\SalePlus
2015-03-28 17:55 - 2015-03-28 17:56 - 00000000 ____ D () C:\Program Files (x86)\SaolEPulus
2015-03-28 17:55 - 2015-03-28 17:55 - 00000000 ____ D () C:\ProgramData\13920844712443016235
2015-03-26 17:11 - 2015-03-26 17:11 - 00000000 ____ D () C:\ProgramData\AVG Security Toolbar
2015-03-26 17:11 - 2015-03-26 17:11 - 00000000 ____ D () C:\ProgramData\AVG Secure Search
EmptyTemp:
Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
Odinstaluj Chrome zaznaczając usunięcie danych przeglądania.
Działa 
Dzięki wielkie za pomoc!
Skasuj folder C:\FRST