Jak analizować logi OTL w celu usunięcia reklam w nowych kartach Mozilla Firefox?

Witam, proszę o pomoc w odczytaniu plików z otl. Mam problem z mozilla która otwiera nowe karty z reklamami. Dodaję załączniki OTL:

Nieodpowiedni dział.

Użyj AdwCleaner, opcja Scan i Usuń:
http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner

Zrob pelny skan przy pomocy Mbam:
http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/

Odinstaluj:
AVG Security Toolbar
Facemoods Toolbar
MixiDJ V32 Toolbar for IE
Movies Toolbar for Firefox (Dist. by Bandoo Media, Inc.)
Movies Toolbar for Internet Explorer (Dist. by Bandoo Media, Inc.)
Mario Forever Toolbar
MyPC Backup
Mysearchdial
PricePeep
Search Protect by conduit
Softonic toolbar on IE and Chrome
Price Metar (remove only)
Update for PriceMeter

Uzyj AdwCleaner, opcja Scan i Clean/Szukaj i Usun:
http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner

Daj w zalaczniku logi z FRST:
http://www.fixitpc.pl/topic/61-diagnostyka-ogólne-raporty-systemowe/#entry119294

Zrob pelny skan przy pomocy Mbam:
http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/

To są logi z FRST

Odinstaluj:
coupon downloader (HKLM\...\coupon downloader) (Version: 2.0.1 - coupon downloader) <==== ATTENTION
Greener Web (HKLM\...\Greener Web) (Version: 2014.06.10.220116 - Greener Web) <==== ATTENTION
McAfee SiteAdvisor (HKLM\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.190 - McAfee, Inc.)
Movies Toolbar for Firefox (Dist. by Bandoo Media, Inc.) (HKLM\...\ilividmoviestoolbarhaFF) (Version: 1.6.2.0 - APN LLC) <==== ATTENTION
Movies Toolbar for Internet Explorer (Dist. by Bandoo Media, Inc.) (HKLM\...\ilividmoviestoolbarhaIE) (Version: 1.6.2.0 - APN LLC) <==== ATTENTION

Uzyj AdwCleaner, opcja Scan i Clean/Szukaj i Usun:
http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner

Obok frst.exe utworz plik fixlist.txt z zawartoscia:
Task: {8EDCB9A1-00B5-4A83-8E08-165C0EBF7AA3} - System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv => C:\Windows\TEMP\{917F0BA3-C841-4EBC-A519-646A3F5FD9E6}.exe
Task: {B1DD63FC-C17A-496C-877D-127DD746FD0E} - System32\Tasks\Express Files Updater => C:\Program Files\ExpressFiles\EFupdater.exe <==== ATTENTION
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\Windows\TEMP\{917F0BA3-C841-4EBC-A519-646A3F5FD9E6}.exe
() C:\Program Files\Greener Web\updateGreenerWeb.exe
() C:\Program Files\Greener Web\bin\utilGreenerWeb.exe
HKU\.DEFAULT\...\Winlogon: [Shell] C:\Windows\explorer.exe [2923520 2011-08-01] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\explorer.exe [2923520 2011-08-01] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-20\...\Winlogon: [Shell] C:\Windows\explorer.exe [2923520 2011-08-01] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-1020608674-1383194557-867478209-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [2923520 2011-08-01] (Microsoft Corporation) <==== ATTENTION
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {31090377-0740-419E-BEFC-A56E50500D5B} URL = http://speedial.com/results.php?f=4&q={searchTerms}
FF SearchPlugin: C:\Users\marta_2\AppData\Roaming\Mozilla\Firefox\Profiles\twu1n24l.default-1400440864557\searchplugins\Speedial.xml
FF Extension: Speedial - C:\Users\marta_2\AppData\Roaming\Mozilla\Firefox\Profiles\twu1n24l.default-1400440864557\Extensions\{fa95f577-07cb-4470-ac90-e843f5f83c52} [2014-06-06]
R2 Update Greener Web; C:\Program Files\Greener Web\updateGreenerWeb.exe [317728 2014-06-11] ()
R2 Util Greener Web; C:\Program Files\Greener Web\bin\utilGreenerWeb.exe [317728 2014-06-11] ()
R1 {a3f28269-ad17-41a8-b032-3e0313ef8979}Gt; C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gt.sys [55128 2014-06-09] (StdLib)
R1 {a3f28269-ad17-41a8-b032-3e0313ef8979}t; C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}t.sys [55128 2014-06-09] (StdLib)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
2014-06-11 02:45 - 2014-06-09 12:24 - 00055128 _____ (StdLib) C:\Windows\system32\Drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gt.sys
2014-06-11 02:33 - 2014-06-11 02:38 - 00000000 ____D () C:\AdwCleaner
2014-06-11 01:58 - 2014-06-09 12:24 - 00055128 _____ (StdLib) C:\Windows\system32\Drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}t.sys
2014-06-11 01:14 - 2014-06-11 01:14 - 00357736 _____ (Softonic) C:\Users\marta_2\Downloads\SoftonicDownloader_dla_angielski-mowisz-i-rozumiesz.exe
2014-06-11 00:55 - 2014-06-11 02:42 - 00000000 ____D () C:\Program Files\Greener Web
2014-06-11 00:54 - 2014-06-11 00:54 - 00702504 _____ () C:\Users\marta_2\Downloads\Angielski-Mowisz-i(11785)(1).exe
2014-06-06 01:30 - 2014-06-06 01:30 - 00702504 _____ () C:\Users\marta_2\Downloads\SpeedFan(13166).exe
2014-06-11 02:42 - 2014-06-11 00:55 - 00000000 ____D () C:\Program Files\Greener Web
2014-06-11 02:42 - 2013-06-15 10:01 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job

W FRST wybierz Fix.

Uzyj http://www.bleepingcomputer.com/download/tfc/

Usun katalog C:\FRST i to wszystko.