Jak usunąć yoursites123 za pomocą FRST?

Witam mam problem z yoursites123, nie potrafię sobie z nim poradzić, proszę o pomoc. Z góry dziękuję za pomoc

Wykonaj skanowanie MBAM oraz ADWcleaner i usuń wszystko co wykryją
www.malwarebytes.org
https://toolslib.net/downloads/viewdownload/1-adwcleaner/

Otwórz notatnik systemowy i wklej:
Task: {2DB8EF53-B319-4473-B91B-2FEAB8AD6B6C} - System32\Tasks\{B7339E97-909F-4485-96CD-2AF99F8C0805} => pcalua.exe -a C:\Users\Jasiek\Downloads\vcredist_x86.exe -d C:\Users\Jasiek\Downloads
Task: {899EEB5F-3256-4F3E-9047-DC8D36C2C181} - System32\Tasks\SmartComp Safe Network Viewer => C:\Program Files (x86)\SmartComp Safe Network\msnworker.exe <==== UWAGA
Task: {CA24C66F-0A16-44FB-824C-DFC2687A6748} - System32\Tasks\Fenix Installer => C:\Users\Jasiek\AppData\Roaming\Fenix Installer\Fenix Installer.exe <==== UWAGA
ShortcutWithArgument: C:\Users\Jasiek\Desktop\Program uruchamiający aplikacje Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
ShortcutWithArgument: C:\Users\Jasiek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
ShortcutWithArgument: C:\Users\Jasiek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Program uruchamiający aplikacje Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
ShortcutWithArgument: C:\Users\Jasiek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
ShortcutWithArgument: C:\Users\Jasiek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\AirDroid.lnk -> C:\Program Files (x86)\AirDroid\Launcher.exe (Sand Studio) -> hxxp://www.yoursearching.com/?type=sc&ts=1450467970&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=cornl&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
ShortcutWithArgument: C:\Users\Jasiek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
ShortcutWithArgument: C:\Users\Jasiek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
ShortcutWithArgument: C:\Users\Jasiek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
ShortcutWithArgument: C:\Users\Jasiek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SMPCHelper => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\tvnserver => ""=""
(TODO: <公司名>) C:\Program Files (x86)\SFK\SSFK.exe
(TODO: <公司名>) C:\Program Files (x86)\SFK\SSFK.exe
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\...\Run: [ASRockOCTuner] => [X]
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\...\Run: [ASRockIES] => [X]
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\...\Run: [zASRockInstantBoot] => [X]
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\...\MountPoints2: I - I:\setup.exe /autorun
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\...\MountPoints2: J - J:\setup.exe /autorun
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\...\MountPoints2: K - K:\setup.exe /autorun
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\...\MountPoints2: L - L:\setup.exe
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\...\MountPoints2: {168a36e0-c674-11e4-8467-806e6f6e6963} - G:\ASRSetup.exe
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\...\MountPoints2: {97c067e8-c72a-11e4-91ca-d050994d922e} - M:\setup.exe /autorun
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\...\MountPoints2: {97c067f3-c72a-11e4-91ca-d050994d922e} - L:\setup.exe
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\...\MountPoints2: {b2c215c9-c71d-11e4-8e79-d050994d922e} - I:\SETUP.EXE
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\...\MountPoints2: {d7e4d3fc-f111-11e4-b146-d050994d922e} - J:\startme.exe
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://yoursites123.com/web?type=ds&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://yoursites123.com/web?type=ds&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY&q={searchTerms}
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://yoursites123.com/web?type=ds&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY&q={searchTerms}
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
HKU\S-1-5-21-4120447702-2803940097-1013251565-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://yoursites123.com/web?type=ds&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL => Brak pliku
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe hxxp://www.yoursites123.com/?type=sc&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
FF Plugin: @Microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin-x32: @Microsoft.com/GENUINE -> disabled [Brak pliku]
CHR StartupUrls: Default -> "hxxp://www.yoursites123.com/?type=hp&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY"
StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe hxxp://www.yoursites123.com/?type=sc&ts=1452589300&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=ient12253&uid=WDCXWD20EZRX-00D8PB0_WD-WCC4M0AC13LYC13LY
S2 PrivoxyService; C:\Program Files (x86)\SmartComp Safe Network\privoxy.exe [371200 2015-12-12] () [Brak podpisu cyfrowego] <==== UWAGA
R2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe [183488 2016-01-12] (TODO: <公司名>)
2016-01-12 10:03 - 2016-01-12 10:05 - 00000000 ____D C:\Program Files (x86)\SFK
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
Uruchom jako administrator FRST i kliknij w Fix/Napraw.