Witam,
Poniżej zamieszczam logi z OTL. Komputer wolno dziala i avg co chwile wykrywa wirusy. Jest to komputer z którego często korzysta mój młodszy brat i zainstalował duzo niepotrzebnych programów i proszę również o pomoc w ich usunięciu. 
Dziękuję za pomoc.
Co widzisz w panelu sterowania? Według OTL na liście są tylko trzy programy.
Pobierz Farbar Recovery Scan Tool 32-Bit Version
Uruchom FRST i kliknij Scan. Pokaż raport FRST i Addition.
W panelu sterowania sa tylko 3 programy.
Co kilka minut pojawia sie taki komunikat od avg
Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :
() C:\Program Files\PCData\dgen.exe
HKLM\...\Runonce: [AvgUninstallURL] - cmd.exe /c start http://www.avg.com/ww.special-uninstallation-feedback-app?lic=OQBBAFYARgBSAEUARQAtAFYAMgBHADMASwAtADgANwBXAFUAVQAtADIAVABWAEgAQQAtAFgANgBEAEYAOAAtAEwANgBQAEEATgA"&"inst=NwA3AC0AMQA3ADEAOQA2ADAANgAzADcAMgAtAEQARABUACsAMAAtAEYATAArADkALQBTAFQAOQAwAEYAQQBQAFAAKwAxAA"&"prod=90"&"ver=9.0.914
HKU\.DEFAULT\...\RunOnce: [SpUninstallDeleteDir] - rmdir /s /q "\SearchProtect"
HKU\S-1-5-21-1258682174-2796256544-37713547-500\...\Run: [BackgroundContainer] - "C:\windows\system32\Rundll32.exe" "C:\Users\Administrator\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun <===== ATTENTION
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com/?ctid=CT3288691&octid=CT3288691&SearchSource=61&CUI=UN41571787001112135&UM=2&UP=SP065E4C09-5680-40E0-AFDE-477BA3715F38&SSPV=
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.awesomehp.com/?type=hp&ts=1394913934&from=amt&uid=WDCXWD2500BEVT-35A23T0_WD-WXD1EC0ASN92ASN92
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.awesomehp.com/web/?type=ds&ts=1394913934&from=amt&uid=WDCXWD2500BEVT-35A23T0_WD-WXD1EC0ASN92ASN92&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.awesomehp.com/?type=hp&ts=1394913934&from=amt&uid=WDCXWD2500BEVT-35A23T0_WD-WXD1EC0ASN92ASN92
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.awesomehp.com/?type=hp&ts=1394913934&from=amt&uid=WDCXWD2500BEVT-35A23T0_WD-WXD1EC0ASN92ASN92
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.awesomehp.com/web/?type=ds&ts=1394913934&from=amt&uid=WDCXWD2500BEVT-35A23T0_WD-WXD1EC0ASN92ASN92&q={searchTerms}
URLSearchHook: HKLM - DivX Browser Bar Toolbar - {77e8143b-6759-416e-b521-82cfed75150b} - C:\Program Files\DivX_Browser_Bar\prxtbDivX.dll No File
URLSearchHook: HKCU - DivX Browser Bar Toolbar - {77e8143b-6759-416e-b521-82cfed75150b} - C:\Program Files\DivX_Browser_Bar\prxtbDivX.dll No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.awesomehp.com/?type=sc&ts=1394913934&from=amt&uid=WDCXWD2500BEVT-35A23T0_WD-WXD1EC0ASN92ASN92
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.awesomehp.com/web/?type=ds&ts=1394913934&from=amt&uid=WDCXWD2500BEVT-35A23T0_WD-WXD1EC0ASN92ASN92&q={searchTerms}
SearchScopes: HKLM - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.awesomehp.com/web/?type=ds&ts=1394913934&from=amt&uid=WDCXWD2500BEVT-35A23T0_WD-WXD1EC0ASN92ASN92&q={searchTerms}
SearchScopes: HKLM - {8DC09A80-2854-49C6-8E80-B15F6998F39C} URL =
ProxyEnable: Internet Explorer proxy is enabled.
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3031817
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3288691&CUI=UN41571787001112135&UM=2&UP=SP065E4C09-5680-40E0-AFDE-477BA3715F38&SSPV=
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3288691&CUI=UN41571787001112135&UM=2&UP=SP065E4C09-5680-40E0-AFDE-477BA3715F38&SSPV=
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.awesomehp.com/web/?type=ds&ts=1394913934&from=amt&uid=WDCXWD2500BEVT-35A23T0_WD-WXD1EC0ASN92ASN92&q={searchTerms}
SearchScopes: HKCU - {8DC09A80-2854-49C6-8E80-B15F6998F39C} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3288691&CUI=UN41571787001112135&UM=2
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={18E4D48D-31E0-442A-9F8F-936BCB02B04D}&mid=5f4009db91224badbff2e80302e665d5-8f235760fd0274269a0d8b69bfe47e02698aec2c&lang=pl&ds=ik011&pr=&d=2012-11-23 20:48:45&v=15.3.0.11&pid=avg&sg=15&sap=dsp&q={searchTerms}
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Shopping Assistant Plugin - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files\PriceGong\2.6.8\PriceGongIE.dll No File
BHO: No Name - {2EECD738-5844-4a99-B4B6-146BF802613B} - No File
BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\SupTab\SupTab.dll No File
BHO: My Global Search Bar BHO - {37B85A21-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (My Global Search)
BHO: DivX Browser Bar Toolbar - {77e8143b-6759-416e-b521-82cfed75150b} - C:\Program Files\DivX_Browser_Bar\prxtbDivX.dll No File
BHO: IE5BarLauncherBHO Class - {78F3A323-798E-4AEA-9A57-88F4B05FD5DD} - C:\Program Files\StartSearch plugin\ssBarLcher.dll No File
BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll No File
BHO: DealPly - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll No File
BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files\Delta\delta\1.8.24.6\bh\delta.dll No File
BHO: No Name - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - No File
BHO: Shopping Suggestion - {F6C07882-D703-4DD5-905A-2C4E815A5066} - C:\Users\Administrator\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4\Shopping Suggestion.dll (WW3, LLC)
Toolbar: HKLM - StartSearchToolBar - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - C:\Program Files\StartSearch plugin\ssBarLcher.dll No File
Toolbar: HKLM - No Name - {98889811-442D-49dd-99D7-DC866BE87DBC} - No File
Toolbar: HKLM - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll No File
Toolbar: HKLM - No Name - {8dcb7100-df86-4384-8842-8fa844297b3f} - No File
Toolbar: HKLM - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.24.6\deltaTlbr.dll No File
Toolbar: HKLM - My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (My Global Search)
Toolbar: HKLM - DivX Browser Bar Toolbar - {77e8143b-6759-416e-b521-82cfed75150b} - C:\Program Files\DivX_Browser_Bar\prxtbDivX.dll No File
Toolbar: HKCU - No Name - {5C5B9468-D672-4EB7-B52F-B5AFABF28C5B} - No File
Toolbar: HKCU - StartSearchToolBar - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - C:\Program Files\StartSearch plugin\ssBarLcher.dll No File
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\15.5.0\ViProtocol.dll No File
FF SearchEngineOrder.1: Ask.com
FF Homepage: hxxp://search.conduit.com/?ctid=CT3288691&octid=EB_ORIGINAL_CTID&SearchSource=61&CUI=UN25191066403549184&UM=2&UP=SP065E4C09-5680-40E0-AFDE-477BA3715F38&SSPV=
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3288691&SearchSource=2&CUI=UN25191066403549184&UM=2&q=
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\15.5.0\\npsitesafety.dll No File
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPMyGlSh.dll (My Global Search)
FF SearchPlugin: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\sbhy4e90.default\searchplugins\divx-browser-bar-customized-web-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\awesomehp.xml
FF Extension: . - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\sbhy4e90.default\Extensions\{4e38134d-ba98-4066-b898-e296d8acc938}.xpi [2014-03-15]
FF Extension: Shopping Suggestion - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\sbhy4e90.default\Extensions\{D394D188-BAC7-4e03-8FAF-389A4D7EC6F4}.xpi [2014-03-15]
FF HKLM\...\Firefox\Extensions: [{5cea9a87-a3a5-4c2a-b08d-8a1876d4931c}] - C:\Users\Administrator\AppData\Roaming\Mozilla\FireFox\{5cea9a87-a3a5-4c2a-b08d-8a1876d4931c}
FF Extension: ACFF12Component - C:\Users\Administrator\AppData\Roaming\Mozilla\FireFox\{5cea9a87-a3a5-4c2a-b08d-8a1876d4931c} [2012-06-07]
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe http://www.awesomehp.com/?type=sc&ts=1394913934&from=amt&uid=WDCXWD2500BEVT-35A23T0_WD-WXD1EC0ASN92ASN92
S2 ProtectMonitor; C:\Program Files\PCData\StartHelp.exe [90680 2014-03-14] ()
S4 vToolbarUpdater15.5.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [X]
R1 StarOpen; C:\windows\system32\Drivers\StarOpen.sys [5632 2006-07-24] ()
C:\Users\Administrator\AppData\Local\cache
C:\Users\Administrator\.android
C:\Program Files\PCData
C:\Users\Administrator\daemonprocess.txt
C:\Users\Administrator\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4
C:\Program Files\DoubleOptMedia
C:\Users\Administrator\AppData\Local\23761
C:\Users\Administrator\AppData\Roaming\Optimizer Elite Max
C:\Users\Administrator\AppData\Roaming\downquick
C:\Users\Administrator\AppData\Local\nsqF379.tmp
C:\ProgramData\SaveNewaAppz
C:\ProgramData\TaheBloockeri
C:\ProgramData\gkeokfcplbdpdepjabchfhmkjahel
C:\ProgramData\hash.dat
C:\Users\Administrator\AppData\Local\Temp\*.exe
C:\Users\Ja\AppData\Local\Temp\*.dll
Task: {0A814375-3104-416D-8BB6-3A420207AD10} - System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv => C:\windows\TEMP\{7F97ABE3-0286-457C-B298-6DE4E514D32D}.exe
Task: {17C3FB32-1400-47C9-8B91-F54F9023B839} - System32\Tasks\PCHelpers_period => C:\Program Files\Optimizer Elite Max\Optimizer Elite Max.exe
Task: {3A091C56-9BB5-4A71-AA79-64F730FE3053} - System32\Tasks\PCHelpers1st => C:\Program Files\Optimizer Elite Max\Optimizer Elite Max.exe
Task: {61489B89-AE2B-4568-AB06-667E6CA7EAC9} - System32\Tasks\BackgroundContainer Startup Task => Rundll32.exe "C:\Users\Administrator\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun <==== ATTENTION
Task: {6A3509D2-3802-43ED-A242-B71CAD03C290} - System32\Tasks\APSnotifierCA => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {B2F2E1BF-E777-4733-8A81-598BE51280AD} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1258682174-2796256544-37713547-500
Task: {B8E3FD43-9120-49A3-846A-C73D7CC26272} - System32\Tasks\{2668911A-C39D-41C8-8786-5018A17E9CFE} => Firefox.exe http://ui.skype.com/ui/0/5.10.0.116/pl/abandoninstall?page=tsProgressBar
Task: {BF44AD4A-9CB0-4082-A383-6BD178FC2DE6} - System32\Tasks\DigitalSite => C:\Users\Ja\AppData\Roaming\DigitalSite\UpdateProc\UpdateTask.exe <==== ATTENTION
Task: {DFD7290E-D46E-41A4-B320-A76F2B8EE2ED} - System32\Tasks\DealPly => C:\Users\Ja\AppData\Roaming\DealPly\UpdateProc\UpdateTask.exe [2013-05-27] () <==== ATTENTION
Task: {E4E4674D-C410-45B9-9EF4-0784E57DD95E} - System32\Tasks\{5D54EDBA-4C8A-487D-AC42-08CAD999DB0B} => Firefox.exe http://ui.skype.com/ui/0/6.3.0.107/pl/go/help.faq.installer?LastError=1618
Task: {F27B48E4-B939-43B9-B80F-40C66EF04EC4} - System32\Tasks\EPUpdater => C:\Users\Ja\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-08-04] () <==== ATTENTION
Task: C:\windows\Tasks\APSnotifierCA.job => C:\Program Files\AnyProtectEx\AnyProtect.exe
Task: C:\windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\windows\TEMP\{7F97ABE3-0286-457C-B298-6DE4E514D32D}.exe
Task: C:\windows\Tasks\Dealply.job => C:\Users\Ja\AppData\Roaming\Dealply\UPDATE~1\UpdateTask.exe <==== ATTENTION
Task: C:\windows\Tasks\DigitalSite.job => C:\Users\Ja\AppData\Roaming\DigitalSite\UpdateProc\UpdateTask.exe <==== ATTENTION
Task: C:\windows\Tasks\PCHelpers1st.job => C:\Program Files\Optimizer Elite Max\Optimizer Elite Max.exe
Task: C:\windows\Tasks\PCHelpers_period.job => C:\Program Files\Optimizer Elite Max\Optimizer Elite Max.exe
Uruchom FRST i kliknij Fix. Pokaż raport z usuwania Fixlog.
Witam ponownie, dziekuje za pomoc:)
Ponizej zamieszczam logi:
Fixlog: http://wklej.org/id/1307577/
FRST: http://wklej.org/id/1307590/
Usunalem jeszcze programem adwcleaner niepotrzebne smieci
log z usuwania http://wklej.org/id/1307619/
Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPMyGlSh.dll (My Global Search)
C:\AdwCleaner
C:\ProgramData\gkeokfcplbdpdepjabchfhmkjahelpfh
C:\ProgramData\a80dfc9bfafd8d
C:\Program Files\mozilla firefox\plugins\NPMyGlSh.dll
C:\Users\Ja\AppData\Local\Temp\*.exe
Uruchom FRST i kliknij Fix. Później skasuj folder C:\FRST.
Pobierz TFC - Temp File Cleaner Uruchom TFC i kliknij Start.
Usuń stare punkty przywracania:
Aby usunąć wszystkie punkty przywracania
Uruchom SecurityCheck i aktualizuj programy oznaczone jako Out of date
Dysk przeskanuj Malwarebytes Anti-Malware
Podczas instalacji usuń zaznaczenie przy Uruchom okres testowy Malwarebytes Anti-Malware PRO.
http://wstaw.org/m/2012/12/29/2012-12-29_005346.png
Przeczytaj w jaki sposób należy instalować programy:
http://www.dobreprogramy.pl/FadeMind/Niechciane-aplikacje,32989.html
http://traxter-online.net/jak-instalowac-aplikacje-w-systemie/
http://www.fixitpc.pl/topic/19809-portale-z-oprogramowaniem-instalatory-na-co-uważać/
http://www.fixitpc.pl/topic/20636-unchecky-rozwiązaniem-na-śmieci-w-instalatorach-do-testów/
