Prosze o pomoc w usunięciu wirusa ads by name

GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp220150325
HKU\S-1-5-21-507921405-1563985344-725345543-1004\Software\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp220150325
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "http://www.google.com" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
FF ExtraCheck: C:\Program Files\mozilla firefox\browser\defaults\preferences\my-prefs.js [2015-04-21] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\my.cfg [2015-04-21] <==== ATTENTION
OPR StartupUrls: "http:\/\/search.babylon.com\/?affID=100782&tl=gkn12345&tt=3112_7&babsrc=SP_def_nch_opera&mntrId=36537cd300000000000050e549ed9c44",
S2 Util ToggleMark; "C:\Program Files\ToggleMark\bin\utilToggleMark.exe" [X]
S4 IntelIde; No ImagePath
2015-04-24 23:02 - 2015-04-24 23:02 - 00000000 ____ D () C:\rsit
2015-04-07 09:25 - 2015-04-20 22:51 - 00000004 _____ () C:\WINDOWS\system32\029B560A371F4E00AB32838EBC01B9E7
2015-04-01 11:03 - 2015-04-20 22:26 - 00000000 ____ D () C:\Program Files\Common Files\c716fd70-872c-4aaa-a07f-e248365d7f56
2015-04-01 11:03 - 2015-04-20 22:25 - 00000000 ____ D () C:\Documents and Settings\All Users\Dane aplikacji\c716fd70-872c-4aaa-a07f-e248365d7f56
2015-03-31 10:14 - 2015-03-31 10:14 - 00004387 _____ () C:\Documents and Settings\Adam\Dane aplikacji\OUD3QxnjX4Re
2015-03-31 10:14 - 2015-03-31 10:14 - 00004387 _____ () C:\Documents and Settings\Adam\Dane aplikacji\lTaIwmgFgSGcgNhn97GWwMUl
2015-04-21 20:23 - 2014-10-28 20:14 - 00000000 ____ D () C:\Documents and Settings\All Users\Dane aplikacji\ee70f246-63a3-464e-a2ed-28bc4d8db631
2015-01-25 18:12 - 2015-01-25 18:12 - 0001248 _____ () C:\Documents and Settings\Adam\Dane aplikacji\VFQJOCTQ
2014-08-17 22:19 - 2014-08-17 22:19 - 0630960 _____ (ClickMeIn Limited) C:\Documents and Settings\Adam\Ustawienia lokalne\Dane aplikacji\nsg33E.tmp
2014-08-17 22:01 - 2014-08-17 22:01 - 0575544 _____ (ClickMeIn Limited) C:\Documents and Settings\Adam\Ustawienia lokalne\Dane aplikacji\nsq2AB.tmp
CustomCLSID: HKU\S-1-5-21-507921405-1563985344-725345543-1004_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Documents and Settings\Adam\Dane aplikacji\Dropbox\bin\Dropbox.exe /autoplay No File
CustomCLSID: HKU\S-1-5-21-507921405-1563985344-725345543-1004_Classes\CLSID\{E69341A3-E6D2-4175-B60C-C9D3D6FA40F6}\localserver32 -> C:\Documents and Settings\Adam\Dane aplikacji\Dropbox\bin\Dropbox.exe /wiacallback No File
Task: C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job => C:\WINDOWS\system32\xp_eos.exe
EmptyTemp:

Uruchom FRST i kliknij Fix. Pokaż raport z usuwania Fixlog.

Kliknij Scan i pokaż nowy raport z FRST bez Addition i Shortcut.