Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 14-12-2014 01
Ran by User at 2014-12-17 08:03:01 Run:1
Running from C:\Users\User\Desktop\naprawa
Loaded Profile: User (Available profiles: User)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
CloseProcesses:
R1 {128614e8-07dd-4e11-b9ec-ca2c14f812c5}Gw64; C:\Windows\System32\drivers\{128614e8-07dd-4e11-b9ec-ca2c14f812c5}Gw64.sys [48776 2014-11-23] (StdLib)
R1 {150ca330-afd5-4527-99bc-b3ce918cea60}Gw64; C:\Windows\System32\drivers\{150ca330-afd5-4527-99bc-b3ce918cea60}Gw64.sys [48784 2014-11-26] (StdLib)
R1 {2fb2b93a-d824-4963-962b-e98da201096d}Gw64; C:\Windows\System32\drivers\{2fb2b93a-d824-4963-962b-e98da201096d}Gw64.sys [48784 2014-11-26] (StdLib)
R1 {c06d4fbe-280b-4167-ade0-b7e3d262b0b1}Gw64; C:\Windows\System32\drivers\{c06d4fbe-280b-4167-ade0-b7e3d262b0b1}Gw64.sys [48784 2014-11-29] (StdLib)
R1 {d844ac65-f5bb-442d-922f-0cfb5ccefb0c}Gw64; C:\Windows\System32\drivers\{d844ac65-f5bb-442d-922f-0cfb5ccefb0c}Gw64.sys [48784 2014-11-28] (StdLib)
R1 {e7ea42ad-4fa4-4fce-a37a-c42931f721e3}Gw64; C:\Windows\System32\drivers\{e7ea42ad-4fa4-4fce-a37a-c42931f721e3}Gw64.sys [48784 2014-11-30] (StdLib)
R2 f64035c2; c:\Program Files (x86)\CouponFinder\SaleRadar.dll [4052480 2014-11-30] () [File not signed]
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
BHO: shoupNNdrop -> {73c50190-2447-4793-b1d0-a980080bdb47} -> C:\ProgramData\shoupNNdrop\PpGyBYDOtlKZYN.x64.dll ()
BHO-x32: shoupNNdrop -> {73c50190-2447-4793-b1d0-a980080bdb47} -> C:\ProgramData\shoupNNdrop\PpGyBYDOtlKZYN.dll ()
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp220141201
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp220141201
HKU\S-1-5-21-3367409587-261043490-430672160-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wp.pl/?src01=dp220141201
SearchScopes: HKU\S-1-5-21-3367409587-261043490-430672160-1001 -> DefaultScope {00AED5F4-7C45-48B2-A76A-70587D17963F} URL =
SearchScopes: HKU\S-1-5-21-3367409587-261043490-430672160-1001 -> {00AED5F4-7C45-48B2-A76A-70587D17963F} URL =
HKLM-x32\...\Run: [mcui_exe] => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-3367409587-261043490-430672160-1001\...\MountPoints2: {a7ab58ed-2224-11e4-be82-c0143dd45d14} - "F:\Startme.exe"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
C:\Program Files (x86)\Amazon
C:\Program Files (x86)\Google\Chrome
C:\Program Files (x86)\CouponFinder
C:\ProgramData\661597706728995119
C:\ProgramData\92e779be5cb792f
C:\ProgramData\GoldenCoupon
C:\ProgramData\shoupNNdrop
C:\ProgramData\McAfee
C:\Users\User\AppData\Local\Google\Chrome
C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Local Storage\*localstorage*
C:\Users\User\Documents\Optimizer Pro
C:\Users\User\Downloads\*(*)-dp*.exe
C:\Windows\System32\drivers\{128614e8-07dd-4e11-b9ec-ca2c14f812c5}Gw64.sys
C:\Windows\System32\drivers\{150ca330-afd5-4527-99bc-b3ce918cea60}Gw64.sys
C:\Windows\System32\drivers\{2fb2b93a-d824-4963-962b-e98da201096d}Gw64.sys
C:\Windows\System32\drivers\{c06d4fbe-280b-4167-ade0-b7e3d262b0b1}Gw64.sys
C:\Windows\System32\drivers\{d844ac65-f5bb-442d-922f-0cfb5ccefb0c}Gw64.sys
C:\Windows\System32\drivers\{e7ea42ad-4fa4-4fce-a37a-c42931f721e3}Gw64.sys
Folder: C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions
CMD: type "C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Preferences"
EmptyTemp:
*****************

Processes closed successfully.
{128614e8-07dd-4e11-b9ec-ca2c14f812c5}Gw64 => Unable to stop service
{128614e8-07dd-4e11-b9ec-ca2c14f812c5}Gw64 => Service deleted successfully.
{150ca330-afd5-4527-99bc-b3ce918cea60}Gw64 => Unable to stop service
{150ca330-afd5-4527-99bc-b3ce918cea60}Gw64 => Service deleted successfully.
{2fb2b93a-d824-4963-962b-e98da201096d}Gw64 => Unable to stop service
{2fb2b93a-d824-4963-962b-e98da201096d}Gw64 => Service deleted successfully.
{c06d4fbe-280b-4167-ade0-b7e3d262b0b1}Gw64 => Unable to stop service
{c06d4fbe-280b-4167-ade0-b7e3d262b0b1}Gw64 => Service deleted successfully.
{d844ac65-f5bb-442d-922f-0cfb5ccefb0c}Gw64 => Unable to stop service
{d844ac65-f5bb-442d-922f-0cfb5ccefb0c}Gw64 => Service deleted successfully.
{e7ea42ad-4fa4-4fce-a37a-c42931f721e3}Gw64 => Unable to stop service
{e7ea42ad-4fa4-4fce-a37a-c42931f721e3}Gw64 => Service deleted successfully.
f64035c2 => Service not found.
C:\WINDOWS\system32\GroupPolicy\Machine => Moved successfully.
C:\WINDOWS\system32\GroupPolicy\GPT.ini => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73c50190-2447-4793-b1d0-a980080bdb47}" => Key deleted successfully.
"HKCR\CLSID\{73c50190-2447-4793-b1d0-a980080bdb47}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73c50190-2447-4793-b1d0-a980080bdb47}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{73c50190-2447-4793-b1d0-a980080bdb47}" => Key deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-3367409587-261043490-430672160-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-3367409587-261043490-430672160-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-3367409587-261043490-430672160-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{00AED5F4-7C45-48B2-A76A-70587D17963F}" => Key deleted successfully.
"HKCR\CLSID\{00AED5F4-7C45-48B2-A76A-70587D17963F}" => Key not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mcui_exe => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoFolderOptions => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoControlPanel => value deleted successfully.
"HKU\S-1-5-21-3367409587-261043490-430672160-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a7ab58ed-2224-11e4-be82-c0143dd45d14}" => Key deleted successfully.
"HKCR\CLSID\{a7ab58ed-2224-11e4-be82-c0143dd45d14}" => Key not found.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc" => Key deleted successfully.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc" => Key deleted successfully.
C:\Program Files (x86)\Amazon => Moved successfully.
"C:\Program Files (x86)\Google\Chrome" => File/Directory not found.
"C:\Program Files (x86)\CouponFinder" => File/Directory not found.
C:\ProgramData\661597706728995119 => Moved successfully.
C:\ProgramData\92e779be5cb792f => Moved successfully.
C:\ProgramData\GoldenCoupon => Moved successfully.
C:\ProgramData\shoupNNdrop => Moved successfully.
C:\ProgramData\McAfee => Moved successfully.
"C:\Users\User\AppData\Local\Google\Chrome" => File/Directory not found.
C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Local Storage\*localstorage* => Moved successfully.
C:\Users\User\Documents\Optimizer Pro => Moved successfully.
"C:\Users\User\Downloads\*(*)-dp*.exe" => File/Directory not found.
C:\Windows\System32\drivers\{128614e8-07dd-4e11-b9ec-ca2c14f812c5}Gw64.sys => Moved successfully.
C:\Windows\System32\drivers\{150ca330-afd5-4527-99bc-b3ce918cea60}Gw64.sys => Moved successfully.
C:\Windows\System32\drivers\{2fb2b93a-d824-4963-962b-e98da201096d}Gw64.sys => Moved successfully.
C:\Windows\System32\drivers\{c06d4fbe-280b-4167-ade0-b7e3d262b0b1}Gw64.sys => Moved successfully.
C:\Windows\System32\drivers\{d844ac65-f5bb-442d-922f-0cfb5ccefb0c}Gw64.sys => Moved successfully.
C:\Windows\System32\drivers\{e7ea42ad-4fa4-4fce-a37a-c42931f721e3}Gw64.sys => Moved successfully.

========================= Folder: C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions ========================

Directory Not Found

=========  type "C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Preferences" =========


========= End of CMD: =========

EmptyTemp: => Removed 424.1 MB temporary data.


The system needed a reboot. 

==== End of Fixlog ====