Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-12-2014
Ran by Sławek at 2014-12-14 00:20:22 Run:1
Running from C:\Users\Sławek\NARZEDZIA
Loaded Profile: Sławek (Available profiles: Sławek)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
CloseProcesses:
R1 {a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64; C:\Windows\System32\drivers\{a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64.sys [48784 2014-12-12] (StdLib)
R2 Update Hold Page; C:\Program Files (x86)\Hold Page\updateHoldPage.exe [523504 2014-12-13] ()
R2 Util Hold Page; C:\Program Files (x86)\Hold Page\bin\utilHoldPage.exe [523504 2014-12-13] ()
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [485888 2014-12-13] (Fuyu LIMITED) [File not signed]
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
ShortcutWithArgument: C:\Users\Sławek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
ShortcutWithArgument: C:\Users\Sławek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
ShortcutWithArgument: C:\Users\Sławek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
ShortcutWithArgument: C:\Users\Sławek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
ShortcutWithArgument: C:\Users\Sławek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hp&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hp&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com/web/?type=ds&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com/web/?type=ds&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hp&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hp&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ&q={searchTerms}
HKU\S-1-5-21-398410218-3786033429-3762348091-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hp&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
HKU\S-1-5-21-398410218-3786033429-3762348091-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hp&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://isearch.omiga-plus.com/?type=sc&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ&q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ&q={searchTerms}
SearchScopes: HKU\S-1-5-21-398410218-3786033429-3762348091-1000 -> DefaultScope {BE6CCE12-371D-4E98-94E8-500487DF8FBB} URL =
SearchScopes: HKU\S-1-5-21-398410218-3786033429-3762348091-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ&q={searchTerms}
SearchScopes: HKU\S-1-5-21-398410218-3786033429-3762348091-1000 -> {BE6CCE12-371D-4E98-94E8-500487DF8FBB} URL =
BHO-x32: Hold Page 1.0.0.5 -> {6c14185e-4de6-4a79-985b-19f23fd1e638} -> C:\Program Files (x86)\Hold Page\HoldPagebho.dll (Hold Page)
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://isearch.omiga-plus.com/?type=sc&ts=1418481191&from=cor&uid=ST500LM000-1EJ162_W3718KKZXXXXW3718KKZ
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\omiga-plus.xml
C:\ProgramData\WindowsMangerProtect
C:\Users\Sławek\AppData\Local\CrashDumps
C:\Users\Sławek\AppData\Local\Gameo
C:\Users\Sławek\AppData\Roaming\GoldenGate
C:\Users\Sławek\AppData\Roaming\WebTest
C:\Users\Sławek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play Games Online.url
C:\Windows\System32\drivers\{a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64.sys
*****************

Processes closed successfully.
{a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64 => Service stopped successfully.
{a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64 => Service deleted successfully.
Update Hold Page => Service deleted successfully.
Util Hold Page => Service deleted successfully.
WindowsMangerProtect => Service deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk => Shortcut argument was removed successfully.
C:\Users\Sławek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk => Shortcut argument was removed successfully.
C:\Users\Sławek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk => Shortcut argument was restored successfully.
C:\Users\Sławek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk => Shortcut argument was removed successfully.
C:\Users\Sławek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk => Shortcut argument was removed successfully.
C:\Users\Sławek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk => Shortcut argument was removed successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKU\S-1-5-21-398410218-3786033429-3762348091-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-398410218-3786033429-3762348091-1000\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
"HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key not found.
HKU\S-1-5-21-398410218-3786033429-3762348091-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-398410218-3786033429-3762348091-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
"HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key not found.
"HKU\S-1-5-21-398410218-3786033429-3762348091-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BE6CCE12-371D-4E98-94E8-500487DF8FBB}" => Key deleted successfully.
"HKCR\CLSID\{BE6CCE12-371D-4E98-94E8-500487DF8FBB}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6c14185e-4de6-4a79-985b-19f23fd1e638}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{6c14185e-4de6-4a79-985b-19f23fd1e638}" => Key deleted successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command\\Default => Value was restored successfully.
C:\Program Files (x86)\mozilla firefox\browser\searchplugins\omiga-plus.xml => Moved successfully.
C:\ProgramData\WindowsMangerProtect => Moved successfully.
C:\Users\Sławek\AppData\Local\CrashDumps => Moved successfully.
C:\Users\Sławek\AppData\Local\Gameo => Moved successfully.
C:\Users\Sławek\AppData\Roaming\GoldenGate => Moved successfully.
C:\Users\Sławek\AppData\Roaming\WebTest => Moved successfully.
C:\Users\Sławek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play Games Online.url => Moved successfully.
C:\Windows\System32\drivers\{a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64.sys => Moved successfully.


The system needed a reboot. 

==== End of Fixlog ====