Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-01-2015 Ran by user at 2015-01-12 22:28:01 Run:2 Running from C:\Users\user\Downloads Loaded Profile: user (Available profiles: USER_ & user) Boot Mode: Normal ============================================== Content of fixlist: ***************** CloseProcesses: CreateRestorePoint: GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION FF Plugin-x32: @java.com/DTPlugin,version=10.40.2 -> C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) C:\Program Files (x86)\Hold Page C:\Users\user\AppData\Local\Pay-By-Ads C:\Windows\system32\Drivers\{91975f83-f39c-43cf-aad4-0b3396b0f6db}Gw64.sys Reg: reg query "HKLM\SOFTWARE\Clients\StartMenuInternet\OperaStable\shell\open\command" /s Folder: C:\Users\user\AppData\Roaming\Opera Software\Opera Stable\Extensions CMD: type "C:\Users\user\AppData\Roaming\Opera Software\Opera Stable\Preferences" CMD: net user USER_ /delete EmptyTemp: ***************** Processes closed successfully. Restore point was successfully created. C:\windows\system32\GroupPolicy\Machine => Moved successfully. C:\windows\system32\GroupPolicy\GPT.ini => Moved successfully. "HKLM\SOFTWARE\Policies\Google" => Key deleted successfully. "HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.40.2" => Key deleted successfully. C:\windows\SysWOW64\npDeployJava1.dll => Moved successfully. "C:\Program Files (x86)\Hold Page" => File/Directory not found. C:\Users\user\AppData\Local\Pay-By-Ads => Moved successfully. C:\Windows\system32\Drivers\{91975f83-f39c-43cf-aad4-0b3396b0f6db}Gw64.sys => Moved successfully. ========= reg query "HKLM\SOFTWARE\Clients\StartMenuInternet\OperaStable\shell\open\command" /s ========= HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\OperaStable\shell\open\command (domy˜lny) REG_SZ "C:\Program Files (x86)\Opera\Launcher.exe" ========= End of Reg: ========= ========================= Folder: C:\Users\user\AppData\Roaming\Opera Software\Opera Stable\Extensions ======================== Directory Not Found ========= type "C:\Users\user\AppData\Roaming\Opera Software\Opera Stable\Preferences" ========= ========= End of CMD: ========= ========= net user USER_ /delete ========= ========= End of CMD: ========= EmptyTemp: => Removed 830 MB temporary data. The system needed a reboot. ==== End of Fixlog 22:28:18 ====