Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-02-2015 Ran by Emil at 2015-02-07 22:28:08 Run:2 Running from C:\Users\Emil\Desktop Loaded Profiles: Emil (Available profiles: Emil) Boot Mode: Normal ============================================== Content of fixlist: ***************** S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () Task: {68B86A6E-2E4E-4ED3-AFA1-96CFF6226578} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000UA => C:\Users\Emil\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-09] (Facebook Inc.) Task: {96EBAD8E-99CB-44B9-B1C0-47EDE12E192A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000Core => C:\Users\Emil\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-09] (Facebook Inc.) Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000Core.job => C:\Users\Emil\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000UA.job => C:\Users\Emil\AppData\Local\Facebook\Update\FacebookUpdate.exe ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Users\Emil\AppData\Local\Temp\HZ$D.981.192\HZ$D.981.193\crack\IDMShellExt64.dll No File C:\Program Files (x86)\NAPI-PROJEKT C:\Program Files (x86)\Origin Games C:\Program Files (x86)\Super Mario Bros C:\Program Files (x86)\Winamp C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin C:\ProgramData\NokiaInstallerCache C:\ProgramData\PC Suite C:\ProgramData\Sun C:\Users\Emil\AppData\Local\Facebook C:\Users\Emil\AppData\Local\Nokia C:\Users\Emil\AppData\Roaming\Origin C:\Users\Emil\AppData\Roaming\TS3Client C:\Windows\SysWow64\Drivers\StarOpen.sys ***************** StarOpen => Service deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{68B86A6E-2E4E-4ED3-AFA1-96CFF6226578}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{68B86A6E-2E4E-4ED3-AFA1-96CFF6226578}" => Key deleted successfully. C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000UA => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000UA" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{96EBAD8E-99CB-44B9-B1C0-47EDE12E192A}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{96EBAD8E-99CB-44B9-B1C0-47EDE12E192A}" => Key deleted successfully. C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000Core => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000Core" => Key deleted successfully. C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000Core.job => Moved successfully. C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000UA.job => Moved successfully. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\IDM Shell Extension" => Key deleted successfully. "HKCR\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}" => Key deleted successfully. C:\Program Files (x86)\NAPI-PROJEKT => Moved successfully. C:\Program Files (x86)\Origin Games => Moved successfully. C:\Program Files (x86)\Super Mario Bros => Moved successfully. C:\Program Files (x86)\Winamp => Moved successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin => Moved successfully. C:\ProgramData\NokiaInstallerCache => Moved successfully. C:\ProgramData\PC Suite => Moved successfully. C:\ProgramData\Sun => Moved successfully. C:\Users\Emil\AppData\Local\Facebook => Moved successfully. C:\Users\Emil\AppData\Local\Nokia => Moved successfully. C:\Users\Emil\AppData\Roaming\Origin => Moved successfully. C:\Users\Emil\AppData\Roaming\TS3Client => Moved successfully. C:\Windows\SysWow64\Drivers\StarOpen.sys => Moved successfully. ==== End of Fixlog 22:28:09 ====