Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-05-2015 01 Ran by angelo at 2015-05-06 19:49:06 Running from C:\Users\angelo\Desktop Boot Mode: Safe Mode (with Networking) ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1978612429-1603657822-79474088-500 - Administrator - Disabled) angelo (S-1-5-21-1978612429-1603657822-79474088-1002 - Administrator - Enabled) => C:\Users\angelo Guest (S-1-5-21-1978612429-1603657822-79474088-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1978612429-1603657822-79474088-1004 - Limited - Enabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Norton Internet Security (Enabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB} AS: Norton Internet Security (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Norton Internet Security (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) AMD Catalyst Install Manager (HKLM\...\{C2956908-53A3-88FC-B795-B16508296FC4}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach) bestadblocker (HKLM-x32\...\{4820778D-AB0D-6D18-C316-52A6A0E1D507}) (Version: - ) <==== ATTENTION Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) FL Studio 10 (HKLM-x32\...\FL Studio 10) (Version: - Image-Line) FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line) FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.) Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.6.0.32 - Symantec Corporation) QuasarUltra (HKLM-x32\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{68ef6205}) (Version: - QuasarUltra) <==== ATTENTION Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.19.25502 - Razer Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6873 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM-x32\...\{B63CCD1C-A133-4DF8-8306-DA0387231152}) (Version: 1.00.0218.1 - REALTEK Semiconductor Corp.) SalEPlUUs (HKLM-x32\...\{B696F285-F54E-2524-58B1-E06A70ABE6BE}) (Version: - ) <==== ATTENTION Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Tumblr Timestamps (HKLM-x32\...\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}) (Version: - ) <==== ATTENTION WinZip 19.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E7}) (Version: 19.0.11294 - WinZip Computing, S.L. ) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 24-04-2015 13:00:23 Installed DirectX 28-04-2015 10:48:59 Windows Update 01-05-2015 08:13:51 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 04-05-2015 17:40:27 Installed WinZip 19.0 05-05-2015 17:49:05 Installed Minecraft ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 06:25 - 2013-08-22 06:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {242C3D31-92B0-48FA-826B-164DAFF9E66D} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\WSCStub.exe [2014-09-21] (Symantec Corporation) Task: {30C50CA8-3ACE-4102-90FE-ED489F08263F} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation) Task: {5BFAD17B-BBEA-42EA-B467-E715873A2B3E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-24] (Google Inc.) Task: {615112A1-6A21-4B29-A843-158B773E0DB9} - System32\Tasks\Bidaily Synchronize Task => C:\ProgramData\{ba524616-a5e9-6c72-ba52-24616a5e185a}\GTA 5 _ Grand Theft Auto V [Update 4] (2015) PC _ RePack by R.G. Games.exe [2014-05-04] () <==== ATTENTION Task: {75FD4F5C-DE7A-4370-BA1E-2439C5B976E3} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation) Task: {798F8F5A-ABAF-4099-919A-BD362AFFEDF4} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-23] (Microsoft Corporation) Task: {866F2508-0A76-4C63-A2C9-A5A92ADBA72D} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation) Task: {95F3F05B-C29A-4513-A4CE-F596A98FEDA1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-24] (Google Inc.) Task: {B2F66644-523F-4D97-B463-5993D2C28E75} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-04-01] (Microsoft Corporation) Task: {C3537A89-B974-42B5-86E3-730B268A8707} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation) Task: {DD8205DA-7CC4-483A-8C7D-7FD1936A8443} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation) Task: C:\Windows\Tasks\Bidaily Synchronize Task.job => C:\ProgramData\{ba524616-a5e9-6c72-ba52-24616a5e185a}\GTA 5 _ Grand Theft Auto V [Update 4] (2015) PC _ RePack by R.G. Games.exe <==== ATTENTION Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============== ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Users\angelo\SkyDrive:ms-properties ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, the associated entry will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1978612429-1603657822-79474088-1002\Control Panel\Desktop\\Wallpaper -> DNS Servers: 75.75.75.75 - 75.75.76.76 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (whitelisted) =============== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{2B6683B0-108E-4E64-B8AF-0988CFC98B52}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{E9EAD45C-69FC-4BD7-A8A0-D2B24B66B57B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{BA5A7A76-8395-43EE-B78B-8402B893FF51}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{08CBA84F-3805-4BB0-BD26-BF93FFF3D87B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{0B943653-EA37-4606-B885-CE26A40C6508}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{E051ACA5-2BA3-4DAF-9DDB-6BECD7234689}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{34DA9ED7-AA03-429D-A5CA-B0AAAD6F3775}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{5C21717C-6A7F-4DFF-81A8-4A3987CD54F7}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe FirewallRules: [UDP Query User{50812EA8-B213-49B2-BB5A-62163384F075}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe FirewallRules: [TCP Query User{36261190-1BC4-4DF3-8178-163DB339E031}C:\program files\strogino cs portal\garrys mod\hl2.exe] => (Block) C:\program files\strogino cs portal\garrys mod\hl2.exe FirewallRules: [UDP Query User{8044DE96-13E4-42AD-AAF3-F7895BD3F07A}C:\program files\strogino cs portal\garrys mod\hl2.exe] => (Block) C:\program files\strogino cs portal\garrys mod\hl2.exe FirewallRules: [TCP Query User{9E32BB73-DA4E-4E57-A793-138FE9BAF22A}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{A177BA43-496F-4F77-A615-8A7B2189568A}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (05/06/2015 01:44:13 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll8 Error: (05/06/2015 00:14:45 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY) Description: There was an error with the Windows Location Provider database Error: (05/05/2015 02:55:36 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: delegate_execute.exe, version: 42.0.2311.135, time stamp: 0x553ea0fa Faulting module name: delegate_execute.exe, version: 42.0.2311.135, time stamp: 0x553ea0fa Exception code: 0xc0000005 Fault offset: 0x0002c3c4 Faulting process id: 0x8c0 Faulting application start time: 0xdelegate_execute.exe0 Faulting application path: delegate_execute.exe1 Faulting module path: delegate_execute.exe2 Report Id: delegate_execute.exe3 Faulting package full name: delegate_execute.exe4 Faulting package-relative application ID: delegate_execute.exe5 Error: (05/04/2015 07:44:06 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: The index cannot be initialized. Details: The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06) Error: (05/04/2015 07:44:06 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: The application cannot be initialized. Context: Windows Application Details: The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06) Error: (05/04/2015 07:44:06 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: The gatherer object cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06) Error: (05/04/2015 07:44:06 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: The plug-in in cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06) Error: (05/04/2015 07:44:05 PM) (Source: Windows Search Service) (EventID: 3057) (User: ) Description: The plug-in manager cannot be initialized. Context: Windows Application Details: (HRESULT : 0x8e5e0210) (0x8e5e0210) Error: (05/04/2015 07:44:05 PM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt. Details: The content index catalog is corrupt. 0xc0041801 (0xc0041801) Error: (05/04/2015 07:44:04 PM) (Source: Windows Search Service) (EventID: 7040) (User: ) Description: The search service has detected corrupted data files in the index {id=4810 - enduser\mssearch2\search\ytrip\common\util\jetutil.cpp (167)}. The service will attempt to automatically correct this problem by rebuilding the index. Details: 0x8e5e0210 (0x8e5e0210) System errors: ============= Error: (05/06/2015 07:49:07 PM) (Source: DCOM) (EventID: 10005) (User: GAMINGPC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/06/2015 07:49:07 PM) (Source: DCOM) (EventID: 10005) (User: GAMINGPC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/06/2015 07:48:48 PM) (Source: DCOM) (EventID: 10005) (User: GAMINGPC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/06/2015 07:48:48 PM) (Source: DCOM) (EventID: 10005) (User: GAMINGPC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/06/2015 07:48:23 PM) (Source: DCOM) (EventID: 10005) (User: GAMINGPC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/06/2015 07:48:23 PM) (Source: DCOM) (EventID: 10005) (User: GAMINGPC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/06/2015 07:48:18 PM) (Source: DCOM) (EventID: 10005) (User: GAMINGPC) Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC} Error: (05/06/2015 07:48:11 PM) (Source: DCOM) (EventID: 10005) (User: GAMINGPC) Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC} Error: (05/06/2015 07:47:55 PM) (Source: DCOM) (EventID: 10005) (User: GAMINGPC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/06/2015 07:47:55 PM) (Source: DCOM) (EventID: 10005) (User: GAMINGPC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Microsoft Office Sessions: ========================= Error: (05/06/2015 01:44:13 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll8 Error: (05/06/2015 00:14:45 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY) Description: -2147024883 Error: (05/05/2015 02:55:36 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: delegate_execute.exe42.0.2311.135553ea0fadelegate_execute.exe42.0.2311.135553ea0fac00000050002c3c48c001d0877e36e69b6cC:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\delegate_execute.exeC:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\delegate_execute.exe75a09151-f371-11e4-826d-d8cb8a3cc8af Error: (05/04/2015 07:44:06 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Details: The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06) Error: (05/04/2015 07:44:06 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Context: Windows Application Details: The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06) Error: (05/04/2015 07:44:06 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Context: Windows Application, SystemIndex Catalog Details: The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06) Error: (05/04/2015 07:44:06 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Context: Windows Application, SystemIndex Catalog Details: The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06) Search.TripoliIndexer Error: (05/04/2015 07:44:05 PM) (Source: Windows Search Service) (EventID: 3057) (User: ) Description: Context: Windows Application Details: (HRESULT : 0x8e5e0210) (0x8e5e0210) Search.TripoliIndexer Error: (05/04/2015 07:44:05 PM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: Details: The content index catalog is corrupt. 0xc0041801 (0xc0041801) The catalog is corrupt Error: (05/04/2015 07:44:04 PM) (Source: Windows Search Service) (EventID: 7040) (User: ) Description: Details: 0x8e5e0210 (0x8e5e0210) 4810 - enduser\mssearch2\search\ytrip\common\util\jetutil.cpp (167) ==================== Memory info =========================== Processor: AMD FX(tm)-6300 Six-Core Processor Percentage of memory in use: 8% Total physical RAM: 8191.17 MB Available physical RAM: 7526.05 MB Total Pagefile: 9471.17 MB Available Pagefile: 8867.63 MB Total Virtual: 131072 MB Available Virtual: 131071.82 MB ==================== Drives ================================ Drive c: (Windows) (Fixed) (Total:465.42 GB) (Free:411.93 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: A04B63FC) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.4 GB) - (Type=07 NTFS) ==================== End Of Log ============================