Indice del forum Olimpo Informatico
I Forum di Zeus News
Leggi la newsletter gratuita - Attiva il Menu compatto
 
 FAQFAQ   CercaCerca   Lista utentiLista utenti   GruppiGruppi   RegistratiRegistrati 
 ProfiloProfilo   Messaggi privatiMessaggi privati   Log inLog in 

    Newsletter RSS Facebook Twitter Contatti Ricerca
tentato aggiornamento Wiindows 10 Home
Nuovo argomento   Rispondi    Indice del forum -> Windows 11, 10
Precedente :: Successivo  
Autore Messaggio
kerio69
Semidio
Semidio


Registrato: 20/12/06 15:52
Messaggi: 216

MessaggioInviato: 15 Apr 2021 12:10    Oggetto: tentato aggiornamento Wiindows 10 Home Rispondi citando

Nel mio portatile, nato con W 8,1 ho Windows 10 Home- versione 1909, attivato il 25/06/2019-Build S.O. 18363.959- Processore : AMD A10- 7300 Radeon R6, 10 Compute Cores 4C+ 6G-1,90 GHz- RAM 8 GB(6,93 GB utilizzabile, HD : Samsung 860 EVO 500 GB. Da inizio mese ho provato parecchie volte l'aggiornamento 20h2, ma l'installazione di blocca al 61% , e non fa installare altri aggiornamenti dell'antivirus W. Defender, come stensioni ho soltanto dark reader Origin, cosa dovrei controllare per concludere l'aggiornamento del sistema?
Top
Profilo Invia messaggio privato
Maary79
Moderatrice Sistemi Operativi e Software
Moderatrice Sistemi Operativi e Software


Registrato: 08/02/12 12:23
Messaggi: 12221

MessaggioInviato: 16 Apr 2021 13:08    Oggetto: Rispondi citando

Allora, sei indietro di 2 versioni.
Iniziamo con questa scansione.
Apri il prompt come amministratore e digita:

Codice:
sfc /scannow


Se ripara qualcosa riavvia.

Poi apri manualmente Windows Update e clicca su aggiorna.
Riporta eventuali errori.
Top
Profilo Invia messaggio privato
kerio69
Semidio
Semidio


Registrato: 20/12/06 15:52
Messaggi: 216

MessaggioInviato: 16 Apr 2021 14:26    Oggetto: Rispondi citando

Già fatto alcune volte ,ora riprovo con l'ennesimo riscontro ,grazie.
Top
Profilo Invia messaggio privato
Maary79
Moderatrice Sistemi Operativi e Software
Moderatrice Sistemi Operativi e Software


Registrato: 08/02/12 12:23
Messaggi: 12221

MessaggioInviato: 16 Apr 2021 14:29    Oggetto: Rispondi citando

Confermi che hai dato il comando, nessun errore e non si aggiorna?
Codice errore WU?

Da quanto tempo è così? Sospetti malware?
Segui questa guida, per escluderlo.
http://forum.zeusnews.com/viewtopic.php?t=65236
Top
Profilo Invia messaggio privato
kerio69
Semidio
Semidio


Registrato: 20/12/06 15:52
Messaggi: 216

MessaggioInviato: 16 Apr 2021 14:44    Oggetto: Rispondi citando

SFC/Scannow: Protezione risorse di Windows:Nessuna violazione di integrità trovata,ora riapro W.P.
Top
Profilo Invia messaggio privato
kerio69
Semidio
Semidio


Registrato: 20/12/06 15:52
Messaggi: 216

MessaggioInviato: 16 Apr 2021 15:35    Oggetto: Rispondi citando

Aggiornamento delle funzionalità a Windows 10-versione 20H2,Stato:Installazione in corso 61%,come altre volte si blocca l'installazione al 61%.
Top
Profilo Invia messaggio privato
kerio69
Semidio
Semidio


Registrato: 20/12/06 15:52
Messaggi: 216

MessaggioInviato: 16 Apr 2021 16:54    Oggetto: Rispondi citando

# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-03-22.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------Malwarebytes
www.malwarebytes.com

-Dettagli log-
Data scansione: 16/04/21
Ora scansione: 17:45
File di log: b67ef6aa-9eca-11eb-a7ad-68f7285778f1.json

-Informazioni software-
Versione: 4.3.0.98
Versione componenti: 1.0.1236
Aggiorna versione pacchetto: 1.0.39467
Licenza: Free

-Informazioni sistema-
SO: Windows 10 (Build 18363.1379)
CPU: x64
File system: NTFS
Utente: KensFollett\Gjack Salerno

-Riepilogo scansione-
Tipo di scansione: Ricerca elementi nocivi
Scansione avviata da: Manuale
Risultati: Completata
Elementi analizzati: 292962
Minacce rilevate: 0
Minacce messe in quarantena: 0
Tempo impiegato: 2 min, 20 sec

-Opzioni di scansione-
Memoria: Attivata
Esecuzioni automatiche: Attivata
File system: Attivata
Archivi compressi: Attivata
Rootkit: Disattivata
Analisi euristica: Attivata
PUP: Rilevare
PUM: Rilevare

-Dettagli scansione-
Processo: 0
(Nessun elemento nocivo rilevato)

Modulo: 0
(Nessun elemento nocivo rilevato)

Chiave di registro: 0
(Nessun elemento nocivo rilevato)

Valore di registro: 0
(Nessun elemento nocivo rilevato)

Dati di registro: 0
(Nessun elemento nocivo rilevato)

Flusso di dati: 0
(Nessun elemento nocivo rilevato)

Cartella: 0
(Nessun elemento nocivo rilevato)

File: 0
(Nessun elemento nocivo rilevato)

Settore fisico: 0
(Nessun elemento nocivo rilevato)

WMI: 0
(Nessun elemento nocivo rilevato)


(end)
# Mode: Scan
# -------------------------------
# Start: 04-16-2021
# Duration: 00:00:16
# OS: Windows 10 Home
# Scanned: 31959
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
Top
Profilo Invia messaggio privato
kerio69
Semidio
Semidio


Registrato: 20/12/06 15:52
Messaggi: 216

MessaggioInviato: 16 Apr 2021 17:00    Oggetto: Rispondi citando

Fatta scansione con Malwarebytes:tutto negativo.
Top
Profilo Invia messaggio privato
kerio69
Semidio
Semidio


Registrato: 20/12/06 15:52
Messaggi: 216

MessaggioInviato: 16 Apr 2021 17:10    Oggetto: Rispondi citando

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-04-2021
Ran by monte (16-04-2021 18:07:11)
Running from C:\Users\Gjack Salerno\Downloads
Windows 10 Home Version 1909 18363.1379 (X64) (2019-06-27 14:48:13)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1332497676-4034326449-572391256-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1332497676-4034326449-572391256-503 - Limited - Disabled)
Gjack Salerno (S-1-5-21-1332497676-4034326449-572391256-1001 - Limited - Enabled) => C:\Users\Gjack Salerno
Guest (S-1-5-21-1332497676-4034326449-572391256-501 - Limited - Disabled)
monte (S-1-5-21-1332497676-4034326449-572391256-1002 - Administrator - Enabled) => C:\Users\monte
WDAGUtilityAccount (S-1-5-21-1332497676-4034326449-572391256-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Total Security (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.13.27.501 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.3.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{40c19864-e557-4855-95ee-075689dfcf8e}) (Version: 2.13.27.501 - Advanced Micro Devices, Inc.) Hidden
Assistente aggiornamento Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - ‪Canon Inc.‬)
Canon IJ Network Scanner Selector EX2 (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX2) (Version: 2.0.5.3 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon IJ Printer Assistant Tool (HKLM-x32\...\Canon IJ Printer Assistant Tool) (Version: 1.00.1.51 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.4.0.16 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
Canon TS5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_TS5100_series) (Version: 1.01 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.78 - Piriform)
Cisco VideoGuard Player (HKLM-x32\...\{30e4813e-2a86-4e4f-82ea-23df71ca8ffb}) (Version: 10.1.1.6570 - Cisco Systems, Inc)
Conexant SmartAudio (HKLM\...\SAII) (Version: 6.0.259.0 - Conexant Systems)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.72 - Google LLC)
Logitech Options (HKLM\...\LogiOptions) (Version: 8.36.86 - Logitech)
Logitech SetPoint 6.70 (HKLM\...\sp6) (Version: 6.70.55 - Logitech)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.77 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
NOW TV 8.3.0.0 (HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\com.bskyb.nowtvplayer_is1) (Version: 8.3.0.0 - NOW TV)
OpenOffice 4.1.7 (HKLM-x32\...\{4E05F014-014F-4D72-8074-A3B578163D30}) (Version: 4.17.9800 - Apache Software Foundation)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconduct Corp.)
Registrazione stampante (HKLM-x32\...\Canon EISRegistration) (Version: 1.5.0 - Canon Inc.)
Revo Uninstaller 2.1.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.1 - VS Revo Group, Ltd.)
Skype versione 8.65 (HKLM-x32\...\Skype_is1) (Version: 8.65 - Skype Technologies S.A.)
Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-03-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-01-05 11:56 - 2021-01-05 11:56 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2019-08-06 11:07 - 2012-06-14 17:18 - 000359936 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
2021-01-05 11:57 - 2021-01-05 11:57 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-03-10 14:32 - 2021-03-10 14:32 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://home.microsoft.com/intl/it/access/allinone.asp
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Start Page = ???????????????????
SearchScopes: HKU\S-1-5-21-1332497676-4034326449-572391256-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2021-04-05 11:26 - 2021-04-15 09:29 - 000002107 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com

2020-10-27 18:05 - 2021-03-13 11:39 - 000000441 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\theme1\img1.jpg
HKU\S-1-5-21-1332497676-4034326449-572391256-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "StartCN"
HKLM\...\StartupApproved\Run: => "SmartAudio"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "RtsFT"
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "Uninstall 18.111.0603.0006\amd64"
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "Uninstall 18.151.0729.0012"
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "Uninstall 18.151.0729.0012\amd64"
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\StartupApproved\Run: => "Delete Cached Standalone Update Binary"
HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\StartupApproved\Run: => "Delete Cached Update Binary"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{62B68103-6238-43EF-8714-09C28851B03E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9FF984D8-C018-493B-BE9C-66A6FABD850F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4AEB8881-BB04-408F-B4C0-563EAC26296E}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{1EC6A71D-6200-4D50-BA65-683B41CEE740}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{7921ED47-3411-4917-911C-3DDED70A7039}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{5C8C7D1E-2CB1-45F8-AB79-7E9A9005AE28}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{F556D085-39BF-4B8F-9F90-050070AFBFF0}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8CFF851B-3198-4C6A-BB82-35CDD30F271D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (04/16/2021 05:54:07 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (18316,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 04:11:48 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2000,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 04:01:25 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7420,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 03:10:25 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8756,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 02:37:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10572,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 10:12:48 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7840,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 09:54:51 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10724,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 09:38:58 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8256,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


System errors:
=============
Error: (04/15/2021 09:29:14 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.

Error: (04/15/2021 09:28:59 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.

Error: (04/15/2021 09:28:30 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Il servizio Windows Update non è stato arrestato correttamente dopo la ricezione di un controllo di pre-arresto del sistema.

Error: (04/14/2021 05:08:52 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.

Error: (04/14/2021 05:08:44 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.

Error: (04/14/2021 05:08:12 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Errore di installazione. Non è stato possibile installare il seguente aggiornamento, errore 0xc19001e1: Aggiornamento delle funzionalità a Windows 10, versione 20H2.

Error: (04/14/2021 12:07:59 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.

Error: (04/14/2021 12:07:47 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.


Windows Defender:
================
Date: 2021-04-13 13:35:49.704
Description:
Windows Defender Antivirus: analisi interrotta prima del completamento.
ID analisi: {B6BF689D-D185-4187-B509-C1D4D55AF071}
Tipo analisi: Antimalware
Parametri analisi: Analisi veloce
Utente: NT AUTHORITY\SYSTEM

Date: 2021-04-09 13:28:31.253
Description:
Windows Defender Antivirus: analisi interrotta prima del completamento.
ID analisi: {7A8AFB08-55F8-40A4-991D-7FB4C41E859B}
Tipo analisi: Antimalware
Parametri analisi: Analisi veloce
Utente: NT AUTHORITY\SYSTEM

Date: 2021-04-08 11:43:11.663
Description:
Windows Defender Antivirus: analisi interrotta prima del completamento.
ID analisi: {1480F12C-02AE-4719-B923-F8CCE408B76D}
Tipo analisi: Antimalware
Parametri analisi: Analisi veloce
Utente: NT AUTHORITY\SYSTEM

Date: 2021-04-07 09:39:04.104
Description:
Windows Defender Antivirus: analisi interrotta prima del completamento.
ID analisi: {8AD00873-F2C7-42BC-BCA7-30749BA7024A}
Tipo analisi: Antimalware
Parametri analisi: Analisi veloce
Utente: NT AUTHORITY\SYSTEM

Date: 2021-04-05 11:37:08.474
Description:
Windows Defender Antivirus: rilevato malware o altro software potenzialmente indesiderato.
Ulteriori informazioni sono riportate di seguito:
https://go.microsoft.com/fwlink/?linkid=37020&name=App:Piriform_Speccy_BundleInstaller&threatid=277173&enterprise=0
Nome: App:Piriform_Speccy_BundleInstaller
Gravità: Medio
Categoria: Software potenzialmente indesiderato
Percorso: file:_C:\Users\Gjack Salerno\Downloads\Speccy\spsetup132.exe
Origine rilevamento: Computer locale
Tipo rilevamento: Concreta
Origine rilevamento: Protezione in tempo reale
Utente: KENSFOLLETT\Gjack Salerno
Nome processo: C:\Windows\explorer.exe
Versione intelligence sulla sicurezza: AV: 1.335.243.0, AS: 1.335.243.0, NIS: 1.335.243.0
Versione motore: AM: 1.1.18000.5, NIS: 1.1.18000.5

Date: 2021-04-02 17:57:59.224
Description:
Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
Nuova versione intelligence sulla sicurezza:
Versione intelligence sulla sicurezza precedente: 1.335.56.0
Origine aggiornamento: Server Microsoft Update
Tipo intelligence sulla sicurezza: Antivirus
Tipo aggiornamento: Completo
Utente: NT AUTHORITY\SYSTEM
Versione motore corrente:
Versione motore precedente: 1.1.18000.5
Codice errore: 0x80240016
Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.

Date: 2021-03-26 11:12:33.366
Description:
Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
Nuova versione intelligence sulla sicurezza:
Versione intelligence sulla sicurezza precedente: 1.333.1167.0
Origine aggiornamento: Server Microsoft Update
Tipo intelligence sulla sicurezza: Antivirus
Tipo aggiornamento: Completo
Utente: NT AUTHORITY\SYSTEM
Versione motore corrente:
Versione motore precedente: 1.1.17900.7
Codice errore: 0x80240016
Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.

Date: 2021-03-25 23:01:05.842
Description:
Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
Nuova versione intelligence sulla sicurezza:
Versione intelligence sulla sicurezza precedente: 1.333.1167.0
Origine aggiornamento: Server Microsoft Update
Tipo intelligence sulla sicurezza: Antivirus
Tipo aggiornamento: Completo
Utente: NT AUTHORITY\SYSTEM
Versione motore corrente:
Versione motore precedente: 1.1.17900.7
Codice errore: 0x80240016
Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.

Date: 2021-03-25 18:16:11.792
Description:
Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
Nuova versione intelligence sulla sicurezza:
Versione intelligence sulla sicurezza precedente: 1.333.1167.0
Origine aggiornamento: Server Microsoft Update
Tipo intelligence sulla sicurezza: Antivirus
Tipo aggiornamento: Completo
Utente: NT AUTHORITY\SYSTEM
Versione motore corrente:
Versione motore precedente: 1.1.17900.7
Codice errore: 0x80240016
Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.

Date: 2021-03-25 13:13:46.065
Description:
Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
Nuova versione intelligence sulla sicurezza:
Versione intelligence sulla sicurezza precedente: 1.333.1167.0
Origine aggiornamento: Server Microsoft Update
Tipo intelligence sulla sicurezza: Antivirus
Tipo aggiornamento: Completo
Utente: NT AUTHORITY\SYSTEM
Versione motore corrente:
Versione motore precedente: 1.1.17900.7
Codice errore: 0x80240016
Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.

==================== Memory info ===========================

BIOS: LENOVO A4CN34WW (V 2.03) 12/16/2014
Motherboard: LENOVO Lancer 5B3
Processor: AMD A10-7300 Radeon R6, 10 Compute Cores 4C+6G
Percentage of memory in use: 53%
Total physical RAM: 7098.61 MB
Available physical RAM: 3293.12 MB
Total Virtual: 8250.61 MB
Available Virtual: 1974.11 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:424.19 GB) (Free:371.69 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.67 GB) NTFS

\\?\Volume{212c6169-9032-4683-914d-a2919508e5f4}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.69 GB) NTFS
\\?\Volume{947b7d58-b44c-45fd-a56b-7bbb3893a6c1}\ (PBR_DRV) (Fixed) (Total:14.24 GB) (Free:1.39 GB) NTFS
\\?\Volume{322b9d5f-c34c-41f5-a2bc-8fc3d2d2fd62}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================
Top
Profilo Invia messaggio privato
kerio69
Semidio
Semidio


Registrato: 20/12/06 15:52
Messaggi: 216

MessaggioInviato: 16 Apr 2021 17:15    Oggetto: Rispondi citando

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-04-2021
Ran by monte (16-04-2021 18:10:32)
Running from C:\Users\Gjack Salerno\Downloads
Windows 10 Home Version 1909 18363.1379 (X64) (2019-06-27 14:48:13)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1332497676-4034326449-572391256-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1332497676-4034326449-572391256-503 - Limited - Disabled)
Gjack Salerno (S-1-5-21-1332497676-4034326449-572391256-1001 - Limited - Enabled) => C:\Users\Gjack Salerno
Guest (S-1-5-21-1332497676-4034326449-572391256-501 - Limited - Disabled)
monte (S-1-5-21-1332497676-4034326449-572391256-1002 - Administrator - Enabled) => C:\Users\monte
WDAGUtilityAccount (S-1-5-21-1332497676-4034326449-572391256-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Total Security (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.13.27.501 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.3.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{40c19864-e557-4855-95ee-075689dfcf8e}) (Version: 2.13.27.501 - Advanced Micro Devices, Inc.) Hidden
Assistente aggiornamento Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - ‪Canon Inc.‬)
Canon IJ Network Scanner Selector EX2 (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX2) (Version: 2.0.5.3 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon IJ Printer Assistant Tool (HKLM-x32\...\Canon IJ Printer Assistant Tool) (Version: 1.00.1.51 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.4.0.16 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
Canon TS5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_TS5100_series) (Version: 1.01 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.78 - Piriform)
Cisco VideoGuard Player (HKLM-x32\...\{30e4813e-2a86-4e4f-82ea-23df71ca8ffb}) (Version: 10.1.1.6570 - Cisco Systems, Inc)
Conexant SmartAudio (HKLM\...\SAII) (Version: 6.0.259.0 - Conexant Systems)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.72 - Google LLC)
Logitech Options (HKLM\...\LogiOptions) (Version: 8.36.86 - Logitech)
Logitech SetPoint 6.70 (HKLM\...\sp6) (Version: 6.70.55 - Logitech)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.77 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
NOW TV 8.3.0.0 (HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\com.bskyb.nowtvplayer_is1) (Version: 8.3.0.0 - NOW TV)
OpenOffice 4.1.7 (HKLM-x32\...\{4E05F014-014F-4D72-8074-A3B578163D30}) (Version: 4.17.9800 - Apache Software Foundation)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconduct Corp.)
Registrazione stampante (HKLM-x32\...\Canon EISRegistration) (Version: 1.5.0 - Canon Inc.)
Revo Uninstaller 2.1.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.1 - VS Revo Group, Ltd.)
Skype versione 8.65 (HKLM-x32\...\Skype_is1) (Version: 8.65 - Skype Technologies S.A.)
Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-03-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-01-05 11:56 - 2021-01-05 11:56 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2019-08-06 11:07 - 2012-06-14 17:18 - 000359936 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
2021-01-05 11:57 - 2021-01-05 11:57 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-03-10 14:32 - 2021-03-10 14:32 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://home.microsoft.com/intl/it/access/allinone.asp
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Start Page = ???????????????????
SearchScopes: HKU\S-1-5-21-1332497676-4034326449-572391256-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2021-04-05 11:26 - 2021-04-15 09:29 - 000002107 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com

2020-10-27 18:05 - 2021-03-13 11:39 - 000000441 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\theme1\img1.jpg
HKU\S-1-5-21-1332497676-4034326449-572391256-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "StartCN"
HKLM\...\StartupApproved\Run: => "SmartAudio"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "RtsFT"
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "Uninstall 18.111.0603.0006\amd64"
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "Uninstall 18.151.0729.0012"
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "Uninstall 18.151.0729.0012\amd64"
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\StartupApproved\Run: => "Delete Cached Standalone Update Binary"
HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\StartupApproved\Run: => "Delete Cached Update Binary"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{62B68103-6238-43EF-8714-09C28851B03E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9FF984D8-C018-493B-BE9C-66A6FABD850F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4AEB8881-BB04-408F-B4C0-563EAC26296E}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{1EC6A71D-6200-4D50-BA65-683B41CEE740}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{7921ED47-3411-4917-911C-3DDED70A7039}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{5C8C7D1E-2CB1-45F8-AB79-7E9A9005AE28}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{F556D085-39BF-4B8F-9F90-050070AFBFF0}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8CFF851B-3198-4C6A-BB82-35CDD30F271D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (04/16/2021 05:54:07 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (18316,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 04:11:48 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2000,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 04:01:25 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7420,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 03:10:25 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8756,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 02:37:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10572,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 10:12:48 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7840,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 09:54:51 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10724,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/16/2021 09:38:58 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8256,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


System errors:
=============
Error: (04/15/2021 09:29:14 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.

Error: (04/15/2021 09:28:59 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.

Error: (04/15/2021 09:28:30 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Il servizio Windows Update non è stato arrestato correttamente dopo la ricezione di un controllo di pre-arresto del sistema.

Error: (04/14/2021 05:08:52 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.

Error: (04/14/2021 05:08:44 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.

Error: (04/14/2021 05:08:12 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Errore di installazione. Non è stato possibile installare il seguente aggiornamento, errore 0xc19001e1: Aggiornamento delle funzionalità a Windows 10, versione 20H2.

Error: (04/14/2021 12:07:59 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.

Error: (04/14/2021 12:07:47 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.


Windows Defender:
================
Date: 2021-04-13 13:35:49.704
Description:
Windows Defender Antivirus: analisi interrotta prima del completamento.
ID analisi: {B6BF689D-D185-4187-B509-C1D4D55AF071}
Tipo analisi: Antimalware
Parametri analisi: Analisi veloce
Utente: NT AUTHORITY\SYSTEM

Date: 2021-04-09 13:28:31.253
Description:
Windows Defender Antivirus: analisi interrotta prima del completamento.
ID analisi: {7A8AFB08-55F8-40A4-991D-7FB4C41E859B}
Tipo analisi: Antimalware
Parametri analisi: Analisi veloce
Utente: NT AUTHORITY\SYSTEM

Date: 2021-04-08 11:43:11.663
Description:
Windows Defender Antivirus: analisi interrotta prima del completamento.
ID analisi: {1480F12C-02AE-4719-B923-F8CCE408B76D}
Tipo analisi: Antimalware
Parametri analisi: Analisi veloce
Utente: NT AUTHORITY\SYSTEM

Date: 2021-04-07 09:39:04.104
Description:
Windows Defender Antivirus: analisi interrotta prima del completamento.
ID analisi: {8AD00873-F2C7-42BC-BCA7-30749BA7024A}
Tipo analisi: Antimalware
Parametri analisi: Analisi veloce
Utente: NT AUTHORITY\SYSTEM

Date: 2021-04-05 11:37:08.474
Description:
Windows Defender Antivirus: rilevato malware o altro software potenzialmente indesiderato.
Ulteriori informazioni sono riportate di seguito:
https://go.microsoft.com/fwlink/?linkid=37020&name=App:Piriform_Speccy_BundleInstaller&threatid=277173&enterprise=0
Nome: App:Piriform_Speccy_BundleInstaller
Gravità: Medio
Categoria: Software potenzialmente indesiderato
Percorso: file:_C:\Users\Gjack Salerno\Downloads\Speccy\spsetup132.exe
Origine rilevamento: Computer locale
Tipo rilevamento: Concreta
Origine rilevamento: Protezione in tempo reale
Utente: KENSFOLLETT\Gjack Salerno
Nome processo: C:\Windows\explorer.exe
Versione intelligence sulla sicurezza: AV: 1.335.243.0, AS: 1.335.243.0, NIS: 1.335.243.0
Versione motore: AM: 1.1.18000.5, NIS: 1.1.18000.5

Date: 2021-04-02 17:57:59.224
Description:
Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
Nuova versione intelligence sulla sicurezza:
Versione intelligence sulla sicurezza precedente: 1.335.56.0
Origine aggiornamento: Server Microsoft Update
Tipo intelligence sulla sicurezza: Antivirus
Tipo aggiornamento: Completo
Utente: NT AUTHORITY\SYSTEM
Versione motore corrente:
Versione motore precedente: 1.1.18000.5
Codice errore: 0x80240016
Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.

Date: 2021-03-26 11:12:33.366
Description:
Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
Nuova versione intelligence sulla sicurezza:
Versione intelligence sulla sicurezza precedente: 1.333.1167.0
Origine aggiornamento: Server Microsoft Update
Tipo intelligence sulla sicurezza: Antivirus
Tipo aggiornamento: Completo
Utente: NT AUTHORITY\SYSTEM
Versione motore corrente:
Versione motore precedente: 1.1.17900.7
Codice errore: 0x80240016
Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.

Date: 2021-03-25 23:01:05.842
Description:
Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
Nuova versione intelligence sulla sicurezza:
Versione intelligence sulla sicurezza precedente: 1.333.1167.0
Origine aggiornamento: Server Microsoft Update
Tipo intelligence sulla sicurezza: Antivirus
Tipo aggiornamento: Completo
Utente: NT AUTHORITY\SYSTEM
Versione motore corrente:
Versione motore precedente: 1.1.17900.7
Codice errore: 0x80240016
Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.

Date: 2021-03-25 18:16:11.792
Description:
Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
Nuova versione intelligence sulla sicurezza:
Versione intelligence sulla sicurezza precedente: 1.333.1167.0
Origine aggiornamento: Server Microsoft Update
Tipo intelligence sulla sicurezza: Antivirus
Tipo aggiornamento: Completo
Utente: NT AUTHORITY\SYSTEM
Versione motore corrente:
Versione motore precedente: 1.1.17900.7
Codice errore: 0x80240016
Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.

Date: 2021-03-25 13:13:46.065
Description:
Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
Nuova versione intelligence sulla sicurezza:
Versione intelligence sulla sicurezza precedente: 1.333.1167.0
Origine aggiornamento: Server Microsoft Update
Tipo intelligence sulla sicurezza: Antivirus
Tipo aggiornamento: Completo
Utente: NT AUTHORITY\SYSTEM
Versione motore corrente:
Versione motore precedente: 1.1.17900.7
Codice errore: 0x80240016
Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.

==================== Memory info ===========================

BIOS: LENOVO A4CN34WW (V 2.03) 12/16/2014
Motherboard: LENOVO Lancer 5B3
Processor: AMD A10-7300 Radeon R6, 10 Compute Cores 4C+6G
Percentage of memory in use: 61%
Total physical RAM: 7098.61 MB
Available physical RAM: 2733.24 MB
Total Virtual: 8250.61 MB
Available Virtual: 1125.01 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:424.19 GB) (Free:371.69 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.67 GB) NTFS

\\?\Volume{212c6169-9032-4683-914d-a2919508e5f4}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.69 GB) NTFS
\\?\Volume{947b7d58-b44c-45fd-a56b-7bbb3893a6c1}\ (PBR_DRV) (Fixed) (Total:14.24 GB) (Free:1.39 GB) NTFS
\\?\Volume{322b9d5f-c34c-41f5-a2bc-8fc3d2d2fd62}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================
Top
Profilo Invia messaggio privato
kerio69
Semidio
Semidio


Registrato: 20/12/06 15:52
Messaggi: 216

MessaggioInviato: 16 Apr 2021 17:19    Oggetto: Rispondi citando

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-04-2021
Ran by monte (administrator) on KENSFOLLETT (LENOVO 80EC) (16-04-2021 18:08:49)
Running from C:\Users\Gjack Salerno\Downloads
Loaded Profiles: Gjack Salerno & monte
Platform: Windows 10 Home Version 1909 18363.1379 (X64) Language: Italiano (Italia)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365275.inf_amd64_136741f59e43f995\B364966\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365275.inf_amd64_136741f59e43f995\B364966\atiesrxx.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Conexant Systems, Inc.) [File not signed] C:\Windows\SysWOW64\UIUSrv.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\$WINDOWS.~BT\Sources\SetupHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\13dbcf2b45eb3e7173a01c88529f0a10\WindowsUpdateBox.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1370_none_16ff43832a27f5c0\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe
(Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
0 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21022.168.0_x64__8wekyb3d8bbwe\YourPhone.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\MountPoints2: {98080e66-4254-11e9-8a8b-2c337a4d544f} - "F:\LaunchU3.exe" -a
HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\RunOnce: [NetworkResetPostReboot] => netsh.exe trace postreset
HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\RunOnce: [AMDSplashScreen] => C:\AMD\RadeonInstaller\radeon-software-adrenalin-2020-21.3.1-minimalsetup-210323_64bit\\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Windows x64\Print Processors\Canon iP2700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDA4.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon TS5100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDQ.DLL [482816 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP2700 series: C:\WINDOWS\system32\CNMLMA4.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG4200 series: CNMLMB9.DLL
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5100 series: C:\WINDOWS\system32\CNMLMDQ.DLL [1302016 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.72\Installer\chrmstp.exe [2021-04-15] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0134AA26-D75C-45B9-9679-0A2F99621945} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {17FCA92D-509D-4822-81C7-DF158AE20CBE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-23] (Google Inc -> Google LLC)
Task: {19BD8BC5-96C6-47F0-B21D-B1A1A5AD4D65} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68176 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {24D48332-8B2E-40F1-AFA5-CE7BFF595198} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {30D83FE4-E7AD-470B-9371-AFBE28E23048} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3D7284FE-EB4E-4969-82F0-42C7F00CDD46} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {3E0B9461-0DFD-482A-A458-4DB281AA8EE0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60496 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {5174A315-61D6-4736-B32A-DEF4E40ACB93} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)
Task: {53D6D7FD-EBCE-4602-9344-270BCCEC6176} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {82B0E23C-E721-4E96-96F8-D199D33737DF} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {90877BB2-A47A-4862-9C9B-E46D9B3786B7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A023B355-1332-4C83-A520-4C47E1CB3EE9} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A13EC051-4448-47C0-ADBE-C8F455B853DB} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [1123616 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {BC24B990-8CAB-41A4-81D3-14BE28B2ABBC} - System32\Tasks\AMDInstallUEP => C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe [2356736 2019-10-22] () [File not signed]
Task: {D4D457F4-8539-446B-B1CE-EC35F3B0C060} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E0D481EA-B813-4A05-B597-C1467F2D870F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-23] (Google Inc -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{16e2b993-6dbe-4092-b821-101a84f07ddc}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{18387e1a-de49-4823-87ba-8e198fe094e0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{c95b8555-acff-40f3-a862-97d3491cd7b3}: [DhcpNameServer] 192.168.1.1
HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.1.158,1]
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\monte\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-20]

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2021-02-03] [not signed]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [No File]
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-1332497676-4034326449-572391256-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [No File]

Chrome:
=======
CHR HKU\S-1-5-21-1332497676-4034326449-572391256-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-04-02] (Malwarebytes Inc -> Malwarebytes)
R2 UIUService; C:\WINDOWS\SysWOW64\UIUSrv.exe [105984 2019-06-27] (Conexant Systems, Inc.) [File not signed]
R2 unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2019-05-03] (Reason Software Company Inc. -> Reason Software Company Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AirModeBtn; C:\WINDOWS\System32\drivers\AirModeBtn.sys [40976 2015-08-13] (LG Electronics Inc. -> LG Electroncis)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 ApkbfiltrService; C:\WINDOWS\System32\drivers\Apkbfiltr.sys [31016 2015-07-23] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [131072 2019-03-19] (Microsoft Windows -> Microsoft Corporation) [File not signed]
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-03-31] (Martin Malik - REALiX -> REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220616 2021-04-02] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-04-02] (Malwarebytes Inc -> Malwarebytes)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421088 2021-04-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-11] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-04-16 18:07 - 2021-04-16 18:08 - 000031888 _____ C:\Users\Gjack Salerno\Downloads\Addition.txt
2021-04-16 18:05 - 2021-04-16 18:09 - 000014390 _____ C:\Users\Gjack Salerno\Downloads\FRST.txt
2021-04-16 18:05 - 2021-04-16 18:09 - 000000000 ____D C:\FRST
2021-04-16 18:04 - 2021-04-16 18:04 - 000001607 _____ C:\Users\Gjack Salerno\Desktop\FRST64 - collegamento.lnk
2021-04-16 18:02 - 2021-04-16 18:02 - 002298368 _____ (Farbar) C:\Users\Gjack Salerno\Downloads\FRST64.exe
2021-04-16 17:49 - 2021-04-16 17:50 - 000000000 ____D C:\AdwCleaner
2021-04-16 15:08 - 2021-04-16 15:09 - 000000000 ____D C:\Users\Gjack Salerno\Documents\2021_04_16
2021-04-16 15:08 - 2021-04-16 15:08 - 000501549 _____ C:\Users\Gjack Salerno\Desktop\Atto di assenso.pdf
2021-04-16 14:30 - 2021-04-16 14:30 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Local\AMD_Common
2021-04-07 11:27 - 2021-04-07 11:27 - 000001195 _____ C:\Users\Gjack Salerno\Desktop\NOW TV.lnk
2021-04-02 13:47 - 2021-04-02 13:47 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-04-02 13:47 - 2020-09-07 12:34 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-04-02 12:54 - 2021-04-02 12:54 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Local\cache
2021-04-02 12:47 - 2021-04-02 12:47 - 000003488 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2021-04-02 12:47 - 2021-04-02 12:47 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2021-04-02 12:47 - 2021-04-02 12:47 - 000003098 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2021-04-02 12:47 - 2021-04-02 12:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2021-04-02 12:45 - 2021-04-02 12:45 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-04-02 12:45 - 2021-04-02 12:45 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-04-02 12:45 - 2021-04-02 12:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2021-04-02 12:44 - 2021-04-02 12:44 - 000003522 _____ C:\WINDOWS\system32\Tasks\AMDInstallUEP
2021-04-02 12:44 - 2021-04-02 12:44 - 000000000 ____D C:\ProgramData\AMD
2021-04-02 12:44 - 2021-03-10 21:43 - 002241008 _____ (AMD Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe
2021-04-02 12:39 - 2021-03-23 20:21 - 001857224 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-04-02 12:39 - 2021-03-23 20:21 - 001857224 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-04-02 12:39 - 2021-03-23 20:21 - 001437920 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-04-02 12:39 - 2021-03-23 20:21 - 001437920 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-04-02 12:39 - 2021-03-23 20:21 - 001093104 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 001093104 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000946272 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000946272 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000798928 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2021-04-02 12:39 - 2021-03-23 20:21 - 000735952 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000620240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000495840 _____ C:\WINDOWS\system32\GameManager64.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000492240 _____ C:\WINDOWS\system32\dgtrayicon.exe
2021-04-02 12:39 - 2021-03-23 20:21 - 000467664 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000455376 _____ C:\WINDOWS\system32\atieah64.exe
2021-04-02 12:39 - 2021-03-23 20:21 - 000431824 _____ C:\WINDOWS\system32\EEURestart.exe
2021-04-02 12:39 - 2021-03-23 20:21 - 000379104 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000350928 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2021-04-02 12:39 - 2021-03-23 20:21 - 000345808 _____ C:\WINDOWS\system32\clinfo.exe
2021-04-02 12:39 - 2021-03-23 20:21 - 000244432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000212176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000186064 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000166096 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000165584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000155856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000141536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000139984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000134864 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000124624 _____ C:\WINDOWS\system32\atidxx64.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000106704 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000089808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mcl64.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000074448 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mcl32.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000045768 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000042696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000019248 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2021-04-02 12:39 - 2021-03-23 20:21 - 000019240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2021-04-02 12:39 - 2021-03-23 20:20 - 005221584 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2021-04-02 12:39 - 2021-03-23 20:20 - 004986592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2021-04-02 12:39 - 2021-03-23 20:20 - 001766608 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2021-04-02 12:39 - 2021-03-23 20:20 - 001492176 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiacm64.dll
2021-04-02 12:39 - 2021-03-23 20:20 - 001338592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2021-04-02 12:39 - 2021-03-23 20:20 - 001338592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2021-04-02 12:39 - 2021-03-23 20:20 - 000181472 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2021-04-02 12:39 - 2021-03-23 20:20 - 000157728 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2021-04-02 12:39 - 2021-03-23 20:20 - 000121552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2021-04-02 12:39 - 2021-03-23 20:20 - 000106192 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2021-04-02 12:39 - 2021-03-23 20:20 - 000069328 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2021-04-02 12:39 - 2021-03-23 20:19 - 001685080 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2021-04-02 12:39 - 2021-03-23 20:19 - 001364432 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2021-04-02 12:39 - 2021-03-23 20:19 - 000129696 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2021-04-02 12:39 - 2021-03-23 20:19 - 000129696 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2021-04-02 12:39 - 2021-03-23 20:19 - 000107712 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2021-04-02 12:39 - 2021-03-23 20:19 - 000107712 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2021-04-02 12:39 - 2021-03-23 18:48 - 058675112 _____ C:\WINDOWS\system32\amdxc64.so
2021-04-02 12:39 - 2021-03-23 18:48 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2021-04-02 12:39 - 2021-03-23 18:48 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2021-04-02 12:39 - 2021-03-23 18:48 - 000556128 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2021-04-02 12:39 - 2021-03-23 18:48 - 000556128 _____ C:\WINDOWS\system32\atiapfxx.blb
2021-04-02 12:39 - 2021-03-23 18:48 - 000204952 _____ C:\WINDOWS\SysWOW64\ativvsvl.dat
2021-04-02 12:39 - 2021-03-23 18:48 - 000204952 _____ C:\WINDOWS\system32\ativvsvl.dat
2021-04-02 12:39 - 2021-03-23 18:48 - 000157144 _____ C:\WINDOWS\SysWOW64\ativvsva.dat
2021-04-02 12:39 - 2021-03-23 18:48 - 000157144 _____ C:\WINDOWS\system32\ativvsva.dat
2021-04-02 12:39 - 2021-03-23 18:48 - 000154384 _____ C:\WINDOWS\system32\samu_krnl_ci.sbin
2021-04-02 12:39 - 2021-03-23 18:48 - 000138832 _____ C:\WINDOWS\system32\samu_krnl_isv_ci.sbin
2021-04-02 12:39 - 2021-03-23 18:48 - 000125488 _____ C:\WINDOWS\system32\kapp_ci.sbin
2021-04-02 12:39 - 2021-03-23 18:48 - 000121168 _____ C:\WINDOWS\system32\kapp_si.sbin
2021-04-02 12:39 - 2021-03-23 18:48 - 000012344 _____ C:\WINDOWS\system32\brandingWS_RSX.bmp
2021-04-02 12:39 - 2021-03-23 18:48 - 000012344 _____ C:\WINDOWS\system32\brandingRSX.bmp
2021-04-02 12:39 - 2021-03-23 18:48 - 000011014 _____ C:\WINDOWS\system32\atiacmLocalisation.ini
2021-04-02 12:39 - 2021-03-23 18:48 - 000000822 _____ C:\WINDOWS\system32\branding.bmp
2021-04-02 12:39 - 2021-02-09 19:39 - 000517536 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.exe
2021-04-02 12:39 - 2021-02-09 19:39 - 000098744 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdfendr.sys
2021-04-02 12:39 - 2021-01-18 17:27 - 000247216 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWT6.sys
2021-04-02 12:39 - 2020-07-27 09:41 - 000062056 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdxe.sys
2021-04-02 12:38 - 2021-03-23 20:20 - 081414864 _____ C:\WINDOWS\system32\amd_comgr.dll
2021-04-02 12:38 - 2021-03-23 20:20 - 066865360 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2021-04-02 12:38 - 2021-03-23 20:20 - 000940240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2021-04-02 12:38 - 2021-03-23 20:20 - 000767696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2021-04-02 12:38 - 2021-03-23 20:20 - 000465616 _____ C:\WINDOWS\system32\amdlogum.exe
2021-04-02 12:38 - 2021-03-23 20:20 - 000201512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2021-04-02 12:38 - 2021-03-23 20:20 - 000169064 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2021-04-02 12:38 - 2021-03-23 20:20 - 000149200 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-04-02 12:38 - 2021-03-23 20:20 - 000129744 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-04-02 12:38 - 2021-03-23 20:19 - 072437968 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2021-04-02 12:38 - 2021-03-23 20:19 - 000546256 _____ C:\WINDOWS\system32\amdmiracast.dll
2021-04-02 12:38 - 2021-03-23 20:19 - 000488656 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2021-04-02 12:38 - 2021-03-23 20:19 - 000379088 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2021-04-02 12:38 - 2021-03-23 20:19 - 000135376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2021-04-02 12:38 - 2021-03-23 20:19 - 000119744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2021-04-02 12:38 - 2021-03-23 18:48 - 000076237 _____ C:\WINDOWS\system32\AMDKernelEvents.man
2021-04-02 12:36 - 2021-04-02 12:36 - 000000000 ____D C:\Users\monte\AppData\Local\cache
2021-04-02 12:35 - 2021-04-02 12:35 - 000000000 ____D C:\Users\monte\AppData\Local\setup
2021-04-02 12:34 - 2021-04-02 12:37 - 000000000 ____D C:\Users\monte\AppData\Local\AMD_Common
2021-04-02 12:34 - 2021-04-02 12:34 - 000000000 ____D C:\Users\monte\AppData\Local\RadeonInstaller
2021-04-02 12:19 - 2021-04-02 12:19 - 013067652 _____ C:\Users\monte\Desktop\amdprwreport.xml
2021-04-02 12:19 - 2021-04-02 12:19 - 000032060 _____ C:\Users\monte\Desktop\amdprwreport.xml.xsl
2021-04-01 19:47 - 2021-04-01 19:47 - 000000000 ___HD C:\$Windows.~WS
2021-03-25 13:03 - 2021-03-25 13:03 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-25 13:03 - 2021-03-25 13:03 - 000002880 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-03-25 13:03 - 2021-03-25 13:03 - 000000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-03-25 13:03 - 2021-03-25 13:03 - 000000834 _____ C:\ProgramData\Desktop\CCleaner.lnk
2021-03-25 13:03 - 2021-03-25 13:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-03-24 15:40 - 2021-03-24 15:40 - 000000000 ____D C:\Users\monte\AppData\Local\ElevatedDiagnostics

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-04-16 17:49 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-16 17:35 - 2019-06-27 16:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-16 16:15 - 2019-06-27 16:46 - 000030483 _____ C:\WINDOWS\diagwrn.xml
2021-04-16 16:15 - 2019-06-27 16:46 - 000030483 _____ C:\WINDOWS\diagerr.xml
2021-04-16 16:11 - 2019-12-07 17:40 - 000000000 ___HD C:\$WINDOWS.~BT
2021-04-16 16:08 - 2019-06-27 12:17 - 000000000 ___DC C:\WINDOWS\Panther
2021-04-16 15:23 - 2020-06-15 14:35 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-04-16 09:29 - 2021-02-18 19:56 - 000000000 ____D C:\Program Files\CCleaner
2021-04-16 09:29 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-04-15 12:25 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-15 09:35 - 2019-06-27 16:40 - 001756404 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-15 09:35 - 2019-03-19 14:33 - 000781360 _____ C:\WINDOWS\system32\perfh010.dat
2021-04-15 09:35 - 2019-03-19 14:33 - 000146534 _____ C:\WINDOWS\system32\perfc010.dat
2021-04-15 09:35 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2021-04-15 09:28 - 2019-06-27 16:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-15 09:28 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-04-15 09:28 - 2018-06-03 04:41 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-04-15 09:27 - 2019-08-23 09:19 - 000002310 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-04-15 09:27 - 2019-08-23 09:19 - 000002269 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-04-15 09:27 - 2019-08-23 09:19 - 000002269 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-04-14 19:54 - 2018-06-03 14:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-04-14 17:09 - 2018-06-03 14:03 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-04-13 17:27 - 2019-06-27 16:29 - 000000000 ____D C:\Users\Gjack Salerno
2021-04-12 19:20 - 2020-10-01 17:46 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-11 09:36 - 2018-06-03 04:37 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-04-07 12:57 - 2018-06-16 20:44 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Roaming\NOW TV Player
2021-04-07 11:27 - 2018-06-16 20:43 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NOW TV
2021-04-07 11:26 - 2018-06-16 20:43 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Roaming\NOW TV
2021-04-05 11:41 - 2019-06-01 13:41 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Local\CrashDumps
2021-04-05 11:26 - 2020-09-22 19:27 - 000000000 ____D C:\Users\monte\AppData\Local\CrashDumps
2021-04-05 11:26 - 2019-04-16 12:01 - 000000000 ____D C:\WINDOWS\ABR
2021-04-02 17:47 - 2020-06-15 13:35 - 000368408 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-02 13:47 - 2020-09-07 12:35 - 000220616 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-04-02 13:47 - 2020-09-07 12:35 - 000002004 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-04-02 13:47 - 2019-07-09 18:31 - 000001992 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-04-02 13:47 - 2019-07-09 18:31 - 000001992 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-04-02 13:47 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-04-02 13:46 - 2019-07-09 18:31 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-04-02 12:54 - 2020-08-23 13:51 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Local\AMD
2021-04-02 12:47 - 2019-04-13 21:20 - 000000000 ____D C:\WINDOWS\system32\AMD
2021-04-02 12:47 - 2018-06-03 04:41 - 000000000 ____D C:\Program Files\AMD
2021-04-02 12:45 - 2018-06-03 04:41 - 000000000 ____D C:\ProgramData\Package Cache
2021-04-02 12:37 - 2020-08-23 13:49 - 000000000 ____D C:\Program Files (x86)\AMD
2021-04-02 12:37 - 2020-08-23 13:40 - 000000000 ____D C:\AMD
2021-04-01 20:17 - 2018-06-03 21:24 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Local\D3DSCache
2021-03-26 21:26 - 2021-02-03 12:21 - 000000000 ____D C:\Program Files\Adobe
2021-03-26 12:51 - 2021-02-21 17:55 - 000000000 ____D C:\Users\monte\AppData\Roaming\Foxit Software
2021-03-26 12:50 - 2021-02-21 17:55 - 000000000 ____D C:\ProgramData\Foxit Software
2021-03-24 15:40 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-03-23 02:28 - 2020-10-01 17:46 - 000916304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-03-23 02:28 - 2020-10-01 17:46 - 000437072 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll

==================== Files in the root of some directories ========

2019-04-30 13:42 - 2019-04-30 13:42 - 000871648 _____ (ForensiT Limited) C:\ProgramData\UserProfileMigrationService.exe

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Top
Profilo Invia messaggio privato
kerio69
Semidio
Semidio


Registrato: 20/12/06 15:52
Messaggi: 216

MessaggioInviato: 16 Apr 2021 18:04    Oggetto: Rispondi citando

I vari errori nell'installazione dell'aggiornamento 20H2, sono: Oxc 802400b, Oxc 19001 e1
Top
Profilo Invia messaggio privato
kerio69
Semidio
Semidio


Registrato: 20/12/06 15:52
Messaggi: 216

MessaggioInviato: 18 Apr 2021 08:56    Oggetto: Rispondi citando

tutto risolto ,ho scaricato la nuova versione da Microsoft -assistente aggiornamento, l'installazione è riuscita in circa 9o minuti,grazie per i consigli datemi.
Top
Profilo Invia messaggio privato
Maary79
Moderatrice Sistemi Operativi e Software
Moderatrice Sistemi Operativi e Software


Registrato: 08/02/12 12:23
Messaggi: 12221

MessaggioInviato: 18 Apr 2021 18:38    Oggetto: Rispondi

Bene che hai risolto, avrei avuto un paio di comandi da farti provare, ma attendevo R16 a cui avevo segnalato il thread, per il log che hai postato, ma hai fatto prima tu. Wink
La prossima volta allega il log con servizi esterni es. winsend o wikifortio, come indicato nella guida, per rendere più scorrevole la lettura. Wink
Ciao
Top
Profilo Invia messaggio privato
Mostra prima i messaggi di:   
Nuovo argomento   Rispondi    Indice del forum -> Windows 11, 10 Tutti i fusi orari sono GMT + 1 ora
Pagina 1 di 1

 
Vai a:  
Non puoi inserire nuovi argomenti
Non puoi rispondere a nessun argomento
Non puoi modificare i tuoi messaggi
Non puoi cancellare i tuoi messaggi
Non puoi votare nei sondaggi