| 
                
                
                 
 
	
		| Precedente :: Successivo |  
		| Autore | Messaggio |  
		| kerio69 Semidio
 
  
 
 Registrato: 20/12/06 16:52
 Messaggi: 216
 
 
 | 
			
				|  Inviato: 15 Apr 2021 13:10    Oggetto: tentato aggiornamento Wiindows 10 Home |   |  
				| 
 |  
				| Nel mio portatile, nato con W 8,1 ho Windows 10 Home- versione 1909, attivato il 25/06/2019-Build S.O. 18363.959- Processore : AMD  A10- 7300 Radeon R6, 10 Compute Cores 4C+ 6G-1,90 GHz- RAM 8 GB(6,93 GB utilizzabile, HD : Samsung 860 EVO 500 GB. Da inizio mese ho provato parecchie volte l'aggiornamento 20h2, ma l'installazione di blocca al 61% , e non fa installare altri aggiornamenti dell'antivirus  W. Defender, come stensioni ho soltanto dark reader Origin, cosa  dovrei controllare per concludere  l'aggiornamento del sistema? |  |  
		| Top |  |  
		|  |  
		| Maary79 Amministratore
 
  
  
 Registrato: 08/02/12 13:23
 Messaggi: 12720
 
 
 | 
			
				|  Inviato: 16 Apr 2021 14:08    Oggetto: |   |  
				| 
 |  
				| Allora, sei indietro di 2 versioni. Iniziamo con questa scansione.
 Apri il prompt come amministratore e digita:
 
 
 
 Se ripara qualcosa riavvia.
 
 Poi apri manualmente Windows Update e clicca su aggiorna.
 Riporta eventuali errori.
 |  |  
		| Top |  |  
		|  |  
		| kerio69 Semidio
 
  
 
 Registrato: 20/12/06 16:52
 Messaggi: 216
 
 
 | 
			
				|  Inviato: 16 Apr 2021 15:26    Oggetto: |   |  
				| 
 |  
				| Già fatto alcune volte ,ora riprovo con l'ennesimo  riscontro ,grazie. |  |  
		| Top |  |  
		|  |  
		| Maary79 Amministratore
 
  
  
 Registrato: 08/02/12 13:23
 Messaggi: 12720
 
 
 | 
			
				|  Inviato: 16 Apr 2021 15:29    Oggetto: |   |  
				| 
 |  
				| Confermi che hai dato il comando, nessun errore e non si aggiorna? Codice errore WU?
 
 Da quanto tempo è così? Sospetti malware?
 Segui questa guida, per escluderlo.
 http://forum.zeusnews.com/viewtopic.php?t=65236
 |  |  
		| Top |  |  
		|  |  
		| kerio69 Semidio
 
  
 
 Registrato: 20/12/06 16:52
 Messaggi: 216
 
 
 | 
			
				|  Inviato: 16 Apr 2021 15:44    Oggetto: |   |  
				| 
 |  
				| SFC/Scannow: Protezione risorse di Windows:Nessuna violazione di integrità trovata,ora riapro  W.P. |  |  
		| Top |  |  
		|  |  
		| kerio69 Semidio
 
  
 
 Registrato: 20/12/06 16:52
 Messaggi: 216
 
 
 | 
			
				|  Inviato: 16 Apr 2021 16:35    Oggetto: |   |  
				| 
 |  
				| Aggiornamento delle funzionalità a Windows 10-versione 20H2,Stato:Installazione in corso 61%,come altre volte si blocca  l'installazione al 61%. |  |  
		| Top |  |  
		|  |  
		| kerio69 Semidio
 
  
 
 Registrato: 20/12/06 16:52
 Messaggi: 216
 
 
 | 
			
				|  Inviato: 16 Apr 2021 17:54    Oggetto: |   |  
				| 
 |  
				| # ------------------------------- # Malwarebytes AdwCleaner 8.2.0.0
 # -------------------------------
 # Build:    03-22-2021
 # Database: 2021-03-22.1 (Local)
 # Support:  https://www.malwarebytes.com/support
 #
 # -------------------------------Malwarebytes
 www.malwarebytes.com
 
 -Dettagli log-
 Data scansione: 16/04/21
 Ora scansione: 17:45
 File di log: b67ef6aa-9eca-11eb-a7ad-68f7285778f1.json
 
 -Informazioni software-
 Versione: 4.3.0.98
 Versione componenti: 1.0.1236
 Aggiorna versione pacchetto: 1.0.39467
 Licenza: Free
 
 -Informazioni sistema-
 SO: Windows 10 (Build 18363.1379)
 CPU: x64
 File system: NTFS
 Utente: KensFollett\Gjack Salerno
 
 -Riepilogo scansione-
 Tipo di scansione: Ricerca elementi nocivi
 Scansione avviata da: Manuale
 Risultati: Completata
 Elementi analizzati: 292962
 Minacce rilevate: 0
 Minacce messe in quarantena: 0
 Tempo impiegato: 2 min, 20 sec
 
 -Opzioni di scansione-
 Memoria: Attivata
 Esecuzioni automatiche: Attivata
 File system: Attivata
 Archivi compressi: Attivata
 Rootkit: Disattivata
 Analisi euristica: Attivata
 PUP: Rilevare
 PUM: Rilevare
 
 -Dettagli scansione-
 Processo: 0
 (Nessun elemento nocivo rilevato)
 
 Modulo: 0
 (Nessun elemento nocivo rilevato)
 
 Chiave di registro: 0
 (Nessun elemento nocivo rilevato)
 
 Valore di registro: 0
 (Nessun elemento nocivo rilevato)
 
 Dati di registro: 0
 (Nessun elemento nocivo rilevato)
 
 Flusso di dati: 0
 (Nessun elemento nocivo rilevato)
 
 Cartella: 0
 (Nessun elemento nocivo rilevato)
 
 File: 0
 (Nessun elemento nocivo rilevato)
 
 Settore fisico: 0
 (Nessun elemento nocivo rilevato)
 
 WMI: 0
 (Nessun elemento nocivo rilevato)
 
 
 (end)
 # Mode: Scan
 # -------------------------------
 # Start:    04-16-2021
 # Duration: 00:00:16
 # OS:       Windows 10 Home
 # Scanned:  31959
 # Detected: 0
 
 
 ***** [ Services ] *****
 
 No malicious services found.
 
 ***** [ Folders ] *****
 
 No malicious folders found.
 
 ***** [ Files ] *****
 
 No malicious files found.
 
 ***** [ DLL ] *****
 
 No malicious DLLs found.
 
 ***** [ WMI ] *****
 
 No malicious WMI found.
 
 ***** [ Shortcuts ] *****
 
 No malicious shortcuts found.
 
 ***** [ Tasks ] *****
 
 No malicious tasks found.
 
 ***** [ Registry ] *****
 
 No malicious registry entries found.
 
 ***** [ Chromium (and derivatives) ] *****
 
 No malicious Chromium entries found.
 
 ***** [ Chromium URLs ] *****
 
 No malicious Chromium URLs found.
 
 ***** [ Firefox (and derivatives) ] *****
 
 No malicious Firefox entries found.
 
 ***** [ Firefox URLs ] *****
 
 No malicious Firefox URLs found.
 
 ***** [ Hosts File Entries ] *****
 
 No malicious hosts file entries found.
 
 ***** [ Preinstalled Software ] *****
 
 No Preinstalled Software found.
 
 
 
 ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
 |  |  
		| Top |  |  
		|  |  
		| kerio69 Semidio
 
  
 
 Registrato: 20/12/06 16:52
 Messaggi: 216
 
 
 | 
			
				|  Inviato: 16 Apr 2021 18:00    Oggetto: |   |  
				| 
 |  
				| Fatta scansione con Malwarebytes:tutto negativo. |  |  
		| Top |  |  
		|  |  
		| kerio69 Semidio
 
  
 
 Registrato: 20/12/06 16:52
 Messaggi: 216
 
 
 | 
			
				|  Inviato: 16 Apr 2021 18:10    Oggetto: |   |  
				| 
 |  
				| Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-04-2021 Ran by monte (16-04-2021 18:07:11)
 Running from C:\Users\Gjack Salerno\Downloads
 Windows 10 Home Version 1909 18363.1379 (X64) (2019-06-27 14:48:13)
 Boot Mode: Normal
 ==========================================================
 
 
 ==================== Accounts: =============================
 
 Administrator (S-1-5-21-1332497676-4034326449-572391256-500 - Administrator - Disabled)
 DefaultAccount (S-1-5-21-1332497676-4034326449-572391256-503 - Limited - Disabled)
 Gjack Salerno (S-1-5-21-1332497676-4034326449-572391256-1001 - Limited - Enabled) => C:\Users\Gjack Salerno
 Guest (S-1-5-21-1332497676-4034326449-572391256-501 - Limited - Disabled)
 monte (S-1-5-21-1332497676-4034326449-572391256-1002 - Administrator - Enabled) => C:\Users\monte
 WDAGUtilityAccount (S-1-5-21-1332497676-4034326449-572391256-504 - Limited - Disabled)
 
 ==================== Security Center ========================
 
 (If an entry is included in the fixlist, it will be removed.)
 
 AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 AS: Kaspersky Total Security (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
 AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
 ==================== Installed Programs ======================
 
 (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
 AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.13.27.501 - Advanced Micro Devices, Inc.)
 AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.3.1 - Advanced Micro Devices, Inc.)
 AMD_Chipset_Drivers (HKLM-x32\...\{40c19864-e557-4855-95ee-075689dfcf8e}) (Version: 2.13.27.501 - Advanced Micro Devices, Inc.) Hidden
 Assistente aggiornamento Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation)
 Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
 Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - Canon Inc.)
 Canon IJ Network Scanner Selector EX2 (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX2) (Version: 2.0.5.3 - Canon Inc.)
 Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
 Canon IJ Printer Assistant Tool (HKLM-x32\...\Canon IJ Printer Assistant Tool) (Version: 1.00.1.51 - Canon Inc.)
 Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.4.0.16 - Canon Inc.)
 Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
 Canon TS5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_TS5100_series) (Version: 1.01 - Canon Inc.)
 CCleaner (HKLM\...\CCleaner) (Version: 5.78 - Piriform)
 Cisco VideoGuard Player (HKLM-x32\...\{30e4813e-2a86-4e4f-82ea-23df71ca8ffb}) (Version: 10.1.1.6570 - Cisco Systems, Inc)
 Conexant SmartAudio (HKLM\...\SAII) (Version: 6.0.259.0 - Conexant Systems)
 Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
 Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.72 - Google LLC)
 Logitech Options (HKLM\...\LogiOptions) (Version: 8.36.86 - Logitech)
 Logitech SetPoint 6.70 (HKLM\...\sp6) (Version: 6.70.55 - Logitech)
 Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
 Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.77 - Microsoft Corporation)
 Microsoft OneDrive (HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation)
 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
 Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
 NOW TV 8.3.0.0 (HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\com.bskyb.nowtvplayer_is1) (Version: 8.3.0.0 - NOW TV)
 OpenOffice 4.1.7 (HKLM-x32\...\{4E05F014-014F-4D72-8074-A3B578163D30}) (Version: 4.17.9800 - Apache Software Foundation)
 Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconduct Corp.)
 Registrazione stampante (HKLM-x32\...\Canon EISRegistration) (Version: 1.5.0 - Canon Inc.)
 Revo Uninstaller 2.1.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.1 - VS Revo Group, Ltd.)
 Skype versione 8.65 (HKLM-x32\...\Skype_is1) (Version: 8.65 - Skype Technologies S.A.)
 Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.)
 
 ==================== Custom CLSID (Whitelisted): ==============
 
 (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} =>  -> No File
 ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
 ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} =>  -> No File
 ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-03-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
 ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} =>  -> No File
 ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
 
 ==================== Codecs (Whitelisted) ====================
 
 ==================== Shortcuts & WMI ========================
 
 ==================== Loaded Modules (Whitelisted) =============
 
 2021-01-05 11:56 - 2021-01-05 11:56 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
 2019-08-06 11:07 - 2012-06-14 17:18 - 000359936 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
 2021-01-05 11:57 - 2021-01-05 11:57 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
 2021-03-10 14:32 - 2021-03-10 14:32 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
 
 ==================== Alternate Data Streams (Whitelisted) ========
 
 ==================== Safe Mode (Whitelisted) ==================
 
 (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
 HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
 
 ==================== Association (Whitelisted) =================
 
 ==================== Internet Explorer (Whitelisted) ==========
 
 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
 HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://home.microsoft.com/intl/it/access/allinone.asp
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Start Page = ???????????????????
 SearchScopes: HKU\S-1-5-21-1332497676-4034326449-572391256-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
 
 ==================== Hosts content: =========================
 
 (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
 2021-04-05 11:26 - 2021-04-15 09:29 - 000002107 _____ C:\WINDOWS\system32\drivers\etc\hosts
 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
 0.0.0.0 media.opencandy.com
 0.0.0.0 cdn.opencandy.com
 0.0.0.0 tracking.opencandy.com
 0.0.0.0 api.opencandy.com
 0.0.0.0 api.recommendedsw.com
 0.0.0.0 rp.yefeneri2.com
 0.0.0.0 os.yefeneri2.com
 0.0.0.0 os2.yefeneri2.com
 0.0.0.0 installer.betterinstaller.com
 0.0.0.0 installer.filebulldog.com
 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
 0.0.0.0 inno.bisrv.com
 0.0.0.0 nsis.bisrv.com
 0.0.0.0 cdn.file2desktop.com
 0.0.0.0 cdn.goateastcach.us
 0.0.0.0 cdn.guttastatdk.us
 0.0.0.0 cdn.inskinmedia.com
 0.0.0.0 cdn.insta.oibundles2.com
 0.0.0.0 cdn.insta.playbryte.com
 0.0.0.0 cdn.llogetfastcach.us
 0.0.0.0 cdn.montiera.com
 0.0.0.0 cdn.msdwnld.com
 0.0.0.0 cdn.mypcbackup.com
 0.0.0.0 cdn.ppdownload.com
 0.0.0.0 cdn.riceateastcach.us
 0.0.0.0 cdn.shyapotato.us
 0.0.0.0 cdn.solimba.com
 0.0.0.0 cdn.tuto4pc.com
 
 2020-10-27 18:05 - 2021-03-13 11:39 - 000000441 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
 
 ==================== Other Areas ===========================
 
 (Currently there is no automatic fix for this section.)
 
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\theme1\img1.jpg
 HKU\S-1-5-21-1332497676-4034326449-572391256-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
 DNS Servers: 192.168.1.1
 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
 Windows Firewall is enabled.
 
 ==================== MSCONFIG/TASK MANAGER disabled items ==
 
 (If an entry is included in the fixlist, it will be removed.)
 
 HKLM\...\StartupApproved\Run: => "StartCN"
 HKLM\...\StartupApproved\Run: => "SmartAudio"
 HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
 HKLM\...\StartupApproved\Run32: => "RtsFT"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "OneDrive"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "Uninstall 18.111.0603.0006\amd64"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "Uninstall 18.151.0729.0012"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "Uninstall 18.151.0729.0012\amd64"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\StartupApproved\Run: => "Delete Cached Standalone Update Binary"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\StartupApproved\Run: => "Delete Cached Update Binary"
 
 ==================== FirewallRules (Whitelisted) ================
 
 (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 FirewallRules: [{62B68103-6238-43EF-8714-09C28851B03E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
 FirewallRules: [{9FF984D8-C018-493B-BE9C-66A6FABD850F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
 FirewallRules: [{4AEB8881-BB04-408F-B4C0-563EAC26296E}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
 FirewallRules: [{1EC6A71D-6200-4D50-BA65-683B41CEE740}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
 FirewallRules: [{7921ED47-3411-4917-911C-3DDED70A7039}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
 FirewallRules: [TCP Query User{5C8C7D1E-2CB1-45F8-AB79-7E9A9005AE28}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
 FirewallRules: [UDP Query User{F556D085-39BF-4B8F-9F90-050070AFBFF0}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
 FirewallRules: [{8CFF851B-3198-4C6A-BB82-35CDD30F271D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
 
 ==================== Restore Points =========================
 
 
 ==================== Faulty Device Manager Devices ============
 
 
 ==================== Event log errors: ========================
 
 Application errors:
 ==================
 Error: (04/16/2021 05:54:07 PM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (18316,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 04:11:48 PM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (2000,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 04:01:25 PM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (7420,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 03:10:25 PM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (8756,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 02:37:52 PM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (10572,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 10:12:48 AM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (7840,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 09:54:51 AM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (10724,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 09:38:58 AM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (8256,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 
 System errors:
 =============
 Error: (04/15/2021 09:29:14 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
 Description: Errore durante il tentativo di lettura del file degli host locali.
 
 Error: (04/15/2021 09:28:59 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
 Description: Errore durante il tentativo di lettura del file degli host locali.
 
 Error: (04/15/2021 09:28:30 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
 Description: Il servizio Windows Update non è stato arrestato correttamente dopo la ricezione di un controllo di pre-arresto del sistema.
 
 Error: (04/14/2021 05:08:52 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
 Description: Errore durante il tentativo di lettura del file degli host locali.
 
 Error: (04/14/2021 05:08:44 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
 Description: Errore durante il tentativo di lettura del file degli host locali.
 
 Error: (04/14/2021 05:08:12 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
 Description: Errore di installazione. Non è stato possibile installare il seguente aggiornamento, errore 0xc19001e1: Aggiornamento delle funzionalità a Windows 10, versione 20H2.
 
 Error: (04/14/2021 12:07:59 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
 Description: Errore durante il tentativo di lettura del file degli host locali.
 
 Error: (04/14/2021 12:07:47 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
 Description: Errore durante il tentativo di lettura del file degli host locali.
 
 
 Windows Defender:
 ================
 Date: 2021-04-13 13:35:49.704
 Description:
 Windows Defender Antivirus: analisi interrotta prima del completamento.
 ID analisi: {B6BF689D-D185-4187-B509-C1D4D55AF071}
 Tipo analisi: Antimalware
 Parametri analisi: Analisi veloce
 Utente: NT AUTHORITY\SYSTEM
 
 Date: 2021-04-09 13:28:31.253
 Description:
 Windows Defender Antivirus: analisi interrotta prima del completamento.
 ID analisi: {7A8AFB08-55F8-40A4-991D-7FB4C41E859B}
 Tipo analisi: Antimalware
 Parametri analisi: Analisi veloce
 Utente: NT AUTHORITY\SYSTEM
 
 Date: 2021-04-08 11:43:11.663
 Description:
 Windows Defender Antivirus: analisi interrotta prima del completamento.
 ID analisi: {1480F12C-02AE-4719-B923-F8CCE408B76D}
 Tipo analisi: Antimalware
 Parametri analisi: Analisi veloce
 Utente: NT AUTHORITY\SYSTEM
 
 Date: 2021-04-07 09:39:04.104
 Description:
 Windows Defender Antivirus: analisi interrotta prima del completamento.
 ID analisi: {8AD00873-F2C7-42BC-BCA7-30749BA7024A}
 Tipo analisi: Antimalware
 Parametri analisi: Analisi veloce
 Utente: NT AUTHORITY\SYSTEM
 
 Date: 2021-04-05 11:37:08.474
 Description:
 Windows Defender Antivirus: rilevato malware o altro software potenzialmente indesiderato.
 Ulteriori informazioni sono riportate di seguito:
 https://go.microsoft.com/fwlink/?linkid=37020&name=App:Piriform_Speccy_BundleInstaller&threatid=277173&enterprise=0
 Nome: App:Piriform_Speccy_BundleInstaller
 Gravità: Medio
 Categoria: Software potenzialmente indesiderato
 Percorso: file:_C:\Users\Gjack Salerno\Downloads\Speccy\spsetup132.exe
 Origine rilevamento: Computer locale
 Tipo rilevamento: Concreta
 Origine rilevamento: Protezione in tempo reale
 Utente: KENSFOLLETT\Gjack Salerno
 Nome processo: C:\Windows\explorer.exe
 Versione intelligence sulla sicurezza: AV: 1.335.243.0, AS: 1.335.243.0, NIS: 1.335.243.0
 Versione motore: AM: 1.1.18000.5, NIS: 1.1.18000.5
 
 Date: 2021-04-02 17:57:59.224
 Description:
 Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
 Nuova versione intelligence sulla sicurezza:
 Versione intelligence sulla sicurezza precedente: 1.335.56.0
 Origine aggiornamento: Server Microsoft Update
 Tipo intelligence sulla sicurezza: Antivirus
 Tipo aggiornamento: Completo
 Utente: NT AUTHORITY\SYSTEM
 Versione motore corrente:
 Versione motore precedente: 1.1.18000.5
 Codice errore: 0x80240016
 Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.
 
 Date: 2021-03-26 11:12:33.366
 Description:
 Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
 Nuova versione intelligence sulla sicurezza:
 Versione intelligence sulla sicurezza precedente: 1.333.1167.0
 Origine aggiornamento: Server Microsoft Update
 Tipo intelligence sulla sicurezza: Antivirus
 Tipo aggiornamento: Completo
 Utente: NT AUTHORITY\SYSTEM
 Versione motore corrente:
 Versione motore precedente: 1.1.17900.7
 Codice errore: 0x80240016
 Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.
 
 Date: 2021-03-25 23:01:05.842
 Description:
 Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
 Nuova versione intelligence sulla sicurezza:
 Versione intelligence sulla sicurezza precedente: 1.333.1167.0
 Origine aggiornamento: Server Microsoft Update
 Tipo intelligence sulla sicurezza: Antivirus
 Tipo aggiornamento: Completo
 Utente: NT AUTHORITY\SYSTEM
 Versione motore corrente:
 Versione motore precedente: 1.1.17900.7
 Codice errore: 0x80240016
 Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.
 
 Date: 2021-03-25 18:16:11.792
 Description:
 Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
 Nuova versione intelligence sulla sicurezza:
 Versione intelligence sulla sicurezza precedente: 1.333.1167.0
 Origine aggiornamento: Server Microsoft Update
 Tipo intelligence sulla sicurezza: Antivirus
 Tipo aggiornamento: Completo
 Utente: NT AUTHORITY\SYSTEM
 Versione motore corrente:
 Versione motore precedente: 1.1.17900.7
 Codice errore: 0x80240016
 Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.
 
 Date: 2021-03-25 13:13:46.065
 Description:
 Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
 Nuova versione intelligence sulla sicurezza:
 Versione intelligence sulla sicurezza precedente: 1.333.1167.0
 Origine aggiornamento: Server Microsoft Update
 Tipo intelligence sulla sicurezza: Antivirus
 Tipo aggiornamento: Completo
 Utente: NT AUTHORITY\SYSTEM
 Versione motore corrente:
 Versione motore precedente: 1.1.17900.7
 Codice errore: 0x80240016
 Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.
 
 ==================== Memory info ===========================
 
 BIOS: LENOVO A4CN34WW (V 2.03) 12/16/2014
 Motherboard: LENOVO Lancer 5B3
 Processor: AMD A10-7300 Radeon R6, 10 Compute Cores 4C+6G
 Percentage of memory in use: 53%
 Total physical RAM: 7098.61 MB
 Available physical RAM: 3293.12 MB
 Total Virtual: 8250.61 MB
 Available Virtual: 1974.11 MB
 
 ==================== Drives ================================
 
 Drive c: (Windows8_OS) (Fixed) (Total:424.19 GB) (Free:371.69 GB) NTFS ==>[system with boot components (obtained from drive)]
 Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.67 GB) NTFS
 
 \\?\Volume{212c6169-9032-4683-914d-a2919508e5f4}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.69 GB) NTFS
 \\?\Volume{947b7d58-b44c-45fd-a56b-7bbb3893a6c1}\ (PBR_DRV) (Fixed) (Total:14.24 GB) (Free:1.39 GB) NTFS
 \\?\Volume{322b9d5f-c34c-41f5-a2bc-8fc3d2d2fd62}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
 
 ==================== MBR & Partition Table ====================
 
 ==========================================================
 Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
 
 Partition: GPT.
 
 ==================== End of Addition.txt =======================
 |  |  
		| Top |  |  
		|  |  
		| kerio69 Semidio
 
  
 
 Registrato: 20/12/06 16:52
 Messaggi: 216
 
 
 | 
			
				|  Inviato: 16 Apr 2021 18:15    Oggetto: |   |  
				| 
 |  
				| Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-04-2021 Ran by monte (16-04-2021 18:10:32)
 Running from C:\Users\Gjack Salerno\Downloads
 Windows 10 Home Version 1909 18363.1379 (X64) (2019-06-27 14:48:13)
 Boot Mode: Normal
 ==========================================================
 
 
 ==================== Accounts: =============================
 
 Administrator (S-1-5-21-1332497676-4034326449-572391256-500 - Administrator - Disabled)
 DefaultAccount (S-1-5-21-1332497676-4034326449-572391256-503 - Limited - Disabled)
 Gjack Salerno (S-1-5-21-1332497676-4034326449-572391256-1001 - Limited - Enabled) => C:\Users\Gjack Salerno
 Guest (S-1-5-21-1332497676-4034326449-572391256-501 - Limited - Disabled)
 monte (S-1-5-21-1332497676-4034326449-572391256-1002 - Administrator - Enabled) => C:\Users\monte
 WDAGUtilityAccount (S-1-5-21-1332497676-4034326449-572391256-504 - Limited - Disabled)
 
 ==================== Security Center ========================
 
 (If an entry is included in the fixlist, it will be removed.)
 
 AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 AS: Kaspersky Total Security (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
 AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
 ==================== Installed Programs ======================
 
 (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
 AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.13.27.501 - Advanced Micro Devices, Inc.)
 AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.3.1 - Advanced Micro Devices, Inc.)
 AMD_Chipset_Drivers (HKLM-x32\...\{40c19864-e557-4855-95ee-075689dfcf8e}) (Version: 2.13.27.501 - Advanced Micro Devices, Inc.) Hidden
 Assistente aggiornamento Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation)
 Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
 Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - Canon Inc.)
 Canon IJ Network Scanner Selector EX2 (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX2) (Version: 2.0.5.3 - Canon Inc.)
 Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
 Canon IJ Printer Assistant Tool (HKLM-x32\...\Canon IJ Printer Assistant Tool) (Version: 1.00.1.51 - Canon Inc.)
 Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.4.0.16 - Canon Inc.)
 Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
 Canon TS5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_TS5100_series) (Version: 1.01 - Canon Inc.)
 CCleaner (HKLM\...\CCleaner) (Version: 5.78 - Piriform)
 Cisco VideoGuard Player (HKLM-x32\...\{30e4813e-2a86-4e4f-82ea-23df71ca8ffb}) (Version: 10.1.1.6570 - Cisco Systems, Inc)
 Conexant SmartAudio (HKLM\...\SAII) (Version: 6.0.259.0 - Conexant Systems)
 Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
 Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.72 - Google LLC)
 Logitech Options (HKLM\...\LogiOptions) (Version: 8.36.86 - Logitech)
 Logitech SetPoint 6.70 (HKLM\...\sp6) (Version: 6.70.55 - Logitech)
 Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
 Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.77 - Microsoft Corporation)
 Microsoft OneDrive (HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation)
 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
 Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
 NOW TV 8.3.0.0 (HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\com.bskyb.nowtvplayer_is1) (Version: 8.3.0.0 - NOW TV)
 OpenOffice 4.1.7 (HKLM-x32\...\{4E05F014-014F-4D72-8074-A3B578163D30}) (Version: 4.17.9800 - Apache Software Foundation)
 Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconduct Corp.)
 Registrazione stampante (HKLM-x32\...\Canon EISRegistration) (Version: 1.5.0 - Canon Inc.)
 Revo Uninstaller 2.1.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.1 - VS Revo Group, Ltd.)
 Skype versione 8.65 (HKLM-x32\...\Skype_is1) (Version: 8.65 - Skype Technologies S.A.)
 Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.)
 
 ==================== Custom CLSID (Whitelisted): ==============
 
 (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} =>  -> No File
 ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
 ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} =>  -> No File
 ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-03-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
 ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} =>  -> No File
 ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
 
 ==================== Codecs (Whitelisted) ====================
 
 ==================== Shortcuts & WMI ========================
 
 ==================== Loaded Modules (Whitelisted) =============
 
 2021-01-05 11:56 - 2021-01-05 11:56 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
 2019-08-06 11:07 - 2012-06-14 17:18 - 000359936 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
 2021-01-05 11:57 - 2021-01-05 11:57 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
 2021-01-05 11:56 - 2021-01-05 11:56 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
 2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
 2021-03-10 14:32 - 2021-03-10 14:32 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
 
 ==================== Alternate Data Streams (Whitelisted) ========
 
 ==================== Safe Mode (Whitelisted) ==================
 
 (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
 HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
 
 ==================== Association (Whitelisted) =================
 
 ==================== Internet Explorer (Whitelisted) ==========
 
 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
 HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://home.microsoft.com/intl/it/access/allinone.asp
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Software\Microsoft\Internet Explorer\Main,Start Page = ???????????????????
 SearchScopes: HKU\S-1-5-21-1332497676-4034326449-572391256-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
 
 ==================== Hosts content: =========================
 
 (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
 2021-04-05 11:26 - 2021-04-15 09:29 - 000002107 _____ C:\WINDOWS\system32\drivers\etc\hosts
 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
 0.0.0.0 media.opencandy.com
 0.0.0.0 cdn.opencandy.com
 0.0.0.0 tracking.opencandy.com
 0.0.0.0 api.opencandy.com
 0.0.0.0 api.recommendedsw.com
 0.0.0.0 rp.yefeneri2.com
 0.0.0.0 os.yefeneri2.com
 0.0.0.0 os2.yefeneri2.com
 0.0.0.0 installer.betterinstaller.com
 0.0.0.0 installer.filebulldog.com
 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
 0.0.0.0 inno.bisrv.com
 0.0.0.0 nsis.bisrv.com
 0.0.0.0 cdn.file2desktop.com
 0.0.0.0 cdn.goateastcach.us
 0.0.0.0 cdn.guttastatdk.us
 0.0.0.0 cdn.inskinmedia.com
 0.0.0.0 cdn.insta.oibundles2.com
 0.0.0.0 cdn.insta.playbryte.com
 0.0.0.0 cdn.llogetfastcach.us
 0.0.0.0 cdn.montiera.com
 0.0.0.0 cdn.msdwnld.com
 0.0.0.0 cdn.mypcbackup.com
 0.0.0.0 cdn.ppdownload.com
 0.0.0.0 cdn.riceateastcach.us
 0.0.0.0 cdn.shyapotato.us
 0.0.0.0 cdn.solimba.com
 0.0.0.0 cdn.tuto4pc.com
 
 2020-10-27 18:05 - 2021-03-13 11:39 - 000000441 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
 
 ==================== Other Areas ===========================
 
 (Currently there is no automatic fix for this section.)
 
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\theme1\img1.jpg
 HKU\S-1-5-21-1332497676-4034326449-572391256-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
 DNS Servers: 192.168.1.1
 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
 Windows Firewall is enabled.
 
 ==================== MSCONFIG/TASK MANAGER disabled items ==
 
 (If an entry is included in the fixlist, it will be removed.)
 
 HKLM\...\StartupApproved\Run: => "StartCN"
 HKLM\...\StartupApproved\Run: => "SmartAudio"
 HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
 HKLM\...\StartupApproved\Run32: => "RtsFT"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "OneDrive"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "Uninstall 18.111.0603.0006\amd64"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "Uninstall 18.151.0729.0012"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "Uninstall 18.151.0729.0012\amd64"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\StartupApproved\Run: => "Delete Cached Standalone Update Binary"
 HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\StartupApproved\Run: => "Delete Cached Update Binary"
 
 ==================== FirewallRules (Whitelisted) ================
 
 (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 FirewallRules: [{62B68103-6238-43EF-8714-09C28851B03E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
 FirewallRules: [{9FF984D8-C018-493B-BE9C-66A6FABD850F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
 FirewallRules: [{4AEB8881-BB04-408F-B4C0-563EAC26296E}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
 FirewallRules: [{1EC6A71D-6200-4D50-BA65-683B41CEE740}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
 FirewallRules: [{7921ED47-3411-4917-911C-3DDED70A7039}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
 FirewallRules: [TCP Query User{5C8C7D1E-2CB1-45F8-AB79-7E9A9005AE28}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
 FirewallRules: [UDP Query User{F556D085-39BF-4B8F-9F90-050070AFBFF0}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
 FirewallRules: [{8CFF851B-3198-4C6A-BB82-35CDD30F271D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
 
 ==================== Restore Points =========================
 
 
 ==================== Faulty Device Manager Devices ============
 
 
 ==================== Event log errors: ========================
 
 Application errors:
 ==================
 Error: (04/16/2021 05:54:07 PM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (18316,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 04:11:48 PM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (2000,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 04:01:25 PM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (7420,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 03:10:25 PM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (8756,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 02:37:52 PM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (10572,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 10:12:48 AM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (7840,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 09:54:51 AM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (10724,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 Error: (04/16/2021 09:38:58 AM) (Source: ESENT) (EventID: 455) (User: )
 Description: svchost (8256,R,98) TILEREPOSITORYS-1-5-18: Si è verificato l'errore -1023 (0xfffffc01) durante l'apertura del file di log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 
 System errors:
 =============
 Error: (04/15/2021 09:29:14 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
 Description: Errore durante il tentativo di lettura del file degli host locali.
 
 Error: (04/15/2021 09:28:59 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
 Description: Errore durante il tentativo di lettura del file degli host locali.
 
 Error: (04/15/2021 09:28:30 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
 Description: Il servizio Windows Update non è stato arrestato correttamente dopo la ricezione di un controllo di pre-arresto del sistema.
 
 Error: (04/14/2021 05:08:52 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
 Description: Errore durante il tentativo di lettura del file degli host locali.
 
 Error: (04/14/2021 05:08:44 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
 Description: Errore durante il tentativo di lettura del file degli host locali.
 
 Error: (04/14/2021 05:08:12 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
 Description: Errore di installazione. Non è stato possibile installare il seguente aggiornamento, errore 0xc19001e1: Aggiornamento delle funzionalità a Windows 10, versione 20H2.
 
 Error: (04/14/2021 12:07:59 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
 Description: Errore durante il tentativo di lettura del file degli host locali.
 
 Error: (04/14/2021 12:07:47 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
 Description: Errore durante il tentativo di lettura del file degli host locali.
 
 
 Windows Defender:
 ================
 Date: 2021-04-13 13:35:49.704
 Description:
 Windows Defender Antivirus: analisi interrotta prima del completamento.
 ID analisi: {B6BF689D-D185-4187-B509-C1D4D55AF071}
 Tipo analisi: Antimalware
 Parametri analisi: Analisi veloce
 Utente: NT AUTHORITY\SYSTEM
 
 Date: 2021-04-09 13:28:31.253
 Description:
 Windows Defender Antivirus: analisi interrotta prima del completamento.
 ID analisi: {7A8AFB08-55F8-40A4-991D-7FB4C41E859B}
 Tipo analisi: Antimalware
 Parametri analisi: Analisi veloce
 Utente: NT AUTHORITY\SYSTEM
 
 Date: 2021-04-08 11:43:11.663
 Description:
 Windows Defender Antivirus: analisi interrotta prima del completamento.
 ID analisi: {1480F12C-02AE-4719-B923-F8CCE408B76D}
 Tipo analisi: Antimalware
 Parametri analisi: Analisi veloce
 Utente: NT AUTHORITY\SYSTEM
 
 Date: 2021-04-07 09:39:04.104
 Description:
 Windows Defender Antivirus: analisi interrotta prima del completamento.
 ID analisi: {8AD00873-F2C7-42BC-BCA7-30749BA7024A}
 Tipo analisi: Antimalware
 Parametri analisi: Analisi veloce
 Utente: NT AUTHORITY\SYSTEM
 
 Date: 2021-04-05 11:37:08.474
 Description:
 Windows Defender Antivirus: rilevato malware o altro software potenzialmente indesiderato.
 Ulteriori informazioni sono riportate di seguito:
 https://go.microsoft.com/fwlink/?linkid=37020&name=App:Piriform_Speccy_BundleInstaller&threatid=277173&enterprise=0
 Nome: App:Piriform_Speccy_BundleInstaller
 Gravità: Medio
 Categoria: Software potenzialmente indesiderato
 Percorso: file:_C:\Users\Gjack Salerno\Downloads\Speccy\spsetup132.exe
 Origine rilevamento: Computer locale
 Tipo rilevamento: Concreta
 Origine rilevamento: Protezione in tempo reale
 Utente: KENSFOLLETT\Gjack Salerno
 Nome processo: C:\Windows\explorer.exe
 Versione intelligence sulla sicurezza: AV: 1.335.243.0, AS: 1.335.243.0, NIS: 1.335.243.0
 Versione motore: AM: 1.1.18000.5, NIS: 1.1.18000.5
 
 Date: 2021-04-02 17:57:59.224
 Description:
 Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
 Nuova versione intelligence sulla sicurezza:
 Versione intelligence sulla sicurezza precedente: 1.335.56.0
 Origine aggiornamento: Server Microsoft Update
 Tipo intelligence sulla sicurezza: Antivirus
 Tipo aggiornamento: Completo
 Utente: NT AUTHORITY\SYSTEM
 Versione motore corrente:
 Versione motore precedente: 1.1.18000.5
 Codice errore: 0x80240016
 Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.
 
 Date: 2021-03-26 11:12:33.366
 Description:
 Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
 Nuova versione intelligence sulla sicurezza:
 Versione intelligence sulla sicurezza precedente: 1.333.1167.0
 Origine aggiornamento: Server Microsoft Update
 Tipo intelligence sulla sicurezza: Antivirus
 Tipo aggiornamento: Completo
 Utente: NT AUTHORITY\SYSTEM
 Versione motore corrente:
 Versione motore precedente: 1.1.17900.7
 Codice errore: 0x80240016
 Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.
 
 Date: 2021-03-25 23:01:05.842
 Description:
 Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
 Nuova versione intelligence sulla sicurezza:
 Versione intelligence sulla sicurezza precedente: 1.333.1167.0
 Origine aggiornamento: Server Microsoft Update
 Tipo intelligence sulla sicurezza: Antivirus
 Tipo aggiornamento: Completo
 Utente: NT AUTHORITY\SYSTEM
 Versione motore corrente:
 Versione motore precedente: 1.1.17900.7
 Codice errore: 0x80240016
 Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.
 
 Date: 2021-03-25 18:16:11.792
 Description:
 Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
 Nuova versione intelligence sulla sicurezza:
 Versione intelligence sulla sicurezza precedente: 1.333.1167.0
 Origine aggiornamento: Server Microsoft Update
 Tipo intelligence sulla sicurezza: Antivirus
 Tipo aggiornamento: Completo
 Utente: NT AUTHORITY\SYSTEM
 Versione motore corrente:
 Versione motore precedente: 1.1.17900.7
 Codice errore: 0x80240016
 Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.
 
 Date: 2021-03-25 13:13:46.065
 Description:
 Windows Defender Antivirus: errore durante il tentativo di aggiornare l'intelligence sulla sicurezza.
 Nuova versione intelligence sulla sicurezza:
 Versione intelligence sulla sicurezza precedente: 1.333.1167.0
 Origine aggiornamento: Server Microsoft Update
 Tipo intelligence sulla sicurezza: Antivirus
 Tipo aggiornamento: Completo
 Utente: NT AUTHORITY\SYSTEM
 Versione motore corrente:
 Versione motore precedente: 1.1.17900.7
 Codice errore: 0x80240016
 Descrizione errore: Problema imprevisto durante la ricerca degli aggiornamenti. Per informazioni sull'installazione degli aggiornamenti o la risoluzione dei problemi relativi, consultare Guida e supporto tecnico.
 
 ==================== Memory info ===========================
 
 BIOS: LENOVO A4CN34WW (V 2.03) 12/16/2014
 Motherboard: LENOVO Lancer 5B3
 Processor: AMD A10-7300 Radeon R6, 10 Compute Cores 4C+6G
 Percentage of memory in use: 61%
 Total physical RAM: 7098.61 MB
 Available physical RAM: 2733.24 MB
 Total Virtual: 8250.61 MB
 Available Virtual: 1125.01 MB
 
 ==================== Drives ================================
 
 Drive c: (Windows8_OS) (Fixed) (Total:424.19 GB) (Free:371.69 GB) NTFS ==>[system with boot components (obtained from drive)]
 Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.67 GB) NTFS
 
 \\?\Volume{212c6169-9032-4683-914d-a2919508e5f4}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.69 GB) NTFS
 \\?\Volume{947b7d58-b44c-45fd-a56b-7bbb3893a6c1}\ (PBR_DRV) (Fixed) (Total:14.24 GB) (Free:1.39 GB) NTFS
 \\?\Volume{322b9d5f-c34c-41f5-a2bc-8fc3d2d2fd62}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
 
 ==================== MBR & Partition Table ====================
 
 ==========================================================
 Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
 
 Partition: GPT.
 
 ==================== End of Addition.txt =======================
 |  |  
		| Top |  |  
		|  |  
		| kerio69 Semidio
 
  
 
 Registrato: 20/12/06 16:52
 Messaggi: 216
 
 
 | 
			
				|  Inviato: 16 Apr 2021 18:19    Oggetto: |   |  
				| 
 |  
				| Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-04-2021 Ran by monte (administrator) on KENSFOLLETT (LENOVO 80EC) (16-04-2021 18:08:49)
 Running from C:\Users\Gjack Salerno\Downloads
 Loaded Profiles: Gjack Salerno & monte
 Platform: Windows 10 Home Version 1909 18363.1379 (X64) Language: Italiano (Italia)
 Default browser: Edge
 Boot Mode: Normal
 
 ==================== Processes (Whitelisted) =================
 
 (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
 (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
 (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
 (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
 (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365275.inf_amd64_136741f59e43f995\B364966\atieclxx.exe
 (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365275.inf_amd64_136741f59e43f995\B364966\atiesrxx.exe
 (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
 (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
 (Conexant Systems, Inc.) [File not signed] C:\Windows\SysWOW64\UIUSrv.exe
 (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
 (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
 (Microsoft Windows -> Microsoft Corporation) C:\$WINDOWS.~BT\Sources\SetupHost.exe
 (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
 (Microsoft Windows -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\13dbcf2b45eb3e7173a01c88529f0a10\WindowsUpdateBox.exe
 (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
 (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
 (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
 (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1370_none_16ff43832a27f5c0\TiWorker.exe
 (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
 (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
 (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe
 (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe
 (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
 (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
 (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
 (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
 (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
 0 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21022.168.0_x64__8wekyb3d8bbwe\YourPhone.exe
 
 ==================== Registry (Whitelisted) ===================
 
 (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
 HKU\S-1-5-21-1332497676-4034326449-572391256-1001\...\MountPoints2: {98080e66-4254-11e9-8a8b-2c337a4d544f} - "F:\LaunchU3.exe" -a
 HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\RunOnce: [NetworkResetPostReboot] => netsh.exe trace postreset
 HKU\S-1-5-21-1332497676-4034326449-572391256-1002\...\RunOnce: [AMDSplashScreen] => C:\AMD\RadeonInstaller\radeon-software-adrenalin-2020-21.3.1-minimalsetup-210323_64bit\\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
 HKLM\...\Windows x64\Print Processors\Canon iP2700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDA4.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
 HKLM\...\Windows x64\Print Processors\Canon TS5100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDQ.DLL [482816 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
 HKLM\...\Print\Monitors\Canon BJ Language Monitor iP2700 series: C:\WINDOWS\system32\CNMLMA4.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
 HKLM\...\Print\Monitors\Canon BJ Language Monitor MG4200 series: CNMLMB9.DLL
 HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5100 series: C:\WINDOWS\system32\CNMLMDQ.DLL [1302016 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
 HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [File not signed]
 HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.72\Installer\chrmstp.exe [2021-04-15] (Google LLC -> Google LLC)
 GroupPolicy: Restriction ? <==== ATTENTION
 Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
 
 ==================== Scheduled Tasks (Whitelisted) ============
 
 (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 Task: {0134AA26-D75C-45B9-9679-0A2F99621945} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
 Task: {17FCA92D-509D-4822-81C7-DF158AE20CBE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-23] (Google Inc -> Google LLC)
 Task: {19BD8BC5-96C6-47F0-B21D-B1A1A5AD4D65} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68176 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
 Task: {24D48332-8B2E-40F1-AFA5-CE7BFF595198} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
 Task: {30D83FE4-E7AD-470B-9371-AFBE28E23048} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
 Task: {3D7284FE-EB4E-4969-82F0-42C7F00CDD46} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
 Task: {3E0B9461-0DFD-482A-A458-4DB281AA8EE0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60496 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
 Task: {5174A315-61D6-4736-B32A-DEF4E40ACB93} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)
 Task: {53D6D7FD-EBCE-4602-9344-270BCCEC6176} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
 Task: {82B0E23C-E721-4E96-96F8-D199D33737DF} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
 Task: {90877BB2-A47A-4862-9C9B-E46D9B3786B7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
 Task: {A023B355-1332-4C83-A520-4C47E1CB3EE9} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
 Task: {A13EC051-4448-47C0-ADBE-C8F455B853DB} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [1123616 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
 Task: {BC24B990-8CAB-41A4-81D3-14BE28B2ABBC} - System32\Tasks\AMDInstallUEP => C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe [2356736 2019-10-22] () [File not signed]
 Task: {D4D457F4-8539-446B-B1CE-EC35F3B0C060} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
 Task: {E0D481EA-B813-4A05-B597-C1467F2D870F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-23] (Google Inc -> Google LLC)
 
 (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
 
 ==================== Internet (Whitelisted) ====================
 
 (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
 Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
 Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 Tcpip\..\Interfaces\{16e2b993-6dbe-4092-b821-101a84f07ddc}: [DhcpNameServer] 192.168.1.1
 Tcpip\..\Interfaces\{18387e1a-de49-4823-87ba-8e198fe094e0}: [NameServer] 8.8.8.8,8.8.4.4
 Tcpip\..\Interfaces\{c95b8555-acff-40f3-a862-97d3491cd7b3}: [DhcpNameServer] 192.168.1.1
 HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.1.158,1]
 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
 
 Edge:
 =======
 Edge DefaultProfile: Default
 Edge Profile: C:\Users\monte\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-20]
 
 FireFox:
 ========
 FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
 FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2021-02-03] [not signed]
 FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [No File]
 FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [No File]
 FF Plugin HKU\S-1-5-21-1332497676-4034326449-572391256-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [No File]
 
 Chrome:
 =======
 CHR HKU\S-1-5-21-1332497676-4034326449-572391256-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
 
 ==================== Services (Whitelisted) ===================
 
 (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-04-02] (Malwarebytes Inc -> Malwarebytes)
 R2 UIUService; C:\WINDOWS\SysWOW64\UIUSrv.exe [105984 2019-06-27] (Conexant Systems, Inc.) [File not signed]
 R2 unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2019-05-03] (Reason Software Company Inc. -> Reason Software Company Inc.)
 R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
 R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
 S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]
 
 ===================== Drivers (Whitelisted) ===================
 
 (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 S3 AirModeBtn; C:\WINDOWS\System32\drivers\AirModeBtn.sys [40976 2015-08-13] (LG Electronics Inc. -> LG Electroncis)
 R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
 R3 ApkbfiltrService; C:\WINDOWS\System32\drivers\Apkbfiltr.sys [31016 2015-07-23] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
 S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [131072 2019-03-19] (Microsoft Windows -> Microsoft Corporation) [File not signed]
 R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-03-31] (Martin Malik - REALiX -> REALiX(tm))
 R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220616 2021-04-02] (Malwarebytes Inc -> Malwarebytes)
 S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
 R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-04-02] (Malwarebytes Inc -> Malwarebytes)
 R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
 S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
 R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421088 2021-04-11] (Microsoft Windows -> Microsoft Corporation)
 R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-11] (Microsoft Windows -> Microsoft Corporation)
 
 ==================== NetSvcs (Whitelisted) ===================
 
 (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
 ==================== One month (created) (Whitelisted) =========
 
 (If an entry is included in the fixlist, the file/folder will be moved.)
 
 2021-04-16 18:07 - 2021-04-16 18:08 - 000031888 _____ C:\Users\Gjack Salerno\Downloads\Addition.txt
 2021-04-16 18:05 - 2021-04-16 18:09 - 000014390 _____ C:\Users\Gjack Salerno\Downloads\FRST.txt
 2021-04-16 18:05 - 2021-04-16 18:09 - 000000000 ____D C:\FRST
 2021-04-16 18:04 - 2021-04-16 18:04 - 000001607 _____ C:\Users\Gjack Salerno\Desktop\FRST64 - collegamento.lnk
 2021-04-16 18:02 - 2021-04-16 18:02 - 002298368 _____ (Farbar) C:\Users\Gjack Salerno\Downloads\FRST64.exe
 2021-04-16 17:49 - 2021-04-16 17:50 - 000000000 ____D C:\AdwCleaner
 2021-04-16 15:08 - 2021-04-16 15:09 - 000000000 ____D C:\Users\Gjack Salerno\Documents\2021_04_16
 2021-04-16 15:08 - 2021-04-16 15:08 - 000501549 _____ C:\Users\Gjack Salerno\Desktop\Atto di assenso.pdf
 2021-04-16 14:30 - 2021-04-16 14:30 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Local\AMD_Common
 2021-04-07 11:27 - 2021-04-07 11:27 - 000001195 _____ C:\Users\Gjack Salerno\Desktop\NOW TV.lnk
 2021-04-02 13:47 - 2021-04-02 13:47 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
 2021-04-02 13:47 - 2020-09-07 12:34 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
 2021-04-02 12:54 - 2021-04-02 12:54 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Local\cache
 2021-04-02 12:47 - 2021-04-02 12:47 - 000003488 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
 2021-04-02 12:47 - 2021-04-02 12:47 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
 2021-04-02 12:47 - 2021-04-02 12:47 - 000003098 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
 2021-04-02 12:47 - 2021-04-02 12:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
 2021-04-02 12:45 - 2021-04-02 12:45 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN
 2021-04-02 12:45 - 2021-04-02 12:45 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR
 2021-04-02 12:45 - 2021-04-02 12:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
 2021-04-02 12:44 - 2021-04-02 12:44 - 000003522 _____ C:\WINDOWS\system32\Tasks\AMDInstallUEP
 2021-04-02 12:44 - 2021-04-02 12:44 - 000000000 ____D C:\ProgramData\AMD
 2021-04-02 12:44 - 2021-03-10 21:43 - 002241008 _____ (AMD Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe
 2021-04-02 12:39 - 2021-03-23 20:21 - 001857224 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
 2021-04-02 12:39 - 2021-03-23 20:21 - 001857224 _____ C:\WINDOWS\system32\vulkaninfo.exe
 2021-04-02 12:39 - 2021-03-23 20:21 - 001437920 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
 2021-04-02 12:39 - 2021-03-23 20:21 - 001437920 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
 2021-04-02 12:39 - 2021-03-23 20:21 - 001093104 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 001093104 _____ C:\WINDOWS\system32\vulkan-1.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000946272 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000946272 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000798928 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
 2021-04-02 12:39 - 2021-03-23 20:21 - 000735952 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000620240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000495840 _____ C:\WINDOWS\system32\GameManager64.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000492240 _____ C:\WINDOWS\system32\dgtrayicon.exe
 2021-04-02 12:39 - 2021-03-23 20:21 - 000467664 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000455376 _____ C:\WINDOWS\system32\atieah64.exe
 2021-04-02 12:39 - 2021-03-23 20:21 - 000431824 _____ C:\WINDOWS\system32\EEURestart.exe
 2021-04-02 12:39 - 2021-03-23 20:21 - 000379104 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000350928 _____ C:\WINDOWS\SysWOW64\atieah32.exe
 2021-04-02 12:39 - 2021-03-23 20:21 - 000345808 _____ C:\WINDOWS\system32\clinfo.exe
 2021-04-02 12:39 - 2021-03-23 20:21 - 000244432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000212176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000186064 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000166096 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000165584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000155856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000141536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000139984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000134864 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000124624 _____ C:\WINDOWS\system32\atidxx64.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000106704 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000089808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mcl64.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000074448 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mcl32.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000045768 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000042696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000019248 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
 2021-04-02 12:39 - 2021-03-23 20:21 - 000019240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
 2021-04-02 12:39 - 2021-03-23 20:20 - 005221584 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
 2021-04-02 12:39 - 2021-03-23 20:20 - 004986592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
 2021-04-02 12:39 - 2021-03-23 20:20 - 001766608 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
 2021-04-02 12:39 - 2021-03-23 20:20 - 001492176 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiacm64.dll
 2021-04-02 12:39 - 2021-03-23 20:20 - 001338592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
 2021-04-02 12:39 - 2021-03-23 20:20 - 001338592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
 2021-04-02 12:39 - 2021-03-23 20:20 - 000181472 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
 2021-04-02 12:39 - 2021-03-23 20:20 - 000157728 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
 2021-04-02 12:39 - 2021-03-23 20:20 - 000121552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
 2021-04-02 12:39 - 2021-03-23 20:20 - 000106192 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
 2021-04-02 12:39 - 2021-03-23 20:20 - 000069328 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
 2021-04-02 12:39 - 2021-03-23 20:19 - 001685080 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
 2021-04-02 12:39 - 2021-03-23 20:19 - 001364432 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
 2021-04-02 12:39 - 2021-03-23 20:19 - 000129696 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
 2021-04-02 12:39 - 2021-03-23 20:19 - 000129696 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
 2021-04-02 12:39 - 2021-03-23 20:19 - 000107712 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
 2021-04-02 12:39 - 2021-03-23 20:19 - 000107712 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
 2021-04-02 12:39 - 2021-03-23 18:48 - 058675112 _____ C:\WINDOWS\system32\amdxc64.so
 2021-04-02 12:39 - 2021-03-23 18:48 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
 2021-04-02 12:39 - 2021-03-23 18:48 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
 2021-04-02 12:39 - 2021-03-23 18:48 - 000556128 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
 2021-04-02 12:39 - 2021-03-23 18:48 - 000556128 _____ C:\WINDOWS\system32\atiapfxx.blb
 2021-04-02 12:39 - 2021-03-23 18:48 - 000204952 _____ C:\WINDOWS\SysWOW64\ativvsvl.dat
 2021-04-02 12:39 - 2021-03-23 18:48 - 000204952 _____ C:\WINDOWS\system32\ativvsvl.dat
 2021-04-02 12:39 - 2021-03-23 18:48 - 000157144 _____ C:\WINDOWS\SysWOW64\ativvsva.dat
 2021-04-02 12:39 - 2021-03-23 18:48 - 000157144 _____ C:\WINDOWS\system32\ativvsva.dat
 2021-04-02 12:39 - 2021-03-23 18:48 - 000154384 _____ C:\WINDOWS\system32\samu_krnl_ci.sbin
 2021-04-02 12:39 - 2021-03-23 18:48 - 000138832 _____ C:\WINDOWS\system32\samu_krnl_isv_ci.sbin
 2021-04-02 12:39 - 2021-03-23 18:48 - 000125488 _____ C:\WINDOWS\system32\kapp_ci.sbin
 2021-04-02 12:39 - 2021-03-23 18:48 - 000121168 _____ C:\WINDOWS\system32\kapp_si.sbin
 2021-04-02 12:39 - 2021-03-23 18:48 - 000012344 _____ C:\WINDOWS\system32\brandingWS_RSX.bmp
 2021-04-02 12:39 - 2021-03-23 18:48 - 000012344 _____ C:\WINDOWS\system32\brandingRSX.bmp
 2021-04-02 12:39 - 2021-03-23 18:48 - 000011014 _____ C:\WINDOWS\system32\atiacmLocalisation.ini
 2021-04-02 12:39 - 2021-03-23 18:48 - 000000822 _____ C:\WINDOWS\system32\branding.bmp
 2021-04-02 12:39 - 2021-02-09 19:39 - 000517536 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.exe
 2021-04-02 12:39 - 2021-02-09 19:39 - 000098744 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdfendr.sys
 2021-04-02 12:39 - 2021-01-18 17:27 - 000247216 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWT6.sys
 2021-04-02 12:39 - 2020-07-27 09:41 - 000062056 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdxe.sys
 2021-04-02 12:38 - 2021-03-23 20:20 - 081414864 _____ C:\WINDOWS\system32\amd_comgr.dll
 2021-04-02 12:38 - 2021-03-23 20:20 - 066865360 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
 2021-04-02 12:38 - 2021-03-23 20:20 - 000940240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
 2021-04-02 12:38 - 2021-03-23 20:20 - 000767696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
 2021-04-02 12:38 - 2021-03-23 20:20 - 000465616 _____ C:\WINDOWS\system32\amdlogum.exe
 2021-04-02 12:38 - 2021-03-23 20:20 - 000201512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
 2021-04-02 12:38 - 2021-03-23 20:20 - 000169064 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
 2021-04-02 12:38 - 2021-03-23 20:20 - 000149200 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
 2021-04-02 12:38 - 2021-03-23 20:20 - 000129744 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
 2021-04-02 12:38 - 2021-03-23 20:19 - 072437968 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
 2021-04-02 12:38 - 2021-03-23 20:19 - 000546256 _____ C:\WINDOWS\system32\amdmiracast.dll
 2021-04-02 12:38 - 2021-03-23 20:19 - 000488656 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
 2021-04-02 12:38 - 2021-03-23 20:19 - 000379088 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
 2021-04-02 12:38 - 2021-03-23 20:19 - 000135376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
 2021-04-02 12:38 - 2021-03-23 20:19 - 000119744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
 2021-04-02 12:38 - 2021-03-23 18:48 - 000076237 _____ C:\WINDOWS\system32\AMDKernelEvents.man
 2021-04-02 12:36 - 2021-04-02 12:36 - 000000000 ____D C:\Users\monte\AppData\Local\cache
 2021-04-02 12:35 - 2021-04-02 12:35 - 000000000 ____D C:\Users\monte\AppData\Local\setup
 2021-04-02 12:34 - 2021-04-02 12:37 - 000000000 ____D C:\Users\monte\AppData\Local\AMD_Common
 2021-04-02 12:34 - 2021-04-02 12:34 - 000000000 ____D C:\Users\monte\AppData\Local\RadeonInstaller
 2021-04-02 12:19 - 2021-04-02 12:19 - 013067652 _____ C:\Users\monte\Desktop\amdprwreport.xml
 2021-04-02 12:19 - 2021-04-02 12:19 - 000032060 _____ C:\Users\monte\Desktop\amdprwreport.xml.xsl
 2021-04-01 19:47 - 2021-04-01 19:47 - 000000000 ___HD C:\$Windows.~WS
 2021-03-25 13:03 - 2021-03-25 13:03 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
 2021-03-25 13:03 - 2021-03-25 13:03 - 000002880 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
 2021-03-25 13:03 - 2021-03-25 13:03 - 000000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
 2021-03-25 13:03 - 2021-03-25 13:03 - 000000834 _____ C:\ProgramData\Desktop\CCleaner.lnk
 2021-03-25 13:03 - 2021-03-25 13:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
 2021-03-24 15:40 - 2021-03-24 15:40 - 000000000 ____D C:\Users\monte\AppData\Local\ElevatedDiagnostics
 
 ==================== One month (modified) ==================
 
 (If an entry is included in the fixlist, the file/folder will be moved.)
 
 2021-04-16 17:49 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
 2021-04-16 17:35 - 2019-06-27 16:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
 2021-04-16 16:15 - 2019-06-27 16:46 - 000030483 _____ C:\WINDOWS\diagwrn.xml
 2021-04-16 16:15 - 2019-06-27 16:46 - 000030483 _____ C:\WINDOWS\diagerr.xml
 2021-04-16 16:11 - 2019-12-07 17:40 - 000000000 ___HD C:\$WINDOWS.~BT
 2021-04-16 16:08 - 2019-06-27 12:17 - 000000000 ___DC C:\WINDOWS\Panther
 2021-04-16 15:23 - 2020-06-15 14:35 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
 2021-04-16 09:29 - 2021-02-18 19:56 - 000000000 ____D C:\Program Files\CCleaner
 2021-04-16 09:29 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
 2021-04-15 12:25 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
 2021-04-15 09:35 - 2019-06-27 16:40 - 001756404 _____ C:\WINDOWS\system32\PerfStringBackup.INI
 2021-04-15 09:35 - 2019-03-19 14:33 - 000781360 _____ C:\WINDOWS\system32\perfh010.dat
 2021-04-15 09:35 - 2019-03-19 14:33 - 000146534 _____ C:\WINDOWS\system32\perfc010.dat
 2021-04-15 09:35 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
 2021-04-15 09:28 - 2019-06-27 16:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
 2021-04-15 09:28 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
 2021-04-15 09:28 - 2018-06-03 04:41 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
 2021-04-15 09:27 - 2019-08-23 09:19 - 000002310 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
 2021-04-15 09:27 - 2019-08-23 09:19 - 000002269 _____ C:\Users\Public\Desktop\Google Chrome.lnk
 2021-04-15 09:27 - 2019-08-23 09:19 - 000002269 _____ C:\ProgramData\Desktop\Google Chrome.lnk
 2021-04-14 19:54 - 2018-06-03 14:04 - 000000000 ____D C:\WINDOWS\system32\MRT
 2021-04-14 17:09 - 2018-06-03 14:03 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
 2021-04-13 17:27 - 2019-06-27 16:29 - 000000000 ____D C:\Users\Gjack Salerno
 2021-04-12 19:20 - 2020-10-01 17:46 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
 2021-04-11 09:36 - 2018-06-03 04:37 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
 2021-04-07 12:57 - 2018-06-16 20:44 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Roaming\NOW TV Player
 2021-04-07 11:27 - 2018-06-16 20:43 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NOW TV
 2021-04-07 11:26 - 2018-06-16 20:43 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Roaming\NOW TV
 2021-04-05 11:41 - 2019-06-01 13:41 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Local\CrashDumps
 2021-04-05 11:26 - 2020-09-22 19:27 - 000000000 ____D C:\Users\monte\AppData\Local\CrashDumps
 2021-04-05 11:26 - 2019-04-16 12:01 - 000000000 ____D C:\WINDOWS\ABR
 2021-04-02 17:47 - 2020-06-15 13:35 - 000368408 _____ C:\WINDOWS\system32\FNTCACHE.DAT
 2021-04-02 13:47 - 2020-09-07 12:35 - 000220616 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
 2021-04-02 13:47 - 2020-09-07 12:35 - 000002004 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
 2021-04-02 13:47 - 2019-07-09 18:31 - 000001992 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
 2021-04-02 13:47 - 2019-07-09 18:31 - 000001992 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
 2021-04-02 13:47 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
 2021-04-02 13:46 - 2019-07-09 18:31 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
 2021-04-02 12:54 - 2020-08-23 13:51 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Local\AMD
 2021-04-02 12:47 - 2019-04-13 21:20 - 000000000 ____D C:\WINDOWS\system32\AMD
 2021-04-02 12:47 - 2018-06-03 04:41 - 000000000 ____D C:\Program Files\AMD
 2021-04-02 12:45 - 2018-06-03 04:41 - 000000000 ____D C:\ProgramData\Package Cache
 2021-04-02 12:37 - 2020-08-23 13:49 - 000000000 ____D C:\Program Files (x86)\AMD
 2021-04-02 12:37 - 2020-08-23 13:40 - 000000000 ____D C:\AMD
 2021-04-01 20:17 - 2018-06-03 21:24 - 000000000 ____D C:\Users\Gjack Salerno\AppData\Local\D3DSCache
 2021-03-26 21:26 - 2021-02-03 12:21 - 000000000 ____D C:\Program Files\Adobe
 2021-03-26 12:51 - 2021-02-21 17:55 - 000000000 ____D C:\Users\monte\AppData\Roaming\Foxit Software
 2021-03-26 12:50 - 2021-02-21 17:55 - 000000000 ____D C:\ProgramData\Foxit Software
 2021-03-24 15:40 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
 2021-03-23 02:28 - 2020-10-01 17:46 - 000916304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
 2021-03-23 02:28 - 2020-10-01 17:46 - 000437072 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
 
 ==================== Files in the root of some directories ========
 
 2019-04-30 13:42 - 2019-04-30 13:42 - 000871648 _____ (ForensiT Limited) C:\ProgramData\UserProfileMigrationService.exe
 
 ==================== SigCheck ============================
 
 (There is no automatic fix for files that do not pass verification.)
 
 ==================== End of FRST.txt ========================
 |  |  
		| Top |  |  
		|  |  
		| kerio69 Semidio
 
  
 
 Registrato: 20/12/06 16:52
 Messaggi: 216
 
 
 | 
			
				|  Inviato: 16 Apr 2021 19:04    Oggetto: |   |  
				| 
 |  
				| I vari errori nell'installazione dell'aggiornamento 20H2, sono: Oxc 802400b, Oxc 19001 e1 |  |  
		| Top |  |  
		|  |  
		| kerio69 Semidio
 
  
 
 Registrato: 20/12/06 16:52
 Messaggi: 216
 
 
 | 
			
				|  Inviato: 18 Apr 2021 09:56    Oggetto: |   |  
				| 
 |  
				| tutto risolto ,ho scaricato la nuova versione da Microsoft -assistente aggiornamento, l'installazione è riuscita in circa 9o minuti,grazie per i consigli datemi. |  |  
		| Top |  |  
		|  |  
		| Maary79 Amministratore
 
  
  
 Registrato: 08/02/12 13:23
 Messaggi: 12720
 
 
 | 
			
				|  Inviato: 18 Apr 2021 19:38    Oggetto: |   |  
				| 
 |  
				| Bene che hai risolto, avrei avuto un paio di comandi da farti provare, ma attendevo R16 a cui avevo segnalato il thread, per il log che hai postato, ma hai fatto prima tu.   La prossima volta allega il log con servizi esterni es. winsend o wikifortio, come indicato nella guida, per rendere più scorrevole la lettura.
   Ciao
 |  |  
		| Top |  |  
		|  |  
		|  |  
  
	| 
 
 | Non puoi inserire nuovi argomenti Non puoi rispondere a nessun argomento
 Non puoi modificare i tuoi messaggi
 Non puoi cancellare i tuoi messaggi
 Non puoi votare nei sondaggi
 
 |  
 
 |