the aorus lcd panel service service terminated unexpectedly

2021-10-02 23:03 - 2021-09-14 14:39 - 000043408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\NvModuleTracker.sys 2021-10-22 12:27 - 2021-10-24 19:38 - 000000001 _____ C:\Windows\vgkbootstatus.dat ========= End -> "C:\WINDOWS\syswow64\*.tmp" ======== Python 3.9.5 Core Interpreter (64-bit) (HKLM\\{FBB6299D-CB58-4177-B6A0-63BFB1C8C3AE}) (Version: 3.9.5150.0 - Python Software Foundation) Hidden Task: {73931e1e-d4e0-4d8f-9b0c-c332b70c4204} - no filepath Framework Version: v4.0.30319 The location is listed in the 3rd line of the Farbar log you have submitted. HKU\S-1-5-21-326566074-3447909417-183555969-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1} => removed successfully C:\Users\Pepega\AppData\Local\Update.exe => No running process found ========= End -> "C:\WINDOWS\system32\*.tmp" ======== HKLM-x32\\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [781552 2021-10-16] (Adobe Inc. -> Adobe Inc.) C:\Windows\Temp\*. Launcher Prerequisites (x64) (HKLM-x32\\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden 2021-10-13 22:14 - 2021-10-07 19:32 - 001874648 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe HKU\S-1-5-21-326566074-3447909417-183555969-1001\\Run: [Windows Driver Installation Service] => C:\Windows\SysWOW64\Windows Driver Installation Service\Windows Driver Installation Service.exe (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\nvrla.exe Task: {8c4fdb45-99dd-42f3-8984-07e5f8dff7f4} - no filepath Task: {b19f8042-93dc-47e1-87f7-7ad8cb0032d9} - no filepath Framework Version: v4.0.30319 Task: {f746fb73-bc4d-499e-882f-e5f30abe8a2f} - no filepath at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) Task: {46ee8f94-e240-420c-a5e8-0660f5c5f9e1} - no filepath Task: {4972aadd-d0db-4681-984f-17b847488bc9} - no filepath Task: {51006d50-cfd3-4b5a-af95-e596678bbea8} - no filepath 2021-10-02 23:02 - 2021-01-08 13:21 - 001147352 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys Windows Defender: "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{d7495c49-8426-461c-8455-350522fba9cb}" => removed successfully Severity: Medium 2021-10-20 14:48 - 2021-10-20 14:50 - 000000000 ____D C:\Program Files (x86)\GIGABYTE Boot Mode: Normal FirewallRules: [{E2EA9D77-F4B6-46E6-94CF-DAE772492424}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) 2021-10-02 22:52 - 2021-10-23 10:08 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk Task: {6902881d-a9ea-4ce3-9977-eac42438e59f} - no filepath Edge: 2021-10-02 23:02 - 2021-10-02 23:02 - 000000000 ____D C:\Program Files (x86)\AMD Task: {bab92bdb-173c-46a1-aad1-e84ad4e1371c} - no filepath Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Task: {d9c6b67e-9dbb-4ba4-ad4b-5aecb6889d08} - no filepath 2021-10-02 23:46 - 2021-10-04 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2019-03-19 15:49 - 2021-10-24 15:25 - 000002820 _____ C:\Windows\system32\drivers\etc\hosts vs_FileTracker_Singleton (HKLM-x32\\{ECE49BDE-FFB5-493F-960B-F25583CFCDE3}) (Version: 17.0.31703 - Microsoft Corporation) Hidden HKLM-x32\\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) Task: {252c0390-ef87-47eb-805e-da800dd5671d} - no filepath Microsoft ASP.NET Core 5.0.7 - Shared Framework (HKLM-x32\\{1c2c5c8e-d9f7-46c5-833d-0a63f6becb4a}) (Version: 5.0.7.21263 - Microsoft Corporation) "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{bb2029d9-cbf0-4ee3-aa1b-fbafda7b399a}" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{fc60ad33-5948-48d9-9f11-c6ca25373a9c}" => removed successfully WinRAR 6.02 (64-bit) (HKLM\\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) icecap_collectionresources (HKLM-x32\\{D71337CA-4452-43D2-9583-45670FF77185}) (Version: 17.0.31709 - Microsoft Corporation) Hidden C:\WINDOWS\syswow64\*.tmp HKU\S-1-5-21-326566074-3447909417-183555969-1001\\Run: [Print driver host for applications] => C:\Program Files (x86)\Print driver host for applications\Print driver host for applications.exe [74752 2021-10-24] (Microsoft Corporation) [File not signed] Task: {e62b268c-ea0c-4217-bfa2-7bd1145ba5a0} - no filepath Task: {d2d2fbec-f7b4-41b4-9251-9cfdc41d781f} - no filepath Drive d: () (Fixed) (Total:930.88 GB) (Free:929.97 GB) NTFS 2021-10-16 20:46 - 2021-10-16 20:47 - 000000000 ____D C:\Users\Pepega\Documents\Adobe If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed. 2021-10-18 20:24 - 2021-10-18 20:24 - 000000000 ____D C:\ProgramData\AMD AutoUpdate Task: {90b432e7-5c87-425c-9dd5-33099e0e41c9} - no filepath 2021-10-24 14:57 - 2021-10-24 15:28 - 000000000 ____D C:\ProgramData\Malwarebytes FirewallRules: [{2540FA7E-7920-4CF1-AA60-C80399BB4776}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) i tried using the tron script (utilizes hitman pro, malwarebytes, and kaspersky) but it only temporarily solved the issue. 2021-10-08 16:58 - 2021-10-08 16:58 - 000058304 _____ C:\Windows\system32\Drivers\49306c4f52694d3363575a7151566834646c4a3252566836626a644955474a7463474a6f.sys "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8a8c9b4d-3ba3-4f5f-8da4-8714c002e24f}" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{f0e86eb7-a641-47fc-9528-df32545b183d}" => removed successfully Task: {6d29bb8b-f135-47e9-9ff9-392b06a68bf3} - no filepath Loaded Profiles: Pepega Name: SettingsModifier:Win32/PossibleHostsFileHijack Available Virtual: 28808.94 MB Startup: C:\Users\Pepega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Thing2.bat [2021-10-24] () [File not signed] Edge DefaultProfile: Default vs_devenvsharedmsi (HKLM-x32\\{50BACB43-F405-4D93-B102-DE47540F2A07}) (Version: 17.0.31703 - Microsoft Corporation) Hidden Task: {C6B4432E-BB97-4CBA-9DFC-158E3B8F51BE} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-10-07] (Mozilla Corporation -> Mozilla Foundation) C:\Windows\Temp\MpCmdRun.log => moved successfully WinRT Intellisense IoT - Other Languages (HKLM-x32\\{216D5F47-257D-6284-5849-B51037875EFA}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Task: {48ae682f-228f-4e67-8aa4-854778a3a6a2} - no filepath Detection Type: Concrete For more information please see the following:https://go.microsoft.com/fwlink/?linkid=37020&name=SettingsModifier:Win32/PossibleHostsFileHijack&threatid=14994&enterprise=0 Task: {d4928d07-631c-4754-af4f-3f5f19729138} - no filepath HKLM\\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_df67044ddd98b524\RtkAudUService64.exe [1273712 2021-07-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{d2d2fbec-f7b4-41b4-9251-9cfdc41d781f}" => removed successfully 0.0.0.0 oca.telemetry.microsoft.com.nsatc.net 2021-10-02 23:34 - 2021-10-02 23:34 - 000000000 ____D C:\ProgramData\Windows App Certification Kit The cooler still works with no display and the colours are changeable. 2021-10-02 23:02 - 2021-10-07 19:28 - 000792208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R Task: {44e64ec2-07de-480c-b391-0e70d56ee3de} - no filepath 2021-10-13 22:14 - 2021-10-07 19:32 - 000965336 _____ C:\Windows\SysWOW64\vulkan-1.dll 2021-10-24 13:01 - 2021-10-24 17:56 - 000000410 __RSH C:\ProgramData\ntuser.pol 2021-10-02 23:01 - 2021-10-02 23:01 - 000000000 ____D C:\Users\Pepega\AppData\Local\setup CustomCLSID: HKU\S-1-5-21-326566074-3447909417-183555969-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Pepega\AppData\Local\Microsoft\OneDrive\21.170.0822.0002\amd64\FileSyncShell64.dll => No File 2021-10-24 20:41 - 2021-10-24 21:08 - 000000020 _____ C:\Windows\system32\Drivers\SMR540.dat FF Extension: (Video Ad-Block, for Twitch) - C:\Users\Pepega\AppData\Roaming\Mozilla\Firefox\Profiles\q42kwfcc.default-release\Extensions\{3385c2d8-dcfd-4f92-adb7-5d8429dee164}.xpi [2021-10-23] Task: {69239D2A-9392-46A2-9683-DE2CB69D23FE} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [667832 2021-07-16] (Advanced Micro Devices INC. -> ) "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{252c0390-ef87-47eb-805e-da800dd5671d}" => removed successfully 2021-10-02 23:04 - 2021-10-02 23:04 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} HKU\S-1-5-21-326566074-3447909417-183555969-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 i have the 3090rtx xtreme from gigabyte. Engine Version: AM: 1.1.18600.4, NIS: 1.1.18600.4 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION Security intelligence Version: AV: 1.351.958.0, AS: 1.351.958.0, NIS: 1.351.958.0 ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) 2021-10-24 21:16 - 2019-03-19 15:50 - 000000000 ____D C:\Windows\INF Task: {57F289BA-DE1C-4DD8-95F8-ED9D13AD93D0} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1067016 2020-12-10] (A-Volute SAS -> Nahimic) "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9787f435-46f9-458d-9737-9ba0cb4bc234}" => removed successfully 2021-10-02 23:25 - 2021-10-02 23:26 - 000000000 ____D C:\Windows\SysWOW64\1041 Epic Games Launcher (HKLM-x32\\{209F4B4B-3DF2-4825-9906-D4D6A80EC09E}) (Version: 1.3.0.0 - Epic Games, Inc.) HKLM\\StartupApproved\Run: => "SecurityHealth" =========== "C:\Windows\Temp\*. Visual Studio Community 2022 Preview (HKLM-x32\\8cca2edf) (Version: 17.0.0 Preview 4.1 - Microsoft Corporation) Category: Settings Modifier Resetting , failed. 2021-10-03 10:44 - 2016-02-23 00:52 - 000111692 _____ C:\Users\Pepega\Documents\Burbank Big Condensed Black.ttf S2 BlueStacksDrv_nxt; \? Task: {ca0fb10b-e917-4aa5-9e3a-f6a019682f3f} - no filepath Boot Mode: Normal Task: {dceb985f-25eb-484d-ae30-6da7f11e1091} - no filepath 2021-10-15 11:59 - 2021-10-15 11:59 - 000000128 _____ () C:\Users\Pepega\AppData\Roaming\changzhi_leidianmac.data Task: {53b08e97-673e-4df6-ae10-9a73f6648a6c} - no filepath ==================== Event log errors: ======================== I FirewallRules: [{c3fd991f-853b-41ba-b492-a58509655958}] => (Allow) C:\Program Files\ldplayerbox\LdVBoxHeadless.exe (Shanghai Changzhi Network Technology Co., Ltd. -> Oracle Corporation) "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3b6b25a5-1bf5-48bb-81f3-5e306db688ba}" => removed successfully here are the virustotals for the 2 files:https://www.virustotal.com/gui/file/85aa1344d28fd7c6a911924040e5b3ae1278fb70444cd39d056bd270f147f61bhttps://www.virustotal.com/gui/file/85aa1344d28fd7c6a911924040e5b3ae1278fb70444cd39d056bd270f147f61b/behavior/Microsoft%20Sysinternals, FRST RESULTS: I disabled it and now everything runs fine. ***************** 2021-10-02 23:18 - 2021-10-02 23:18 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio ==================== NetSvcs (Whitelisted) =================== Process Name: C:\Users\Pepega\AppData\Local\Discord\app-1.0.9003\Discord.exe Restart Windows and look at the time stamp on the event error message. 2021-10-12 19:18 - 2021-10-12 19:18 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{95bbc0e1-37d1-403e-badd-d7f7c4fc36d1}" => removed successfully Task: {e0ba60f1-d26f-4185-8bb0-04b05678ff5a} - no filepath ==================== Scheduled Tasks (Whitelisted) ============ 2021-10-13 22:14 - 2021-10-07 19:32 - 001111256 _____ C:\Windows\system32\vulkan-1.dll (CloudBees, Inc.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS LCD Panel Setting\MonitorService-exec.exe Microsoft Defender Antivirus has detected malware or other potentially unwanted software. 2021-10-02 23:25 - 2021-10-04 18:19 - 000000000 ____D C:\Windows\system32\1033 Faulting application path: D:\Cheetos\Woofing\Cinx Archieves\SinEx 4.2.0 [BETA]\SinEx 4.2.0 BETA Woofer [All Winver].exe Task: {b086bb79-9ed7-4043-ab6c-148342fcf383} - no filepath Task: {410813e0-851c-472e-9a03-ef8f43a11e2b} - no filepath 2021-10-13 22:14 - 2021-10-07 19:32 - 001464976 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll Task: {f31abc37-3a79-4244-9a4b-03a808823654} - no filepath right now the only solution i have is to run task manager or processhacker in the background of my pc as the miners have a script to stop mining whenever those exes are open Date: 2021-10-24 17:54:57.532 Description: The AORUS LCD Panel Service service terminated unexpectedly. C:\WINDOWS\system32\*.tmp 2021-10-24 14:03 - 2021-10-24 14:03 - 000058304 _____ C:\Windows\system32\Drivers\49306c4f52694d3361565a36626b5a525132647563586434536a6c474d586f3054584670.sys Task: {5594E525-77BA-4ACC-96A7-90740DA56E19} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [823304 2020-12-10] (A-Volute SAS -> Nahimic) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION Task: {5ea271ce-e48a-4ade-9079-2a5bece10d83} - no filepath 2021-10-04 18:19 - 2019-03-19 15:52 - 000000000 ____D C:\Windows\ServiceState Path: file:_C:\Windows\System32\drivers\etc\hosts (If an entry is included in the fixlist, it will be removed from the registry. icecap_collectionresourcesx64 (HKLM-x32\\{D7CA7EBC-6382-4CDB-BE73-9057ABE6DBA5}) (Version: 17.0.31709 - Microsoft Corporation) Hidden 2017-10-05 15:26 - 2017-10-05 15:26 - 002247168 _____ (TODO: ) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\CRtive.dll 2021-10-02 23:17 - 2021-10-24 09:40 - 000000000 ____D C:\Users\Pepega\AppData\Local\NVIDIA Corporation 2021-10-03 18:05 - 2021-10-03 18:05 - 000000000 ____D C:\Users\Pepega\AppData\Local\Apple Computer Description: ========= End -> "C:\Windows\Temp\*. Faulting application start time: 0x01d7c8b23e4aead7 ============= 2021-09-30 14:33 - 2021-09-30 14:33 - 001993216 _____ (GIGABYTE) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACPCIeSSD_Lib.dll Task: {29ad0c16-34a9-49f9-a1d8-81f44fff082d} - no filepath Description: The process was terminated due to an unhandled exception. FF Extension: (Kurgzsekseta) - C:\Users\Pepega\AppData\Roaming\Mozilla\Firefox\Profiles\q42kwfcc.default-release\Extensions\{e8f3b919-d290-4270-b66f-29f3fdbb1986}.xpi [2021-10-05], Startup: C:\Users\Pepega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Thing2.bat [2021-10-24] () [File not signed]. Task: {b1fed2a8-3200-4219-af34-0fd05172af37} - no filepath 2021-10-13 22:14 - 2021-10-07 19:28 - 001597584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll Task: {7ef13d49-f1cb-4454-af1c-a7a9e880a031} - no filepath Task: {cd558596-f4ee-4e6a-a00e-029783722e00} - no filepath Resetting Resolve Neighbor, OK! (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe 2021-10-22 11:44 - 2021-10-22 11:44 - 000000000 ____D C:\Program Files\Riot Vanguard ========= "%WINDIR%\SYSTEM32\lodctr.exe" /R ========= Microsoft Defender Antivirus has detected malware or other potentially unwanted software. Python 3.9.5 Standard Library (64-bit symbols) (HKLM\\{72FB8CF5-E7CB-4CD2-90B2-39ADC3483845}) (Version: 3.9.5150.0 - Python Software Foundation) Hidden Task: {df1c3fe3-3222-4a5e-b520-95a4768a5710} - no filepath HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => could not remove, key could be protected 2021-10-24 14:58 - 2019-03-19 15:37 - 000032768 _____ C:\Windows\system32\config\ELAM AMD_Chipset_Drivers (HKLM-x32\\{c370a4bd-5e86-489d-b1a5-54ceee532d20}) (Version: 2.15.07.2229 - Advanced Micro Devices, Inc.) Hidden Realtek Audio Driver (HKLM-x32\\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9210.1 - Realtek Semiconductor Corp.) 2021-10-03 09:05 - 2019-03-19 15:52 - 000000000 ____D C:\Windows\appcompat Python Launcher (HKLM-x32\\{B6EF11B6-0882-43B1-AA75-4D3BD32A144A}) (Version: 3.9.7427.0 - Python Software Foundation) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} 2021-10-15 11:59 - 2021-10-15 11:59 - 000000000 ____D C:\Users\Pepega\.Ld2VirtualBox "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6298650e-c3bc-47e3-a571-b4eea94ac419}" => removed successfully FirewallRules: [Microsoft-Windows-Unified-Telemetry-Client] => (Block) C:\Windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation) 2021-10-02 23:21 - 2021-10-24 14:31 - 000000000 ____D C:\Program Files (x86)\MSBuild Adobe Creative Cloud (HKLM-x32\\Adobe Creative Cloud) (Version: 5.6.0.788 - Adobe Inc.) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Task: {e3f16153-689d-41be-bf13-59cd11df70d5} - no filepath 2021-10-18 20:24 - 2021-10-18 20:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Ryzen Master For more information please see the following:https://go.microsoft.com/fwlink/?linkid=37020&name=SettingsModifier:Win32/PossibleHostsFileHijack&threatid=14994&enterprise=0 (Microsoft Windows Operating System) [File not signed] C:\Users\Pepega\AppData\Local\Update.exe Resetting Subinterface, OK! (Wen Jia Liu -> wj32) C:\Program Files\Process Hacker 2\ProcessHacker.exe vs_communitysharedmsi (HKLM-x32\\{5E09B4C5-4E18-411F-BEF1-33F15E2906CF}) (Version: 17.0.31709 - Microsoft Corporation) Hidden Resetting , OK! ==================== End of Addition.txt =======================. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4204c90d-5097-480b-ab90-0cff3c443b89}" => removed successfully Category: Settings Modifier Task: {4fb942bf-3d44-41ff-bc65-52cd12996f26} - no filepath 2021-10-02 22:56 - 2021-10-04 09:59 - 000000000 ___RD C:\Users\Pepega\OneDrive CustomCLSID: HKU\S-1-5-21-326566074-3447909417-183555969-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.) Task: {1e6a4e2b-eca4-4162-8baf-5e2cbc56f0a8} - no filepath HKU\S-1-5-21-326566074-3447909417-183555969-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION Microsoft Visual Studio Installer (HKLM\\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 3.0.3444.25014 - Microsoft Corporation) "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{132c3361-2a8c-4a3a-a81d-208c0f31a908}" => removed successfully Task: {43f54ace-856e-4b50-9808-1588b79b7c18} - no filepath Task: {4d4276f1-945c-486b-b48f-62cda9b73d18} - no filepath Task: {2d5dd02e-d989-436b-a3d0-b2283ce2c942} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{46ee8f94-e240-420c-a5e8-0660f5c5f9e1}" => removed successfully 2021-10-24 13:05 - 2021-10-24 13:43 - 000000159 _____ C:\Users\Pepega\Desktop\thingstodelete.txt 2021-10-13 22:14 - 2021-10-07 19:28 - 000676480 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll For more information please see the following:https://go.microsoft.com/fwlink/?linkid=37020&name=SettingsModifier:Win32/PossibleHostsFileHijack&threatid=14994&enterprise=0 After this log, it shows our application Please post the Fixlog.txt and let me know what problem persists. Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-12] (Microsoft Studios) [MS Ad] ==================== Shortcuts & WMI ======================== 2021-10-22 18:11 - 2021-10-22 18:11 - 000000031 _____ C:\Users\Pepega\Desktop\fn name.txt "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{013418b8-2dc1-4fb4-9c18-21dcfcb620cb}" => removed successfully Task: {7758a3fe-bd22-4403-acda-05ae12b2505a} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1a105416-49db-4c94-a1d7-5a3597878e9a}" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8a370bc5-d53d-4130-9a86-55745d7884c5}" => removed successfully FireFox: Task: {204d0e3a-f218-488d-b696-4b0f49357ce1} - no filepath vs_Graphics_Singletonx64 (HKLM\\{FB70BB0F-04E2-48FE-B4A8-41FA0ABD59C1}) (Version: 17.0.31709 - Microsoft Corporation) Hidden 2021-10-15 11:59 - 2021-10-15 11:59 - 000000068 _____ () C:\Users\Pepega\AppData\Roaming\changzhi_leidian.data SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC ==================== Internet Explorer (Whitelisted) ========== 2021-10-02 22:55 - 2021-10-16 20:49 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\Adobe The system cannot find the file specified. 2021-10-03 23:13 - 2021-10-03 23:14 - 000008192 ___SH C:\DumpStack.log.tmp "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0ed742eb-771d-447f-a4e4-64c6fd2882f4}" => removed successfully 2021-10-02 23:19 - 2021-10-02 23:19 - 000000000 ____D C:\Program Files\Microsoft Visual Studio 2021-10-02 22:59 - 2021-10-04 18:19 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR Task: {634166c8-f3ba-4d37-96ef-8a18d9787a4e} - no filepath 2021-10-12 19:18 - 2021-10-12 19:20 - 000000000 ____D C:\ProgramData\Epic
Athletics Victoria Results, Does Mutate Trigger Etb, Houses For Rent In Metamora, Il, New Jersey Performing Arts Center Seating View, What Is A Pellicle In Biology, Articles T