* Task: {7ef13d49-f1cb-4454-af1c-a7a9e880a031} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{fc60ad33-5948-48d9-9f11-c6ca25373a9c}" => removed successfully 2021-10-04 18:19 - 2019-03-19 15:52 - 000000000 ____D C:\Windows\system32\WinBioDatabase 2021-10-02 23:03 - 2021-10-02 23:04 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-10-18 19:33 - 2021-10-18 19:33 - 000002385 _____ C:\Users\Pepega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nahimic Companion.lnk Severity: Medium (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2> Task: {cefea723-c2e4-4ec0-b440-c45c5526fda8} - no filepath HKU\S-1-5-21-326566074-3447909417-183555969-1001\\StartupApproved\Run: => "EpicGamesLauncher" Python 3.9.5 Documentation (64-bit) (HKLM\\{4EFE695B-F377-4CB0-90E3-6AEEE22DEFEB}) (Version: 3.9.5150.0 - Python Software Foundation) Hidden Realtek Ethernet Controller Driver (HKLM-x32\\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.46.1231.2020 - Realtek) 2021-10-02 23:07 - 2021-10-02 23:07 - 000000000 ____D C:\Users\Pepega\AppData\Local\tmp5qvbpq15.lck !go to the folder C:\Program Files (x86)\GIGABYTE\AORUS LCD Panel Setting\Updater\ right 2021-10-22 11:43 - 2021-10-22 12:31 - 000000000 ____D C:\Users\Pepega\AppData\Local\Riot Games Inside that folder there is an executable called 'Windows driver installation service.' "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{b8ce6039-5202-4c0c-b706-9d55226ab086}" => removed successfully 2021-10-03 16:54 - 2021-10-03 16:54 - 000000223 _____ C:\Users\Pepega\Desktop\Apex Legends.url Riot Vanguard (HKLM\\Riot Vanguard) (Version: - Riot Games, Inc.) Python 3.9.5 Core Interpreter (64-bit) (HKLM\\{FBB6299D-CB58-4177-B6A0-63BFB1C8C3AE}) (Version: 3.9.5150.0 - Python Software Foundation) Hidden SDK ARM Redistributables (HKLM-x32\\{72DB07D6-E166-5A3F-B6E6-4664383781B8}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden icecap_collection_neutral (HKLM-x32\\{519060B0-9C83-4D54-97A7-32C2350583C9}) (Version: 17.0.31709 - Microsoft Corporation) Hidden ========= End of CMD: ========= CMD: netsh int ip reset 2021-10-13 22:15 - 2021-10-07 11:58 - 000038016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll 2021-10-18 20:24 - 2021-10-18 20:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Ryzen Master Error: Unable to rebuild performance counter setting from system backup store, error code is 2 vs_clickoncesigntoolmsi (HKLM-x32\\{B00D9AE3-D2B9-4C16-AF48-B3AF4B46E67A}) (Version: 17.0.31703 - Microsoft Corporation) Hidden Description: The AORUS LCD Panel Service service terminated unexpectedly. Task: {78bdf1d8-0a82-4ea3-8ac6-e6a6e95fd874} - no filepath The system cannot find the path specified. ========= End -> "C:\WINDOWS\syswow64\*.tmp" ======== "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4204c90d-5097-480b-ab90-0cff3c443b89}" => removed successfully Python 3.9.5 Tcl/Tk Support (64-bit symbols) (HKLM\\{9F0D0DF1-B4D0-4760-A174-0CFF5C09D758}) (Version: 3.9.5150.0 - Python Software Foundation) Hidden Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-12] (Microsoft Studios) [MS Ad] Reason:0xC004F011 Task: {82a0b077-3637-4350-9431-56dbbbb4d5c1} - no filepath Now my pc wont boot into unto windows and stays on the aorus symbol screen. HKLM-x32\\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [781552 2021-10-16] (Adobe Inc. -> Adobe Inc.) Several functions may not work. 2021-10-15 11:55 - 2021-10-15 11:55 - 000000000 ____D C:\Users\Pepega\AppData\Local\BlueStacksSetup U4 npcap_wifi; no ImagePath 2021-10-03 15:47 - 2021-10-18 20:25 - 000270480 _____ C:\Windows\system32\FNTCACHE.DAT (CloudBees, Inc.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS LCD Panel Setting\MonitorService-exec.exe 2021-10-02 22:51 - 2021-10-10 13:03 - 000003356 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore Task: {cd558596-f4ee-4e6a-a00e-029783722e00} - no filepath Task: {7d4dac2b-fbf4-45de-adae-6a9396b9ca9c} - no filepath Error - The Alienware Client Management Service service failed to start due to the following error: Error - The application has failed to start because its side-by-side configuration is incorrect. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-10-2021 Task: {d41d49ee-176e-4547-bd74-93495b181988} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{68703689-47bd-47ee-9cf2-e91abb43a182}" => removed successfully 2021-10-13 22:14 - 2021-10-07 19:27 - 005703288 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll Task: {d7495c49-8426-461c-8455-350522fba9cb} - no filepath Task: {48ae682f-228f-4e67-8aa4-854778a3a6a2} - no filepath ==================== Memory info =========================== 2021-10-04 18:19 - 2019-03-19 15:52 - 000000000 ____D C:\Windows\ShellExperiences Task: {964fea64-405c-411f-8d7c-f9b886d45580} - no filepath Date: 2021-10-24 15:35:27.734 Task: {bd098352-5f63-4d2b-8e01-ba6a347a2975} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{82a0b077-3637-4350-9431-56dbbbb4d5c1}" => removed successfully SearchScopes: HKU\S-1-5-21-326566074-3447909417-183555969-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 2021-10-21 09:11 - 2021-10-21 09:11 - 000058304 _____ C:\Windows\system32\Drivers\49306c4f52694e45546d63335a55524c4d56517854575651566c6c4d64334a474f565268.sys Task: {cf65bcb3-58fb-4f8a-ad70-57403d1f5d1f} - no filepath A If you have any question or concern about your RMA, please have your RMA reference number ready and contact our customer service at TEL: 1-626-8549338 Option 4, Hours: Mon-Fri 8:30 - 5:30 Pacific Time. Q How to purchase extended warranty service? A Customers may purchase an AORUS Extended Warranty at the time of registration for eligible product. 2021-10-20 14:50 - 2021-10-20 14:50 - 000036352 ____N (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\gdrv3.sys HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896 R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5292bbfbf575e2d2\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5292bbfbf575e2d2\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem 0.0.0.0 telecommand.telemetry.microsoft.com.nsatc.net at System.Windows.Forms.Clipboard.GetText(System.Windows.Forms.TextDataFormat) FF Extension: (Video Ad-Block, for Twitch) - C:\Users\Pepega\AppData\Roaming\Mozilla\Firefox\Profiles\q42kwfcc.default-release\Extensions\{3385c2d8-dcfd-4f92-adb7-5d8429dee164}.xpi [2021-10-23] Detection Source: Real-Time Protection FirewallRules: [TCP Query User{CF0A0468-41A2-4CF4-BDA6-1586AE73104D}C:\windows\microsoft.net\framework64\v4.0.30319\vbc.exe] => (Allow) C:\windows\microsoft.net\framework64\v4.0.30319\vbc.exe (Microsoft Corporation -> Microsoft Corporation) 2021-10-24 13:24 - 2021-10-19 08:02 - 000000000 ____D C:\Users\Pepega\Desktop\integrity_verification 2021-10-02 23:18 - 2021-10-02 23:18 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio ==================== NetSvcs (Whitelisted) =================== Detection Origin: Local machine Task: {132c3361-2a8c-4a3a-a81d-208c0f31a908} - no filepath 0.0.0.0 sqm.telemetry.microsoft.com.nsatc.net fixlist content: Task: {098ef5b0-108d-4923-9d7d-021a97ef1fba} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66f5635a-5bb6-4432-8d29-d7d2f625b98a}" => removed successfully (If an entry is included in the fixlist, the file/folder will be moved.) Task: {b30dbf6f-75b4-422c-82ed-f93cae0f7dec} - no filepath 2021-10-18 19:32 - 2021-07-29 05:27 - 048046994 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT The following corrective action will be taken in Task: {29ad0c16-34a9-49f9-a1d8-81f44fff082d} - no filepath Resetting , OK! 2021-10-15 11:59 - 2021-10-15 11:59 - 000000128 _____ () C:\Users\Pepega\AppData\Roaming\changzhi_leidianmac.data vs_CoreEditorFonts (HKLM-x32\\{E247EDC7-CB46-45AD-9F59-C5C339A006D9}) (Version: 17.0.31716 - Microsoft Corporation) Hidden 2021-10-02 23:02 - 2021-10-18 19:32 - 000000000 ____D C:\Program Files (x86)\Realtek ======== Detection Source: Real-Time Protection Microsoft ASP.NET Core 5.0.7 - Shared Framework (HKLM-x32\\{1c2c5c8e-d9f7-46c5-833d-0a63f6becb4a}) (Version: 5.0.7.21263 - Microsoft Corporation) SDK ARM Additions (HKLM-x32\\{FCF9D89E-6F79-64FB-B08D-B0E69FF54DEE}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Task: {d6cfa018-c9cc-40f6-8ae8-0b452b7908aa} - no filepath 2021-10-16 20:39 - 2021-10-16 20:41 - 000000000 ____D C:\Program Files (x86)\Adobe Microsoft Defender Antivirus has detected malware or other potentially unwanted software. For more information please see the following:https://go.microsoft.com/fwlink/?linkid=37020&name=SettingsModifier:Win32/PossibleHostsFileHijack&threatid=14994&enterprise=0 Partition: GPT. Latest News: Apples first Rapid Security Response patch fails to install on iPhones, Featured Deal: Extended Deal: Get Microsoft Office 2021 on sale for just $39, Latest Buyer's Guide: Best VPNs to unblock WhatsApp calling in the UAE. 2021-10-02 22:50 - 2019-03-19 15:52 - 000000000 ____D C:\ProgramData\USOPrivate Discord (HKU\S-1-5-21-326566074-3447909417-183555969-1001\\Discord) (Version: 1.0.9003 - Discord Inc.) MonitorService.exe located in :Program Files (x86)\GIGABYTE\AORUS LCD Panel Setting This controls the LCD panel on the 3080 Aurorus series cards on startup. IFEO\mpcmdrun.exe: [Debugger] C:\Windows\System32\systray.exe "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{a4a7b095-aaa9-401c-a9d7-8abe8ea301af}" => removed successfully We are passionate about teaming up with gamers to fearlessly challenge the limits and win ultimate glory. Error: (10/24/2021 07:29:03 PM) (Source: Software Protection Platform Service) (EventID: 8228) (User: ) 2021-10-13 16:39 - 2021-10-13 16:39 - 000000000 ____D C:\Windows\SysWOW64\Npcap "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{80442d75-04ca-4d81-8c53-a52f6d4b32b0}" => removed successfully 2021-10-24 09:40 - 2021-10-24 09:40 - 000000000 ____D C:\Users\Pepega\Documents\Call of Duty Modern Warfare FirewallRules: [{30A1031D-2A0F-4ED7-BB78-4C35329A0857}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) 2021-10-03 18:05 - 2021-10-03 18:05 - 000000000 ____D C:\Users\Pepega\AppData\Local\Apple Computer Resetting , OK! Resetting Prefix Policy, OK! 2021-10-02 23:04 - 2021-10-02 23:04 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} It has done this 1 time(s). 2021-10-24 20:41 - 2021-10-24 20:41 - 013884680 _____ (NortonLifeLock Inc.) C:\Users\Pepega\Downloads\NPE.exe AORUS LCD Panel Setting (HKLM-x32\\{82026686-454E-4233-83E3-4045BC3FB31C}_is1) (Version: 1.1.3.1 - GIGABYTE Technology Co.,Inc.) Task: {b086bb79-9ed7-4043-ab6c-148342fcf383} - no filepath 2021-10-02 22:59 - 2021-10-02 22:59 - 000000000 ____D C:\Program Files\WinRAR FirewallRules: [TCP Query User{E9D0A5AC-D6AE-47D2-9B56-FBAC6E4A4ACA}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) 2021-10-02 23:25 - 2021-10-04 18:19 - 000000000 ____D C:\Windows\SysWOW64\1033 icecap_collection_x64 (HKLM\\{DAAA7FCA-A80A-43F3-9B54-2810618BB512}) (Version: 17.0.31709 - Microsoft Corporation) Hidden ==================== End of Addition.txt =======================. If you were unable to navigate to a website, click Start, Control Panel, Network and Sharing Center, and select "Set up a new connection or network." Task: {e21ec10f-b0f2-4d8c-ac9d-e74491370460} - no filepath 2021-05-04 17:17 - 2021-05-04 17:17 - 000475648 _____ (GIGABYTE Technology Co.,Ltd.) When i clicked on properties, it said that its original name was 'Update.exe.' 2021-10-13 22:14 - 2021-10-07 19:32 - 001206416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll ^rinse and repeat. 2021-10-02 23:44 - 2021-10-24 12:19 - 000000000 ____D C:\Users\Pepega\AppData\Local\Battle.net 2021-10-24 11:47 - 2021-10-24 11:47 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\Process Hacker 2 2021-10-19 13:07 - 2021-10-19 13:07 - 000058304 _____ C:\Windows\system32\Drivers\49306c4f52694d335248524c513067795a6a467a6448704765585a4e516d68714f565a57.sys Task: {8c4fdb45-99dd-42f3-8984-07e5f8dff7f4} - no filepath 2021-10-20 14:50 - 2021-10-20 14:50 - 000000000 ____D C:\Program Files\ENE Task: {8f7674a6-0b05-416d-8dc8-bba2f61cad8c} - no filepath Framework Version: v4.0.30319 2021-10-13 16:38 - 2021-10-13 16:41 - 000000000 ____D C:\Program Files\Wireshark The fix I suggested did stop both of these .bat files to run. 2021-10-02 23:25 - 2021-10-04 18:19 - 000000000 ____D C:\Windows\system32\1036 CMD: "C:\Windows\SysWOW64\lodctr.exe" /R C:\Windows\Temp\*. Task: {f0e86eb7-a641-47fc-9528-df32545b183d} - no filepath (If an entry is included in the fixlist, the file/folder will be moved.) 2021-10-07 12:09 - 2019-12-07 22:09 - 000000000 ___HD C:\$WINDOWS.~BT =========== "C:\Windows\Temp\*. Detection Origin: Local machine 2021-10-07 11:40 - 2021-10-07 11:40 - 000000000 ___HD C:\$WinREAgent Close the Dell Digital Delivery application. Description: Task: {29ad0c16-34a9-49f9-a1d8-81f44fff082d} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6d29bb8b-f135-47e9-9ff9-392b06a68bf3}" => removed successfully Task: {519e0c96-0a46-4c15-840e-41ed3cda1aef} - no filepath Task: {d6cfa018-c9cc-40f6-8ae8-0b452b7908aa} - no filepath HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 2021-10-18 19:33 - 2021-10-18 19:33 - 000000000 ____D C:\Users\Pepega\AppData\Local\NhNotifSys 2021-10-22 11:43 - 2021-10-22 18:56 - 000000000 ____D C:\ProgramData\Riot Games (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe 2021-10-02 23:07 - 2021-10-02 23:07 - 000002232 _____ C:\Users\Pepega\Desktop\Discord.lnk HKU\S-1-5-21-326566074-3447909417-183555969-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 R3 gdrv3; C:\Windows\gdrv3.sys [36352 2021-10-20] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Process Name: C:\Users\Pepega\AppData\Local\Discord\app-1.0.9003\Discord.exe Faulting package-relative application ID: Category: Settings Modifier Date: 2021-10-24 17:54:57.532 2021-10-24 18:02 - 2021-10-24 20:25 - 000072704 _____ (Microsoft Windows Operating System) C:\Users\Pepega\AppData\Local\Update.exe FF DefaultProfile: h4od9c6l.default 2021-10-02 23:04 - 2021-09-14 14:39 - 000078192 _____ C:\Windows\system32\FvSDK_x64.dll Task: {414df2f8-cc7c-49b6-a90f-8e407ed62e02} - no filepath FirewallRules: [{59D80DED-9B17-4C87-8B07-0F6E3D494323}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {b1fed2a8-3200-4219-af34-0fd05172af37} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{a2a9bb80-76ce-4752-9e44-f43e01b26a35}" => removed successfully (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Task: {d9c6b67e-9dbb-4ba4-ad4b-5aecb6889d08} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11dec036-7e8b-4b5b-906d-51876287d3d1}" => removed successfully vs_communitysharedmsi (HKLM-x32\\{5E09B4C5-4E18-411F-BEF1-33F15E2906CF}) (Version: 17.0.31709 - Microsoft Corporation) Hidden 2021-10-23 09:37 - 2021-10-23 09:37 - 000058304 _____ C:\Windows\system32\Drivers\49306c4f52694e45566e6c6b626a643359324534566b646c626d56724d32317156554e59.sys Error: Unable to rebuild performance counter setting from system backup store, error code is 2
College Baseball Teams With Turf Fields,
How Much Is 1,000 Gm Points Worth,
Expository Sermon Manuscripts,
Pro Boat Sonicwake 36 Battery,
Thinkorswim Order Confirmation Dialog,
Articles T