the aorus lcd panel service service terminated unexpectedly

2021-10-02 23:25 - 2021-10-04 18:19 - 000000000 ____D C:\Windows\SysWOW64\1046 Realtek Ethernet Controller Driver (HKLM-x32\\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.46.1231.2020 - Realtek) 2021-10-24 13:24 - 2021-07-24 06:02 - 000040684 _____ C:\Users\Pepega\Desktop\tron.bat (Discord Inc. -> Discord Inc.) C:\Users\Pepega\AppData\Local\Discord\app-1.0.9003\Discord.exe <6> (Microsoft Windows Operating System) [File not signed] C:\Users\Pepega\AppData\Local\Update.exe at System.Threading.ThreadHelper.ThreadStart() Description: Restart Windows and look at the time stamp on the event error message. Task: {5594E525-77BA-4ACC-96A7-90740DA56E19} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [823304 2020-12-10] (A-Volute SAS -> Nahimic) 2021-10-02 23:25 - 2021-10-04 18:19 - 000000000 ____D C:\Windows\SysWOW64\1033 The following corrective action will be taken in 6000 milliseconds: Restart the service." 2021-10-20 14:50 - 2021-10-20 14:50 - 000000000 ____D C:\Program Files\ENE 2021-10-05 09:55 - 2021-10-05 09:55 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\Mozilla "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{bab92bdb-173c-46a1-aad1-e84ad4e1371c}" => removed successfully 2021-10-02 23:07 - 2021-10-24 20:36 - 000000000 ____D C:\Users\Pepega\AppData\Local\Discord 2021-10-04 09:35 - 2021-10-04 09:35 - 000000000 ____D C:\Users\Pepega\Desktop\rkill HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896 2021-10-02 22:50 - 2019-03-19 15:52 - 000000000 ____D C:\ProgramData\USOPrivate Security intelligence Version: AV: 1.351.958.0, AS: 1.351.958.0, NIS: 1.351.958.0 "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{964fea64-405c-411f-8d7c-f9b886d45580}" => removed successfully For more information please see the following:https://go.microsoft.com/fwlink/?linkid=37020&name=SettingsModifier:Win32/PossibleHostsFileHijack&threatid=14994&enterprise=0 2021-10-02 23:05 - 2021-10-24 13:00 - 000000000 ____D C:\Users\Pepega\AppData\Local\KeePassXC ========= End of CMD: ========= at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) 2021-10-20 14:48 - 2021-10-20 14:50 - 000000000 ____D C:\Program Files (x86)\GIGABYTE And if the question was in general wich LCD Panel we mean. The Aorus Master 370 and 3080 have a LCD Panel on the site to show of GPU Stats and Gifs. THANK YOU! Click OK twice and restart the computer. If registration is within 90 days of the purchase date and you are the 2021-10-04 09:37 - 2021-10-04 09:37 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\Macromedia 2021-10-02 23:26 - 2019-03-19 13:20 - 000415232 _____ (Windows Win 7 DDK provider) C:\Windows\system32\DXCpl.exe "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7758a3fe-bd22-4403-acda-05ae12b2505a}" => removed successfully BIOS: American Megatrends International, LLC. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{a1c5790b-b106-45b9-9d9c-0442f6ab1b08}" => removed successfully Task: {19e78c37-4706-4ee6-b14f-00a377e1761c} - no filepath 2021-10-18 13:16 - 2021-10-24 17:02 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\TcNo Account Switcher 2021-10-12 19:23 - 2021-10-12 19:23 - 000000000 ____D C:\Program Files\Epic Games Universal CRT Redistributable (HKLM-x32\\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden 2021-10-20 14:50 - 2021-10-20 14:50 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.sys Task: {204d0e3a-f218-488d-b696-4b0f49357ce1} - no filepath Task: {f99694c5-bf64-4109-a138-067cb4c7d2e7} - no filepath 2021-10-04 09:35 - 2021-02-13 04:24 - 000205552 _____ (Ray Hinchliffe) C:\Windows\system32\Drivers\SIVX64.sys 2021-10-15 11:58 - 2021-10-15 11:58 - 000000000 ____D C:\Users\Pepega\Documents\XuanZhi 0.0.0.0 redir.metaservices.microsoft.com Task: {51f29cff-5f75-43a6-8c78-2970cd2f96ac} - no filepath Framework Version: v4.0.30319 Task: {6298650e-c3bc-47e3-a571-b4eea94ac419} - no filepath Address: 17358 Railroad Street City of Industry, CA 91748 TEL: 1-626-8549338 Option 4 More Online Support How to find model name / serial number "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{d7495c49-8426-461c-8455-350522fba9cb}" => removed successfully Task: {cf65bcb3-58fb-4f8a-ad70-57403d1f5d1f} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4de67c63-be14-4dd1-af32-f53029177ebc}" => removed successfully WebA Customers may purchase an AORUS Extended Warranty at the time of registration for eligible product. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{cf65bcb3-58fb-4f8a-ad70-57403d1f5d1f}" => removed successfully Severity: Medium Task: {a1c5790b-b106-45b9-9d9c-0442f6ab1b08} - no filepath Resetting , OK! 2021-10-15 11:55 - 2021-10-15 11:55 - 000000000 ____D C:\Users\Pepega\AppData\Local\BlueStacks "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{e2e2a07e-8ce9-45bf-94db-a91755d15155}" => removed successfully Task: {65f6d357-0576-4835-8e37-d12ac62b76e0} - no filepath Task: {48ae682f-228f-4e67-8aa4-854778a3a6a2} - no filepath Task: {6d29bb8b-f135-47e9-9ff9-392b06a68bf3} - no filepath Task: {0D800AA5-1B39-4310-BE91-74EBCFD0DB76} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {a4a7b095-aaa9-401c-a9d7-8abe8ea301af} - no filepath Task: {23df4797-0507-44e3-9c41-f5d1be966072} - no filepath 2021-10-02 23:25 - 2021-10-04 18:19 - 000000000 ____D C:\Windows\SysWOW64\1049 Task: {46ee8f94-e240-420c-a5e8-0660f5c5f9e1} - no filepath Resetting , OK! ===================== Drivers (Whitelisted) =================== Universal General MIDI DLS Extension SDK (HKLM-x32\\{A7E95C47-B5F4-110C-D27A-DECB03412B96}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden 2021-10-02 22:55 - 2021-10-04 18:28 - 000000000 ___RD C:\Users\Pepega\3D Objects 2021-10-05 09:55 - 2021-10-08 11:46 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service KeePassXC (HKLM\\{89472929-1ED2-410F-B9CC-974CEE93800E}) (Version: 2.6.6 - KeePassXC Team) 2021-10-22 18:11 - 2021-10-22 18:11 - 000000031 _____ C:\Users\Pepega\Desktop\fn name.txt go to : C:\Program Files (x86)\GIGABYTE\AORUS LCD Panel Microsoft Web Deploy 4.0 (HKLM\\{2EC26D34-FB67-4C58-AC20-235697551222}) (Version: 10.0.3802 - Microsoft Corporation) 2021-10-18 19:32 - 2019-12-19 18:07 - 002877104 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll Please re-enable javascript to access full functionality. The following corrective action will be taken in 3 milliseconds: Restart the service. Task: {44e64ec2-07de-480c-b391-0e70d56ee3de} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{e0ba60f1-d26f-4185-8bb0-04b05678ff5a}" => removed successfully CustomCLSID: HKU\S-1-5-21-326566074-3447909417-183555969-1001_Classes\CLSID\{80172dde-4e20-4df0-81a2-0a48553e80bb}\localserver32 -> C:\Users\Pepega\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (A-Volute SAS -> A-Volute) "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7d4dac2b-fbf4-45de-adae-6a9396b9ca9c}" => removed successfully 2021-10-14 17:26 - 2021-10-14 17:26 - 000058304 _____ C:\Windows\system32\Drivers\49306c4f52694d326545524e61315a68555667314e6a6c4662576c51524768434e6b7056.sys "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{c4718da2-1857-4507-932c-28593e4e8294}" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66f5635a-5bb6-4432-8d29-d7d2f625b98a}" => removed successfully 2021-10-04 18:28 - 2021-10-04 18:28 - 000103648 _____ C:\Windows\productkey.bat 2021-10-15 11:58 - 2021-10-15 11:58 - 000000803 _____ C:\Users\Pepega\Desktop\LDPlayer4.lnk Name: SettingsModifier:Win32/PossibleHostsFileHijack vs_minshellinteropsharedmsi (HKLM-x32\\{6A4F2879-CFBC-4023-8C00-75E2ED65E0C9}) (Version: 17.0.31709 - Microsoft Corporation) Hidden at System.Windows.Forms.Clipboard.GetDataObject(Int32, Int32) Task: {e62b268c-ea0c-4217-bfa2-7bd1145ba5a0} - no filepath Task: {6d29bb8b-f135-47e9-9ff9-392b06a68bf3} - no filepath Task: {2d5dd02e-d989-436b-a3d0-b2283ce2c942} - no filepath Bluetooth Network Connection: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) Edge Profile: C:\Users\Pepega\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-24] Faulting application start time: 0x01d7c8b2547f9944 2021-10-13 22:14 - 2021-10-07 19:27 - 008722576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll R3 gdrv3; C:\Windows\gdrv3.sys [36352 2021-10-20] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {cf65bcb3-58fb-4f8a-ad70-57403d1f5d1f} - no filepath 2021-10-03 15:48 - 2021-10-24 19:36 - 000000006 ____H C:\Windows\Tasks\SA.DAT ==================== FirewallRules (Whitelisted) ================ RGB Fusion with Digital LEDs comes with 9 new patterns and various speed settings with more to come. Task: {a1c5790b-b106-45b9-9d9c-0442f6ab1b08} - no filepath CloseProcesses: "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{b086bb79-9ed7-4043-ab6c-148342fcf383}" => removed successfully S4 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [434424 2021-10-24] (Microsoft Windows -> Microsoft Corporation) Date: 2021-10-24 15:35:53.933 Python 3.9.5 Standard Library (64-bit) (HKLM\\{F4DC18F4-6323-4BE8-A322-38268831BC24}) (Version: 3.9.5150.0 - Python Software Foundation) Hidden Task: {9787f435-46f9-458d-9737-9ba0cb4bc234} - no filepath ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) 2021-10-02 23:34 - 2021-10-02 23:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits Task: {4de67c63-be14-4dd1-af32-f53029177ebc} - no filepath Resetting , OK! 2021-10-02 23:04 - 2021-10-02 23:04 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} FirewallRules: [{7AD4F43C-4369-433E-B2EC-A10468B9A5B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) Ran by Pepega (25-10-2021 08:46:25) Run:1 HKU\S-1-5-21-326566074-3447909417-183555969-1001\\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33435616 2021-10-12] (Epic Games Inc. -> Epic Games, Inc.) =========== "C:\WINDOWS\system32\*.tmp" ========== Task: {95bbc0e1-37d1-403e-badd-d7f7c4fc36d1} - no filepath Severity: Medium Error: Unable to rebuild performance counter setting from system backup store, error code is 2 Description: Faulting application name: Windows Driver Installation Service.exe, version: 10.0.100.100, time stamp: 0x6174a237 2021-10-21 12:44 - 2021-10-21 12:44 - 000058304 _____ C:\Windows\system32\Drivers\49306c4f52694e4552323830615856545245354261476c4f516b4658556c5a5163446b33.sys 2021-10-02 23:01 - 2021-10-02 23:01 - 000000000 ____D C:\Users\Pepega\AppData\Local\setup AMD Ryzen Master (HKLM\\AMD Ryzen Master) (Version: 2.8.0.1937 - Advanced Micro Devices, Inc.) Task: {9b1a2e00-1c51-45d5-b5e4-9257d58cc2fe} - no filepath Date: 2021-10-24 15:35:53.912 ======== FF ProfilePath: C:\Users\Pepega\AppData\Roaming\Mozilla\Firefox\Profiles\q42kwfcc.default-release [2021-10-24] 2021-10-24 14:56 - 2019-03-19 15:52 - 000000000 ____D C:\Windows\AppReadiness "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{95d6d4ae-89c2-47b7-947d-0a2c92579474}" => removed successfully Task: {7ef13d49-f1cb-4454-af1c-a7a9e880a031} - no filepath Python 3.9.5 Tcl/Tk Support (64-bit symbols) (HKLM\\{9F0D0DF1-B4D0-4760-A174-0CFF5C09D758}) (Version: 3.9.5150.0 - Python Software Foundation) Hidden It has done this 1 time(s). Task: {68912dca-04b7-43b9-b125-ab2888148ebb} - no filepath 2021-10-03 09:12 - 2021-10-03 09:12 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\NuGet Task: {00f722c3-08dc-4b10-b10e-91a3004714f3} - no filepath 2021-10-13 22:14 - 2021-10-07 19:32 - 001874648 _____ C:\Windows\system32\vulkaninfo.exe ==================== Other Areas =========================== Microsoft Edge (HKLM-x32\\Microsoft Edge) (Version: 95.0.1020.30 - Microsoft Corporation) Detection Type: Concrete Task: {a68a203b-7eaa-4914-a565-5ff9759ae2a4} - no filepath C:\Windows\SysWOW64\Windows Driver Installation Service vs_minshellinteropx64msi (HKLM\\{A7A6A240-932C-4296-931C-41ADE118B13F}) (Version: 17.0.31703 - Microsoft Corporation) Hidden 2021-10-22 11:44 - 2021-10-22 11:44 - 000000000 ____D C:\Program Files\Riot Vanguard Task: {8457ad0b-1c75-431d-a5ae-ee1aed76a239} - no filepath Task: {2d5dd02e-d989-436b-a3d0-b2283ce2c942} - no filepath Solution: Close the Dell Digital Delivery application, launch Internet Explorer and attempt to navigate to any website. FirewallRules: [{6044C6B5-9B61-4F44-874F-BF6511DBDB68}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {53092fd3-455c-4d74-9110-8a5211ddb6c2} - no filepath Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 25-10-2021 08:47:26) Detection Origin: Local machine "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{bb2029d9-cbf0-4ee3-aa1b-fbafda7b399a}" => removed successfully Startup: C:\Users\Pepega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Thing2.bat [2021-10-24] () [File not signed] I have just completed what you have told me to do, and it seems to be working. Universal CRT Extension SDK (HKLM-x32\\{4D69FB64-4443-F2DD-DE1C-F14FD98AAC59}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Epic Online Services (HKLM-x32\\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) Category: Settings Modifier at System.Threading.ThreadHelper.ThreadStart() Microsoft System CLR Types for SQL Server 2019 (HKLM\\{5BC7E9EB-13E8-45DB-8A60-F2481FEB4595}) (Version: 15.0.2000.5 - Microsoft Corporation) go to : C:\Program Files (x86)\GIGABYTE\AORUS LCD Panel Setting\Updater and run FWUpgrade.exe, you will see the progress and after completion, it will ask you to shutdown, click yes and the turn on the pc again. my os is win10 x64, 2004. goodluck. I have the 3090 and I do not see that folder. 2021-10-02 23:47 - 2021-10-02 23:47 - 000000000 ____D C:\Users\Pepega\AppData\Local\Steam "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{23df4797-0507-44e3-9c41-f5d1be966072}" => removed successfully Task: {d9c6b67e-9dbb-4ba4-ad4b-5aecb6889d08} - no filepath 2021-10-02 23:25 - 2021-10-04 18:19 - 000000000 ____D C:\Windows\SysWOW64\1040 2021-10-15 11:58 - 2021-10-15 11:58 - 000000827 _____ C:\Users\Pepega\AppData\Roaming\Microsoft\Windows\Start Menu\LDPlayer4.lnk "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F7197523-B9AE-42F6-9BCD-3487235CDA82}" => removed successfully vs_minshellx64msi (HKLM\\{5F5AAF1B-FD08-4AEB-A170-600545D57EF5}) (Version: 17.0.31709 - Microsoft Corporation) Hidden "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1539d558-2bfa-453d-a38e-aa8bbec05194}" => removed successfully Error: (10/24/2021 07:35:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Python 3.9.5 Tcl/Tk Support (64-bit) (HKLM\\{351016A7-AED4-4824-8D2E-2F9ED497CF77}) (Version: 3.9.5150.0 - Python Software Foundation) Hidden "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2a965443-ec13-4b75-abf9-394d697f739d}" => removed successfully Task: {E2F1A91A-7C7E-4500-92A5-65707C268116} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation) 2021-10-02 23:25 - 2021-10-04 18:19 - 000000000 ____D C:\Windows\system32\1036 C:\Windows\SysWOW64\Windows Driver Installation Service => moved successfully 2021-10-15 11:59 - 2021-10-15 11:59 - 000000068 _____ C:\Users\Pepega\AppData\Roaming\changzhi_leidian.data ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) 2021-10-18 20:24 - 2021-10-18 20:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Ryzen Master HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) 2021-10-22 11:43 - 2021-10-22 11:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games Task: {6c61cc2f-6bf1-4d13-9cc0-dd2cf2ba3087} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{38c61830-b1df-4717-ae92-954fefd27747}" => removed successfully (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Users\Pepega\Downloads\NPE.exe vs_devenvsharedmsi (HKLM-x32\\{50BACB43-F405-4D93-B102-DE47540F2A07}) (Version: 17.0.31703 - Microsoft Corporation) Hidden For more information please see the following:https://go.microsoft.com/fwlink/?linkid=37020&name=SettingsModifier:Win32/PossibleHostsFileHijack&threatid=14994&enterprise=0 "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6c61cc2f-6bf1-4d13-9cc0-dd2cf2ba3087}" => removed successfully 2021-10-02 23:03 - 2021-10-02 23:03 - 000000000 ____D C:\Windows\system32\lxss Task: {53b08e97-673e-4df6-ae10-9a73f6648a6c} - no filepath Description: CMD: ipconfig /flushDNS 2021-10-04 18:09 - 2021-10-04 18:09 - 000008192 _____ C:\Windows\system32\config\userdiff Resetting Path, OK! Error: (10/24/2021 07:36:20 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) 2021-10-13 22:14 - 2021-10-07 19:32 - 000965336 _____ C:\Windows\SysWOW64\vulkan-1.dll 2021-10-02 23:25 - 2021-10-02 23:26 - 000000000 ____D C:\Windows\system32\1042 Task: {dceb985f-25eb-484d-ae30-6da7f11e1091} - no filepath Windows Defender: ALASKA - 1072009 06/22/2021 Task: {2C3E54F2-A4EE-472C-97AA-1BE4BC6F53B4} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation) Task: {9ab420ae-8543-428c-9838-410f79c8d585} - no filepath Task: {b3eb79cd-689d-4158-bea3-8771c38a327c} - no filepath Microsoft Update Health Tools (HKLM\\{8A6AB459-CB4B-4D09-8C1E-337FB59135C4}) (Version: 2.84.0.0 - Microsoft Corporation) Error: (10/24/2021 07:28:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) CustomCLSID: HKU\S-1-5-21-326566074-3447909417-183555969-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Pepega\AppData\Local\Microsoft\OneDrive\21.170.0822.0002\amd64\FileSyncShell64.dll => No File vs_filehandler_x86 (HKLM-x32\\{84E8F6CC-49D4-45C4-8AD6-18F123873643}) (Version: 17.0.31709 - Microsoft Corporation) Hidden (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe Running from C:\Users\Pepega\Downloads (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe Resetting Resolve Neighbor, OK! 2021-10-02 23:02 - 2021-10-07 19:28 - 000792208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{80442d75-04ca-4d81-8c53-a52f6d4b32b0}" => removed successfully 2021-10-15 11:59 - 2021-10-15 11:59 - 000000068 _____ () C:\Users\Pepega\AppData\Roaming\changzhi_leidian.data ========================================================== Error description: The handle is invalid. ==================== Security Center ======================== ENE_X_AIC_HAL (HKLM-x32\\{ec10ac91-2e61-460a-b493-33f794a07682}) (Version: 1.0.4.0 - ENE TECHNOLOGY INC.) Hidden Boot Mode: Normal Resetting Proxy Neighbor, OK! Task: {57f92185-4f7e-4549-bf72-8ded737637ee} - no filepath Task: {572eb39c-ac47-4eda-a21b-d776650fa302} - no filepath Task: {10914230-EDDF-4324-BD6D-2A05C1496959} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation) Resetting Control Protocol, OK! Task: {cd558596-f4ee-4e6a-a00e-029783722e00} - no filepath Faulting process id: 0x3860 For more information please see the following:https://go.microsoft.com/fwlink/?linkid=37020&name=SettingsModifier:Win32/PossibleHostsFileHijack&threatid=14994&enterprise=0 0.0.0.0 telemetry.urs.microsoft.com Task: {8f7674a6-0b05-416d-8dc8-bba2f61cad8c} - no filepath FirewallRules: [UDP Query User{0A8BBE95-3686-4B16-8A84-FCFD22173BE9}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)