2021-10-02 23:04 - 2021-09-14 14:39 - 002838384 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll Path: file:_C:\Windows\System32\drivers\etc\hosts "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F7197523-B9AE-42F6-9BCD-3487235CDA82}" => removed successfully Now my pc wont boot into unto windows and stays on the aorus symbol screen. Task: {2d5dd02e-d989-436b-a3d0-b2283ce2c942} - no filepath Resetting , failed. FirewallRules: [TCP Query User{3D3D13C6-EB42-4BF7-9989-E995CB143820}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) !go to the folder C:\Program Files (x86)\GIGABYTE\AORUS LCD Panel Setting\Updater\ right Python 3.9.5 Utility Scripts (64-bit) (HKLM\\{420E50F6-A8E8-4098-A321-7DF6B3C3BA82}) (Version: 3.9.5150.0 - Python Software Foundation) Hidden HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION vs_minshellsharedmsi (HKLM-x32\\{3113CCA8-60A5-476A-93E6-0992CE618C16}) (Version: 17.0.31709 - Microsoft Corporation) Hidden Task: {9b1a2e00-1c51-45d5-b5e4-9257d58cc2fe} - no filepath 2021-10-13 22:14 - 2021-10-07 19:27 - 000452224 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe Task: {b30dbf6f-75b4-422c-82ed-f93cae0f7dec} - no filepath C:\Users\Pepega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Thing.bat => moved successfully 2021-10-24 14:03 - 2021-10-24 14:03 - 000058304 _____ C:\Windows\system32\Drivers\49306c4f52694d3361565a36626b5a525132647563586434536a6c474d586f3054584670.sys Task: {f746fb73-bc4d-499e-882f-e5f30abe8a2f} - no filepath Task: {38c61830-b1df-4717-ae92-954fefd27747} - no filepath FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-10-16] (Adobe Inc. -> Adobe Systems) 2021-10-04 18:28 - 2021-10-04 18:28 - 000103648 _____ C:\Windows\productkey.bat Task: {4596b534-45a4-4c4e-93a8-e4c01a69090e} - no filepath 2021-10-02 23:47 - 2021-10-02 23:47 - 000000000 ____D C:\Users\Pepega\AppData\Local\Steam "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4972aadd-d0db-4681-984f-17b847488bc9}" => removed successfully It has done this 1 time(s). AMD Chipset Software (HKLM-x32\\AMD_Chipset_IODrivers) (Version: 2.15.07.2229 - Advanced Micro Devices, Inc.) Date: 2021-10-24 15:35:27.734 Task: {68912dca-04b7-43b9-b125-ab2888148ebb} - no filepath 2021-10-05 09:55 - 2021-10-08 09:32 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk Call of Duty Modern Warfare (HKLM-x32\\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) 2021-10-13 22:14 - 2021-10-07 19:29 - 000635008 _____ C:\Windows\SysWOW64\nvofapi.dll IntelliTraceProfilerProxy (HKLM-x32\\{C8891AD2-C223-45CD-A9BE-617A68923B61}) (Version: 15.0.21225.01 - Microsoft Corporation) Hidden Task: {ab7dbf26-2e26-445a-a7dd-f60ac12f19a6} - no filepath C:\Windows\Temp\MpSigStub.log => moved successfully Description: The WinRing0_1_2_0 service failed to start due to the following error: The tool will create a log (Fixlog.txt) please post it to your reply. Exception code: 0xe0434352 2021-10-04 09:37 - 2021-10-04 09:37 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\Macromedia "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{80442d75-04ca-4d81-8c53-a52f6d4b32b0}" => removed successfully VS Immersive Activate Helper (HKLM-x32\\{C0ACF658-B4DC-4CBB-B8F2-9E667D69919A}) (Version: 17.0.114.0 - Microsoft Corporation) Hidden It has done this 2 time(s). "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{bab92bdb-173c-46a1-aad1-e84ad4e1371c}" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{bb2029d9-cbf0-4ee3-aa1b-fbafda7b399a}" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{fc60ad33-5948-48d9-9f11-c6ca25373a9c}" => removed successfully Fault offset: 0x000000000003a839 This error could be caused if the system stopped responding, crashed, or lost power unexpectedly. Universal CRT Redistributable (HKLM-x32\\{A57CD0A6-4297-FD30-34A4-34758B6F5F69}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Realtek Audio Driver (HKLM-x32\\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9210.1 - Realtek Semiconductor Corp.) "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4204c90d-5097-480b-ab90-0cff3c443b89}" => removed successfully Task: {b19f8042-93dc-47e1-87f7-7ad8cb0032d9} - no filepath vs_communityx64msi (HKLM\\{CCDBCB7A-75E1-4F9E-AC6C-3F8C6A5D60F7}) (Version: 17.0.31710 - Microsoft Corporation) Hidden 0.0.0.0 watson.ppe.telemetry.microsoft.com 0.0.0.0 services.wes.df.telemetry.microsoft.com my solution: dont install any gpu tools like: aorus engine / msi aftburner or other. Task: {a2a9bb80-76ce-4752-9e44-f43e01b26a35} - no filepath Bluetooth Network Connection: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) 2021-10-02 23:01 - 2021-10-02 23:01 - 000000000 ____D C:\Users\Pepega\AppData\Local\cache 2021-08-23 15:07 - 2021-08-23 15:07 - 000423936 _____ (TODO: ) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvLedLib.dll Task: {6902881d-a9ea-4ce3-9977-eac42438e59f} - no filepath Faulting package full name: CustomCLSID: HKU\S-1-5-21-326566074-3447909417-183555969-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> "C:\Users\Pepega\AppData\Local\Microsoft\OneDrive\21.170.0822.0002\Microsoft.SharePoint.exe" => No File 2021-10-13 22:14 - 2021-10-07 19:29 - 000800384 _____ C:\Windows\system32\nvofapi64.dll FirewallRules: [{EF3E048A-7A4B-4F8B-8146-DAC25B77EE95}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) (Wen Jia Liu -> wj32) C:\Program Files\Process Hacker 2\ProcessHacker.exe "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{132c3361-2a8c-4a3a-a81d-208c0f31a908}" => removed successfully HKU\S-1-5-21-326566074-3447909417-183555969-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C} => removed successfully at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) 2021-10-02 23:04 - 2021-10-02 23:04 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} Reason: The filter driver was unloaded unexpectedly. vs_devenx64vmsi (HKLM\\{FFB375B2-E93B-410C-991D-153C8E588F22}) (Version: 17.0.31703 - Microsoft Corporation) Hidden Task: {95d6d4ae-89c2-47b7-947d-0a2c92579474} - no filepath Faulting module path: D:\Cheetos\Woofing\Cinx Archieves\SinEx 4.2.0 [BETA]\SinEx 4.2.0 BETA Woofer [All Winver].exe The following corrective action will be taken in 60000 milliseconds: Restart the service. Description: "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1e6a4e2b-eca4-4162-8baf-5e2cbc56f0a8}" => removed successfully CustomCLSID: HKU\S-1-5-21-326566074-3447909417-183555969-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Pepega\AppData\Local\Microsoft\OneDrive\21.170.0822.0002\amd64\FileSyncShell64.dll => No File Task: {d2d2fbec-f7b4-41b4-9251-9cfdc41d781f} - no filepath 2021-10-24 14:31 - 2021-10-24 14:31 - 000000000 ____D C:\Program Files\Reference Assemblies "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{68703689-47bd-47ee-9cf2-e91abb43a182}" => removed successfully Task: {204d0e3a-f218-488d-b696-4b0f49357ce1} - no filepath Reboot: Please post the Fixlog.txt and let me know what problem persists. Task: {60deadb4-207d-4623-826b-8aef456e994f} - no filepath Task: {132c3361-2a8c-4a3a-a81d-208c0f31a908} - no filepath Microsoft Update Health Tools (HKLM\\{8A6AB459-CB4B-4D09-8C1E-337FB59135C4}) (Version: 2.84.0.0 - Microsoft Corporation) Error: (10/24/2021 06:01:46 PM) (Source: DCOM) (EventID: 10010) (User: Avalanche-14329) WebOpen Hours: Monday Saturday, 8:00 a.m. 6:00 p.m. Login Register; Home; Contact Us i tried using the tron script (utilizes hitman pro, malwarebytes, and kaspersky) but it only temporarily solved the issue. R3 gdrv3; C:\Windows\gdrv3.sys [36352 2021-10-20] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) 2021-10-02 22:50 - 2019-03-19 15:52 - 000000000 ____D C:\ProgramData\USOPrivate ========= End -> "C:\WINDOWS\system32\*.tmp" ======== Stage:GATHER_RULES_FROM_LICENSES 2021-10-07 12:11 - 2021-10-07 12:11 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER AMD_Chipset_Drivers (HKLM-x32\\{c370a4bd-5e86-489d-b1a5-54ceee532d20}) (Version: 2.15.07.2229 - Advanced Micro Devices, Inc.) Hidden 2021-10-15 11:55 - 2021-10-15 11:55 - 000000000 ____D C:\Users\Pepega\AppData\Local\BlueStacksSetup 2021-10-24 12:15 - 2021-10-24 12:15 - 000000000 ____D C:\Program Files (x86)\Print driver host for applications "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8a8c9b4d-3ba3-4f5f-8da4-8714c002e24f}" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{bc549475-73a3-47b9-8e8c-cce95c3b76c2}" => removed successfully Category: Settings Modifier 2021-10-05 09:55 - 2021-10-05 09:55 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\Mozilla 2021-10-04 18:19 - 2019-03-19 15:52 - 000000000 ____D C:\Windows\LiveKernelReports Task: {b3eb79cd-689d-4158-bea3-8771c38a327c} - no filepath 2021-10-02 23:02 - 2021-10-07 19:28 - 000792208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SnippingTool.exe Engine Version: AM: 1.1.18600.4, NIS: 1.1.18600.4 at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) Reason:0xC004F011 if you guys know how to remove these types of files please reply, thanks. (Currently there is no automatic fix for this section.) "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6d29bb8b-f135-47e9-9ff9-392b06a68bf3}" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ed48b1d9-cb70-4ae5-8deb-ce6ddd63422a}" => removed successfully HKU\S-1-5-21-326566074-3447909417-183555969-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E} => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{134fdbcd-c972-40e5-a39b-91c169e4c9bf}" => removed successfully 2021-10-13 22:14 - 2021-10-07 19:28 - 000564352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll WebAORUS Gaming Motherboards will support either 5v or 12v digital LED strips. ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) In bios, its not showing up all of my SSDs, but at no point is it Task: {16be7f3f-fa2f-44f1-b9e0-bb9be341d6ea} - no filepath Policies: C:\Users\Pepega\NTUSER.pol: Restriction <==== ATTENTION Task: {55b76d6d-fbf6-450e-a24e-071e1db9f945} - no filepath Detection Source: Real-Time Protection Task: {ca0fb10b-e917-4aa5-9e3a-f6a019682f3f} - no filepath 2021-10-13 22:14 - 2021-10-07 19:32 - 000965336 _____ C:\Windows\SysWOW64\vulkan-1.dll Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Task: {e2e2a07e-8ce9-45bf-94db-a91755d15155} - no filepath HKLM\\StartupApproved\Run: => "SecurityHealth" Battle.net (HKLM-x32\\Battle.net) (Version: - Blizzard Entertainment) go to : C:\Program Files (x86)\GIGABYTE\AORUS LCD Panel Setting\Updater and run Updater.exe, check if it is "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{d41d49ee-176e-4547-bd74-93495b181988}" => removed successfully 2021-10-03 09:18 - 2021-10-24 10:14 - 000000000 ____D C:\Program Files (x86)\Call of Duty Modern Warfare FirewallRules: [{4AE2A4DF-F2A8-4220-B0E2-D6204D68459E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.30\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) Task: {6298650e-c3bc-47e3-a571-b4eea94ac419} - no filepath 2021-10-02 22:55 - 2021-10-04 18:28 - 000000000 ___RD C:\Users\Pepega\3D Objects ==================== SigCheck ============================ 2021-10-04 18:19 - 2019-03-19 15:52 - 000000000 ____D C:\Windows\system32\spool FF Extension: (Kurgzsekseta) - C:\Users\Pepega\AppData\Roaming\Mozilla\Firefox\Profiles\q42kwfcc.default-release\Extensions\{e8f3b919-d290-4270-b66f-29f3fdbb1986}.xpi [2021-10-05], Startup: C:\Users\Pepega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Thing2.bat [2021-10-24] () [File not signed]. Close the Dell Digital Delivery application. 2021-10-15 11:59 - 2021-10-15 11:59 - 000000128 _____ C:\Users\Pepega\AppData\Roaming\changzhi_leidianmac.data Task: {68703689-47bd-47ee-9cf2-e91abb43a182} - no filepath ======== 2021-10-04 18:19 - 2019-03-19 15:52 - 000000000 ____D C:\Windows\ServiceState FF Extension: (vidIQ Vision for YouTube) - C:\Users\Pepega\AppData\Roaming\Mozilla\Firefox\Profiles\q42kwfcc.default-release\Extensions\firefox@vid.io.xpi [2021-10-23] Framework Version: v4.0.30319 2021-10-22 11:43 - 2021-10-22 11:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games 2021-10-02 23:36 - 2021-10-24 17:28 - 000000000 ____D C:\Users\Pepega\AppData\Local\.IdentityService 0.0.0.0 choice.microsoft.com.nstac.net Task: {F30C20EC-C71A-406B-A23E-8B958ACE878E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation) Resetting Potential, OK! 2021-10-13 22:14 - 2021-10-07 19:29 - 000656512 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1a105416-49db-4c94-a1d7-5a3597878e9a}" => removed successfully 2021-10-02 23:25 - 2021-10-02 23:26 - 000000000 ____D C:\Windows\SysWOW64\1031 ==================== Registry (Whitelisted) =================== "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4596b534-45a4-4c4e-93a8-e4c01a69090e}" => removed successfully FirewallRules: [{E2EA9D77-F4B6-46E6-94CF-DAE772492424}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) Resetting Global, OK! R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2021-10-20] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd) 2021-10-16 20:46 - 2021-10-16 20:46 - 000001130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2021.lnk 2021-10-24 14:57 - 2021-10-24 14:57 - 000000000 ____D C:\Users\Pepega\AppData\Local\mbamtray Task: {bc549475-73a3-47b9-8e8c-cce95c3b76c2} - no filepath vs_Graphics_Singletonx86 (HKLM-x32\\{7DDDDC70-9531-49E9-8002-9FAB2B87B54A}) (Version: 17.0.31710 - Microsoft Corporation) Hidden ==================== MBR & Partition Table ==================== Task: {0DBCA93D-0FE2-4CED-B180-4ED80B676444} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Rangeley Snowmobile Trail Map,
Sir Humphrey Gilbert Family Tree,
Articles T