the aorus lcd panel service service terminated unexpectedly

Task: {51006d50-cfd3-4b5a-af95-e596678bbea8} - no filepath HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 2021-10-02 23:25 - 2021-10-04 18:19 - 000000000 ____D C:\Windows\system32\1036 Task: {9ab420ae-8543-428c-9838-410f79c8d585} - no filepath FireFox: Task: {fc60ad33-5948-48d9-9f11-c6ca25373a9c} - no filepath Loaded Profiles: Pepega 2021-10-24 14:57 - 2021-10-24 15:28 - 000000000 ____D C:\ProgramData\Malwarebytes "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{a4a7b095-aaa9-401c-a9d7-8abe8ea301af}" => removed successfully Faulting module path: C:\Windows\System32\KERNELBASE.dll Policies: C:\Users\Pepega\NTUSER.pol: Restriction <==== ATTENTION 2021-10-15 11:58 - 2021-10-15 11:58 - 000000803 _____ C:\Users\Pepega\Desktop\LDPlayer4.lnk if you guys know how to remove these types of files please reply, thanks. 2021-10-13 16:20 - 2021-10-13 16:20 - 000001422 _____ C:\Users\Pepega\Desktop\Roblox Player.lnk Desktop PC Gaming Peripherals Premium Components Gaming Motherboards Premium Graphics Cards Gaming Laptops WebUpon reboot I was stuck at the aorus loading screen prior to booting into windows (I have a gigabyte x570 aorus elite). Resetting , OK! (Currently there is no automatic fix for this section.) Im trying to get the LCD panel on the side of the graphics card to display the temps and clock speed of the GPU. Policies: C:\Users\Pepega\NTUSER.pol: Restriction <==== ATTENTION For more information please see the following:https://go.microsoft.com/fwlink/?linkid=37020&name=SettingsModifier:Win32/PossibleHostsFileHijack&threatid=14994&enterprise=0 Detection Origin: Local machine 2021-10-13 16:20 - 2021-10-13 16:21 - 000000000 ____D C:\Users\Pepega\AppData\Local\Roblox Process Name: C:\Users\Pepega\AppData\Local\Discord\app-1.0.9003\Discord.exe 2021-10-02 23:44 - 2021-10-24 12:19 - 000000000 ____D C:\Users\Pepega\AppData\Local\Battle.net WinRT Intellisense UAP - Other Languages (HKLM-x32\\{8832F8ED-1035-9ABE-FD73-4E5ABAA84A5C}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Task: {3b6b25a5-1bf5-48bb-81f3-5e306db688ba} - no filepath at System.Windows.Forms.Clipboard.ThrowIfFailed(Int32) 2021-10-15 11:56 - 2021-10-15 11:56 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\lddownloader "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{16be7f3f-fa2f-44f1-b9e0-bb9be341d6ea}" => removed successfully at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{a2a9bb80-76ce-4752-9e44-f43e01b26a35}" => removed successfully Python 3.9.5 Tcl/Tk Support (64-bit symbols) (HKLM\\{9F0D0DF1-B4D0-4760-A174-0CFF5C09D758}) (Version: 3.9.5150.0 - Python Software Foundation) Hidden Task: {0ed742eb-771d-447f-a4e4-64c6fd2882f4} - no filepath 1. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{19e78c37-4706-4ee6-b14f-00a377e1761c}" => removed successfully (If an entry is included in the fixlist, the file/folder will be moved.) WinRT Intellisense Desktop - en-us (HKLM-x32\\{BCF7CA0F-E53C-2A4F-B128-A751EC9A1016}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Task: {bd098352-5f63-4d2b-8e01-ba6a347a2975} - no filepath 2021-10-13 22:14 - 2021-10-07 19:26 - 000849040 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-10-07] (Microsoft Windows Publisher -> Microsoft Corporation) 2021-10-13 16:41 - 2021-10-13 17:14 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\Wireshark Python 3.9.5 Test Suite (64-bit symbols) (HKLM\\{F47D09A3-9226-47D6-A1E4-FDE02FAF24D0}) (Version: 3.9.5150.0 - Python Software Foundation) Hidden It has done this 1 time(s). WinRT Intellisense PPI - Other Languages (HKLM-x32\\{FF2B49B7-0254-3D6A-4BE0-EF4C59DBCC2B}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Error: (10/24/2021 08:19:57 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Task: {b2522ebf-6a65-406b-9bc7-1ce57d2a2c7c} - no filepath 2021-10-02 23:25 - 2021-10-04 18:19 - 000000000 ____D C:\Windows\system32\1029 ==================== Faulty Device Manager Devices ============ Feature: On Access 2021-10-02 23:25 - 2021-10-02 23:26 - 000000000 ____D C:\Windows\system32\2052 "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{55b76d6d-fbf6-450e-a24e-071e1db9f945}" => removed successfully ==================== Internet (Whitelisted) ==================== Task: {098ef5b0-108d-4923-9d7d-021a97ef1fba} - no filepath Call of Duty Modern Warfare (HKLM-x32\\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) 2021-10-16 20:46 - 2021-10-16 20:47 - 000000000 ____D C:\Users\Pepega\Documents\Adobe ENE_X_AIC_HAL (HKLM-x32\\{ec10ac91-2e61-460a-b493-33f794a07682}) (Version: 1.0.4.0 - ENE TECHNOLOGY INC.) Hidden The file will not be moved.) But i can not control 2021-10-13 22:14 - 2021-10-07 19:29 - 000656512 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll Task: {48ae682f-228f-4e67-8aa4-854778a3a6a2} - no filepath Report Id: 64ecc47b-71e8-4c87-b20e-bc86d1653042 Task: {964fea64-405c-411f-8d7c-f9b886d45580} - no filepath Task: {dfa6b7fe-8965-4d4f-9d9a-7abe5c5ee553} - no filepath 2021-10-02 23:02 - 2021-10-02 23:02 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\AMD ========= End of CMD: ========= Surround Lighting 2021-10-04 18:19 - 2019-03-19 15:52 - 000000000 ____D C:\Windows\ShellExperiences The system cannot find the file specified. After you have restarted the application, it will correctly indicate that your software is up to date or retrieve and install (Discord Inc. -> Discord Inc.) C:\Users\Pepega\AppData\Local\Discord\app-1.0.9003\Discord.exe <6> Task: {646144d0-0d5f-463c-aedc-cbc190d10525} - no filepath Resetting Global, OK! "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{358ba298-e9a3-4572-a1cd-6ec4e7b85984}" => removed successfully Task: {d2d2fbec-f7b4-41b4-9251-9cfdc41d781f} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{b44de6b6-1303-474b-bd1f-0c3e771de5d9}" => removed successfully vs_communitysharedmsi (HKLM-x32\\{5E09B4C5-4E18-411F-BEF1-33F15E2906CF}) (Version: 17.0.31709 - Microsoft Corporation) Hidden Bluetooth Network Connection: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) Task: {b7e27570-3f72-4ac2-b2ec-fd92b54c3a60} - no filepath SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC Resetting Proxy Neighbor, OK! 2021-10-03 15:47 - 2021-10-03 15:47 - 000000000 ____D C:\Windows\ServiceProfiles To see this start Windows and wait about 5 minutes. Task: {252c0390-ef87-47eb-805e-da800dd5671d} - no filepath Exception code: 0xe0434352 "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{f72e227f-a82a-46d0-b517-0dcc9c2c1947}" => removed successfully Error: (10/24/2021 07:38:08 PM) (Source: Software Protection Platform Service) (EventID: 8211) (User: ) ========================================================== 2021-10-18 19:33 - 2021-10-18 19:35 - 000000000 ____D C:\ProgramData\A-Volute Universal CRT Tools x86 (HKLM-x32\\{BD75F257-50A4-E0CD-9942-C3550CA3E66A}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden ***************** Task: {013418b8-2dc1-4fb4-9c18-21dcfcb620cb} - no filepath 2021-10-02 23:25 - 2021-10-04 18:19 - 000000000 ____D C:\Windows\SysWOW64\1029 End "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{57f92185-4f7e-4549-bf72-8ded737637ee}" => removed successfully Description: The WinRing0_1_2_0 service failed to start due to the following error: ALASKA - 1072009 06/22/2021 Microsoft System CLR Types for SQL Server 2019 (HKLM\\{5BC7E9EB-13E8-45DB-8A60-F2481FEB4595}) (Version: 15.0.2000.5 - Microsoft Corporation) Task: {252c0390-ef87-47eb-805e-da800dd5671d} - no filepath If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed. (If an entry is included in the fixlist, it will be removed from the registry. Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-10-22] (Microsoft Corporation) 2021-10-22 11:43 - 2021-10-22 11:43 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games Task: {1539d558-2bfa-453d-a38e-aa8bbec05194} - no filepath C:\Windows\Temp\ASPNETSetup_00001.log => moved successfully Error: (10/24/2021 06:01:55 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Task: {a4a7b095-aaa9-401c-a9d7-8abe8ea301af} - no filepath Aorus Engine was working fine and then just stopped after a day or two. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{f31abc37-3a79-4244-9a4b-03a808823654}" => removed successfully The following corrective action will be taken in 3 milliseconds: Restart the service. CMD: ipconfig /flushDNS Task: {b8ce6039-5202-4c0c-b706-9d55226ab086} - no filepath 2021-10-15 11:59 - 2021-10-15 11:59 - 000000068 _____ () C:\Users\Pepega\AppData\Roaming\changzhi_leidian.data Solution: Close the Dell Digital Delivery application, launch Internet Explorer and attempt to navigate to any website. You currently have javascript disabled. 2021-10-04 10:02 - 2021-10-04 10:02 - 000000000 ____D C:\Users\Pepega\AppData\Local\OO Software Epic Online Services (HKLM-x32\\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) Task: {78bdf1d8-0a82-4ea3-8ac6-e6a6e95fd874} - no filepath ========= "C:\Windows\SYSTEM32\lodctr.exe" /R ========= C:\Windows\SysWOW64\Windows Driver Installation Service Task: {646144d0-0d5f-463c-aedc-cbc190d10525} - no filepath Task: {f0e86eb7-a641-47fc-9528-df32545b183d} - no filepath Task: {e21ec10f-b0f2-4d8c-ac9d-e74491370460} - no filepath Wireshark 3.4.9 64-bit (HKLM-x32\\Wireshark) (Version: 3.4.9 - The Wireshark developer community, hxxps//www.wireshark.org) 2021-10-02 23:18 - 2021-10-02 23:18 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio 2021-10-02 23:04 - 2021-09-14 14:39 - 002186608 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2021-10-18 20:24 - 2021-10-18 20:24 - 000000000 ____D C:\ProgramData\AMD AutoUpdate 2021-10-18 19:32 - 2019-12-19 18:07 - 002877104 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll Python 3.9.5 Documentation (64-bit) (HKLM\\{4EFE695B-F377-4CB0-90E3-6AEEE22DEFEB}) (Version: 3.9.5150.0 - Python Software Foundation) Hidden Task: {378659c1-e595-42d5-9357-395cbc08c53b} - no filepath R2 AORUS LCD Panel Service; C:\Program Files (x86)\GIGABYTE\AORUS LCD Panel Setting\MonitorService-exec.exe [360960 2018-12-21] (CloudBees, Inc.) [File not signed] 2021-10-15 11:56 - 2021-10-15 12:04 - 000000000 ____D C:\Users\Pepega\AppData\Roaming\ChangZhi2 Task: {4fb942bf-3d44-41ff-bc65-52cd12996f26} - no filepath Resetting Compartment, OK! "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{b3eb79cd-689d-4158-bea3-8771c38a327c}" => removed successfully Microsoft .NET SDK 6.0.100-rc.1.21463.6 (x64) from Visual Studio (HKLM\\{4AAD2361-F734-4D15-B4D7-0B3F3051A02C}) (Version: 6.1.21.46306 - Microsoft Corporation) Task: {a2a9bb80-76ce-4752-9e44-f43e01b26a35} - no filepath Faulting process id: 0x2d74 2021-10-02 23:04 - 2021-10-02 23:04 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-24 14:37 - 2019-03-19 15:52 - 000000000 ____D C:\Program Files\Windows Defender 2021-10-03 15:49 - 2021-10-03 15:49 - 000000000 _SHDL C:\Documents and Settings Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) 2019-03-19 15:49 - 2021-10-24 15:25 - 000002820 _____ C:\Windows\system32\drivers\etc\hosts Task: {00f722c3-08dc-4b10-b10e-91a3004714f3} - no filepath "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{134fdbcd-c972-40e5-a39b-91c169e4c9bf}" => removed successfully Resetting , OK! Task: {977e0d72-710d-4264-bfbf-105f17f81aa3} - no filepath CustomCLSID: HKU\S-1-5-21-326566074-3447909417-183555969-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-558F93368B4C} -> [Creative Cloud Files] => C:\Users\Pepega\Creative Cloud Files [2021-10-16 20:42] 2021-10-01 15:07 - 2021-10-01 15:07 - 002045440 _____ (TODO: ) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\SMBCtrl.dll 2021-10-24 18:02 - 2021-10-24 20:25 - 000072704 _____ (Microsoft Windows Operating System) C:\Users\Pepega\AppData\Local\Update.exe Fix result of Farbar Recovery Scan Tool (x64) Version: 20-10-2021 Task: {d6cfa018-c9cc-40f6-8ae8-0b452b7908aa} - no filepath R1 npcap; C:\Windows\system32\DRIVERS\npcap.sys [74744 2021-04-22] (Insecure.Com LLC -> Insecure.Com LLC.) ============================================== ========= End of CMD: ========= Task: {90b432e7-5c87-425c-9dd5-33099e0e41c9} - no filepath 2021-10-02 23:46 - 2021-10-02 23:46 - 000000000 ____D C:\ProgramData\Blizzard Entertainment 2021-10-15 11:59 - 2021-10-15 11:59 - 000000000 ____D C:\Users\Pepega\.Ld2VirtualBox NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation) "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8c4fdb45-99dd-42f3-8984-07e5f8dff7f4}" => removed successfully Detection Origin: Local machine "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{d41d49ee-176e-4547-bd74-93495b181988}" => removed successfully ==================== Restore Points ========================= 2021-10-07 11:40 - 2021-10-07 11:40 - 000000000 ___HD C:\$WinREAgent 2021-10-24 12:15 - 2021-10-24 12:15 - 000000000 ____D C:\Program Files (x86)\Print driver host for applications And if the question was in general wich LCD Panel we mean. The Aorus Master 370 and 3080 have a LCD Panel on the site to show of GPU Stats and Gifs. THANK YOU! 2021-10-13 22:14 - 2021-10-07 19:32 - 001111256 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll Task: {7a44f97c-3b59-4a4b-a061-3e52f050d32e} - no filepath Description: R2 NahimicService; C:\Windows\system32\NahimicService.exe [1633288 2020-12-10] (A-Volute SAS -> Nahimic) 2021-10-16 20:39 - 2021-10-16 20:46 - 000000000 ____D C:\Program Files\Common Files\Adobe WinRAR 6.02 (64-bit) (HKLM\\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) Task: {d9c6b67e-9dbb-4ba4-ad4b-5aecb6889d08} - no filepath Faulting application start time: 0x01d7c8b2547f9944 Battle.net (HKLM-x32\\Battle.net) (Version: - Blizzard Entertainment) 2021-10-02 23:25 - 2021-10-04 18:19 - 000000000 ____D C:\Windows\system32\1040 2021-10-15 11:58 - 2021-10-15 11:58 - 000000000 ____D C:\Program Files\ldplayerbox ==================== Event log errors: ======================== 2021-10-02 23:04 - 2021-09-14 14:39 - 001293680 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll FirewallRules: [TCP Query User{CF0A0468-41A2-4CF4-BDA6-1586AE73104D}C:\windows\microsoft.net\framework64\v4.0.30319\vbc.exe] => (Allow) C:\windows\microsoft.net\framework64\v4.0.30319\vbc.exe (Microsoft Corporation -> Microsoft Corporation) 2021-10-24 20:41 - 2021-10-24 21:08 - 000119048 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SMR540.SYS Task: {c4718da2-1857-4507-932c-28593e4e8294} - no filepath ==================== Codecs (Whitelisted) ==================== 2021-10-15 11:40 - 2021-10-15 11:40 - 000003938 _____ C:\Windows\system32\Tasks\BlueStacksHelper_nxt Task: {e0ba60f1-d26f-4185-8bb0-04b05678ff5a} - no filepath Task: {48ae682f-228f-4e67-8aa4-854778a3a6a2} - no filepath (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> vs_devenvsharedmsi (HKLM-x32\\{50BACB43-F405-4D93-B102-DE47540F2A07}) (Version: 17.0.31703 - Microsoft Corporation) Hidden Faulting package-relative application ID: Task: {cf65bcb3-58fb-4f8a-ad70-57403d1f5d1f} - no filepath ENE_EHD_M2_HAL (HKLM\\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.8.13 - ENE TECHNOLOGY INC.) Hidden ?\C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [X] 2021-10-24 17:59 - 2021-10-24 18:15 - 000000000 ____D C:\Exotic 2.6 Update Entity Framework 6.2.0 Tools for Visual Studio 2022 (HKLM-x32\\{3A21F37E-9707-4E7F-94EB-2937A1C931FA}) (Version: 6.2.0.0 - Microsoft Corporation) Hidden 2021-10-02 23:26 - 2021-10-04 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 3.9 "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{e0ba60f1-d26f-4185-8bb0-04b05678ff5a}" => removed successfully 2021-03-09 14:00 - 2021-03-09 14:00 - 000205824 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\yccV3.DLL "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4d4276f1-945c-486b-b48f-62cda9b73d18}" => removed successfully S4 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {f31abc37-3a79-4244-9a4b-03a808823654} - no filepath Task: {11dec036-7e8b-4b5b-906d-51876287d3d1} - no filepath Path: file:_C:\Windows\System32\drivers\etc\hosts Task: {d41d49ee-176e-4547-bd74-93495b181988} - no filepath 2021-10-02 23:04 - 2021-10-02 23:04 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 0.0.0.0 oca.telemetry.microsoft.com.nsatc.net 2021-10-02 23:34 - 2021-10-02 23:34 - 000000000 ____D C:\Program Files\Application Verifier 2021-10-14 10:50 - 2021-10-14 17:35 - 000001229 ____H C:\Users\Pepega\AppData\Local\d89b27a4d89b27a4d89b Task: {6d29bb8b-f135-47e9-9ff9-392b06a68bf3} - no filepath Task: {66f5635a-5bb6-4432-8d29-d7d2f625b98a} - no filepath at System.Windows.Forms.Clipboard.ThrowIfFailed(Int32) Task: {e21ec10f-b0f2-4d8c-ac9d-e74491370460} - no filepath (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe 0.0.0.0 settings-sandbox.data.microsoft.com Microsoft Windows 10 Pro Version 1909 18363.418 (X64) (1970-01-01 06:34:12) ==================== One month (modified) ================== HKU\S-1-5-21-326566074-3447909417-183555969-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION 2021-10-03 15:47 - 2021-10-18 20:25 - 000270480 _____ C:\Windows\system32\FNTCACHE.DAT at System.Windows.Forms.Clipboard.GetDataObject(Int32, Int32) Path: file:_C:\Windows\System32\drivers\etc\hosts "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6902881d-a9ea-4ce3-9977-eac42438e59f}" => removed successfully