Dollar Tree Baskets For Gifts, Dickey Funeral Home Obituaries Laredo, Tx, Why Does A Scorpio Man Come Back, Tucker Carlson Originals, Articles D

Discord Virus is the collective term given to the malware programs found on the Discord app or distributed via Discord. =============== IFEO\Windows10UpgraderApp.exe: [Debugger] / Microsoft .NET Host - 6.0.6 (x64) (HKLM\\{F48FB46C-3334-47AA-98ED-D5A47DED33F1}) (Version: 48.27.42327 - Microsoft Corporation) Hidden (services.exe ->) (Code Sector -> ) C:\Program Files\TeraCopy\TeraCopyService.exe Error: (09/18/2022 11:21:01 PM) (Source: Bonjour Service) (EventID: 100) (User: ) qBittorrent 4.4.3 (HKLM-x32\\qBittorrent) (Version: 4.4.3 - The qBittorrent project) CPUID HWMonitor 1.46 (HKLM\\CPUID HWMonitor_is1) (Version: 1.46 - CPUID, Inc.) This is intended for server use only! ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2022-09-08] (Adobe Inc. -> Adobe Systems Inc.) (explorer.exe ->) (Brio) [File not signed] C:\Program Files\FolderSize\FolderSize.exe AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom.lnk:BCD3E320D4 [3442] FirewallRules: [TCP - Installer for ACDSee Commander Ultimate 2022] => (Allow) C:\Program Files\ACD Systems\ACDSee Ultimate\15.0\ACDSeeCommanderUltimate15.exe => No File ***************** ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-09-07] (Adobe Inc. -> ) FirewallRules: [{BCA7A946-F51A-4015-ACB0-502C2D5DB19C}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod) NOTE: /r/discordapp is unofficial & community-run. 2022-06-27 00:22 - 2022-06-27 00:22 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> Task: {658C5A85-0FD8-4A07-B8D2-05DD4D62B7DA} - System32\Tasks\GoogleUpdateTaskMachineUA{52819A4A-6F97-4F51-A9DF-F8722C17E431} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-05-25] (Google LLC -> Google LLC) 2022-09-07 20:08 - 2022-09-07 20:08 - 000000000 ____D C:\Users\Tyson\AppData\Roaming\Insomniac Games First, please keep in mind most of us at BleepingComputer volunteer our assistance for your benefit in your time of need. Resolution: In Device Manager, click "Action", and then click "Enable Device". 2022-09-13 06:56 - 2021-06-05 22:10 - 000000000 ____D C:\windows\Provisioning Task: {3E63459F-454B-4380-9128-A078BD56ABF3} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation) CustomCLSID: HKU\S-1-5-21-479614032-2295716511-2174497491-1002_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b}\localserver32 -> C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod) R1 ccSettings_{BEC9211B-09AC-4B5B-9D31-561ADFF81A33}; C:\windows\System32\Drivers\SEP\0E031CE1\0FA0.105\x64\ccSetx64.sys [189392 2022-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) 2022-09-15 21:55 - 2022-05-24 21:19 - 000000000 ____D C:\Program Files\Common Files\Adobe FirewallRules: [UDP Query User{AFE879DE-7BE8-4727-908C-8E9ECCA63D43}C:\users\tyson\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2612_gtaprocess.exe] => (Allow) C:\users\tyson\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2612_gtaprocess.exe => No File Startup: C:\Users\Tyson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2022-09-09] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.127\Installer\chrmstp.exe [2022-09-18] (Google LLC -> Google LLC) 2022-08-22 04:13 - 2022-08-22 04:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair If you're not familiar with the game, make sure to take a look at the instructions which will appear after the welcome screen. (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe Error: (09/18/2022 11:28:17 PM) (Source: Bonjour Service) (EventID: 100) (User: ) A few months ago my friend and I fell for a common Discord virus ploy, a user would message you on your friends account after they've been compromised themselves and asks you to test a game out. (C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe ===================== Drivers (Whitelisted) =================== Discover how to play Discord's secret snake game in this step-by-step guide! FirewallRules: [TCP Query User{54CEA6F6-91B3-45B9-982F-72B6FC47EA15}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{B5E65EFE-5A2C-4ED9-B286-57FEF2B6E48B}C:\users\tyson\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\tyson\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [21480 2022-07-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) Username: Fancy1. 2022-09-01 05:48 - 2022-05-14 13:48 - 000000871 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) FirewallRules: [UDP Query User{27885C92-4863-44D7-BF02-EB0025C5435B}C:\users\tyson\appdata\local\medal\app-4.1000.0\medal.exe] => (Allow) C:\users\tyson\appdata\local\medal\app-4.1000.0\medal.exe (Ferox Games B.V. -> Medal B.V.) AlternateDataStreams: C:\Users\All Users:err [1670] ========= End of CMD: ========= 2022-09-15 21:55 - 2022-05-24 21:19 - 000000000 ____D C:\Program Files\Common Files\Adobe 2022-09-13 06:56 - 2021-06-05 22:10 - 000000000 ____D C:\windows\system32\lt-LT R1 ccSettings_{BEC9211B-09AC-4B5B-9D31-561ADFF81A33}; C:\windows\System32\Drivers\SEP\0E031CE1\0FA0.105\x64\ccSetx64.sys [189392 2022-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) cmd: netsh int ip reset C:\resettcpip.txt Total Virtual: 128541.47 MB ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Tyson\AppData\Local\MEGAsync\ShellExtX64.dll [2022-06-11] (Mega Limited -> ) S3 SymEvnt; C:\ProgramData\Symantec\Symantec Endpoint Protection\14.3.7393.4000.105\Data\SymPlatform\SymEvnt.sys [957928 2022-09-08] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) Task: {092D9788-E407-4A00-A515-286EF326D9C9} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\windows\explorer.exe /NoUACCheck Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout. S3 BTHMODEM; C:\windows\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [File not signed] Apple Mobile Device Support (HKLM\\{2B3CA448-5266-480F-85FA-2FCCB3C8712C}) (Version: 15.6.0.32 - Apple Inc.) Raw. Resetting , OK! R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [100424 2022-05-02] (Apple Inc. -> Apple Inc.) Partition: GPT. ==================== Drives ================================ (C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [3314] WDAGUtilityAccount (S-1-5-21-479614032-2295716511-2174497491-504 - Limited - Disabled) PS! FirewallRules: [{45A692CC-FFB6-487C-AE35-45C5B016CE6E}] => (Block) C:\Program Files\StartAllBack\UpdateCheck.exe (Stanislav Zinukhov -> www.startisback.com) The file which is running by the task will not be moved.) The next screen will show you how to play the Snek Game. (If an entry is included in the fixlist, the file/folder will be moved.) FirewallRules: [{E19BA8CB-83EB-4C18-9CD6-E64B58557838}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.3.7393.4000.105\Bin\ccSvcHst.exe (Symantec Corporation -> Broadcom) (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 2022-08-24 16:24 - 2022-08-24 16:24 - 000000000 ____D C:\ProgramData\Battlestate Games I've since wiped my PC clean twice but I'm still paranoid that there's a rootkit or something else still present. (C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe ->) (Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe R1 SymIRON; C:\windows\System32\Drivers\SEP\0E031CE1\0FA0.105\x64\Ironx64.SYS [296952 2022-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) 2022-09-13 06:35 - 2022-01-10 22:19 - 000004562 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task 2022-09-12 09:31 - 2022-05-13 18:02 - 000000000 ____D C:\Users\Tyson\AppData\Roaming\Adobe FirewallRules: [UDP Query User{5E3E280D-8AD0-455B-AFC4-5E5203BC6B36}C:\users\tyson\appdata\local\discord\app-1.0.9006\discord.exe] => (Allow) C:\users\tyson\appdata\local\discord\app-1.0.9006\discord.exe (Discord Inc. -> Discord Inc.) Epic Online Services (HKLM-x32\\{758842D2-1538-4008-A8E3-66F65A061C52}) (Version: 2.0.33.0 - Epic Games, Inc.) Ran by Tyson (administrator) on INWIN809 (Gigabyte Technology Co., Ltd. Z690 AORUS ELITE AX DDR4) (21-09-2022 08:37:37) AlternateDataStreams: C:\Users\All Users:err [1670] CHR Extension: (Chrome Remote Desktop) - C:\Users\Tyson\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2022-05-13] Fully custom design, with high quality models included to enhance realism and customer satisfaction. R1 SRTSPX; C:\windows\System32\Drivers\SEP\0E031CE1\0FA0.105\x64\SRTSPX64.SYS [42448 2022-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) CHR Profile: C:\Users\Tyson\AppData\Local\Google\Chrome\User Data\Default [2022-09-19] R2 TeraCopyService.exe; C:\Program Files\TeraCopy\TeraCopyService.exe [114384 2021-04-22] (Code Sector -> ) ======= HKU\S-1-5-21-479614032-2295716511-2174497491-1002\\MountPoints2: {92a2dbf0-b485-11ec-8593-709cd154a389} - "G:\Office Tool Plus.exe" FirewallRules: [UDP Query User{F7DA3A6A-4737-4B06-BEF9-F0890F692E0A}D:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) S3 iaLPSS2_GPIO2_TGL; C:\windows\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_cb8dd04b85ac9a58\iaLPSS2_GPIO2_TGL.sys [128680 2020-12-23] (Intel Corporation -> Intel Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden S3 rtcx21; C:\windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_d2a498d51a4f7bec\rtcx21x64.sys [409000 2021-06-02] (Realtek Semiconductor Corp. -> Realtek) S3 WdBoot; C:\windows\system32\drivers\wd\WdBoot.sys [48536 2022-01-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) FirewallRules: [{129CCC32-5A15-4240-B199-59A11DDCBA6C}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File Equalizer APO (HKLM\\EqualizerAPO) (Version: 1.2.1 - ) 2022-09-21 08:33 - 2022-08-02 16:27 - 000091304 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\windows\system32\GigabyteDownloadAssistant.exe 2022-09-15 21:56 - 2022-05-24 21:21 - 000000000 ___RD C:\Users\Tyson\Creative Cloud Files Task: {1AEAE201-6F48-4C77-82CB-E97D4A8E5F80} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138680 2022-04-05] (Microsoft Corporation -> Microsoft Corporation) 2022-08-24 16:24 - 2022-08-24 16:24 - 000000000 ____D C:\ProgramData\Battlestate Games Adobe Refresh Manager (HKLM-x32\\{AC76BA86-0804-1033-1959-018244601013}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden 2022-08-27 00:56 - 2022-05-13 18:58 - 000000000 ____D C:\windows\system32\appmgmt Task: {43785E39-08DC-4168-BDFD-88AD2F19FFB2} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61336 2022-04-05] (Microsoft Corporation -> Microsoft Corporation) CodeIntegrity: (services.exe ->) (Code Sector -> ) C:\Program Files\TeraCopy\TeraCopyService.exe The goal of GT is to be the best source of easy-to-understand tips and tricks, reviews, original features, hidden cheats and gaming tweaks that will help players worldwide. HKLM\\Policies\Explorer: [NoWindowsUpdate] 1 Packages: Resetting Compartment, OK! Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2022-08-03] (Adobe Inc. -> Adobe Systems Incorporated) CustomCLSID: HKU\S-1-5-21-479614032-2295716511-2174497491-1002_Classes\CLSID\{20894375-46AE-46E2-BAFD-CB38975CDCE6}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\21.220.1024.0005\FileSyncShell64.dll => No File Firstly, the game will be initialized in a starting point, where the snake isn't moving, as shown in the image below. This is placed in the bottom-right corner of the animation, and you'll see it enclosed in the red box as shown below. Faulting package-relative application ID: The file will not be moved unless listed separately.) FirewallRules: [UDP Query User{3F71C761-DD03-4569-BF52-8F36FD7E0076}D:\steam\steamapps\common\battlefield 2042\bf2042.exe] => (Allow) D:\steam\steamapps\common\battlefield 2042\bf2042.exe => No File Thanks again for reading, and wishing you the best with this super fun game! R2 sepWscSvc; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.3.7393.4000.105\Bin64\sepWscSvc64.exe [1370464 2022-02-25] (Broadcom Inc -> Broadcom) 2022-06-27 00:22 - 2022-06-27 00:22 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll Open the Settings menu in Discord by clicking the cog in the bottom left next to your name and avatar. Tcpip\..\Interfaces\{219cb33e-0f8a-4084-a685-e83afae8e96c}: [DhcpNameServer] 192.168.0.1 2022-09-01 04:02 - 2022-05-13 20:38 - 000000000 ____D C:\Program Files\Riot Vanguard You can listen to music, memes and much more. Realtek Ethernet Controller Driver (HKLM-x32\\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 11.7.0318.2022 - Realtek) 2022-09-19 00:18 - 2022-09-21 08:33 - 000000000 ____D C:\Users\Tyson\AppData\Local\Oculus "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully NVIDIA HD Audio Driver 1.3.39.14 (HKLM\\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.14 - NVIDIA Corporation) FirewallRules: [UDP Query User{6017881F-7825-4433-A4F1-35A1F47857F0}C:\users\tyson\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\tyson\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) 2022-09-08 19:59 - 2022-05-25 02:06 - 000000000 ____D C:\Users\Tyson\AppData\Roaming\qBittorrent By the time I had realised that the whole thing was suspicious I had already downloaded and ran the installer exe. FirewallRules: [{D1CB192D-76D5-4997-A65D-7C9246999244}] => (Allow) D:\Steam\SteamApps\common\Blade & Sorcery\BladeAndSorcery.exe () [File not signed] ========= End of RemoveProxy: ========= 2022-09-13 06:56 - 2021-06-05 22:10 - 000000000 ____D C:\windows\system32\lv-LV NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation) 2022-09-18 23:20 - 2022-09-18 23:20 - 000001623 _____ C:\windows\system32\config\VSMIDK 2022-09-01 05:48 - 2022-05-14 13:48 - 000000871 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk FirewallRules: [TCP Query User{05590699-DA42-460B-91B9-EE6B37369FBC}C:\program files\qbittorrent\qbittorrent.exe] => (Block) C:\program files\qbittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed] Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} 2022-09-19 00:27 - 2022-09-19 00:27 - 000000000 ____D C:\Program Files (x86)\VulkanRT FirewallRules: [{BDBA3A23-D454-4277-921A-7ED6DB453E47}] => (Allow) D:\Steam\SteamApps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> ) 2022-09-07 20:44 - 2022-09-07 20:44 - 000000497 _____ C:\Users\Public\Desktop\Spider-man Remastered.lnk 3. Task: {1DB34F4D-B0C1-4082-887A-B17E2907C476} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-07-15] (BattlEye Innovations e.K. 2022-09-21 08:33 - 2022-05-13 18:22 - 000000000 ____D C:\ProgramData\NVIDIA 2022-08-30 07:23 - 2022-08-30 07:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft DirectX SDK (June 2010) Description: The RstMwService service terminated with the following error: -> ) Voicemod (HKLM\\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.29.1.0 - Voicemod S.L.) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11> 2022-09-21 08:33 - 2022-05-13 20:36 - 000000000 ____D C:\Users\Tyson\AppData\Roaming\LGHUB R3 CorsairVBusDriver; C:\windows\System32\drivers\CorsairVBusDriver.sys [47032 2022-08-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) FirewallRules: [{45DF7DD6-F48B-4B41-8062-75347E338848}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC) Eat as many items as possible without crashing, and try to grow your snake to be as long as possible. R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8765464 2022-09-07] (Malwarebytes Inc. -> Malwarebytes) ==================== Scheduled Tasks (Whitelisted) ============ FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems) 2022-09-07 20:44 - 2022-09-07 20:44 - 000000497 _____ C:\Users\Public\Desktop\Spider-man Remastered.lnk R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [84016 2022-08-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 NVDisplay.ContainerLocalSystem; C:\windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem