CloseProcesses:
CreateRestorePoint:
EmptyTemp:
HKU\S-1-5-21-2595776500-520975406-1609784547-1000\...\MountPoints2: G - G:\setup.exe
S3 NTIOLib_1_0_C; \??\F:\NTIOLib_X64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
CMD: dir /a "C:\Users\Lantash\AppData\Roaming"
CMD: dir /a "C:\Users\Lantash\AppData\Roaming\Media Center Programs"
VirusTotal: C:\Windows\SysWOW64\Codecs\TrayMenu.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Player - Codec Pack\Uninstall.lnk
C:\Users\Lantash\Desktop\GRY\Farmer's Dynasty.lnk