Unknown spyware on my devices - Virus, Trojan, Spyware, and Malware Removal Help
Tags
Common Information
| Type | Value |
|---|---|
| UUID | 22b3c58a-afa6-4e2e-9e95-7a9858481954 |
| Fingerprint | 3fdab31476de6f4f |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Nov. 24, 2022, 11:30 p.m. |
| Added to db | Nov. 25, 2022, 10:48 a.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | Unknown spyware on my devices |
| Title | Unknown spyware on my devices - Virus, Trojan, Spyware, and Malware Removal Help |
| Detected Hints/Tags/Attributes | 60/2/285 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 163 | ✔ | — | https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 285 | microsoft.net |
|
| Details | Domain | 4 | nortonsafe.search.ask.com |
|
| Details | Domain | 4 | ss-sym.search.ask.com |
|
| Details | Domain | 18 | curl.se |
|
| Details | Domain | 21 | windows.management |
|
| Details | Domain | 1 | symevent64x86.cat |
|
| Details | Domain | 1 | disk.zip |
|
| Details | Domain | 87 | regid.1991-06.com.microsoft |
|
| Details | Domain | 67 | microsoft.windows |
|
| Details | Domain | 7 | nortonlifelock.norton |
|
| Details | File | 8 | c:\program files\avast software\avast\avastui.exe |
|
| Details | File | 5 | c:\program files\avast software\avast\avastsvc.exe |
|
| Details | File | 4 | c:\program files\avast software\avast\aswengsrv.exe |
|
| Details | File | 46 | c:\program files\malwarebytes\anti-malware\mbamservice.exe |
|
| Details | File | 39 | c:\program files\malwarebytes\anti-malware\mbamtray.exe |
|
| Details | File | 19 | widgets.exe |
|
| Details | File | 76 | msedgewebview2.exe |
|
| Details | File | 2 | xtendutilityservice.exe |
|
| Details | File | 2 | c:\windows\system32\drivers\rivetnetworks\killer\xtendutility.exe |
|
| Details | File | 21 | cui_dch.inf |
|
| Details | File | 19 | igfxcuiservice.exe |
|
| Details | File | 23 | c:\windows\system32\driverstore\filerepository\cui_dch.inf |
|
| Details | File | 21 | igfxem.exe |
|
| Details | File | 1260 | explorer.exe |
|
| Details | File | 128 | msedge.exe |
|
| Details | File | 2 | c:\windows\system32\driverstore\filerepository\wavesapo77ac.inf |
|
| Details | File | 8 | wavessvc64.exe |
|
| Details | File | 306 | services.exe |
|
| Details | File | 2 | c:\program files\avast software\avast\afwserv.exe |
|
| Details | File | 4 | c:\program files\avast software\avast\aswidsagent.exe |
|
| Details | File | 4 | c:\program files\avast software\avast\aswtoolssvc.exe |
|
| Details | File | 5 | c:\program files\avast software\avast\wsc_proxy.exe |
|
| Details | File | 2 | c:\program files\avast software\cleanup\tuneupsvc.exe |
|
| Details | File | 1 | c:\program files\avast software\driver updater\driverupdsvc.exe |
|
| Details | File | 1 | c:\program files\avast software\secureline vpn\vpnsvc.exe |
|
| Details | File | 1 | c:\windows\system32\veracrypt.exe |
|
| Details | File | 20 | c:\windows\system32\driverstore\filerepository\iigd_dch.inf |
|
| Details | File | 27 | intelcphdcpsvc.exe |
|
| Details | File | 18 | intelcphecisvc.exe |
|
| Details | File | 27 | presentationfontcache.exe |
|
| Details | File | 6 | c:\windows\system32\sgrm\sgrmbroker.exe |
|
| Details | File | 15 | nortonsecurity.exe |
|
| Details | File | 7 | nswscsvc.exe |
|
| Details | File | 1 | c:\windows\system32\driverstore\filerepository\nvacegpu.inf |
|
| Details | File | 44 | container.exe |
|
| Details | File | 7 | c:\windows\system32\rtkauduservice64.exe |
|
| Details | File | 2 | c:\windows\system32\drivers\rivetnetworks\killer\killernetworkservice.exe |
|
| Details | File | 1 | c:\windows\system32\drivers\rivetnetworks\killer\xtendutilityservice.exe |
|
| Details | File | 7 | wavessyssvc64.exe |
|
| Details | File | 1122 | svchost.exe |
|
| Details | File | 27 | phoneexperiencehost.exe |
|
| Details | File | 49 | c:\windows\immersivecontrolpanel\systemsettings.exe |
|
| Details | File | 85 | c:\windows\system32\dllhost.exe |
|
| Details | File | 41 | avastui.exe |
|
| Details | File | 4 | c:\program files\avast software\avast\avlaunch.exe |
|
| Details | File | 8 | c:\windows\system32\onedrivesetup.exe |
|
| Details | File | 2 | c:\program files\veracrypt\veracrypt.exe |
|
| Details | File | 10 | %windir%\system32\sc.exe |
|
| Details | File | 8 | symerr.exe |
|
| Details | File | 1 | c:\program files\avast software\secureline vpn\vpnupdate.exe |
|
| Details | File | 1 | c:\program files\avast software\driver updater\avbugreport.exe |
|
| Details | File | 6 | c:\program files\common files\avast software\overseer\overseer.exe |
|
| Details | File | 1 | c:\program files\common files\avast software\icarus\avast-du\icarus.exe |
|
| Details | File | 3 | c:\program files\common files\avast software\icarus\avast-tu\icarus.exe |
|
| Details | File | 5 | c:\program files\avast software\avast\avemupdate.exe |
|
| Details | File | 3 | c:\program files\avast software\cleanup\avbugreport.exe |
|
| Details | File | 5 | wscstub.exe |
|
| Details | File | 2 | c:\program files\common files\av\norton 360\upgrade.exe |
|
| Details | File | 5 | c:\windows\system32\securebootencodeuefi.exe |
|
| Details | File | 2 | c:\program files\avast software\secureline vpn\avbugreport.exe |
|
| Details | File | 12 | c:\windows\system32\musnotification.exe |
|
| Details | File | 2 | c:\program files\common files\avast software\icarus\avast-vpn\icarus.exe |
|
| Details | File | 1 | homepageredirect.html |
|
| Details | File | 6 | c:\windows\system32\inventorysvc.dll |
|
| Details | File | 38 | c:\program files\windows defender advanced threat protection\mssense.exe |
|
| Details | File | 6 | c:\windows\system32\tabsvc.dll |
|
| Details | File | 87 | nissrv.exe |
|
| Details | File | 198 | msmpeng.exe |
|
| Details | File | 7 | c:\windows\system32\wuauserv.dll |
|
| Details | File | 1 | c:\windows\system32\drivers\rivetnetworks\killer\xtendsoftapservice.exe |
|
| Details | File | 30 | containerlocalsystem.log |
|
| Details | File | 5 | c:\windows\system32\drivers\acerairplanemodecontroller.sys |
|
| Details | File | 3 | c:\windows\system32\drivers\aswardisk.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswarpot.sys |
|
| Details | File | 5 | c:\windows\system32\drivers\aswbidsdriver.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswbidsh.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswbuniv.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswelam.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswkbd.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswmonflt.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswnethub.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswrdr2.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswrvrt.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswsnx.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswsp.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswstm.sys |
|
| Details | File | 4 | c:\windows\system32\drivers\aswvmm.sys |
|
| Details | File | 1 | c:\windows\system32\drivers\aswvpnrdr.sys |
|
| Details | File | 6 | c:\windows\system32\drivers\bfs.sys |
|
| Details | File | 6 | bhdrvx64.sys |
|
| Details | File | 5 | ccsetx64.sys |
|
| Details | File | 5 | eectrl64.sys |
|
| Details | File | 4 | eraserutilrebootdrv.sys |
|
| Details | File | 16 | c:\windows\system32\drivers\mbae64.sys |
|
| Details | File | 6 | c:\windows\system32\driverstore\filerepository\genpass.inf |
|
| Details | File | 6 | genpass.sys |
|
| Details | File | 5 | idsvia64.sys |
|
| Details | File | 2 | c:\windows\system32\drivers\rivetnetworks\killer\kfeco10x64.sys |
|
| Details | File | 30 | c:\windows\system32\drivers\mbamchameleon.sys |
|
| Details | File | 38 | c:\windows\system32\drivers\mbamelam.sys |
|
| Details | File | 11 | c:\windows\system32\drivers\farflt.sys |
|
| Details | File | 11 | c:\windows\system32\drivers\mbam.sys |
|
| Details | File | 38 | c:\windows\system32\drivers\mbamswissarmy.sys |
|
| Details | File | 12 | c:\windows\system32\drivers\mwac.sys |
|
| Details | File | 4 | nsvst.sys |
|
| Details | File | 6 | c:\windows\system32\drivers\pvscsii.sys |
|
| Details | File | 6 | c:\windows\system32\drivers\routepolicy.sys |
|
| Details | File | 9 | srtsp64.sys |
|
| Details | File | 5 | srtspx64.sys |
|
| Details | File | 6 | symefasi64.sys |
|
| Details | File | 5 | symelam.sys |
|
| Details | File | 5 | c:\windows\system32\drivers\symevent64x86.sys |
|
| Details | File | 6 | symevnt.sys |
|
| Details | File | 5 | ironx64.sys |
|
| Details | File | 6 | symnets.sys |
|
| Details | File | 2 | c:\windows\system32\drivers\veracrypt.sys |
|
| Details | File | 70 | c:\windows\system32\drivers\wd\wdboot.sys |
|
| Details | File | 70 | c:\windows\system32\drivers\wd\wdfilter.sys |
|
| Details | File | 70 | c:\windows\system32\drivers\wd\wdnisdrv.sys |
|
| Details | File | 5 | wpctrldrv.sys |
|
| Details | File | 6 | c:\windows\system32\drivers\wtd.sys |
|
| Details | File | 13 | winsetupmon.sys |
|
| Details | File | 1 | c:\users\henry\downloads\frst.txt |
|
| Details | File | 1 | c:\users\henry\downloads\frst64.exe |
|
| Details | File | 2 | c:\windows\system32\drivers\netwtw10.sys |
|
| Details | File | 4 | c:\windows\system32\intelihvrouter08.dll |
|
| Details | File | 2 | c:\windows\system32\drivers\netwfw10.dat |
|
| Details | File | 31 | c:\windows\system32\perfstringbackup.ini |
|
| Details | File | 1 | c:\windows\system32\tasks\norton 360 2022-11-23 21:01 - 2022-11-24 23:23 - 000004028 _____ c:\windows\system32\tasks\avast secureline vpn update 2022-11-23 21:01 - 2022-11-24 23:23 - 000000006 ____h c:\windows\tasks\sa.dat |
|
| Details | File | 1 | c:\windows\system32\tasks\avast emergency update 2022-11-23 21:01 - 2022-11-23 21:01 - 000011433 _____ c:\windows\diagwrn.xml |
|
| Details | File | 9 | c:\windows\diagerr.xml |
|
| Details | File | 1 | c:\windows\system32\tasks\microsoftedgeupdatetaskmachineua 2022-11-23 21:01 - 2022-11-23 21:01 - 000003240 _____ c:\windows\system32\tasks\microsoftedgeupdatetaskmachinecore 2022-11-23 21:01 - 2022-11-23 21:01 - 000003066 _____ c:\windows\system32\tasks\onedrive reporting task-s-1-5-21-1327980298-1667911545-2908986163-1001 2022-11-23 21:01 - 2022-11-23 21:01 - 000002862 _____ c:\windows\system32\tasks\onedrive standalone update task-s-1-5-21-1327980298-1667911545-2908986163-1001 2022-11-23 21:01 - 2022-11-23 21:01 - 000002612 _____ c:\windows\system32\tasks\norton wsc integration 2022-11-23 21:01 - 2022-11-23 21:01 - 000000020 ___sh c:\users\henry\ntuser.ini |
|
| Details | File | 3 | c:\windows\system32\aswboot.exe |
|
| Details | File | 24 | c:\windows\system32\fntcache.dat |
|
| Details | File | 1 | c:\windows\serviceprofiles 2022-11-23 20:45 - 2022-11-23 20:45 - 000000000 ____d c:\windows\system32\drivers\rivetnetworks 2022-11-23 20:41 - 2022-11-23 20:41 - 000105312 _____ c:\windows\syswow64\hvsimanagementapi.dll |
|
| Details | File | 4 | c:\windows\syswow64\icu.dll |
|
| Details | File | 14 | c:\windows\system32\curl.exe |
|
| Details | File | 6 | c:\windows\syswow64\curl.exe |
|
| Details | File | 2 | c:\windows\system32\stordiag.exe |
|
| Details | File | 3 | c:\windows\system32\hvsimanagementapi.dll |
|
| Details | File | 3 | c:\windows\syswow64\stordiag.exe |
|
| Details | File | 3 | c:\windows\system32\sfape.dll |
|
| Details | File | 4 | c:\windows\system32\icu.dll |
|
| Details | File | 4 | c:\windows\system32\cloudidwxhextension.dll |
|
| Details | File | 3 | c:\windows\system32\cloudexperiencehostredirection.dll |
|
| Details | File | 2 | c:\windows\system32\dplcsp.dll |
|
| Details | File | 3 | c:\windows\system32\appinstallerbackgroundupdate.exe |
|
| Details | File | 4 | c:\windows\system32\wow64base.dll |
|
| Details | File | 19 | inprocobjects.dll |
|
| Details | File | 1 | 14_log.txt |
|
| Details | File | 1 | 42_log.txt |
|
| Details | File | 1 | c:\programdata\veracrypt 2022-11-21 00:40 - 2022-11-21 00:40 - 002040945 _____ c:\users\henry\onedrive\documents\veracrypt rescue disk.zip |
|
| Details | File | 1 | c:\windows\system32\icarus_rvrt.exe |
|
| Details | File | 1 | c:\windows\system32\drivers\wd 2022-11-20 21:10 - 2022-11-24 23:23 - 000012288 ___sh c:\dumpstack.log |
|
| Details | File | 5 | c:\windows\system32\rtcom64.dll |
|
| Details | File | 2 | c:\windows\system32\rtkapi64u.dll |
|
| Details | File | 3 | c:\windows\system32\rtdataproc64.dll |
|
| Details | File | 4 | c:\windows\system32\rtkcfg64.dll |
|
| Details | File | 1 | c:\programdata\packages 2022-11-20 19:00 - 2022-11-23 20:59 - 000000000 ____d c:\windows\system32\drivers\nvidia corporation 2022-11-20 19:00 - 2022-11-22 23:20 - 000000000 ____d c:\programdata\nvidia corporation 2022-11-20 19:00 - 2022-11-20 19:00 - 000000000 ____d c:\program files\nvidia corporation 2022-11-20 19:00 - 2020-07-23 05:02 - 001780944 _____ c:\windows\system32\vulkaninfo-1-999-0-0-0.exe |
|
| Details | File | 19 | c:\windows\system32\vulkaninfo.exe |
|
| Details | File | 19 | c:\windows\syswow64\vulkaninfo-1-999-0-0-0.exe |
|
| Details | File | 19 | c:\windows\syswow64\vulkaninfo.exe |
|
| Details | File | 19 | c:\windows\system32\vulkan-1-999-0-0-0.dll |
|
| Details | File | 18 | c:\windows\system32\vulkan-1.dll |
|
| Details | File | 19 | c:\windows\syswow64\vulkan-1-999-0-0-0.dll |
|
| Details | File | 19 | c:\windows\syswow64\vulkan-1.dll |
|
| Details | File | 17 | c:\windows\system32\nvofapi64.dll |
|
| Details | File | 17 | c:\windows\syswow64\nvofapi.dll |
|
| Details | File | 17 | c:\windows\system32\nvcuvid.dll |
|
| Details | File | 17 | c:\windows\syswow64\nvcuvid.dll |
|
| Details | File | 17 | c:\windows\syswow64\nvcuda.dll |
|
| Details | File | 17 | c:\windows\system32\nvcuda.dll |
|
| Details | File | 17 | c:\windows\system32\nvfbc64.dll |
|
| Details | File | 17 | c:\windows\syswow64\nvfbc.dll |
|
| Details | File | 17 | c:\windows\system32\nvifr64.dll |
|
| Details | File | 17 | c:\windows\syswow64\nvifr.dll |
|
| Details | File | 17 | c:\windows\system32\nvml.dll |
|
| Details | File | 2 | c:\windows\system32\nvmcumd.dll |
|
| Details | File | 17 | c:\windows\system32\nvencodeapi64.dll |
|
| Details | File | 2 | c:\windows\system32\nvifropengl.dll |
|
| Details | File | 17 | c:\windows\syswow64\nvencodeapi.dll |
|
| Details | File | 17 | c:\windows\system32\nvidia-smi.exe |
|
| Details | File | 2 | c:\windows\syswow64\nvifropengl.dll |
|
| Details | File | 17 | c:\windows\system32\nvdebugdump.exe |
|
| Details | File | 17 | c:\windows\system32\nvcpl.dll |
|
| Details | File | 17 | c:\windows\system32\mcu.exe |
|
| Details | File | 16 | c:\windows\system32\nvapi64.dll |
|
| Details | File | 17 | c:\windows\syswow64\nvapi.dll |
|
| Details | File | 1 | c:\programdata\intel 2022-11-20 18:58 - 2022-11-20 18:58 - 000000000 ____d c:\intel 2022-11-20 18:58 - 2022-11-20 18:58 - 000000000 _____ c:\windows\system32\gfxvaldisplaylog.bin |
|
| Details | File | 1 | c:\windows\system32\mfx_mft_h265ve_64.dll |
|
| Details | File | 1 | c:\windows\system32\mfx_mft_vp9ve_64.dll |
|
| Details | File | 1 | c:\windows\system32\mfx_mft_h264ve_64.dll |
|
| Details | File | 1 | c:\windows\syswow64\mfx_mft_h265ve_32.dll |
|
| Details | File | 1 | c:\windows\syswow64\mfx_mft_vp9ve_32.dll |
|
| Details | File | 2 | c:\windows\system32\libmfxhw64.dll |
|
| Details | File | 2 | c:\windows\syswow64\libmfxhw32.dll |
|
| Details | File | 1 | c:\windows\system32\mfx_mft_encrypt_64.dll |
|
| Details | File | 1 | c:\windows\syswow64\mfx_mft_h264ve_32.dll |
|
| Details | File | 1 | c:\windows\syswow64\mfx_mft_encrypt_32.dll |
|
| Details | File | 2 | c:\windows\system32\intel_gfx_api-x64.dll |
|
| Details | File | 2 | c:\windows\syswow64\intel_gfx_api-x86.dll |
|
| Details | File | 2 | c:\windows\system32\mfxplugin64_hw.dll |
|
| Details | File | 2 | c:\windows\syswow64\mfxplugin32_hw.dll |
|
| Details | File | 1 | c:\windows\system32\mfx_mft_mjpgvd_64.dll |
|
| Details | File | 1 | c:\windows\syswow64\mfx_mft_mjpgvd_32.dll |
|
| Details | File | 1 | c:\windows\syswow64\libglesv2.dll |
|
| Details | File | 1 | c:\windows\syswow64\libglesv1_cm.dll |
|
| Details | File | 1 | c:\windows\syswow64\libegl.dll |
|
| Details | File | 1 | c:\windows\system32\intel_opencl_icd64.dll |
|
| Details | File | 1 | c:\windows\syswow64\intel_opencl_icd32.dll |
|
| Details | File | 10 | c:\windows\system32\drivers\rtkvhd64.sys |
|
| Details | File | 5 | c:\windows\system32\drivers\rtaiodat.dat |
|
| Details | File | 21 | c:\windows\syswow64\msclmd.dll |
|
| Details | File | 22 | c:\windows\syswow64\opencl.dll |
|
| Details | File | 20 | c:\windows\system32\msclmd.dll |
|
| Details | File | 22 | c:\windows\system32\opencl.dll |
|
| Details | File | 86 | frst.txt |
|
| Details | File | 70 | onedrivesetup.exe |
|
| Details | File | 8 | c:\program files\windowsapps\microsoft.raw |
|
| Details | File | 11 | client.core |
|
| Details | File | 5 | bushell.dll |
|
| Details | File | 4 | c:\program files\avast software\avast\ashshell.dll |
|
| Details | File | 6 | navshext.dll |
|
| Details | File | 35 | c:\program files\malwarebytes\anti-malware\mbshlext.dll |
|
| Details | File | 29 | nvshext.dll |
|
| Details | File | 10 | aswsp.sys |
|
| Details | File | 6 | hidspicx.sys |
|
| Details | File | 35 | spotify.exe |
|
| Details | File | 22 | msteams.exe |
|
| Details | File | 1 | c:\users\henry\appdata\local\temp\bittorrent\bittorrent.exe |
|
| Details | File | 1 | c:\users\henry\appdata\roaming\bittorrent\bittorrent.exe |
|
| Details | File | 19 | securityhealthservice.exe |
|
| Details | File | 533 | ntdll.dll |
|
| Details | File | 9 | c:\windows\system32\securityhealthservice.exe |
|
| Details | File | 36 | c:\windows\system32\ntdll.dll |
|
| Details | File | 13 | mbae64.dll |
|
| Details | File | 28 | mbamservice.exe |
|
| Details | File | 4 | symamsi.dll |
|
| Details | File | 6 | aswamsi.dll |
|
| Details | File | 91 | addition.txt |
|
| Details | IPv4 | 1 | 22.22.10.9 |
|
| Details | IPv4 | 1 | 208.94.176.20 |
|
| Details | IPv4 | 1 | 208.94.176.18 |
|
| Details | IPv4 | 1 | 10.255.0.0 |
|
| Details | IPv4 | 1 | 4.5.17.221 |
|
| Details | IPv4 | 3 | 5.68.0.0 |
|
| Details | IPv4 | 1 | 22.110.1.1 |
|
| Details | Url | 2 | https://nortonsafe.search.ask.com/web?omnisearch=yes&q={searchterms} |
|
| Details | Url | 2 | https://ss-sym.search.ask.com/ss?limit=10&li=ff&hl=en&q={searchterms} |
|
| Details | Url | 4 | https://curl.se |
|
| Details | Windows Registry Key | 68 | HKLM\...\Run |
|
| Details | Windows Registry Key | 164 | HKLM\SOFTWARE\Microsoft\Windows |
|
| Details | Windows Registry Key | 11 | HKU\S-1-5-19\...\Run |
|
| Details | Windows Registry Key | 11 | HKU\S-1-5-20\...\Run |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-1327980298-1667911545-2908986163-1001\...\Run |
|
| Details | Windows Registry Key | 15 | HKLM\SOFTWARE\Policies\Mozilla\Firefox |
|
| Details | Windows Registry Key | 39 | HKLM-x32\...\Chrome\Extension |
|
| Details | Windows Registry Key | 5 | HKLM\...\Avast |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-1327980298-1667911545-2908986163-1001\...\BitTorrent |
|
| Details | Windows Registry Key | 68 | HKLM-x32\...\Microsoft |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-1327980298-1667911545-2908986163-1001\...\OneDriveSetup.exe |
|
| Details | Windows Registry Key | 77 | HKLM-x32 |
|
| Details | Windows Registry Key | 5 | HKLM-x32\...\NGC |
|
| Details | Windows Registry Key | 1 | HKLM-x32\...\VeraCrypt |
|
| Details | Windows Registry Key | 4 | HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys |
|
| Details | Windows Registry Key | 6 | HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys |
|
| Details | Windows Registry Key | 6 | HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TextInputManagementService |
|
| Details | Windows Registry Key | 8 | HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal |
|
| Details | Windows Registry Key | 4 | HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys |
|
| Details | Windows Registry Key | 6 | HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HidSpiCx.sys |
|
| Details | Windows Registry Key | 6 | HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TextInputManagementService |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-1327980298-1667911545-2908986163-1001\Control |
|
| Details | Windows Registry Key | 98 | HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System |
|
| Details | Windows Registry Key | 42 | HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-1327980298-1667911545-2908986163-1001\...\StartupApproved\Run |