Windows 10: Malicious .msi and .dll’s that seemed related to components.

I stupidly downloaded the wrong file from a download site I was misdirected to believing it to be the intended one. It came with a folder including .dll’s one being gpu.dll and the .msi. I ran an .msi file and Windows Defender quarantined quickly after it began installing, it brought up a verifying if you are human prompt and closed as Defender notified me it had quarantined a threat, classified as a trojan. After a full scan it picked up a file in my user roaming folder of the name bc2dc.msi, I then went with doing an offline scan to ensure it was contained. After doing another full scan wi

:)

 

system32 DLLs flagged as malicious

I downloaded Autoruns to help me identify malware on my computer. My computer is experiencing incoming and outgoing connections to IPs that are flagged as malicious by Virustotal and/or AbuseIPDB. In addition to dropped connections.

Initially 14 microsoft files were flagged as malicious by Virustotal.

Msiexec.exe. Trojan.generic.c1.70. sangfor engine zero.

ipsecsvc.dll.malicious

Rasmans.dll. malicious. SecureAge

Scardsvr.dll. malicious

Schedsvc.dll.malicious

Sessenv.dll. malicious

umrdp.dll. malicious

Workfoldersshell.dll. malicious

gatherNetworkInfo.vbs. McAfee-GW-edition. BehavesLike.VBS.backdoor.mp.

Appxdeploymentservrr.dll. malicious

Bcastdvruserservice.dll. malicious

dcsvc.dll. malicious

ngccredprov.dll. malicious

Updatepolicy.dll. malicious

Here is the interesting part. I did a reformat and windows 10 pro 21H2 install. 9 of the above had no detections post install. gathernetworkinfo.vbc, ipsecsvc.dll, ngccredprov.dll were malicious. Three new dlls were flagged: installservicetasks.fll, smsroutersvc.dll, & xblauthmanager.dll. dcsvc.dll disappeared. I forgot to check updatepolicy.dll. I thought this is great progress. I discovered 21H2 19044.1288 was

not the latest so I upgraded in place to 22H2. I thought after this upgrade there would be no more detections.

After updates my current version is 22H2 19045.3208. Here is the bad news. 9 dlls that had no detections now have detections. Sessenv.dll still has no detection. Smsroutersvc.dll, xblauthmanager.dll, and installservicetasks.dll no longer have any detections. Updatepolicy.dll has no detection. Gathernetworkinfo.vbs , ipsecsvc.dll, and ngccredprov.dll still have detections. These results seem to rule out false positive.

I need clean versions of the dlls. There may be more dlls that are malicious.

I downloaded from www.microsoft.com/en-us/software-download/windows10

Thanks

 

MSVCP100.dll and MSVCR100.dll missing

Hi Sheila,

The missing dll errors that you've encountered when launching your game can be related to corrupted update components. To effectively assist you with your concern, we'd like to ask the following:

• Which Windows build version is running on your device? Type winver
  in the search box and press Enter to help you identify.
• Are you getting any error messages? If yes, attach a screenshot on your next post.
• What are the troubleshooting steps that you've performed to resolve your concern?

We're looking forward to your response.

 

DLL Missing

The problem is, that the required DLL is not actually even listed there.
There are just dozens of download adware links from the top to the bottom.