Dll that scan a system for instaled AV and get informations about PC and OS using WinApi, then save it to txt. Dll hooks a ReadFile process (WinApi), so every time user opens a file we are geting informations to txt, tested on notepad.
List of AV scanned by this DLL:
- Adaware
- Avast
- Avira
- BitDefender
- DrWeb
- Fsecure
- Kaspersky
- Keepass
- Norton
- MalwareBytes
- WebRoot
- TrendMicro
Other informations:
- Check if kepass is instaled on pc
- Check if Dll is in process on VM based on virtual graphic card
- Windows version (with minor and major index)
- Host name
- Procesor name, type, architecture
- Dir of sys root
- TimeZone of PC
- Phisical Memory information - total, used
- Virtual Memory information - total, used (not wothing properly to do)
- All list of all processes working on pc (ID, Name, Sesion ID, User ID) + number of them
- List of drivers instaled on PC
- List of subkeys