in the middle of VM setup there was strange “windows update like” when i rebooted my PC.
after to desktop
That sounds pretty normal, I’ve seen this every time I install Windows.
There might not be any Windows Update history but surely you saw “Installing Updates” in the installer. Between this and getting into the OOTB setup, the PC will reboot once or twice, and show stuff like “Setting up devices”. During this process, the spinner might be a bit glitchy, that’s normal.
Look, this is probably not what you want to hear but I doubt any of this is actually happening, I also saw your thread on the Malwarebytes forums and I have yet to see any evidence of your device being compromised.
What you are suspecting is happening would cost a massive amount of money and resources, while I don’t doubt that some organizations have the capabilities to pull this off, it just doesn’t make sense to blow all these resources on someone like you, even if you said something controversial back in 2018.
What i suspect is that back in 2018, you said something that made some people unhappy, and then you may have caught some some run-of-the-mill malware and spiraled into paranoia.
Why would someone with such capabilities need to compromise your USB devices in a way that shows up in logs, and why would they need to manipulate GlassWire? As I said before, why would someone with these capabilities build a custom solution to suppress their traffic in GlassWire, when they could just bypass it entirely, something which is absolutely possible and I do every time I work with WSL2, there are multiple threads about it here.
For every one person who truly deals with something like this, there are a million who think this is happening to them, but it really isn’t. And of the people who this is really happening to, the vast majority will be known high value targets.
I personally think you’re interpreting the common computer jankiness as something it’s not.