I looked into the steps and did manually. I just didnt want to loose browser history as I keep my "to reads" open. However cleared cache, tmp files, disk checkup(came clean), dism checks(came clean).
Hybrid analysis for the dll came clean: https://www.hybrid-analysis.com/sample/c3af1c1bcaa1494ebd6229e6f8ff92fd5bd024667b5e5196b970f68114082fe3
Looks good so far today. But it still confuses me as to why svchost was reported. If it was some javascript triggered malware it should have been reported to be from the browser 🤔
Will keep an eye as the day passes