I've been having all kinds of issues since my computer auto updated to windows 8.1 even though I had windows update disabled, and again to windows 10 recently. I cant even boot my computer without doing a series of bullbleep that takes about 15 minutes. I don't know where to begin so I'm just going to list all of the stuff that I know of.
there is two user accounts I don't recognize other than mine named piress and xiaojiing or something like that, malwarebytes and other scanners found w32remant, w32venik, rasmedia.dll, w32/baidu, "stronghold antimalware" (this might be a legitimate program but I never downloaded it), probably some more I'm forgetting
My most recent issue is this file I found running in the background that was clearly given a random name as a google search leads to no results, and given that it was using over 2gb of memory, it's clearly malicious, the executable has some weird skull icon as if to send a message, making me think it could be a keylogger or RAT of some sort. I've attached images of the exe and the service name it was running under. I hope someone can help me.
I tried running FRST however nothing happens when I open it (process idles) It may have something to do with "consent UI for administrative action" being corrupted.
Edited by hamluis, 14 October 2016 - 07:21 AM.
Moved from MRL to Am I Infected, no logs - Hamluis.