We are having an issue with constant BSODs (usually different stop codes each time and on every PC). On boot it looks like a random numbered .exe file is generated in c:\windows. Also a service is created pointing to one of these exe's. we have scanned with malware bytes and we have comodo endpoint security. Malwarebytes sees these executables and removes them but the pc's get reinfected. On a few PCs we see techserv.exe in the c:\ drive and some users also have a folder called winapp in app data. I have been chasing this for 3 days now and am at wits end. Any help would be appreciated. Malwarebytes did report Trojan. Emotet and Trojan.trickbot on a few PCs.
Edited by Platypus, 19 October 2017 - 05:17 PM.
Moved to Malware help forum at request of BSOD forum staff.