Hi, I have a HIGH feeling my PC is infected with custom malware being used as a RCS that was physically installed about 6 months ago on a specific date. On this date, a bunch "standard programs" and "files" located in my C:\Windows\ dir were created without my knowledge or consent at 4 AM when my computer was suppose to be "OFF". Some of the applications (and DLLs) include common programs still used on (but not limited to) older version of windows prior to Win 8, such as notepad.exe, write.exe, HelpPane.exe, hh.exe, regedit.exe, winhlp32.exe. Several weeks ago - I did a complete wipe using the Win 8 repair option to default back to manufacture default, but a bunch of files (some listed above) still show same created dates and suspicious files. I deleted all files and reinstalled windows as if the computer was being resold to a new individual. Possible Related Symptoms: 1. Windows update always states updates are required. Even after completing updates, states more updates are required that were released around the same time period my PC was infected. Weird huh? 2. Windows defender always states updates are required - only when PC is rebooted. 3. MBAM scan history logs shows at 4 AM, everyday, successful scans are completed - even if PC is in sleep mode? 4. Everytime PC is rebooted tons of reg files are created which I need to delete using CCcleaner. AV/AM Setup: 1. MBAM premium 2. Win Defender 3. HitMan Pro 4. Panda AV (uninstalled) Please let me know how to proceed. Thank you in advance.
