Recently, as of about two or three weeks ago, Powershell started opening up by itself whenever my computer was idle and I wasn't interacting with it. It would typically be about two minutes after I stopped touching anything. I was curious as to why, so I downloaded and installed Malwarebytes and started the trial, and it started telling me that it was blocking Powershell from connecting to an IP address. It's the same as this person's problem. I've attached one of the block reports.
I did a couple of scans, including one in safe mode, but Malwarebyes didn't find anything, but continued to block Powershell trying to ping the IP address. I even went so far as to check my FRST logs myself and I indeed found strings in the task manager referring to connecting to the IP address, 5.79.81.161, like that person's issue. It seems that it tries a different port per attempt. Now that my trial is over, Powershell is starting to open up again. I tried to homebrew my own solution, mainly using Windows Firewall to block Powershell from performing outbound connections, but that's probably not good in the long term
FRST.txt
Addition.txt
Report.txt