Clicked on a sketchy script file and now RegAsm.exe keeps trying to access a malicious domain. Thankfully MB blocks the outbound connection. I did some digging with the blocked IP, created my own Windows Defender outbound and inbound blokcing rules, and here's what I found: https://www.joesandbox.com/analysis/677877/0/html
The domain appears to harbour an njrat application. I've run MB scanning, MB anti-rootkit, tdsskiller to be clear - Seems to be clean. Now I'm just wondering how to get RegAsm.exe to stop pinging/accessing the website. Thanks!