Hello,
First off, thank you for any assistance.
The primary problem seems to be the sysWOW64\dllhost.exe process. Additionally, conhost.exe looks fairly suspicious. I can identify that prior to the dllhost.exe processes building up and consuming CPU/memory, conhost.exe will quickly pop on a second process, dropping focus on any current action on the computer. My suspection is that it is seeking an active internet connection - which this computer has not regularly had since receiving the infection. There have been occasional connections to receive definition updates in hopes of something eventually finding what's wrong.. hasn't happened.
I've dug around and deleted some unwelcome files in the AppData locations, as they did not appear to have any related installation on my system. The only unresolved issue is the dllhost.exe *32 processes. I recall toying around with FRST on my own, however I did not find any solution (and do not remember exactly what steps I took - nothing major).
The primary initiator of these processes building up is browsing via Chrome. If I notice them (which I watch very carefully), I bulk-kill the processes and disconnect the computer again. Otherwise, I can use the computer while disconnected from the internet (and sometimes even connected) without issue. Attached is an FRST log (from FRST64).
Thank you!
First off, thank you for any assistance.
The primary problem seems to be the sysWOW64\dllhost.exe process. Additionally, conhost.exe looks fairly suspicious. I can identify that prior to the dllhost.exe processes building up and consuming CPU/memory, conhost.exe will quickly pop on a second process, dropping focus on any current action on the computer. My suspection is that it is seeking an active internet connection - which this computer has not regularly had since receiving the infection. There have been occasional connections to receive definition updates in hopes of something eventually finding what's wrong.. hasn't happened.
I've dug around and deleted some unwelcome files in the AppData locations, as they did not appear to have any related installation on my system. The only unresolved issue is the dllhost.exe *32 processes. I recall toying around with FRST on my own, however I did not find any solution (and do not remember exactly what steps I took - nothing major).
The primary initiator of these processes building up is browsing via Chrome. If I notice them (which I watch very carefully), I bulk-kill the processes and disconnect the computer again. Otherwise, I can use the computer while disconnected from the internet (and sometimes even connected) without issue. Attached is an FRST log (from FRST64).
Thank you!