Stick

Constant IP blocks

4 posts in this topic

So far this morning I have gotten the notice several times that Malwarebytes has blocked   220.248.184.39 Outgoing port svchost exe Type outgoing

Any way to find out who or what that is reffering to??

 

For the record I DO NOT have Skype...or Twitter..do have FB....

Share this post


Link to post
Share on other sites

So far this morning I have gotten the notice several times that Malwarebytes has blocked   220.248.184.39 Outgoing port svchost exe Type outgoing

Any way to find out who or what that is reffering to??

 

Hi, Stick:

 

Yes, there is.

Please refer to the expert advice provided by Firefox in the Reply just above yours. :)

It contains all the info you might need. :)

 

FWIW, the IP you mention is in China, and svchost.exe is a file often targeted by malware.

 

So, it appears that you could be infected.

I would suggest that you please follow the recommendations in this pinned topic: Available Assistance For Possibly Infected Computers.

A malware analyst will guide you through the diagnostics and cleanup process.

Thanks,

daledoc1

Share this post


Link to post
Share on other sites

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.


IF REQUESTED, ZIP IT UP & ATTACH IT


.


DDS (Ver_2012-11-20.01)


.


Microsoft Windows 7 Home Premium 


Boot Device: \Device\HarddiskVolume1


Install Date: 1/7/2013 3:24:28 PM


System Uptime: 9/11/2013 3:22:27 AM (272 hours ago)


.


Motherboard: PEGATRON CORPORATION |  | 2ACF


Processor: AMD E2-3200 APU with Radeon HD Graphics | P0 | 792/100mhz


.


==== Disk Partitions =========================


.


C: is FIXED (NTFS) - 920 GiB total, 887.405 GiB free.


D: is FIXED (NTFS) - 12 GiB total, 1.427 GiB free.


E: is CDROM ()


F: is Removable


.


==== Disabled Device Manager Items =============


.


==== System Restore Points ===================


.


RP115: 9/17/2013 9:35:28 AM - Configured LabelPrint


RP116: 9/18/2013 1:27:19 AM - Windows Update


RP117: 9/21/2013 3:34:55 AM - Windows Update


.


==== Installed Programs ======================


.


Adobe AIR


Adobe Flash Player 11 ActiveX


Adobe Flash Player 11 Plugin


AMD APP SDK Runtime


AMD Media Foundation Decoders


AMD VISION Engine Control Center


ATI Catalyst Install Manager


Catalyst Control Center - Branding


Catalyst Control Center Graphics Previews Common


Catalyst Control Center InstallProxy


Catalyst Control Center Localization All


ccc-utility64


CCC Help English


D3DX10


Google Chrome


Google Update Helper


Hewlett-Packard ACLM.NET v1.2.1.1


HP Auto


HP Client Services


HP Customer Experience Enhancements


HP LinkUp


HP Odometer


HP Setup


HP Setup Manager


HP Support Assistant


HP Support Information


HP Update


HP Vision Hardware Diagnostics


Java 7 Update 25


Java Auto Updater


Junk Mail filter update


Malwarebytes Anti-Malware version 1.75.0.1300


Mesh Runtime


Microsoft .NET Framework 4 Client Profile


Microsoft .NET Framework 4 Extended


Microsoft Application Error Reporting


Microsoft Mathematics


Microsoft Security Client


Microsoft Security Essentials


Microsoft Silverlight


Microsoft SQL Server 2005 Compact Edition [ENU]


Microsoft Visual C++ 2005 Redistributable


Microsoft Visual C++ 2005 Redistributable (x64)


Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17


Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148


Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161


Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17


Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148


Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161


Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319


Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319


Microsoft WSE 3.0 Runtime


MSVCRT


MSVCRT_amd64


MSXML 4.0 SP2 (KB954430)


MSXML 4.0 SP2 (KB973688)


PDF Complete Special Edition


PlayReady PC Runtime amd64


PlayReady PC Runtime x86


Power2Go


Realtek High Definition Audio Driver


Recovery Manager


Remote Graphics Receiver


RoxioNow Player


Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)


Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)


Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)


Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)


Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)


Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)


Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)


Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)


Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)


Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)


Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)


Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)


Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)


Security Update for Microsoft .NET Framework 4 Extended (KB2487367)


Security Update for Microsoft .NET Framework 4 Extended (KB2656351)


Security Update for Microsoft .NET Framework 4 Extended (KB2736428)


Security Update for Microsoft .NET Framework 4 Extended (KB2742595)


Update for Microsoft .NET Framework 4 Client Profile (KB2468871)


Update for Microsoft .NET Framework 4 Client Profile (KB2533523)


Update for Microsoft .NET Framework 4 Client Profile (KB2600217)


Update for Microsoft .NET Framework 4 Client Profile (KB2836939)


Update for Microsoft .NET Framework 4 Extended (KB2468871)


Update for Microsoft .NET Framework 4 Extended (KB2533523)


Update for Microsoft .NET Framework 4 Extended (KB2600217)


Update for Microsoft .NET Framework 4 Extended (KB2836939)


Windows Live Communications Platform


Windows Live Essentials


Windows Live ID Sign-in Assistant


Windows Live Installer


Windows Live Language Selector


Windows Live Mail


Windows Live Mesh


Windows Live Mesh ActiveX Control for Remote Connections


Windows Live Messenger


Windows Live MIME IFilter


Windows Live Movie Maker


Windows Live Photo Common


Windows Live Photo Gallery


Windows Live PIMT Platform


Windows Live Remote Client


Windows Live Remote Client Resources


Windows Live Remote Service


Windows Live Remote Service Resources


Windows Live SOXE


Windows Live SOXE Definitions


Windows Live UX Platform


Windows Live UX Platform Language Pack


Windows Live Writer


Windows Live Writer Resources


Yahoo! Messenger


Yahoo! Software Update


.


==== End Of File ===========================

Share this post


Link to post
Share on other sites

Hi, Stick:

 

Thanks!

 

Alas, we can't review the logs here.

Would you be so kind as to please start a new post over in the malware removal section >>HERE<<.

When you do, please post both the DDS.txt and the attach.txt logs.

 

Thanks!

 

daledoc1

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.