Jump to content

mailmeback

Members
 View Profile  See their activity

  • Posts

    4

  • Joined

  • Last visited

Reputation

0 Neutral
  1. mailmeback
    Hi, I am a new full version client of Malwarebytes since last week. Unfortunately I have used the Firefox plug-in "CheckPlaces" which by definition checked all my 2400 bookmarks in one lot systematically one after one. It found some dozen of suspicious IPs (see below) which I am quite sure they all contain malware. My question now is, if you could check them and if I can somehow track the domain names from the IP numbers to give me the chance to remove all my "bad" bookmarks and to be sure to not further visit these sites. I am based in Germany. Thanks for your quick feedback or advice. I did read your requirement of the developer mode scan, but I do not know what scan you want me to run before. Even a full scan is without a bad finding. So the only thing I can do is do provide you the blocks below which are taken from a huge recent protection log which was created when CheckPlaces did its job. Rainer *********************************************************************************************** IP-BLOCK 109.163.227.51 (Type: outgoing, Port: 50192, Process: firefox.exe) IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50592, Process: firefox.exe) IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50994, Process: firefox.exe) IP-BLOCK 69.43.161.182 (Type: outgoing, Port: 51392, Process: firefox.exe) IP-BLOCK 213.131.252.251 (Type: outgoing, Port: 51498, Process: firefox.exe) IP-BLOCK 78.41.203.7 (Type: outgoing, Port: 51616, Process: firefox.exe) IP-BLOCK 213.131.252.251 (Type: outgoing, Port: 51649, Process: firefox.exe) IP-BLOCK 82.98.86.163 (Type: outgoing, Port: 52489, Process: firefox.exe) IP-BLOCK 212.117.164.221 (Type: outgoing, Port: 52655, Process: firefox.exe) IP-BLOCK 188.130.251.85 (Type: outgoing, Port: 52673, Process: firefox.exe) IP-BLOCK 46.17.100.67 (Type: outgoing, Port: 52676, Process: firefox.exe) IP-BLOCK 93.114.41.158 (Type: outgoing, Port: 52678, Process: firefox.exe) IP-BLOCK 93.174.93.67 (Type: outgoing, Port: 52686, Process: firefox.exe) IP-BLOCK 93.190.139.102 (Type: outgoing, Port: 52687, Process: firefox.exe) IP-BLOCK 94.102.48.101 (Type: outgoing, Port: 52695, Process: firefox.exe) IP-BLOCK 212.117.179.19 (Type: outgoing, Port: 52704, Process: firefox.exe) IP-BLOCK 109.163.227.51 (Type: outgoing, Port: 52707, Process: firefox.exe) IP-BLOCK 208.91.197.101 (Type: outgoing, Port: 52708, Process: firefox.exe) IP-BLOCK 80.82.66.120 (Type: outgoing, Port: 52709, Process: firefox.exe) IP-BLOCK 91.216.73.63 (Type: outgoing, Port: 52711, Process: firefox.exe) IP-BLOCK 178.208.76.226 (Type: outgoing, Port: 52720, Process: firefox.exe) IP-BLOCK 193.107.16.142 (Type: outgoing, Port: 52727, Process: firefox.exe) IP-BLOCK 46.246.111.230 (Type: outgoing, Port: 52729, Process: firefox.exe) 2IP-BLOCK 46.17.100.67 (Type: outgoing, Port: 52730, Process: firefox.exe) IP-BLOCK 109.163.227.51 (Type: outgoing, Port: 52787, Process: firefox.exe) IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 52904, Process: firefox.exe) IP-BLOCK 69.43.161.182 (Type: outgoing, Port: 52969, Process: firefox.exe) IP-BLOCK 213.131.252.251 (Type: outgoing, Port: 52975, Process: firefox.exe) IP-BLOCK 78.41.203.7 (Type: outgoing, Port: 52993, Process: firefox.exe) IP-BLOCK 213.131.252.251 (Type: outgoing, Port: 52995, Process: firefox.exe) IP-BLOCK 82.98.86.163 (Type: outgoing, Port: 53078, Process: firefox.exe) IP-BLOCK 212.117.164.221 (Type: outgoing, Port: 53094, Process: firefox.exe) IP-BLOCK 188.130.251.85 (Type: outgoing, Port: 53095, Process: firefox.exe) IP-BLOCK 46.17.100.67 (Type: outgoing, Port: 53096, Process: firefox.exe) IP-BLOCK 93.114.41.158 (Type: outgoing, Port: 53097, Process: firefox.exe) IP-BLOCK 93.174.93.67 (Type: outgoing, Port: 53098, Process: firefox.exe) IP-BLOCK 93.190.139.102 (Type: outgoing, Port: 53099, Process: firefox.exe) IP-BLOCK 94.102.48.101 (Type: outgoing, Port: 53100, Process: firefox.exe) IP-BLOCK 212.117.179.19 (Type: outgoing, Port: 53101, Process: firefox.exe) IP-BLOCK 109.163.227.51 (Type: outgoing, Port: 53102, Process: firefox.exe) IP-BLOCK 208.91.197.101 (Type: outgoing, Port: 53103, Process: firefox.exe) IP-BLOCK 80.82.66.120 (Type: outgoing, Port: 53104, Process: firefox.exe) IP-BLOCK 91.216.73.63 (Type: outgoing, Port: 53105, Process: firefox.exe) IP-BLOCK 178.208.76.226 (Type: outgoing, Port: 53106, Process: firefox.exe) IP-BLOCK 193.107.16.142 (Type: outgoing, Port: 53107, Process: firefox.exe) IP-BLOCK 46.246.111.230 (Type: outgoing, Port: 53108, Process: firefox.exe) IP-BLOCK 46.17.100.67 (Type: outgoing, Port: 53098, Process: firefox.exe)
  2. mailmeback
    Hi, thanks for your message. Absolutely the finest animal, truly, our latest is now 1 year old and the best fellow and buddy you can imagine. We love him and spent a lot of time with him and he is so funny and gives us a lot of fun and enjoyment. Going through 2400 BM is a lot of pain, even in blocks. I certainly have a special folder where I know most of them are in. I just thought there is a workaround (not in checkplaces, that has done its pure job) to crosscheck from the IPs to the BM, so that I easily could delete them. Anyway, I do not further visit these site and will be much more careful then before, in the last week I spent to complete nights and about 40 hours in total to recover from the Trojan horses called "UCASH", "GEMA" and "Security Shield". Will try to post the IDs in the FP sub-forum. I do not get any IP blocks, only if I visit one of the suspicious site MWBytes makes that alert.
  3. mailmeback
    Hi Spam Hunter, thx for the fast message (I have the same dog actually, great ones, and wanted to post the picture to my profile but it did not work (168K .jpg ? ). I am not actually infected, I was last week, but with an enormous effort and the professional help of a German trojan board and anti-botnet forum I was able to clean the PC and one of the long-term actions was to buy a full licence of MWBytes. I am so happy with it and literally feel saver. I have read how the IP block works and the details around it. Glad that you know the FF plug-in and how it works. But my main question was if there is any way or workaround to identify my bookmarks related to the IP blocks to remove these bookmarks ? the IP lookup is very unspecific and just gives you the country and other things but not real information to the actually used domain name ...as you know of course..... And can I sent these IPs to somebody checking them for "bad" sites ? Additionally I am not sure if your SW was really able to find all malicious site through the scan of my > 2400 bookmarks...so by chance this may be the hardcore test for your SW and maybe my system. If I would note this correlation of things I would never ever let all my links be checked at once which is a not needed risk. Does your SW block these adresses cause they are known, or cause they are doing bad things or what is the technical rational behind the IP blocks ? I read section G ;-) Happy to get your thoughts. However, I will of course be very carefully looking where I am going to....forever. Rainer
  4. mailmeback
    Hi, I am a new full version client of Malwarebytes since last week and could post the ID and Key if needed. Unfortunately I have used the Firefox plug-in "CheckPlaces" which check all my 2400 bookmarks systematically. It found some dozen of suspicious IPs (see below) which I am quite sure they all contain malware. I have also been infected by some trojan horses last week. My question now is, if you could check them and if I can somehow track the domain names from the IP numbers to remove all my "bad" bookmarks and to be sure to not further visit these sites. I am based in Germany. Thanks for your quick feedback or advice. Rainer *********************************************************************************************** IP-BLOCK 109.163.227.51 (Type: outgoing, Port: 50192, Process: firefox.exe) IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50592, Process: firefox.exe) IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50994, Process: firefox.exe) IP-BLOCK 69.43.161.182 (Type: outgoing, Port: 51392, Process: firefox.exe) IP-BLOCK 213.131.252.251 (Type: outgoing, Port: 51498, Process: firefox.exe) IP-BLOCK 78.41.203.7 (Type: outgoing, Port: 51616, Process: firefox.exe) IP-BLOCK 213.131.252.251 (Type: outgoing, Port: 51649, Process: firefox.exe) IP-BLOCK 82.98.86.163 (Type: outgoing, Port: 52489, Process: firefox.exe) IP-BLOCK 212.117.164.221 (Type: outgoing, Port: 52655, Process: firefox.exe) IP-BLOCK 188.130.251.85 (Type: outgoing, Port: 52673, Process: firefox.exe) IP-BLOCK 46.17.100.67 (Type: outgoing, Port: 52676, Process: firefox.exe) IP-BLOCK 93.114.41.158 (Type: outgoing, Port: 52678, Process: firefox.exe) IP-BLOCK 93.174.93.67 (Type: outgoing, Port: 52686, Process: firefox.exe) IP-BLOCK 93.190.139.102 (Type: outgoing, Port: 52687, Process: firefox.exe) IP-BLOCK 94.102.48.101 (Type: outgoing, Port: 52695, Process: firefox.exe) IP-BLOCK 212.117.179.19 (Type: outgoing, Port: 52704, Process: firefox.exe) IP-BLOCK 109.163.227.51 (Type: outgoing, Port: 52707, Process: firefox.exe) IP-BLOCK 208.91.197.101 (Type: outgoing, Port: 52708, Process: firefox.exe) IP-BLOCK 80.82.66.120 (Type: outgoing, Port: 52709, Process: firefox.exe) IP-BLOCK 91.216.73.63 (Type: outgoing, Port: 52711, Process: firefox.exe) IP-BLOCK 178.208.76.226 (Type: outgoing, Port: 52720, Process: firefox.exe) IP-BLOCK 193.107.16.142 (Type: outgoing, Port: 52727, Process: firefox.exe) IP-BLOCK 46.246.111.230 (Type: outgoing, Port: 52729, Process: firefox.exe) 2IP-BLOCK 46.17.100.67 (Type: outgoing, Port: 52730, Process: firefox.exe) IP-BLOCK 109.163.227.51 (Type: outgoing, Port: 52787, Process: firefox.exe) IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 52904, Process: firefox.exe) IP-BLOCK 69.43.161.182 (Type: outgoing, Port: 52969, Process: firefox.exe) IP-BLOCK 213.131.252.251 (Type: outgoing, Port: 52975, Process: firefox.exe) IP-BLOCK 78.41.203.7 (Type: outgoing, Port: 52993, Process: firefox.exe) IP-BLOCK 213.131.252.251 (Type: outgoing, Port: 52995, Process: firefox.exe) IP-BLOCK 82.98.86.163 (Type: outgoing, Port: 53078, Process: firefox.exe) IP-BLOCK 212.117.164.221 (Type: outgoing, Port: 53094, Process: firefox.exe) IP-BLOCK 188.130.251.85 (Type: outgoing, Port: 53095, Process: firefox.exe) IP-BLOCK 46.17.100.67 (Type: outgoing, Port: 53096, Process: firefox.exe) IP-BLOCK 93.114.41.158 (Type: outgoing, Port: 53097, Process: firefox.exe) IP-BLOCK 93.174.93.67 (Type: outgoing, Port: 53098, Process: firefox.exe) IP-BLOCK 93.190.139.102 (Type: outgoing, Port: 53099, Process: firefox.exe) IP-BLOCK 94.102.48.101 (Type: outgoing, Port: 53100, Process: firefox.exe) IP-BLOCK 212.117.179.19 (Type: outgoing, Port: 53101, Process: firefox.exe) IP-BLOCK 109.163.227.51 (Type: outgoing, Port: 53102, Process: firefox.exe) IP-BLOCK 208.91.197.101 (Type: outgoing, Port: 53103, Process: firefox.exe) IP-BLOCK 80.82.66.120 (Type: outgoing, Port: 53104, Process: firefox.exe) IP-BLOCK 91.216.73.63 (Type: outgoing, Port: 53105, Process: firefox.exe) IP-BLOCK 178.208.76.226 (Type: outgoing, Port: 53106, Process: firefox.exe) IP-BLOCK 193.107.16.142 (Type: outgoing, Port: 53107, Process: firefox.exe) IP-BLOCK 46.246.111.230 (Type: outgoing, Port: 53108, Process: firefox.exe) IP-BLOCK 46.17.100.67 (Typ
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.