JaMin

Protection log repeated 30 times: (or so) Detection, 2/27/2017 11:38 AM, SYSTEM, *********, Protection, Malicious Website Protection, IP, 23.199.224.202, armmf.adobe.com, 50429, Outbound, C:\Windows\System32\svchost.exe. Outbound ports range from 50429-50476 (probably not important) Ran full Malwarebytes scan and came out with 0 infections. I've researched the IPs and they point to akamai technologies CDN. So I think this is false positive. (Updated the database before the last detection). The other option of adobe.com being 'hacked' is a little disturbing.

Been using Oracle client for years, just flagged as Generic Trojan Downloader today. Confirmed HASH with vendor. orawtc9.dll archived2885-protection-log-2016-05-24.txt orawtc9.zip