Jump to content

El-Mustachador

Members
  • Content Count

    2
  • Joined

  • Last visited

About El-Mustachador

  • Rank
    New Member
  1. Ron, Thank you for the prompt response! Because I had ran both MBAM and AdwCleaner before posting I will include both the older scans I performed yesterday as well as the new ones I did today. Original AdwCleaner Scan: # AdwCleaner 7.0.8.0 - Logfile created on Sat Mar 31 02:08:44 2018 # Updated on 2018/08/02 by Malwarebytes # Database: 2018-03-30.1 # Running on Windows 7 Professional (X64) # Mode: scan # Support: https://www.malwarebytes.com/support ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** PUP.Optional.Legacy, C:\Users\USER\AppData\Roaming\acestream PUP.Optional.Legacy, C:\Users\USER\AppData\LocalLow\.acestream PUP.Optional.Legacy, C:\Users\USER\AppData\Roaming\.acestream PUP.Optional.Legacy, C:\_acestream_cache_ PUP.Optional.Legacy, C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media ***** [ Files ] ***** No malicious files found. ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** No malicious tasks found. ***** [ Registry ] ***** PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{650AAD35-BC0D-40C5-8152-72D4CD9EB01C}C:\users\user\appdata\roaming\acestream\engine\ace_engine.exe PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{D2108B6F-113C-4C5F-BED3-69820CC200D8}C:\users\user\appdata\roaming\acestream\engine\ace_engine.exe PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3671890085-4251797407-1856212415-1000\Software\AceStream PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3671890085-4251797407-1856212415-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream PUP.Optional.Legacy, [Key] - HKCU\Software\AceStream PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\CLSID\{79690976-ED6E-403C-BBBA-F8928B5EDE17} PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acelive PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acemedia PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acestream PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tslive PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Classes\Applications\ace_player.exe PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Classes\MIME\Database\Content Type\application\x-acestream-plugin PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayCDAudioOnArrival PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayDVDAudioOnArrival PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayDVDMovieOnArrival PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayMusicFilesOnArrival PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlaySVCDMovieOnArrival PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayVCDMovieOnArrival PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayVideoFilesOnArrival PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\AudioCD\shell\PlayWithACEStream PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\DVD\shell\PlayWithACEStream PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Applications\ace_player.exe PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\MIME\Database\Content Type\application\x-acestream-plugin PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acelive PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acemedia PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acestream PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tslive PUP.Optional.AceStream, [Value] - HKCU\Software\RegisteredApplications | AceStream ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries. ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries. ************************* ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ########## Current AdwCleaner Scan # AdwCleaner 7.0.8.0 - Logfile created on Sat Mar 31 21:18:56 2018 # Updated on 2018/08/02 by Malwarebytes # Database: 2018-03-30.1 # Running on Windows 7 Professional (X64) # Mode: scan # Support: https://www.malwarebytes.com/support ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** No malicious folders found. ***** [ Files ] ***** No malicious files found. ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** No malicious tasks found. ***** [ Registry ] ***** No malicious registry entries found. ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries. ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries. ************************* C:/AdwCleaner/AdwCleaner[C0].txt - [4432 B] - [2018/3/31 2:13:13] C:/AdwCleaner/AdwCleaner[S0].txt - [4668 B] - [2018/3/31 2:8:44] ########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt ########## Original MBAM Scan.txt Current MBAM Scan.txt FRST.txt Addition.txt
  2. Hello all, I have been reading through the forum and following the advice of the forum moderators I have decided to create my own topic. Earlier today I upgraded the free version of Malwarebytes to the 14-day premium version. Since the download has been completed, I have been getting non-stop warnings for websites blocked that are being detected as malicious. The ports are constantly changing, but the common theme is that they all come from the same IP address (37.48.125.112), are all outbound, and originate from svchost.exe I have downloaded and ran the programs listed here https://www.bleepingcomputer.com/virus-removal/fix-malicious-web-site-blocked-alert-from-svchost.exe/ but the updates are still occurring. I have also ran Farbar Recovery Scan Tool, and I have attached my FRST and Addition txt files to this post here. If there is anything else I need to add please let me know. FRST.txt Addition.txt
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.