Jump to content

Numerous outgoing connections blocked due to Malware/Trojan

Recommended Posts


I've been receiving constant suspicious outgoing connections, all to different IP's. This started happening after an inbound attack was blocked, I created a topic you can see here: 

 where I was recommended to ask here as well.

That topic contains all the information I have but I have attached the new FRST file after the fixlist was applied.

The inbound attacks happened again today and were all from the same IP, which I have now blocked in my firewall.
And the blocked suspicious outgoing connections continued after the fixlist was applied. I'm running another full scan of my entire PC, but threat scans and a scan of my entire PC besides my steam games folder returned nothing.

Thanks in advance for any help!

FRST.txt Addition.txt

Link to post
Share on other sites

  • Staff

***This is an automated reply***


Thanks for posting in the Malwarebytes 3 Help forum.


If you are having technical issues with our Windows product, please do the following: 


If you haven’t already done so, please run the Malwarebytes Support Tool and then attach the logs in your next reply:

NOTE: The tools and the information obtained is safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system.

  1. Download Malwarebytes Support Tool
  2. Once the file is downloaded, open your Downloads folder/location of the downloaded file
  3. Double-click mb-support-X.X.X.XXXX.exe to run the program
    • You may be prompted by User Account Control (UAC) to allow changes to be made to your computer. Click Yes to consent.
  4. Place a checkmark next to Accept License Agreement and click Next
  5. You will be presented with a page stating, "Get Started!"
  6. Click the Advanced tab on the left column
    0. UI.png
  7. Click the Gather Logs button
    17. Advanced.png
  8. A progress bar will appear and the program will proceed with getting logs from your computer
    19. System Repair Progress.png
  9. Upon completion, click a file named mbst-grab-results.zip will be saved to your Desktop. Click OK
  10. Please attach the file in your next reply. Before submitting your reply, be sure to enable "Notify me of replies" like so:
     notify me.jpeg  

Click "Reveal Hidden Contents" below for details on how to attach a file:


To save attachments, please click the link as shown below. You can click and drag the files to this bar or you can click the choose files, then browse to where your files are located, select them and click the Open button.


One of our experts will be able to assist you shortly.


If you are having licensing issues, please do the following: 


For any of these issues:

  • Renewals
  • Refunds (including double billing)
  • Cancellations
  • Update Billing Info
  • Multiple Transactions
  • Consumer Purchases
  • Transaction Receipt

Please contact our support team at https://support.malwarebytes.com/community/consumer/pages/contact-us to get help

If you need help looking up your license details, please head here: https://support.malwarebytes.com/docs/DOC-1264 


Thanks in advance for your patience.

-The Malwarebytes Forum Team


Link to post
Share on other sites


I took a look at the logs you posted in the other forum and what concerns me is the fact that no file/process is shown for the blocks.  If it were just ads being blocked or something else benign like that then your web browser's process should be shown as the process/file being blocked but instead there is nothing.  This makes me think that it's possible your system is infected with some kind of bot, Trojan or other malware which may be hidden and is reaching out to the blocked websites.

Assuming you haven't done so already, please open Malwarebytes and navigate to Settings>Protection and under Scan Options toggle the option Scan for rootkits to On and then return to the Dashboard tab and click Scan Now.  Allow the scan to complete and have Malwarebytes remove anything it detects.  Hopefully it will find whatever is reaching out to these websites.

If nothing was found then please try running ADWCleaner and likewise scan with it and have it remove anything it detects, restarting your system if prompted to do so to complete the removal process.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.