Avast community forum
Home
Help
Search
Login
Register
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
URL:mal svhost
« previous
next »
Print
Pages: [
1
]
Go Down
Author
Topic: URL:mal svhost (Read 1715 times)
0 Members and 1 Guest are viewing this topic.
REDACTED
Guest
URL:mal svhost
«
on:
February 15, 2017, 01:45:55 PM »
recently i've been having this threat detection stating that my svchost.exe is infected with URL:mal i ran 3 full scans with no result can anyone help me
FRST files attached
«
Last Edit: February 15, 2017, 01:54:07 PM by jamayka
»
Logged
Eddy
Avast Evangelist
Maybe Bot
Posts: 31072
Watching (over?) you
Re: URL:mal svhost
«
Reply #1 on:
February 15, 2017, 02:00:09 PM »
No, avast doesn't say that svchost is infected.
It says that something on your system is trying to connect to a blacklisted domain/IP
The log from MBam is missing.
What is KMS doing on your system ?
«
Last Edit: February 15, 2017, 02:03:06 PM by Eddy
»
Logged
Online scanners (URL/File/Java/others)
-
INDEPENDENT support (chat for Windows, Windows apps, and many other things), just state the problem/ask your question in the channel and have patience
NO SECURITY TOOL PROTECTS A SYSTEM AGAINST THE STUPIDITY OF A USER
REDACTED
Guest
Re: URL:mal svhost
«
Reply #2 on:
February 15, 2017, 02:17:49 PM »
I've got this today too,
The site its trying to load has a Microsoft account login form (the kind you see for windows 10 apps) when over https or Microsoft account unavailable over http.
I'm not sure but I'm thinking this is a false positive given the IP seems to be owned by Microsoft. (However I'm aware this isn't the best way to judge).
https://whois.arin.net/rest/net/NET-131-253-61-0-1
I'm currently half-way through a scan with no infections detected.
P.S. I'm on Windows 10 Pro.
Logged
Eddy
Avast Evangelist
Maybe Bot
Posts: 31072
Watching (over?) you
Re: URL:mal svhost
«
Reply #3 on:
February 15, 2017, 02:22:14 PM »
131.253.61.84 is also on the blacklist and it appears to be live mail from Microsoft.
avast is notified.
Logged
Online scanners (URL/File/Java/others)
-
INDEPENDENT support (chat for Windows, Windows apps, and many other things), just state the problem/ask your question in the channel and have patience
NO SECURITY TOOL PROTECTS A SYSTEM AGAINST THE STUPIDITY OF A USER
HonzaZ
Avast team
Advanced Poster
Posts: 1038
Re: URL:mal svhost
«
Reply #4 on:
February 15, 2017, 02:30:08 PM »
This was a false positive. The detection was out 13:22 - 13:45 CET. Sorry
Logged
Eddy
Avast Evangelist
Maybe Bot
Posts: 31072
Watching (over?) you
Re: URL:mal svhost
«
Reply #5 on:
February 15, 2017, 02:31:28 PM »
Thank you HonzaZ
Logged
Online scanners (URL/File/Java/others)
-
INDEPENDENT support (chat for Windows, Windows apps, and many other things), just state the problem/ask your question in the channel and have patience
NO SECURITY TOOL PROTECTS A SYSTEM AGAINST THE STUPIDITY OF A USER
Print
Pages: [
1
]
Go Up
« previous
next »
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
URL:mal svhost
