since this week i am noticing this pop up on my App/DC server and in the threats view of Malwarebytes.
Blocked web site 8/31/2016 11:23:40 AM Type: outgoing, Port: 137 122.228.198.140 Anti-Malware "my internal Server Name" internal domain.local "server local ip" 00-26-55-FF-A4-E8
Blocked web site 8/31/2016 11:23:32 AM Type: outgoing, Port: 62707, Process: dns.exe 122.228.198.140 Anti-Malware "my internal Server Name" internal domain.local "server local ip " 00-26-55-FF-A4-E8
the server in question is an app server and a domain controller/dns server.
what could be causing this??