Mark_Albrosco

Morning - MWB Detection reported a blocked website as follows </142.0.204.220/> on port 54552 launched from msedge.exe VirusTotal results for a scan of the IP address returned "Clean" for all engines. This was reported on a previous post on 16-Dec-2020; the IP address was to be reviewed as per JPopovich's response

Morning - MWB Detection reported a blocked website as follows </outbyte.com/> on port 56589 launched from firefox.exe VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.

Morning - MWB Detection reported a blocked website as follows </ssionsupre.fun/> on ports ranging between 49276-62671 launched from firefox.exe VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.

Morning - MWB Detection reported a blocked website as follows </5.189.217.48/> on port 58429 launched from AvastBrowser.exe VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.

Morning - MWB Detection reported a blocked website as follows </coin-birds.com/> on port 50182 launched from msedge.exe VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.

Kevin - thanks for this feedback. We're using EPP Cloud, so the first set of steps will need to be scheduled from the management console. I will try and get those logs to you later today. The person is doing video editing/rendering using free online tools on certain sites; those sites however have pop-up ads and it is these that are being blocked by MWB end point protection.

Morning - MWB Detection gave a blocked website result for the following sites: 1. </34.230.127.91/> on port 56230 launched from AvastBrowser.exe - VirusTotal results for a scan of the IP address returned "Clean" for all engines. 2. </199.80.54.74/> on port 57938 launched from msedge.exe - VirusTotal results for a scan of the IP address returned 1 engine registered a "malware" result. 3. </192.243.59.20/> on port 62961 launched from msedge.exe - VirusTotal results for a scan of the IP address returned 1 engine registered a "suspicious" result 4. </gz06x5tqlj.com/

Morning - MWB Detection reported a blocked website as follows </142.0.204.220/> on port 51208 launched from msedge.exe VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.

Morning - MWB Detection reported a blocked website as follows </64.58.113.244/> on port 64114 launched from msedge.exe VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.

Morning - MWB Detection reported a blocked website as follows </www.rlclabellers.com.mialias.net/> on port 52155. VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.

Morning - MWB Detection reported a blocked website as follows </108.167.146.28/> on port 55062 launched from msedge.exe VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.

The following site came up as a blocked web site. /<digilander.libero.it>/ Virus Total engines return a "clean" result when the URL is scanned