Mark_Albrosco
-
Posts
95 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Posts posted by Mark_Albrosco
-
-
Morning - MWB Detection reported a blocked website as follows </realitypaper.com/> on port 443 launched from msedge.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection reported a blocked website as follows </mobilewebs.net/> on port 80 launched from msedge.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection reported a blocked website as follows </demo.spyropress.com/> on port 80 launched from msedge.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
In truth this improvement can be applied to other Task feedback windows as well.
Just ran a "Check for Software Updates" on an endpoint. The Task reported "Success" but it does not say what version of the software was found, or a message "Endpoint is up to date. No software updates required."
The information on the window just needs to be a little richer
-
Hi - would like to suggest that the Install Software Updates feedback screen show the software version successfully installed as well as the previous version.
This would be very useful to administrators. The attached screen capture of the current shows that there isn't much useful info except for the "success" indicator.
-
Morning - MWB Detection reported a blocked website as follows </hdwallsbox.com/> on ports 65511 and 65344, launched from msedge.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection reported a blocked website as follows </msedge.exe/> on port 50330 launched from firefox.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection gave a blocked website result for the following sites:
1. </shrinke.me/> on port 64283 launched from Firefox.exe - VirusTotal results for a scan of the URL returned "Clean" for all engines.
2. </xml.realtime-bid.com/> on ports 64258 and 64151 launched from Firefox.exe - VirusTotal results for a scan of the URL returned "Clean" for all engines.
3. </lifeimpressions.net/> on port 64090 launched from Firefox.exe - VirusTotal results for a scan of the URL returned "Clean" for all engines' 1 engine registered a "suspicious" resultSee images attached.
-
Morning - MWB Detection reported a blocked website as follows </d-02.winudf.com/> on port 57998 launched from msedge.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection reported a blocked website as follows </d-03.winudf.com/> on port 58102 launched from msedge.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection reported a blocked website as follows </www.healthsoul.com/> on port 64461 launched from msedge.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection reported a blocked website as follows </162.243.163.204/> on port 50487 launched from chrome.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines except one. See image attached.
Looking forward to your feedback on this item
-
Morning - MWB Detection reported a blocked website as follows </142.0.204.220/> on port 54552 launched from msedge.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. This was reported on a previous post on 16-Dec-2020; the IP address was to be reviewed as per JPopovich's response
-
Morning - MWB Detection reported a blocked website as follows </outbyte.com/> on port 56589 launched from firefox.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection reported a blocked website as follows </ssionsupre.fun/> on ports ranging between 49276-62671 launched from firefox.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection reported a blocked website as follows </5.189.217.48/> on port 58429 launched from AvastBrowser.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection reported a blocked website as follows </coin-birds.com/> on port 50182 launched from msedge.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Kevin - thanks for this feedback.
We're using EPP Cloud, so the first set of steps will need to be scheduled from the management console.
I will try and get those logs to you later today.
The person is doing video editing/rendering using free online tools on certain sites; those sites however have pop-up ads and it is these that are being blocked by MWB end point protection.
-
Morning - MWB Detection gave a blocked website result for the following sites:
1. </34.230.127.91/> on port 56230 launched from AvastBrowser.exe - VirusTotal results for a scan of the IP address returned "Clean" for all engines.
2. </199.80.54.74/> on port 57938 launched from msedge.exe - VirusTotal results for a scan of the IP address returned 1 engine registered a "malware" result.
3. </192.243.59.20/> on port 62961 launched from msedge.exe - VirusTotal results for a scan of the IP address returned 1 engine registered a "suspicious" result
4. </gz06x5tqlj.com/> launched from msedge.exe - VirusTotal results for a scan of the IP address returned 1 engine registered a "malware" result / 1 engine registered a "suspicious" resultSee images attached.
-
Morning - MWB Detection reported a blocked website as follows </142.0.204.220/> on port 51208 launched from msedge.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection reported a blocked website as follows </64.58.113.244/> on port 64114 launched from msedge.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection reported a blocked website as follows </www.rlclabellers.com.mialias.net/> on port 52155.
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
Morning - MWB Detection reported a blocked website as follows </108.167.146.28/> on port 55062 launched from msedge.exe
VirusTotal results for a scan of the IP address returned "Clean" for all engines. See image attached.
-
The following site came up as a blocked web site.
/<digilander.libero.it>/
Virus Total engines return a "clean" result when the URL is scanned
Possible false positive - hxxp:\\mobilewebs.net
in Website Blocking
Posted
TeMerc - thanks for the feedback.
Very interesting that VT gave you that scan result.
Maybe I missed something when I ran the VT scan? Always looking to improve the robustness of my checks. :)
Aside from VT are there any other online scanners you'd recommend?
Can't be too careful.