Jump to content

'Successfully blocked [outgoing] access to a potentially malicious website' messages


Recommended Posts

Hi,

For the last few days I have constantly (between every 3 seconds and every minute) received balloon messages from Malwarebytes Anti-Malware that read:

Successfully blocked access to a potentially malicious website: 83.133.125.41

Type: Outgoing

The number is not always the same, but tends to start with 83.133. Here are some other numbers that appear in the messages:

46.249.59.47

83.133.121.147

83.133.121.156

83.133.124.195

83.133.124.196

83.133.124.245

91.207.60.22

95.215.2.8

188.95.52.162

212.36.9.58

The threat type is always outgoing which makes me think that the problem is on my computer. I have AVG Free 9.0.925 and Malwarebytes Anti-Malware trial version 1.60.0.1800 installed on my computer and ran full scans of both programs on both normal mode and safe mode of Windows XP but found no infections.

I saw in forums about this topic that filesharing apllications are often to blame, but I don't use these.

I'd really appreciate any help with this problem because I find this constant stream of threat alerts unnerving.

Link to post
Share on other sites

Hello and welcome to MBAM, alba:

IP blocks can indicate that MBAM is doing its job of blocking bad content on websites.

And, as you correctly point out, they can also occur when running certain P2P and other programs, such as Skype.

In some cases the blocks are a false positive.

However, they can also be a sign of infection, especially if the blocks are outgoing and they occur when no browsers are open.

There is more information about the IP blocking module in the FAQ - Section G.

It includes instructions on how to set MBAM to ignore a particular IP, if you wish to do so.

It also contains instructions on how to determine what process might be trying to make the connections.

You can also research the IPs in question at a site such as ip-lookup.net.

On the other hand, if you think the IP blocks might be a false positive, then please read this article before starting a new topic in the False Positives forum.

Alternatively, if you think you might be infected (and this does seem likely based on your description of the problem), based on the IP blocks and/or other suspicious computer behavior, then please read the following to begin the cleaning process.

  • Please print out, read and carefully follow the instructions in the "I'm Infected - What Do I Do Now?" article.
  • If the infection has so crippled the computer that you cannot complete some or all of the steps, then just do the best you can and start a new topic as described below.

  • Then please start a new post in the Malware Removal forum.
  • When starting your new post, please note the following:
  • Please do NOT post in a topic started by someone else, even if their problem sounds similar.
  • Please COPY/PASTE the requested logs into your post, rather than attaching them.
  • Under options, please be sure to select "track this topic" and "immediate email notification", so you'll know when a helper responds.

  • Please be patient - it may be 48 hours or more before a helper can assist you, especially when the forum is very busy.
  • Please do NOT "bump" your topic or reply back to it for at least 48 hours.
  • Doing so may cause your topic to be overlooked, as it will appear that you are already being helped.

Please be patient - someone will assist you as soon as possible.

Thanks!

daledoc1

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.