Jump to content

Interpretation of blocked web sites? What is going on?


Recommended Posts

Since installing and running Malwarebytes anti-malware, i have been getting frequent popups from my system tray, about a blocked web site.  Usually occurring several times an hour.  It gives an IP address, always the same one, says Type:outgoing, and process is chrome.exe.

 

Although i'm glad the site is being blocked, this makes me feel uneasy.  Does the fact that this keeps happening mean that some maleware is still left on my computer, that is able to initiate an attempt to connect to this IP address, and that even malware bytes has not detected and removed it?

 

If there is anything else i should do (besides worry) please let me know. Can i stop this attempt from being made, rather this simply just blocking it after the attempt to connect is made?

 

Or, at least if you can give me an overview explanation of what is likely going on, i'd be happy to hear it, just to satisfy my intellectual curiosity and to understand more for the future.

 

Thanks!

Tom

 

Link to post
Share on other sites

  • Root Admin

Hello Tom and :welcome:

The Web blocker is designed to prevent bad sites from interacting with your computer. So best to check out why the block rather than try to quell or ignore it.

Please run the following scans and post back the logs and we'll see if we can tell what's going on. Also please go to the Logs tab of the program and find the most recent Protection log and post that back as well.

Please create an mbam-check log:

  • Download mbam-check.exe from here and save it to your desktop
  • Double-click on mbam-check.exe to run it, it should then open a log file
  • Please do not copy and paste the entire contents of the log into your next post, instead please attach the log CheckResults.txt file which should now be located on your desktop to your next post
Next, Please run the following scanner and send back the logs.

Download DDS from one of the locations below and save to your Desktop

dds.scr

dds.com

Temporarily disable any script blocker if your Anti-Virus/Anti-Malware has it.

How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs

Once downloaded you can disconnect from the Internet and disable your Ant-Virus temporarily if needed.

Then double click dds.scr or dds.com to run the tool.

Click the Run button if prompted with an Open File - Security Warning dialog box.

A black DOS console should open and run for a moment.

  • When done, DDS will open two (2) logs:
    • DDS.txt
    • Attach.txt
  • Save both reports to your desktop
  • Please include the following logs in your next reply as an attachment: DDS.txt and Attach.txt

    You can ignore the note about zipping the Attach.txt file

Thanks
Link to post
Share on other sites

Hello and Welcome to Malwarebytes

There quite of bit of problems going on with this system that was probably caused by an infection, previous infection or some software/hardware conflict. It would be best to have one of our experts take a deeper look and help you resolve this issues. Lets start by ruling our an infection....

Being that you are probably infected, feel free to follow the instructions below to receive free, one-on-one expert assistance in checking your system and clearing out any infections and correcting any damage done by the malware.

Please see the following pinned topic which has information on how to get help with this: Available Assistance for Possibly Infected Computers

Thank you

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.