Jump to content

Urgent help please! (nothing difficult to answer)


Recommended Posts

Hi everybody, i have to show my issue:
Today i was, as usual, surfing on google. Since i had to search on google the adress of a market shop in my town.  Immediately after i've pressed on 'search' on google, malwarebytes popped up saying me that it has blocked a malicious website.
Actually, with norton i have seen that those website results were flagged as ''unsafe'', 
but the point is: 
1)how could have i connected to a malicious ip if i didn't even clicked on any result, right after click 'search' on google.
Then, the same pop-up that alerted me of that, showed the name of the malicious ip.
 It was different because usually (i play a p2p videogame) and malicious names are coloured in grey or something similar.
2)This one was red. why?
3) here i post the logs, i've made right after the alert 2 scans (1 complete-default + 1 personalized with all boxes checked) and Nothing found.
I've also read on FAQ that Malwarebytes Anti-Malware will alert users when network traffic is blocked to a website, URL, or IP address that has been found to host malicious content. Since the network traffic is blocked, the malicious IP address is unable to connect to your computer - In most cases nothing needs be done, our protection has blocked the threat from infecting you. 
So i think i'm safe... but i wanna know your opinion :)
 
Logs here:
Malwarebytes Anti-Malware
www.malwarebytes.org
 
 
Update, 15/09/2014 00:39:01, SYSTEM, UTENTE-PC, Scheduler, Malware Database, 2014.9.14.8, 2014.9.14.9, 
Protection, 15/09/2014 00:39:01, SYSTEM, UTENTE-PC, Protection, Refresh, Starting, 
Protection, 15/09/2014 00:39:01, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Stopping, 
Protection, 15/09/2014 00:39:01, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Stopped, 
Protection, 15/09/2014 00:39:09, SYSTEM, UTENTE-PC, Protection, Refresh, Success, 
Protection, 15/09/2014 00:39:09, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Starting, 
Protection, 15/09/2014 00:39:09, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Started, 
Protection, 15/09/2014 08:51:01, SYSTEM, UTENTE-PC, Protection, Malware Protection, Starting, 
Protection, 15/09/2014 08:51:01, SYSTEM, UTENTE-PC, Protection, Malware Protection, Started, 
Protection, 15/09/2014 08:51:01, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Starting, 
Protection, 15/09/2014 08:51:05, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Started, 
Update, 15/09/2014 09:13:09, SYSTEM, UTENTE-PC, Manual, Malware Database, 2014.9.14.9, 2014.9.15.3, 
Protection, 15/09/2014 09:13:09, SYSTEM, UTENTE-PC, Protection, Refresh, Starting, 
Protection, 15/09/2014 09:13:09, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Stopping, 
Protection, 15/09/2014 09:13:09, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Stopped, 
Protection, 15/09/2014 09:13:16, SYSTEM, UTENTE-PC, Protection, Refresh, Success, 
Protection, 15/09/2014 09:13:16, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Starting, 
Protection, 15/09/2014 09:13:16, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Started, 
Update, 15/09/2014 10:39:51, SYSTEM, UTENTE-PC, Scheduler, Malware Database, 2014.9.15.3, 2014.9.15.4, 
Protection, 15/09/2014 10:39:51, SYSTEM, UTENTE-PC, Protection, Refresh, Starting, 
Protection, 15/09/2014 10:39:51, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Stopping, 
Protection, 15/09/2014 10:39:51, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Stopped, 
Protection, 15/09/2014 10:39:58, SYSTEM, UTENTE-PC, Protection, Refresh, Success, 
Protection, 15/09/2014 10:39:58, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Starting, 
Protection, 15/09/2014 10:39:58, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Started, 
Protection, 15/09/2014 12:18:04, SYSTEM, UTENTE-PC, Protection, Malware Protection, Starting, 
Protection, 15/09/2014 12:18:04, SYSTEM, UTENTE-PC, Protection, Malware Protection, Started, 
Protection, 15/09/2014 12:18:04, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Starting, 
Protection, 15/09/2014 12:18:09, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Started, 
Detection, 15/09/2014 12:22:09, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, IP, 95.174.15.130, www.youemotions.it, 49215, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe, 
Detection, 15/09/2014 12:22:09, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, IP, 95.174.15.130, www.youemotions.it, 49215, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe, 
Detection, 15/09/2014 12:22:09, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, IP, 95.174.15.130, www.youemotions.it, 49216, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe, 
Update, 15/09/2014 12:23:19, SYSTEM, UTENTE-PC, Manual, Malware Database, 2014.9.15.4, 2014.9.15.5, 
Protection, 15/09/2014 12:23:19, SYSTEM, UTENTE-PC, Protection, Refresh, Starting, 
Protection, 15/09/2014 12:23:19, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Stopping, 
Protection, 15/09/2014 12:23:19, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Stopped, 
Protection, 15/09/2014 12:23:26, SYSTEM, UTENTE-PC, Protection, Refresh, Success, 
Protection, 15/09/2014 12:23:26, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Starting, 
Protection, 15/09/2014 12:23:26, SYSTEM, UTENTE-PC, Protection, Malicious Website Protection, Started, 
 
(end)

 

Link to post
Share on other sites

Sites housed on 95.174.15.130 were first discovered housing malware last year, and still were upto and including the last few weeks. However, as of a re-check a few seconds ago, it appears the offending sites have finally been cleaned and thus, the block will be removed.

Link to post
Share on other sites
  • 1 month later...
  • Staff

It means that when the IP block was put in place, there was sufficient domains (not all) housing malware to warrant it. Where shared IPs are concerned, there unfortunately will also usually be safe domains that get caught in the cross-fire.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.