Jump to content

Please interpret Blocked Malicious Website warning info


Recommended Posts

Occasionally, I encounter an MBAM warning message on the Lotterypost.com  website, that MBAM premium has blocked a malicious website outbound.  This is the info in the warning box:



Port: 60070



How do you interpret this information ? Is this my computer's ISP address ? or the Lottery Post ISP address ?? Where do I find my computer's ISP address information on my computer ? What does Port and Outbound Mean ?  Does this mean that there is a problem with the Lottery Post website (LP), or a problem with some of the ads on the LP website, or a problem with some other website ? I have only experienced this issue on the Lottery Post website.  How do you resolve this problem ? I don't want to "exclude" this website in MBAM, if there really might be an undetermined  security threat.



I have also been experiencing a problem with Internet Explorer 11. I have MBAE [anti - exploit] premium installed. The warning message states that "IE isn't functioning properly or isn't responding, and is going to shut down."  What is the problem with IE ???  How do you resolve this problem. Is this warning about IE coming from MBAE, or from Windows in general ??

Link to post
Share on other sites

Did you see the reply to your similar question in your other topic yesterday, here:  https://forums.malwarebytes.org/index.php?/topic/159370-what-is-mbam-self-protection-module/#entry894345?
Such an IP block while visiting a web site could mean that MBAM is doing its job of blocking potentially malicious content (e.g. ads) on the site.
If you are seeing a lot of these blocks -- especially OUTBOUND and especially when no browsers are open -- it could be a sign of infection.
This is explained in greater detail here: What does it mean when I get an alert that Malwarebytes Anti-Malware has blocked a malicious site?
If you are not sure what's going on, or you are worried that you might be infected, I suggest that you please follow the advice in this pinned topic: Available Assistance For Possibly Infected Computers.
It explains the options for free, expert help >>AND<< the preliminary steps to expedite the process.
A malware analyst will guide you through the scanning and cleanup process.


If you are having other problems with computer, such as browser problems, your helper there can assist you with that, too. 

If there are other, non-malware problems remaining after the malware cleanup, your helper can refer you to the correct section of the forum, for "PC Help". (This part of the forum is not for diagnosis or repair problems.) ;)


Link to post
Share on other sites

Yes, I read this answer in response to my other post.  However, I asked SPECIFIC QUESTIONS. I don't want a general answer.  I assume MBAM and MBAE are working properly. I want a specific interpretation of the information in the warning box.  I am not tech savy .  What does this mean ? :


IP =

port = 60070



Outbound means outside of my computer.  What does IP = mean ? Is this an ISP address? What does port = 60070 mean ?? Where can I find my computer's ISP address ??

Link to post
Share on other sites

What is my IP

inetnum: -
netname:        NL-ECATEL-20100816
descr:          Ecatel LTD
country:        NL
org:            ORG-EL38-RIPE
admin-c:        RvE16-RIPE
tech-c:         RvE16-RIPE
status:         ALLOCATED PA
mnt-by:         RIPE-NCC-HM-MNT
mnt-lower:      ECATEL-MNT
mnt-routes:     ECATEL-MNT
notify:         ripe@linkup.nl
changed:        hostmaster@ripe.net 20100816
source:         RIPE

60070 is TCP port # 60070 which is one of 65536  possible TCP port numbers.
There are 65536 possible UDP port numbers as well.
Internet protocol suite


Since TCP port 60070 is not a standard TCP port, please follow the advice daledoc1 provided you.

Link to post
Share on other sites

Hi: :)


MBAM is blocking something on your computer that is trying to contact an IP address in the Netherlands.

Think of it as your computer trying to make a long-distance phone call to an unfamiliar number.

And it is doing so through a "Port" or connection that is not standard.

MBAM is blocking the call because something on that IP address could be bad (malware infection).


IP address is akin to a "phone number" for computers.

ISP is your Internet Service Provider (IOW the cable or phone or wireless company that provides the service that allows you to access the internet).

They are very different and unrelated.


The "outbound" IP block behavior could mean that MBAM is doing its job.

But it is also suspicious for a possible malware infectionon your computer.

Without seeing diagnostic & protection logs from your computer, we cannot say for sure.


In order to confirm or exclude a possible infection, scans need to be run to check your computer.

That sort of work is NOT permitted here, in this "Chat" area of the forum.

It is conducted for free in a special area reserved for that purpose.

A trained malware expert will guide you through the scans needed to determine if your computer is infected.

If it is infected, the expert will help you to clean it.


So, this sums up our suggestions:

1) The behavior you describe is suspicious for a possible malware infection on your computer;

2) The scans and tests needed to confirm or exclude it are not permitted here;

3) There is free, expert help available in a different area of the forum;

4) To obtain that free, expert help, please follow as best you can the advice in this topic >>right here<< ;

5) Then, please start a NEW, SEPARATE topic in the Malware Removal section of the forum >>right here<<.

6) Then, please wait for one of the helpers to pick up your topic and to help you with checking/cleaning the computer.


Thanks again,

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.