Jump to content

dns.exe outbound block


Recommended Posts

I am using malewarebytes on a box that is used as a dns server for a few computers.  There is outbound traffic on the DNS.exe that is blocked (which is actually what I want) but I'm not exactly sure I understand what it means.

 

Examples from the logs:

 

Malicious Website Protection, IP, 195.24.72.3, 64518, Outbound, C:\Windows\System32\dns.exe

Malicious Website Protection, IP, 202.101.224.68, 64991, Outbound, C:\Windows\System32\dns.exe

Malicious Website Protection, IP, 146.0.73.78, ns2.hostkey.ru, 64852, Outbound, C:\Windows\System32\dns.exe

 

I'm not aware of any intrusions but obviously want to be over protective.  Since this dns is only available to computers on my network (and in my domain) I can only assume that there is someone with a problem.

 

Your thoughts appreciated!

Link to post
Share on other sites

Hello and Welcome to Malwarebytes....

Sounds like this is being used on a file server, and Malwarebytes is really not designed to be used on a file server. Malwarebytes does have customers that use it on file servers, however they are using the business version of Malwarebytes.

Being that this is most likely a business, you need to post your questions in the business section of the forum Malwarebytes Anti-Malware for Business.

 

NOTE: The use of the consumer version of Malwarebytes in a business is against the EULA, so proper licensing for business is required.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.