Jump to content

MBAM Pro blocked a Malicious WindowsApp name BrowserCore


Recommended Posts

MBAM Pro v.3.1.2.1733 is installed on my laptop Windows 10 Home.

When I startup my laptop at 20:59 h. a MBAM Pro warning showup directly:

MBAM Pro has blocked an outgoing connection to a Malicious website namely outlook.office365.com.

I do not use Microsoft Office 365.

 591f4b34581e6-ScreenShot063.jpg

Windows Explorer could not find HxTsr.exe  

MBAM Pro blocked the Malicious website since 17:20:59 when the laptop was off.

591f51884d9b0-ScreenShot066.jpg

 

591f51ef45b5d-ScreenShot065.jpg

 

The report of MBAM Pro:

-Blocked Website Details-
	Malicious website: 1
	,, Blocked, [-1], [-1], 0.0.0
	 
	-Website data-
	Domain: outlook.office365.com
	IP Address: 40.101.51.210
	Gate: [53805]
	Type: Outgoing
	File: C: \ Program Files \ WindowsApps \ microsoft.windowscommunicationsapps_17.8126.42377.0_x64__8wekyb3d8bbwe \ HxTsr.exe
Edited by Rai_03
Link to post
Share on other sites

13 minutes ago, dcollins said:

Ok, are you still getting this issue?

MBAM Pro warning did not showup again, I think because I had take over the ownership from the folder WindowsApp - BrowserCore.

14 minutes ago, dcollins said:

There was a small time frame when we were blocking outlook.office365.com without meaning to, but that should be resolved now

But why is an outbound connection to outlook.office365.com made when the laptop is off?, and as I told before I am not an outlook.office365 user.

Can you clarify to me?

Link to post
Share on other sites

@Rai_03 many Windows Store apps will communicate with Microsoft servers for a variety of reasons, it's not something you're specifically doing.

On a related note, you should not take ownership of that folder. I would change the permissions back to what they were, or you open yourself up to vulnerabilities. Windows Store apps are generally sandboxed with no access to the rest of your machine, by changing the owner however, you've now changed that sandbox environment.

Link to post
Share on other sites

@dcollins

4 hours ago, dcollins said:

There was a small time frame when we were blocking outlook.office365.com without meaning to, but that should be resolved now

Meaning outlook.office 365.com isn’t a malicious website?

Thank you very much for your explanation, that is appreciated.

I have to take over the ownership to find HxTsr.exe, after Windows Explorer couldn’t find it.

Just to find out to which program HxTsr.exe belongs, because I don’t like Microsoft's sneaky behavior on my computer.

There are so many articles about ‘Microsoft doesn’t respect consumer privacy’.

 

OK, I will change back the ownership to TrustedInstaller tomorrow.

Thank you.

Link to post
Share on other sites

  • 2 weeks later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.