Jump to content

Finding malicious sites


Recommended Posts

Everyday mbam pro shows me sites that it has "saved" me from.

How can I find out what program is trying to reach these sites.

I have a spare PC with a saved system image on which I have tried to access these sites. If it gets attacked I can boot from a special CD and restore the complete system. So far every site does not exist.

It would be worthwhile if the log file could show the calling program name when a site is rejected.

Is it possible that these sites do not exist, but should exist?



Link to post
Share on other sites

Hi -

The problem is that there can be many sites at the same IP , but only one or two are "bad" sites -

The module will block the IP unless you know that one of the sites are 100% OK - Then you add that site to your exclusions list -

An Internet Protocol address (IP address) is a numerical label that is assigned to any device participating in a computer network that uses the Internet -

Thank You -

Link to post
Share on other sites

Doug, your firewall may have logs that may be able to show you what program is trying to access those sites.

You should be concerned that these are happening to you everyday as you stated. Do you have any P2P programs running, Skype, or Messenger programs. These can produce these blocks. If not you need to find out if you have an infection that is not being detected, perhaps a rootkit.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.