- Jul 5, 2016
- 416
This mourning I got 6 blocks from Malwarebytes for the same IP.
I then looked at my firewall and it showed an established connection outgoing. Unfortunately I didn't take a screen shot of the firewall connection but killed the connection.
What I am wondering is if Malwarebytes logged the connection as being blocked, why did my firewall show it established. I am including a screen shot and the MB log file info.
Malwarebytes
www.malwarebytes.com
-Log Details-
Protection Event Date: 11/17/17
Protection Event Time: 10:11 AM
Log File: 07c33340-cbb2-11e7-a19e-00ffd3199732.json
Administrator: Yes
-Software Information-
Version: 3.3.1.2183
Components Version: 1.0.236
Update Package Version: 1.0.3282
License: Premium
-System Information-
OS: Windows 10 (Build 17035.1000)
CPU: x64
File System: NTFS
User: System
-Blocked Website Details-
Malicious Website: 1
, , Blocked, [-1], [-1],0.0.0
-Website Data-
Domain: tn.symcd.com
IP Address: 23.60.139.27
Port: [51701]
Type: Outbound
File: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(end)
I then looked at my firewall and it showed an established connection outgoing. Unfortunately I didn't take a screen shot of the firewall connection but killed the connection.
What I am wondering is if Malwarebytes logged the connection as being blocked, why did my firewall show it established. I am including a screen shot and the MB log file info.
Malwarebytes
www.malwarebytes.com
-Log Details-
Protection Event Date: 11/17/17
Protection Event Time: 10:11 AM
Log File: 07c33340-cbb2-11e7-a19e-00ffd3199732.json
Administrator: Yes
-Software Information-
Version: 3.3.1.2183
Components Version: 1.0.236
Update Package Version: 1.0.3282
License: Premium
-System Information-
OS: Windows 10 (Build 17035.1000)
CPU: x64
File System: NTFS
User: System
-Blocked Website Details-
Malicious Website: 1
, , Blocked, [-1], [-1],0.0.0
-Website Data-
Domain: tn.symcd.com
IP Address: 23.60.139.27
Port: [51701]
Type: Outbound
File: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(end)