Jump to content

Dashke

Staff
 View Profile  See their activity

  • Posts

    5,829

  • Joined

 Content Type 

Posts posted by Dashke

    Please read before posting a possible FP

    in Website Blocking

    Posted · Edited by thisisu
    Updated hyperlink

    Before submitting a possible FP, please be sure that you have -

     

    1. Checked the list of blocked gTLDs (Generic top-level domains (gTLDs) are one of the categories of top-level domains (TLDs) maintained by the Internet Assigned Numbers Authority (IANA) for use in the Domain Name System of the Internet. These gTLDs are blocked because the ratio of bad to good domains may be higher than average, indicating that the registry could do a better job of enforcing policies and shunning abusers.)

    Currently we are blocking the following gTLDs -

    .accountant

    .reisen

     

    2. Used the search function on the forum

    2017-04-27_113021.png.7f92f85792730b94b1f267e654e727da.png

    Please be sure that the domain/IP that you want to submit is not already submitted by another member.

     

    3. Gathered protection logs/screenshots and attach them with your message

    How to get protection logs in Malwarebytes 4:

     image.png.e471dc15429bcc05b5d6832ca2575298.png

    Press the image.png.5e35b37af895ecfd4faee72a2d2d4934.png button

    image.png.f8702e70978089d9fe41a1a82ea12e47.png

    Click Reports: image.png.17cb8ee033c439013aa2be1017cbec70.png

     

    image.png.96d063910f249ca31ccfaf0e93256ae5.png

    The logs are stored here. Save / export the log that contains the detections you would like to have us review. You can either save it or copy it to clipboard and paste it in a new topic HERE

    -------------------------------------------------------------------------------------------------------------------------------------------------

     

    If the gTLD/domain/IP is blocked and you still want to access it, you can add it to the Malwarebytes exclusions list -

    Malwarebytes 4

    https://support.malwarebytes.com/docs/DOC-3543

     

     

    Malwarebytes 3

    https://www.malwarebytes.com/support/guides/mbam/Settings3.html#exclusions

    mbam_exclusion.gif.f5a1c2811981d4cfc99aac45472287f5.gif

     

     

    -------------------------------------------------------------------------------------------------------------------------------------------------

    If you still want to submit the FP, please create a new thread and provide the domain/IP with your protection logs (please open 'MBAM', go to 'History' and attach the log where the detection is recorded). For more information about the protection logs, please see this link.

    Thanks to everyone who follows these instructions! :)

    CVS Blocked

    in Website Blocking

    Posted

    Hello tmikct,

    The hostname has been blocked for multiple malicious sources - 

    hxxp://img.ed4.net/dcsg/images/09_EasyToneTour/ => https://virustotal.com/en/file/fdaf6f07edbfb23407bccbc2bd5566a9c7cb3623054b2d11b0813a03c81a91a1/analysis/1492354812/

hxxp://img.ed4.net/paypal/2013_Q3/10544_sweeps/

     

    sync-eu.exe.bid

    in Website Blocking

    Posted

    Hello Basketrage,

    We have a block on *.bid because of the malicious activity seen on the gTLD.

    If you want to disable the notifications, please go Settings and set "Show Malwarebytes notifications in the Windows System Tray" as off. :)

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.