[main domain evipes.com - request remove from blacklist]

Thank you very much for your message, we have remove the parent block.

Have a great day!

[sum.dk - RTP / Trojan horse false positive]

Thanks,

The block will be reviewed.

If you need additional help, please let us know. Thanks!

[Blacklist Removal]

Hello GustavoAraujo,

The block will be removed.

If you need additional help, please let us know. Thanks!

[domain blocked - request whitelist]

Thanks evipes,

The block will be reviewed.

[Can you please remove our website from block list?]

Hello onedaynight,

We are not detecting this domain with MB4.

Can you please provide us logs or a screenshot?

[Please unblock abdo.com.au]

Hello TheBaron,

The block will be removed.

If you need additional help, please let us know. Thanks!

[Request for blacklist removal following malware attack on our website]

Hello Dave,

The block has been removed.

If you need additional help, please let us know. Thanks!

[Malwarebytes blocking a portion of nordVPN.com because of Riskware]

Hello Wulf,

Without the logs, we are unable to confirm that there is a problem at this point as we haven't seen a similar case.

If you get the block again, please let us know and we will definitely help you to resolve it.

[Malwarebytes blocking a portion of nordVPN.com because of Riskware]

Hi Wulf,

Can you please provide us the latest logs so we can check them?

[Possible false positive (again)? (vgmuseum.com)]

Hello,

The block will be removed.

Thanks!

[False Positive]

Thanks Anup, the block will be removed as it seems clean now.

[False positive]

Hello,

The block will be removed since the website seems clean at this point.

Thanks!

[Girl Guides webstore blocked. https://secure.girlguides.ca]

17 hours ago, LittleEndian said:

Subject says it all.

Hello LittleEndian,

Are you familiar with this domain

dfswebstreaming.azurewebsites.net

?

[my website is a false positive - urgent]

Hello,

Since it seems clean now, the block will be removed.

If you need additional help, please let us know. Thanks!

[False positive outbound on GOG Galaxy]

3 minutes ago, pmneve said:

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 10/17/20
Protection Event Time: 2:52 PM
Log File: 17cb0246-10c3-11eb-950e-5404a6b207c3.json

-Software Information-
Version: 4.2.1.89
Components Version: 1.0.1045
Update Package Version: 1.0.31518
License: Premium

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: System

-Blocked Website Details-
Malicious Website: 1
, C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe, Blocked, -1, -1, 0.0.0, , 

-Website Data-
Category: Trojan
Domain: cdn-edge-dynamic-5-bhs-ca-ovh.gogcdn.net
IP Address: 54.39.180.109
Port: 443
Type: Outbound
File: C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe

(end)

Hello,

Since the IP seems clean now, the block will be removed.

If you need additional help, please let us know. Thanks!

[False positive descision]

Sure thing, the block will be reviewed.

If the redirect has been cleaned, we will remove the block.

Have a nice day!

[False positive descision]

16 minutes ago, siverus said:

Hi.

Can you explain, please, why i.ijjiii.is domain was marked as Trojan? What should I do to change this mark?

Your website is redirecting users to malicious extensions.

If you remove the redirect, we can disable the block.

[False positive choogeet.net (139.45.195.230)]

Hello,

The block will be reviewed.

[GOG CDN blocked]

Since the IP is clean now, the block will be removed.

[my website is a false positive - urgent]

Please contact Weebly support and ask them for an assistance in removing the infected pdf which is hosted here -

http://files.ryancamarda.com/uploads/1/3/0/7/130775921/7e8eca1ae9f530d.pdf

You should inspect your 'uploads' folder and remove all files that are not known to you. Also I would recommend you to change your account password.

The PDF file is redirecting users to malvertising networks and PUPs.

[Malicious website blocked, Domain amastybootstrap.online from Firefox]

You are always welcome. If you need any help, you can count on us!

[my website is a false positive - urgent]

8 hours ago, Dashke said:

Please clean up your website first -

http://files.ryancamarda.com/uploads/1/3/0/7/130775921/7e8eca1ae9f530d.pdf

 

File hasn't been removed.

[my website is a false positive - urgent]

5 minutes ago, duckjesus said:

what's wrong with uploading my pdf resume?

Have you checked the actual file?

[Malwarebytes blocking GOG Galaxy game downloads]

Yes, it was an IP block, but fortunately the IP is clean now.

[Malicious website blocked, Domain amastybootstrap.online from Firefox]

This is a webskimmer - 

it is usually a piece of malicious JavaScript (JS) code embedded in web payment pages to perform skimming. Such malware arrives on target pages via a compromised third-party script service. Web skimmers were designed to retrieve customer payment information.

Magecart is a group known to use web skimmers. For more information, see this blog post on how you can protect yourself from Magecart and other e-commerce attacks -

https://blog.malwarebytes.com/cybercrime/2018/09/how-to-protect-your-data-from-magecart-and-other-e-commerce-attacks/

Your system should be fine as it usually doesn't infect the systems.

If you are suspicious that your PC might be infected, you can create a topic here -

https://forums.malwarebytes.com/forum/7-windows-malware-removal-help-support/