-
Posts
5,829 -
Joined
Content Type
Events
Profiles
Forums
Posts posted by Dashke
-
-
Thanks,
The block will be reviewed.
If you need additional help, please let us know. Thanks!
-
Hello GustavoAraujo,
The block will be removed.
If you need additional help, please let us know. Thanks!
-
Thanks evipes,
The block will be reviewed.
-
Hello onedaynight,
We are not detecting this domain with MB4.
Can you please provide us logs or a screenshot?
-
Hello TheBaron,
The block will be removed.
If you need additional help, please let us know. Thanks!
-
Hello Dave,
The block has been removed.
If you need additional help, please let us know. Thanks!
-
1
-
-
Hello Wulf,
Without the logs, we are unable to confirm that there is a problem at this point as we haven't seen a similar case.
If you get the block again, please let us know and we will definitely help you to resolve it.
-
Hi Wulf,
Can you please provide us the latest logs so we can check them?
-
Hello,
The block will be removed.
Thanks!
-
Thanks Anup, the block will be removed as it seems clean now.
-
Hello,
The block will be removed since the website seems clean at this point.
Thanks!
-
17 hours ago, LittleEndian said:
Subject says it all.
Hello LittleEndian,
Are you familiar with this domain
dfswebstreaming.azurewebsites.net
?
-
Hello,
Since it seems clean now, the block will be removed.
If you need additional help, please let us know. Thanks!
-
3 minutes ago, pmneve said:
Malwarebytes
www.malwarebytes.com-Log Details-
Protection Event Date: 10/17/20
Protection Event Time: 2:52 PM
Log File: 17cb0246-10c3-11eb-950e-5404a6b207c3.json-Software Information-
Version: 4.2.1.89
Components Version: 1.0.1045
Update Package Version: 1.0.31518
License: Premium-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: System-Blocked Website Details-
Malicious Website: 1
, C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe, Blocked, -1, -1, 0.0.0, ,-Website Data-
Category: Trojan
Domain: cdn-edge-dynamic-5-bhs-ca-ovh.gogcdn.net
IP Address: 54.39.180.109
Port: 443
Type: Outbound
File: C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe(end)
Hello,
Since the IP seems clean now, the block will be removed.
If you need additional help, please let us know. Thanks!
-
Sure thing, the block will be reviewed.
If the redirect has been cleaned, we will remove the block.
Have a nice day!
-
1
-
-
16 minutes ago, siverus said:
Hi.
Can you explain, please, why i.ijjiii.is domain was marked as Trojan? What should I do to change this mark?
Your website is redirecting users to malicious extensions.
If you remove the redirect, we can disable the block.
-
Hello,
The block will be reviewed.
-
Since the IP is clean now, the block will be removed.
-
Please contact Weebly support and ask them for an assistance in removing the infected pdf which is hosted here -
http://files.ryancamarda.com/uploads/1/3/0/7/130775921/7e8eca1ae9f530d.pdf
You should inspect your 'uploads' folder and remove all files that are not known to you. Also I would recommend you to change your account password.
The PDF file is redirecting users to malvertising networks and PUPs.
-
You are always welcome. If you need any help, you can count on us!
-
1
-
-
8 hours ago, Dashke said:
Please clean up your website first -
http://files.ryancamarda.com/uploads/1/3/0/7/130775921/7e8eca1ae9f530d.pdf
File hasn't been removed.
-
5 minutes ago, duckjesus said:
what's wrong with uploading my pdf resume?
Have you checked the actual file?
-
Yes, it was an IP block, but fortunately the IP is clean now.
-
1
-
-
This is a webskimmer -
it is usually a piece of malicious JavaScript (JS) code embedded in web payment pages to perform skimming. Such malware arrives on target pages via a compromised third-party script service. Web skimmers were designed to retrieve customer payment information.
Magecart is a group known to use web skimmers. For more information, see this blog post on how you can protect yourself from Magecart and other e-commerce attacks -
Your system should be fine as it usually doesn't infect the systems.
If you are suspicious that your PC might be infected, you can create a topic here -
https://forums.malwarebytes.com/forum/7-windows-malware-removal-help-support/
-
1
-
main domain evipes.com - request remove from blacklist
in Website Blocking
Posted
Thank you very much for your message, we have remove the parent block.
Have a great day!