I got this (presumed) false positive while trying to browse to hxxp://nasm.us
NSlookup is correct, nasm.us == 198.137.202.136 even when I check on external sites such as hxxps://ping.eu/nslookup/ .
Nasm is the Netwide ASseMbler, probably the most popular open source assemblers in the world.
I wanted to check out the reference docs as linked from the bottom of this page: hxxps://nekosecurity.com/x86-64-assembly/part-3-nasm-anatomy-syscall-passing-argument when I first got the block message.
Other users appear to have been reporting this problem since Jun 27 2020: hxxps://github.com/ScoopInstaller/Main/issues/1227
though I'm not seeing any other references via Google search to suggest any other known problems with the nasm.us website.
Below is the detection report that I get:
Malwarebytes
www.malwarebytes.com
-Log Details-
Protection Event Date: 9/5/20
Protection Event Time: 4:12 PM
Log File: 4b587402-efcd-11ea-af6f-d89ef3922a9a.json
-Software Information-
Version: 4.2.0.82
Components Version: 1.0.1036
Update Package Version: 1.0.29495
License: Premium
-System Information-
OS: Windows 10 (Build 19041.450)
CPU: x64
File System: NTFS
User: System
-Blocked Website Details-
Malicious Website: 1
, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe, Blocked, -1, -1, 0.0.0, ,
-Website Data-
Category: Trojan
Domain: www.nasm.us
IP Address: 198.137.202.136
Port: 443
Type: Outbound
File: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(end)
Thank you for your time, I hope all is going well. :)