Jump to content

Aardvark

Members
  • Content Count

    17
  • Joined

  • Last visited

Community Reputation

1 Neutral

About Aardvark

  • Rank
    New Member

Profile Information

  • Location
    Australia
  • Interests
    Everything

Recent Profile Visitors

700 profile views
  1. Correct, there is no website. As I said, this domain only hosts internal resources. But no matter what I type in, it comes up as hosting a trojan. E.g. Website blocked due to trojan Website blocked: sadkjfksdj234123413241234dfsdsfafkljdsaf[dot]porthos[dot]oflaherty[dot]family Malwarebytes Browser Guard blocked this website because it may contain malware activity. We strongly recommend you do not continue.
  2. FYI this is only happening in Browser Guard, MBAM does not have any issue (also running on the same devices...).
  3. I believe this is being incorrectly categorised as distributing a trojan. Being that it has no Internet facing resources this seems like an error of some kind. How do we find out what trojan this is allegedly distributing? Website blocked due to trojan Website blocked: oflaherty[dot]family Malwarebytes Browser Guard blocked this website because it may contain malware activity. We strongly recommend you do not continue.
  4. Not showing as blocked for me either now. Went and had breakfast, came back and sorted...very strange.
  5. Looks like a bad definition went out. Website blocked due to phishing Website blocked: www.australia.gov.au Malwarebytes Browser Guard blocked this website because it may contain malware activity. We strongly recommend you do not continue. Website blocked due to phishing Website blocked: www.suncorp.com.au Malwarebytes Browser Guard blocked this website because it may contain malware activity. We strongly recommend you do not continue. Website blocked due to phishing Website blocked
  6. Product: MalwareBytes Browser Guard URL: hxxps://wo.ws/2ynVyTx Block reason: Reputation Website blocked due to a suspicious top level domain (TLD) Website blocked: wo.ws Malwarebytes Browser Guard blocked this website because it may contain scam activity. We strongly recommend you do not continue. World of Warships short URL service.
  7. Not doing it for me any more either 👍
  8. Product: MalwareBytes Browser Guard URL: hxxp://wiztreefree.com/files/wiztree_3_35_setup.exe Block reason: Reputation Website blocked due to suspicious download Download blocked: wiztree_3_35.setup.exe Malwarebytes Browser Guard blocks downloads that either come from websites that see relatively light traffic or may contain potentially malicious content. This is intended to protect you from new scams. However, if you trust content from this site and would like to proceed, click "Continue". Just an alternative software to WinDirStat for finding disk consumption in
  9. Having the same problem. The UJR software looks legit, source code is available. But it seems the whole domain is flagged because of summoner.zip. UJR does a version check back to evilc.com to check for updates, see here.
  10. Product: MalwareBytes Browser Guard URL: hxxp://www.amazonregistry.com Block reason: Reputation Website blocked due to reputation Website blocked: www.amazonregistry.com Malwarebytes Browser Guard blocked this website because it may contain malware activity.
  11. Product: MalwareBytes Browser Guard URL: hxxps://www.grouppolicy.biz/2010/09/how-to-delegate-ad-permission-to-organisational-units-using-the-powershell-command-add-qadpermission/ Block reason: Website blocked due to a suspicious top level domain (TLD) VirusTotal Scan: https://www.virustotal.com/gui/url/8b377ec36e9495956f3ff3d3808ef805d9e43ce8c8dca3516a4598a0ccc1c410/detection
  12. Product: MalwareBytes Browser Guard Short URL is: hxxps://staff.connectanywhere.biz, hxxps://staff.accessanywhere.biz Block reason: Website blocked due to a suspicious top level domain (TLD) These are corporate logon portals.
  13. Product: MalwareBytes Browser Guard Short URL is: hxxp://soph.so/cSFi30qp1EC Redirects to: hxxps://community.sophos.com/b/community-blog/posts/sophosid-is-migrating-please-log-in-with-your-sophosid Block reason: Reputation The domain seems to be getting used as Sopho's short URL service for redirects. A truly horrible domain name to use because it definitely looks like a scam, but appears to be legit 🙄
  14. Wasn't exactly sure where to report this as it is not a file detection as such. MalwareBytes is detecting the Microsoft tool Process Explorer as attempting an attack. I suppose normally image hijack settings would be a bad thing, but in this case it is a good thing (if you use Process Explorer over Task Manager). mbytesscan.zip
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.