Porthos

Please download Farbar Recovery Scan Tool and save it to your desktop. Note: You need to run the version compatible with your system. You can check here if you're not sure if your computer is 32-bit or 64-bit Double-click to run it. When the tool opens click Yes to disclaimer. Press the Scan button. It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply. The first time the tool is run, it also makes another log (Addition.txt). Please attach it to your reply as well. Thank you

Yes it was.

This is a browser guard detection not from the actual Malwarebytes program. It is the .biz TLD which is commonly abused. I will alert the proper team. @gonzo

Could you un-quarantine and zip and attach the BBCF.exe file.

Would do the following.

Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 8/3/20 Protection Event Time: 5:04 PM Log File: 3cedf7bf-d5d5-11ea-8a1f-001a7dda7102.json -Software Information- Version: 4.1.2.73 Components Version: 1.0.1003 Update Package Version: 1.0.27891 License: Premium -System Information- OS: Windows 10 (Build 19041.423) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , C:\Program Files\Mozilla Firefox\firefox.exe, Blocked, -1, -1, 0.0.0, , -Website Data- Category: Phishing Domain: www.andreaenglandart.com IP Address: 199.34.228.71 Port: 443 Type: Outbound File: C:\Program Files\Mozilla Firefox\firefox.exe (end)

Thanks for the update. Glad it is working now.

I see what the problem is. The following entries must be removed from your HOSTS file: Instructions on resetting your HOSTS file can be found in this Microsoft support article. Please let us know if the issue is resolved or not.

Some time that is what it takes. Now that it is clean and working I would start making image backups to an external drive with something like Macrium reflect free.

Tough job for sure.

We just have to wait for staff to respond. I was just adding more info for them.

Thanks for the update. What was the bigger problem if you don't mind?

I do see the block in Browser guard.

Still wrong file. Download Malwarebytes Support Tool Once the file is downloaded, open your Downloads folder/location of the downloaded file Double-click mb-support xxx.xx.exe to run the report You may be prompted by User Account Control (UAC) to allow changes to be made to your computer. Click Yes to consent. Place a checkmark next to Accept License Agreement and click Next You will be presented with a page stating, "Get Started!" Do NOT use the button “Start repair” ! Click the Advanced tab on the left column Click the Gather Logs button A progress bar will appear and the program will proceed with getting logs from your computer Upon completion, click a file named mbst-grab-results.zip will be saved to your Desktop. Click OK Please attach the ZIP file in your next reply.

I am not seeing a block on that site. Could you post the log showing the block.

The zip file from the support tool should not be that big.

I just got done re watching the whole thing again.

Please download Farbar Recovery Scan Tool and save it to your desktop. Note: You need to run the version compatible with your system. You can check here if you're not sure if your computer is 32-bit or 64-bit Double-click to run it. When the tool opens click Yes to disclaimer. Press the Scan button. It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply. The first time the tool is run, it also makes another log (Addition.txt). Please attach it to your reply as well. Thank you

We need to get information from this machine in order to have the proper detail to help you forward. NOTE: The tools and the information obtained is safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system. Download Malwarebytes Support Tool Once the file is downloaded, open your Downloads folder/location of the downloaded file Double-click mb-support xxx.xx.exe to run the report You may be prompted by User Account Control (UAC) to allow changes to be made to your computer. Click Yes to consent. Place a checkmark next to Accept License Agreement and click Next You will be presented with a page stating, "Get Started!" Do NOT use the button “Start repair” ! Click the Advanced tab on the left column Click the Gather Logs button A progress bar will appear and the program will proceed with getting logs from your computer Upon completion, click a file named mbst-grab-results.zip will be saved to your Desktop. Click OK Please attach the ZIP file in your next reply.

@Sucuri This is a Browser guard block which is different from a block from Malwarebytes Premium, There is a dedicated section for those blocks . The key here is the TLD ".online". Browser guard blocks most of those by default due to the abuse of the TLD. https://forums.malwarebytes.com/forum/252-malwarebytes-browser-guard/ I will alert the proper team to deal with this. @gonzo

I see you have posted in the correct section now. But you forgot to read and follow the instructions. Follow the guide and post the logs in your malware removal topic no in this thread.

Please follow the instructions already given.

I do the same. But for the user who does not know about storage sense because it is not on by default they go looking for other software. I do not worry about every little file I can delete.

That is fine. Be aware support tickets can take 5-7 business days for response as the help desk is extremely busy.

I will request you post to be moved to the correct section for evaluation.