Jump to content

Search the Community

Showing results for tags 'false positive'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

  1. Malwarebytes recently reported a false positive for ransomware on the Bookmark library management system for schools, used by over 2,000 schools in Australia. It even did this on my home PC. The false positive is for all exe files. I am the system developer. I wrote and compiled these myself. They have been recompiled just this morning. The false positive is likely related to PureLocker, which uses the same cross-platform programming language, PureBasic. These false positives were a huge problem last year when the ransomware appeared but have mostly been whitelisted by anti-virus companies. I
  2. Hello, Following complaints that we receive from our customers, we would like to report a false positive on our download link (cdn.filehorsevpn.com). Please find attached screenshots of the block and the log. Kindly review it and remove the false detection. Thank you MB logs fhvpn (1).txt
  3. Malwarebytes detected hmpalert.exe as malware listed as trojan.dridex. Service has been running on servers, and desktops for months as part of Sophos Intercept X Advanced. Verified detected file has same version, hash, signature. Saw older tickets where same service triggered false positives in 2016. Support said it was resolved but does not appear to be.
  4. False positive, has been checked manually with Microsoft as well, no malicious code in program. Please check it. HackTrapLogCollector.7z
  5. This website was made by YouTuber Enderman who actually tests malware, lmao I know for a FACT that this website isn't dangerous since it's from a YouTuber that I watch and nothing happens whenever I whitelist it.
  6. Dear Concerned, I'm writing to request you to remove the false positive of identifying ToTok as malware and add ToTok to the whitelist. ToTok is just a messaging and calling app which provides the stated services and does nothing malicious that would be regarded as malware. A thorough examination of ToTok on Virustotal has showed that ToTok is secure to use, for no virus has been detected by many anti-virus service providers. However, Malwarebytes has done the false detection before and removed it (screenshot attached), but the false detection happens again! This false positiv
  7. I am doing a one click install of a visual studio 2015 program and it is kicking me out. Help!!
  8. (I saw the instructions for Malwarebytes versions, 1, 2, and 3, but not 4.) Malwarebytes Premium Trial 4.1.0 free detected two files I thought were okay. In case they had become infected, I tried Virus Total on the files. There were detections (mod_ISA20_YLT.exe 4, fr08_final.zip 2), but they weren't detected by the Malwarebytes/Malwarebytes hpHosts engine. I tried Virus Total on the download URL of mod_ISA20_YLT.exe, but there were no detections. I downloaded mod_ISA20_YLT.exe from webpage https://www.scripture4all.org/download/download_ISA2.php (link URL https://www.scrip
  9. Hi. Since very recently Visual Studio Code started throwing this error whenever I try to launch the integrated terminal: The terminal process command 'C:\Windows\system32\cmd.exe' failed to launch (exit code: {2}) For those unfamiliar, it basically opens command prompt inside of VSCode under the current project directory. I have been using this feature without a problem for years. I am using Windows 7 64 bit, and if I go to the system tray, right click on Malwarebytes and turn Ransomware protection off, it starts working again immediately, don't even need to restart
  10. The attached file is falsely identified as Malware.Generic.1403450558Malware MalwareBytes Log.txt WIP3.rar
  11. Dear Sir or Madam, I have noticed that Malwarebytes detects our software products (described bellow) as malware. As a software developer I can strongly and sincerely vouch that the files bellow don't contain any malware. I have worked on these products, and know with 100% certainty that they don't contain malware. Please either whitelist our products or tell us, in detail, why they are considered malware. We would gladly cooperate with you in order to fix this problem which is damaging to us and to our users (and, by extension, to your users, also). DriverMax installation
  12. Dear Support, Our IP : 46.235.234.14 we are using this IP very long time. There is No Trojans. Today we got mail from one of our customers says Malwarebytes identify this IP as Malicious Site. Please remove the IP from your IP Block List ASAP. Thanks for your Help. Patrick
  13. Just reporting a false positive block of https://www.harveynorman.com.au/ Thanks, Krusty
  14. Not sure if this is a false positive or not, it comes back with 9/68 from Virus Total, Malwarebytes identified it as Malware.Generic.4161686282. CLUBSANDISK.zip
  15. Our client with the domain algosolutions.com is currently being blocked/flagged by MalwareBytes. The previous site had malware before we took over the project and have completely rebuilt the site with a new platform on a new properly maintained server. Please remove it from your block list.
  16. Hi I work for a small developer and one of our executables is being identified by a Malwarebytes scan as containing a MachineLearning/Anomalous.95% infection. The executable is part of the installation routine for our software. Is there anyway to identify if this is a genuine infection of a false positive? Thanks Alan
  17. Hi, I am member of the team responsible for running https://www.peopleperhour.com and our users are telling us that our CloudFront domain ( dw3i9sxi97owk.cloudfront.net ) is being blocked by malwarebytes premium. This domain fronts a AWS S3 bucket where we upload "user generated content" such as profile avatar images and user portfolio items. Although we use a virus scanner, it is possible that a malicious user has uploaded malware to our CloudFront domain - we will be sure to remove anything suspicious immediately if you are aware of anything? It is in our interests this domain is clean
  18. Hi support team! Hope you are doing well. I was hoping that you could remove the block on www.Baltimore.EcoMap.tech and www.EcoMap.tech. A possible client recently reported that they could not access our site due to the block (see screenshot) While I understand .tech is not a common top-level domain, we are definitely not using it for malicious purposes and it is preventing clients from accessing our site. Likewise, we create subdomains (like Baltimore.EcoMap.Tech) for all of our client sites. Will I have to submit a new False-Positive report for each subdomain, or will removin
  19. Please resolve False Positive Detection by desktop Malwarebytes. -Blocked Malware Details- File: 1 Adware.DLAssistant, C:\Program Files (x86)\CyberLink\Power2Go13\DiscManager.exe, Quarantined, 7519, 763135, 1.0.21148, , ame, File submitted to VirusTotal.com and they found zero hits. https://www.virustotal.com/gui/file/e9286bfd66cc38881ca615bcf89c1cd0aa7991f3542c7f41cb5ff8e3b8294b3e/detectionCyberLink Export of TXT file attached. Worked around by placing file in allow list. Malwarebyte blocked program.txt
  20. I had an old file saved from a game I wanted to create. It happens that I just installed Malwarebytes, analyzed my pendrive and detected that the .exe of the game is a threat. A virus/malware could be camouflaged there, or it's just a false positive. Since I have seen several that the same problem has happened to them. /Translator DeepL Virus Total: https://www.virustotal.com/gui/file/8b1c3bb3ed6f15e813a2a86eeea2823fcd56f9757e9dea31ddd9fc52e52cc171/detection
  21. Our site is fairly basic with a link for remote support that uses a product called remote utilities. I am assuming that the link to our remote support toll on remoteutilites.com is causing the false positive. Is there a way for us to get off the bad site list. It is causing us issues supporting our clients that either are using or want to use malwarebytes. Thanks for your help. Brad Miller
  22. Hi, The site from which Clover program can be download from http://en.ejie.me/download.html is being blocked. When trying to install this program downloaded via a different computer it gets deleted and a message is being displayed that the computer is safe now. Please investigate and confirm to whether this is a false positive or not. Symantec Endpoint protection does not classify this program as being harmful. Thanks! Negrelli
  23. Before submitting a possible FP, please be sure that you have - 1. Checked the list of blocked gTLDs (Generic top-level domains (gTLDs) are one of the categories of top-level domains (TLDs) maintained by the Internet Assigned Numbers Authority (IANA) for use in the Domain Name System of the Internet. These gTLDs are blocked because the ratio of bad to good domains may be higher than average, indicating that the registry could do a better job of enforcing policies and shunning abusers.) Currently we are blocking the following gTLDs - .accountant .reisen 2.
  24. Malwarebytes decided to flag my PDF writer as generic malware. How doi I get it to not flag it and not quarantine it? How should I continue to use the Cute PDF writer???
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.