Jump to content

Search the Community

Showing results for tags 'False positive'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes 3 Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 173 results

  1. Good Afternoon, It looks like a websites we maintain has been marked as Spam by Malwarebytes - some of our customers have reported it as being blocked when they are using Malwarebytes Premium. This website is our landing page for 3rd party advertisers to direct their advertising traffic to. Looking at our records this happened previously back in December and from the information provided then we were able to determine that one advertiser had breached our ToS and their account was terminated as a result (so none of their inbound links towards us functioned any longer). Could you please review and advise as to the status of this current detection? Thanks in advance mal report.txt
  2. Hi, I'd like to report a false positive warning for phishing for the following web domine: telegra.ph The warning is generated by the Android app.
  3. hxxps://cnbank.secureonlinebanking.com/canandaiguanationalbank/uux.aspx is our active online banking website which has been reported by virustotal as being listed by hpHosts as a Phishing site. This is not the case. Please correct as soon as possible as this action is causing us direct and significant damages.
  4. Hi support team, Please fix this false positive. Thanks, Gavin Falsepositive-plsfix.zip
  5. Latest versione of Forscan is reported as anomalous: can you investigate? https://forscan.org/
  6. Hello! I just booted up my laptop after two days, and my Malwarebytes is blocking connections that appear to be associated with Microsoft Office 2016, listing the reasons as fraud. I haven't installed anything new since my last time using my laptop, and the last time I've scanned my PC, the report came back negative. I've attached the reports for both blockings below. Can I get a Staff member/expert to verify this & advise me what to do next. Thank you for your time & I hope to hear from you soon. Office Fraud.txt Office Fraud 2.txt
  7. I have written a program in C# on my own machine, and it is being used on some of our other machines, and My malware bytes keeps flagging it as the title of this post. there is nothing malicious with my code is there any way I can prevent this? Files for malwarebytes.7z
  8. Hello, I wrote a program which creates music sheets from a MIDI file (written in C# with WPF) for a company. After I sent the first test version to the company I got a reply that Malwarebytes flags the program as malware (MachineLearning\/Anomalous.100%). This is obviously a false positive and I wanted to ask how to fix this. I already tried to remove or change some parts of the code but without success. It would be really helpful if someone could look at my logs and tell me what I've done wrong (I'll attach them). I sadly can't upload the source code to this public forum, but I could send it to you privately if you need it. Thanks a lot! Lell malwarebytes LOG.zip mbst-grab-results.zip
  9. Hello On a scan run on the night 29 to 30 April 2019, malwarebytes reported as malware (Adware.Zdengo) the file C:\users\....\ApplicationData\Roaming\Ilinker\Iupdate.exe. I send this file to VirusTotal. The original scan in their database showed that only one antivirus considered that the file was malware. A ran a new VirusTotal scan. Only 2 antivirus (Zillya and malwarebytes) reported this file as malware. I believe that this file is not a malware, as installed directly from my Samsung photo camera. The file is in the attached zip archive. Regards. iUpdate.zip
  10. I had previously reported that the Mind Snares: Alice's Journey game from Big Fish was giving a false positive & this was confirmed & corrected. I've just run a scan with 7.3 & the game is back being listed as a problem. I've included the log for the scan. AdwCleaner[S09].txt
  11. Hi, my c# program is being picked up as a malware. It isn't I promise. Can you check it out please. malwarebyteslog.txt PROPOSALHELPER.zip
  12. Our site hxxps://www.radio.bialystok.pl 193.106/104.72 has been blacklisted as " Website blocked due to trojan" by MalwareBytes Browser Extension beta. Please verify as false positive and review blacklist.
  13. This is a script file we created to use. Malwarebytes incorrectly IDs it as bad and quarantines it. I am uploading a zipped copy here per instructions of a tech. All it does is set a path variable, change directory and launch a valid app. It was created because RDP would not run the app just by itself. But if you run the script via RDP, it works. fas.zip
  14. Hi there, Nareg here from Exodus. We have been struggling with our application getting flagged by Malwarebytes, and have about 50 reports from users in the past month. Malwarebytes support is not responding to our support requests. This is the connection being flagged: dnsseed.bitcoin.dashjr.org This is a connection we know about and we use to fetch up-to-date information about wallet balances and transactions. This is what they see: - Nareg from exodus.io
  15. The extension lists asean.org as a malicious site. But it is a regional intergovernmental organization website. I'm not sure that it is hacked or it's just a false positive.
  16. Software that has been on my machine for years is now being detected as a MachineLearning/Anomalous.100%. Virustotal reports this file as 100% clean. virustotal results: https://www.virustotal.com/#/file/56db1a1752af146012280a660eb43d8c029789e5baee3e21e90f5fe1b05875a9/detection The file is ComicRackSetup09178.exe - it's a comic book reader program. The alert is only on the install file that is in my downloads folder. The alert is not on the installed version of the files. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 3/15/19 Scan Time: 2:17 AM Log File: fdc44e88-46e9-11e9-bfb2-b4ae2bc35c8c.json -Software Information- Version: 3.7.1.2839 Components Version: 1.0.562 Update Package Version: 1.0.9694 License: Premium -System Information- OS: Windows 10 (Build 17134.648) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 376732 Threats Detected: 1 Threats Quarantined: 0 Time Elapsed: 9 min, 51 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 MachineLearning/Anomalous.100%, C:\USERS\NMSKJ\DOWNLOADS\COMICRACKSETUP09178.EXE, No Action By User, [0], [392687],1.0.9694 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) ComicRackSetup09178.zip
  17. So I trade crypto. I run into scams and malware on the regular, its not a big deal to me personally as i think of myself as quite security savy. I have been looking for a very useful feature(OCO order types) that isnt offered by the exchange i use to trade on (Binance).So I've done plenty of digging and looking around for a legit 3rd party piece of software and encountered plenty that offer the feature i am looking for but are obvious scams. I did however run into this platform that looks by far worth the effort and risk of getting more info on it as the level of software is by far the most professional grade stuff i have encountered to date! Here is the link to the software https://www.quantower.com/ , after downloading i am getting two hits through MB being these which i will attach below. I havnt been able to find much info on these or even get any response from the platforms official twitter handle after asking "whats up with these results?" so hopefully someone here can clear this up for me! Here is my reddit post about this as well if anyone has any interest in commenting there as well 😄 https://www.reddit.com/r/CryptoCurrencyTrading/comments/arbl6k/trading_software_that_offers_oco_order_types_on/ PS. those entries will not be added to the reg. until after installing and running the application shortcut they create that links to the "Starter.exe"
  18. Dear Malwarebytes Team, my file got detected with "MachineLearning/Anomalous.100%", i created it with dotnet framework, why it got detected ? these are the details of the report -Log Details- Protection Event Date: 2/24/19 Protection Event Time: 3:26 PM Log File: d1c40a8c-3837-11e9-9650-b06ebf50c25a.json -Software Information- Version: 3.7.1.2839 Components Version: 1.0.538 Update Package Version: 1.0.9406 License: Premium -System Information- OS: Windows 10 (Build 17763.316) CPU: x64 File System: NTFS User: System -Blocked Malware Details- File: 1 MachineLearning/Anomalous.100%, C:\Users\****\Desktop\961API_-_Full_Licensing_API_Tool.exe, Quarantined, [0], [392687],1.0.9406 (end) 961API_-_Full_Licensing_API_Tool.zip
  19. We recently launched some new websites which make use of the service Shot Farm, which we are using as a CDN for our product images. Users of Malwarebytes are having our product images blocked with the warning "Website blocked due to Trojan" and referencing the domain "di.shotfarm.com" (which is our CDN domain). Example screenshot is attached- here's the URL: https://www.bellhelmets.com/en/c/dirt-bike-helmets Our customer service department is getting a lot of very worried calls from our customers who are also users of Malwarebytes- we would really appreciate it if you could stop connections to this domain as Trojans. Thanks!
  20. Hi Team, Please remove the Blacklist removal for the below-mentioned domain sunnylandingpages.com, since it is blocking. We found no malicious file present in webroot on analysis. Please have a look and if you found any suspicious please provide the links which would help us to remove. mb.txt
  21. Someone has reported that my personal website is being blocked. It's a static website hosted on GitHub Pages. URL: https://tkashkin.tk Screenshot: https://imgur.com/mME8LFX Website repository: https://github.com/tkashkin/tkashkin.github.io GitHub issue: https://github.com/tkashkin/tkashkin.github.io/issues/2
  22. Dear Support team, our customer's website www.ursulinen.at has been declared as malicious in its blacklist since November. Unfortunately, there were security problems in November, but these are already fixed. Please remove IP 188.40.2.14, www.ursulinen.at, ursulinen.at from their database. Yours sincerely Chris
  23. We've scanned this site and it seems to be clean, care to re-test? Thanks!
  24. Good day, Could you please unblock shop.vana-events.nl als "malware website"? I checked in 3 different ways and there are no troyan horses or that kind of harmful parts on the website/webserver. There is a good firewall and virusscanner installed on the server to prevent this. We are an eventservice and we are selling event merchandise on that webshop url. Thank you in forward! And could you please let me know why our website is blocked, since there is no troja horse on it? Has somebody (angry visitor or something) reported it or is it an ip-range thing? Thanks for your time and all the best, Rob van der Stelt Vana Events
  25. Potential game launcher malware, I would like to see if they are a false positive or not. Here's the log, as well as a sample of the files in question. As a sidenote, these files are indeed "cracked" game files, and I do not get the same result with the originals. Note that also, only some of the varied language .exe files were detected as potential malware at first, and on a second scan I believe it determined another file to be potential malware, too. I would mainly like to know, if possible, if the files are indeed malware, or if they are only being detected as such due to the "cracked" nature of the files. Thank you for reading. FF7 Malwarebytes Scan.txt FF7 Cracked Launcher Files - MWB.rar
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.