David H. Lipman

Please try disabling MBG's "Block suspicious top Level domains..." setting.

It may have been moved to protect any data that was captured in the logs, for privacy sake? @Porthos would have to answer. I originally moved this from from; File Detections to Website Blocking

Yes, it could be a Malicious Advertisement (aka; Malvertisement) A ScreenShot of the message would help ID this object.

Thank you @ZeroGee I totally understand your concerns. You have described a scary scenario indeed. The question is was that a one-off case or was there a serial marauder on the loose? Unfortunately if one stands out as easy prey, and does not have Situational Awareness, they can become victimized. Both in the physical world and in Cyber space. Obtaining an Air Tag or similar device, external to a Smart Phone, may be work in a both an innocuous and inconspicuous fashion and give you the piece of mind you seek.

I am sorry you feel that way @keith_thfc , but it is not and can not be considered spam. Not even nagware. It is merely an overaggressive conglomeration of products into one unified user interface. I too do not use VPN and thus I find the in your face VPN section obtrusive. But to call is spam, is misrepresenting and overstating the issue.

Since it was most likely a Phish, merely "clicking" on the URL will not infect your PC. It is a Social Engineering ploy to get you provide credentials like to email or at a Bank. Thus, unless you reached the content and provided your credentials, I wouldn't worry about this. Example: Microsoft Phish

What looks like it would have been a Phish, has been taken down. When posting malicious, suspicious and/or nefarious URLs, please place them in Code Tags such that they are not posted as "clickable" Live Links.

Unless one of the couple suffers from some sort of dementia, I can't see a salient reason to to know exactly where one spouse is all the time. If you both carry Smart Phones, the data is there via GPS and Cellular Triangulation data, just in case. Do you really need Real-Time knowledge ? Such software that is keeps track is a kind of Stalkerware and Malwarebytes has taken a strong stance against Stalkerware. Please reference; How to protect against stalkerware, a murky but dangerous mobile threat BTW: Did you check your your email addresses at HIBP ?

Malwarebytes is an anti malware and deals with personal and corporate cyber security. It is actually counterproductive and diminishes one's personal security to share one's location. As someone who states thy are at least a septuagenarian, you must realize that you are in a targeted age group and are more susceptible to scams. You should take take measures to protect your selves and your privacy and not look to software that may leave you exposed to both physical and cyber scams and crimes. Edit: For example, have you checked your email addresses for being part of any breaches ? https://haveibeenpwned.com/

Oooooooooooooorah !

There are two clocks. When the Commercial Email is sent (the email has a Time Stamp in the email Header) When the recipient performs the Can Spam Opt-Out So if Company_A sends an email, the Opt-Out mechanism is required to be "alive" and in working order for at least 30 day from that time stamp. If it isn't working during that time frame, Company_A is in violation of the Can Spam Act When the recipient chooses to Opt-Out, they are given a grace period of a maximum of 10 business days (~a fortnight) to process and cease further emails. If further emails are received subsequent to the allotted grace period, Company_A is in violation of the Can Spam Act. Responsible and ethical senders will act well within that grace period. Unethical and irresponsible actors will wait until the very end of that grace period. If one chooses a link from Company_A where their email address will be used, a caveat or disclaimer of it usage may be considered an Opt-In. Thus if you receive subsequent email and you again choose to Opt-Out, the clock starts again.

@DarkDrak Do you have the Web site and URL of the file you downloaded and maybe a password if it was password protected? If you still have that URL, it can be submitted in; Newest IP or URL Threats after reading; READ ME: Purpose of this forum so the URL(s) can be submitted in a safe fashion, to be blocked by Malwarebytes, and the malware analyzed for detection.

Closing this topic as it's been resolved.

For reference: https://www.ftc.gov/business-guidance/resources/can-spam-act-compliance-guide-business 7. Honor opt-out requests promptly. Any opt-out mechanism you offer must be able to process opt-out requests for at least 30 days after you send your message. You must honor a recipient’s opt-out request within 10 business days. You can’t charge a fee, require the recipient to give you any personally identifying information beyond an email address, or make the recipient take any step other than sending a reply email or visiting a single page on an Internet website as a condition for honoring an opt-out request. Once people have told you they don’t want to receive more messages from you, you can’t sell or transfer their email addresses, even in the form of a mailing list. The only exception is that you may transfer the addresses to a company you’ve hired to help you comply with the CAN-SPAM Act.