DocVenture Posted August 15, 2016 ID:1056549 Share Posted August 15, 2016 Playing Publisher's clearing house lotto or slots, website redirects (or tries to connect) to leadzupc.com, which mbam shuts down and flags. Not sure if false positive or what. Link to post Share on other sites More sharing options...
daledoc1 Posted August 15, 2016 ID:1056552 Share Posted August 15, 2016 Hi: Until the Research Team weighs in... ...what is the IP that is being blocked? ...and/or, please post the MBAM PROTECTION log that shows the block(s) -- instructions here. Thanks, Link to post Share on other sites More sharing options...
DocVenture Posted August 15, 2016 Author ID:1056554 Share Posted August 15, 2016 I wish I could tell you...a ping of leadzupc.com yields 127.0.0.1 (which i know isn't right, or I don't think it's right)...and tracert yields the same. That's a loopback addr. from the browser (I think). I've done a little more research on this, and it turns out that leadzupc.com is bad news. I've no idea how to get the word to PCH.com that their game servers have been hacked, and if not...that is if it's deliberate...that I'll never be back! http://www.virusresearch.org/remove-play-leadzupc-com-redirect-chrome-firefox-ie/ Link to post Share on other sites More sharing options...
DocVenture Posted August 15, 2016 Author ID:1056555 Share Posted August 15, 2016 Oops...didn't post my log. It does have the full domain name there play.leadzupc.com and ip addy 217.13.124.96. That's what you're after, I believe. mbam.export.txt Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now