Free trial Apex Legends is free for 7 days. Celebrating 120+ days undetected. Claim it
Elocarry
Account safety

Anti-leak flag: remove mitmproxy certificates

If your account was flagged by our anti-leak system for HTTPS interception, mitmproxy certificates are a common cause. Removing them fully means deleting its CA files too, or it regenerates them.

Zlitz

By Zlitz · Founder

Updated 25 June 2026

Why this happens

Our anti-leak system flags accounts when it detects HTTPS interception certificates, like the ones mitmproxy installs. Our product cannot run on a network with broken SSL, so these need to be removed.

1. Uninstall mitmproxy

  • Standalone Windows installer: Settings → Apps → Installed apps → remove mitmproxy
  • Installed via pip: open Command Prompt or PowerShell and run pip uninstall mitmproxy
  • Installed via pipx: run pipx uninstall mitmproxy

2. Delete the CA files on disk

mitmproxy regenerates its CA from local files, so delete the whole folder at %USERPROFILE%\.mitmproxy. Remove files like mitmproxy-ca-cert.pem, mitmproxy-ca-cert.cer, mitmproxy-ca-cert.p12, mitmproxy-ca.pem and mitmproxy-dhparam.pem. If you skip this, a new CA is regenerated the next time mitmproxy runs.

3. Delete certificates (Current User)

Press Win + R and run certmgr.msc. In each folder below, delete anything named mitmproxy:

  • Trusted Root Certification Authorities → Certificates
  • Intermediate Certification Authorities → Certificates
  • Personal → Certificates
  • Untrusted Certificates → Certificates

4. Delete certificates (Local Computer)

Press Win + R and run mmc. Go to File → Add/Remove Snap-in → Certificates → Computer account → Local computer, then check the same folders as above and remove any mitmproxy entries.

5. Reset your proxy

Go to Settings → Network & Internet → Proxy and turn off any manual proxy, especially 127.0.0.1:8080 (mitmproxy's default port — also check 8081 and 8888 if a custom port was used). Then open Command Prompt as admin and run: netsh winhttp reset proxy

6. Firefox users only

Go to Settings → Privacy & Security → Certificates → View Certificates, check the Authorities and Servers tabs, and remove anything with mitmproxy in the name.

If they come back

Also disable and remove any other proxy or certificates on your system. If certificates reappear after a restart, check Settings → Accounts → Access work or school and review any VPN, proxy or security software. Remember the ~/.mitmproxy folder must be deleted too, or a new CA will be regenerated.

To list every mitmproxy certificate, run this in PowerShell:

Get-ChildItem Cert:\CurrentUser\Root, Cert:\CurrentUser\CA, Cert:\CurrentUser\My, Cert:\LocalMachine\Root, Cert:\LocalMachine\CA, Cert:\LocalMachine\My | Where-Object { $_.Subject -match 'mitmproxy' -or $_.Issuer -match 'mitmproxy' } | Format-Table Subject, Issuer, Thumbprint, PSParentPath -Auto

Once you have removed everything and restarted, let us know if the issue persists.

Zlitz

About the author

Zlitz

Founder

The mind behind Elocarry. Over a decade in the scene, leading on innovation, security and user experience. Zlitz stays tuned to the meta and every anti-cheat shift, which is why our builds stay a step ahead. He writes our detection and bans guidance because he knows exactly how the cat-and-mouse plays out.

Anti-cheatDetectionAccount safetyProduct
View profile

Still need a hand?

Ask Barry first — he fixes most things in seconds. Still stuck and he grabs a human in Discord.

Ask Barry Ask on Discord