Howdy Folks,
We were recently compromised thanks to an outdated php version - an a well known vuln.. and were used as part of a randsomware campaign - all of which has now been resolved. We have updated all software and removed the infection (and backdoors). Hourly checking of the webserver logs reveals continued attempts to access the virus file, but that file no longer exists, we can find no sign of current compromise.
We have steadily been removed from most blacklists.. but I didn't see malwarebytes until yesterday. Can I please get the domain re-checked?
hXXp://www.glassfusing.com.au - current ip address 110.34.53.126
Thanks
Ashley Williamson
Glassfusing.com.au