Broadcaster Posted July 30, 2019 ID:1326222 Share Posted July 30, 2019 We have three sites that are being blocked. Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 7/30/19 Protection Event Time: 10:41 AM Log File: 0cff181a-b2d8-11e9-bdfb-54bef7571609.json -Software Information- Version: 3.8.3.2965 Components Version: 1.0.613 Update Package Version: 1.0.11784 License: Trial -System Information- OS: Windows 10 (Build 18362.239) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: Trojan Domain: secure.cggc.org IP Address: 23.96.13.243 Port: [53842] Type: Outbound File: C:\Program Files (x86)\Mozilla Firefox\firefox.exe (end) AND Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 7/30/19 Protection Event Time: 10:22 AM Log File: 84cbf51e-b2d5-11e9-a5d4-54bef7571609.json -Software Information- Version: 3.8.3.2965 Components Version: 1.0.613 Update Package Version: 1.0.11784 License: Trial -System Information- OS: Windows 10 (Build 18362.239) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: Trojan Domain: blog.cggc.org IP Address: 64.111.106.104 Port: [53247] Type: Outbound File: C:\Program Files (x86)\Mozilla Firefox\firefox.exe (end) AND Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 7/30/19 Protection Event Time: 11:08 AM Log File: e2f87864-b2db-11e9-ac46-54bef7571609.json -Software Information- Version: 3.8.3.2965 Components Version: 1.0.613 Update Package Version: 1.0.11784 License: Trial -System Information- OS: Windows 10 (Build 18362.239) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: Trojan Domain: www.cggc.org IP Address: 64.111.106.104 Port: [54538] Type: Outbound File: C:\Program Files (x86)\Mozilla Firefox\firefox.exe (end) Could you please advise if we need to take any action and what our follow-up process is with you if there are things we have to correct. We cannot trust that everyone trying to access our sites will add the exclusions and we cannot afford to lose their interest. Many thanks. Link to post Share on other sites More sharing options...
Broadcaster Posted July 30, 2019 Author ID:1326224 Share Posted July 30, 2019 Also - one of these sites processes donations to specific causes. secure.cggc.org. Link to post Share on other sites More sharing options...
Solution MysteryFCM Posted July 30, 2019 Solution ID:1326225 Share Posted July 30, 2019 This will be corrected on the next update. There' a malicious iFrame at; fcogw.cggc.org/services.htm Link to post Share on other sites More sharing options...
Broadcaster Posted July 30, 2019 Author ID:1326229 Share Posted July 30, 2019 Thank you. Knowing specific files is very helpful. I will inform the administrator of that site. I assume the sites I inquired about will be accessible? Link to post Share on other sites More sharing options...
MysteryFCM Posted July 30, 2019 ID:1326231 Share Posted July 30, 2019 It will be once the update is out, yes (should be out within the hour) Link to post Share on other sites More sharing options...
Recommended Posts