Jump to content

Website blocked


LDachinger
 Share

Recommended Posts

I have a similar issue. Here are the log details. How do I fix this?

 

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 9/12/19
Protection Event Time: 8:47 PM
Log File: 0441ce7e-d5c0-11e9-8d78-204747f09d1c.json

-Software Information-
Version: 3.8.3.2965
Components Version: 1.0.625
Update Package Version: 1.0.12443
License: Premium

-System Information-
OS: Windows 10 (Build 17763.737)
CPU: x64
File System: NTFS
User: System

-Blocked Website Details-
Malicious Website: 1
, , Blocked, [-1], [-1],0.0.0

-Website Data-
Category: Trojan
Domain: 
IP Address: 74.115.50.111
Port: [53097]
Type: Outbound
File: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(end)

Screenshot_1.jpg

Link to post
Share on other sites

its only happening when I try to connect to my online store.

Here are my steps:

Connect to Square Up (online POS)

click through to my store - gets me to Weebly dashboard 

click on manage my store which brings me to my list of items and that is when Malwarebytes kicks in and tells me there is a Trojan (screenshot above and below)

When it started yesterday, I didn't realize what was happening and proceeded to upload a bunch of product pictures (which obviously failed) and that is when I started to try to figure it out.

thanks so much for your help!

 

Screenshot_4.jpg

Link to post
Share on other sites

  • Staff

We are in contact with the hosting company about this block. Once we hear back from them we will update this post. I see they have taken action recently by removing one of the malicious files I provided them the info to. So they are being proactive on this. 

 

Directly on IP itself:

http://74.115.50.111/uploads/1/2/0/9/120925418/b (Miner)

https://www.virustotal.com/gui/file/77bdbc82713640f2581aa300bc4b68b55bcd65e0b207c4555d9c658fbf2e2c90/detection


Removed by hosting:

http://126948494-541801340935368688.preview.editmysite.com/uploads/1/2/6/9/126948494/documento387.exe (Backdoor.Avemaria)

 

Link to post
Share on other sites

  • Root Admin

If you're not backing up your data and you're still using Google Chrome then you're just not serious about Privacy, Safety, and protecting your data. Malwarebytes is a fantastic program but you still need to back up your data and you still need to block scripts and Ads in your browser. 
If you're still using Google Chrome I would highly suggest you consider using Firefox instead. For more advanced users you might consider installing NoScript as well (it does have a higher learning curve though)

Help Secure your browsers
 
You may be interested in using our new Malwarebytes Browser Guard to help protect your browser from items that uBlock or others don't target.

Please install uBlock Origin for your browsers to better protect your system.

FireFox, ChromeOpera , SafariMicrosoft Edge
AdBlock for Internet Explorer
How to use uBlock Origin to protect your online privacy and security | uBlock Origin tutorial 2018

This video tutorial above explains how to use uBlock Origin in advanced user mode and all the advanced settings to protect your online privacy and help prevent unwanted sites from changing your browser settings

Delete Cookies Automatically

Cookie AutoDelete plugin
Chrome  | Firefox 

Browser push notifications: a feature asking to be abused
HTTPS Everywhere
NOTHING TO HIDE documentary

Review your email and Office choices

Quit Gmail for free encrypted email - Tutanota
Why ProtonMail Is More Secure Than Gmail
LibreOffice - Free and open source office suite

Use Password Management software

Bitwarden
KeePass Password Safe

Make sure you use a strong master password
Then set the key transformation settings (the link below helps provide information on how to choose good settings)
https://pthree.org/2016/06/29/further-investigation-into-scrypt-and-argon2-password-hashing
KeePass Password Manager: Full Detailed Setup (good YouTube video on setup and using Keepass but choose the Argon2 method for Key transformation)

Encrypted Instant Messenger and Voice Calls

Riot
Signal
Wire
Wickr Me

Follow-up Reading

Everything you need to know about cybercrime
10 easy ways to prevent malware infection 
Keep your data backed up

Thank you for choosing Malwarebytes as your preferred security protection software and tell your friends and family too. We're here to help.


Ron

 

Link to post
Share on other sites

  • Root Admin

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread.

Thanks

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.