geniuslinkmatt Posted December 14, 2020 ID:1427104 Share Posted December 14, 2020 Hi there, Matt here from Geniuslink - we're an intelligent link management platform that helps affiliate marketers earn more from their affiliate links. We offer an optional JS Snippet for our clients that can be installed on their site, to automatically "convert" raw Amazon links to our proxy format, so that clicks on those links may be reported and affiliated. Unfortunately, we have been receiving reports from our clients that Malwarebytes is now flagging our CDN as "trojan", which is preventing visitors from reaching their site. See attached screenshot and log messages. As of today 13.Dec.2020 | 12:55PM MALWARE BYTES REPORT Genius Links Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 12/13/20 Protection Event Time: 12:49 PM Log File: 4b944018-3d39-11eb-9778-dc1ba10bd429.json -Software Information- Version: 4.2.3.96 Components Version: 1.0.1122 Update Package Version: 1.0.34305 License: Premium -System Information- OS: Windows 10 (Build 19041.685) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe, Blocked, -1, -1, 0.0.0, , -Website Data- Category: Trojan Domain: geni.us IP Address: 95.179.248.139 Port: 80 Type: Outbound File: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (end) Our service has been in business for over 5 years now, and we have not had a single problem with our CDN being reported for "trojans" before. As such, we believe this to be a false positive and ask that you recategorize our service, to prevent future incidents such as this. These false positives not only hurt our reputation, but cost our clients and our business valuable time and money. Please let us know if any additional details are needed. Thank you! Matt Operations Manager Geniuslink Link to post Share on other sites More sharing options...
Staff Zynthesist Posted December 14, 2020 Staff ID:1427111 Share Posted December 14, 2020 Hello, It looks like this JS was reported: https://www.virustotal.com/gui/ip-address/95.179.248.139/relations http://95.179.248.139/ShfdfdfdfdCHEDerror888Codexv88/main.js Block will be reviewed. Link to post Share on other sites More sharing options...
Staff Solution Zynthesist Posted December 14, 2020 Staff Solution ID:1427112 Share Posted December 14, 2020 I am going to remove the IP block. Link to post Share on other sites More sharing options...
Recommended Posts