Jump to content

Recommended Posts

Hello,

Domain: api.ngo.pl

IP: 54.38.195.113

Logs:

{"@timestamp": "2021-05-06T11:01:42.764Z", "message": "ANY: Just matched "api.ngo.pl" in database: "mbgc.db.trojan", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.764Z", "message": "BTW: malware (trojan) match found on http://www.ngo.pl/  for  https://api.ngo.pl/css/app.css?_=0.10.1", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.778Z", "message": "OM: Malware (malware) detection on https://api.ngo.pl/css/app.css?_=0.10.1. Redirecting to block page.", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.779Z", "message": "ANY: Just matched "api.ngo.pl" in database: "mbgc.db.trojan", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.779Z", "message": "BTW: malware (trojan) match found on http://www.ngo.pl/  for  https://api.ngo.pl/css/vendor.css?_=0.10.1", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.780Z", "message": "OM: Malware (malware) detection on https://api.ngo.pl/css/vendor.css?_=0.10.1. Redirecting to block page.", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.781Z", "message": "ANY: Just matched "api.ngo.pl" in database: "mbgc.db.trojan", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.781Z", "message": "BTW: malware (trojan) match found on http://www.ngo.pl/  for  https://api.ngo.pl/css/custom.css?_=0.10.1", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.782Z", "message": "OM: Malware (malware) detection on https://api.ngo.pl/css/custom.css?_=0.10.1. Redirecting to block page.", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.783Z", "message": "ANY: Just matched "api.ngo.pl" in database: "mbgc.db.trojan", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.783Z", "message": "BTW: malware (trojan) match found on http://www.ngo.pl/  for  https://api.ngo.pl/css/poradnik.css?_=0.10.1", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.784Z", "message": "OM: Malware (malware) detection on https://api.ngo.pl/css/poradnik.css?_=0.10.1. Redirecting to block page.", "level": "INFO"}

 

Regards

Link to post
Share on other sites
  • Staff
1 hour ago, ngopl said:

Hello,

Domain: api.ngo.pl

IP: 54.38.195.113

Logs:

{"@timestamp": "2021-05-06T11:01:42.764Z", "message": "ANY: Just matched "api.ngo.pl" in database: "mbgc.db.trojan", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.764Z", "message": "BTW: malware (trojan) match found on http://www.ngo.pl/ for  https://api.ngo.pl/css/app.css?_=0.10.1", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.778Z", "message": "OM: Malware (malware) detection on https://api.ngo.pl/css/app.css?_=0.10.1. Redirecting to block page.", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.779Z", "message": "ANY: Just matched "api.ngo.pl" in database: "mbgc.db.trojan", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.779Z", "message": "BTW: malware (trojan) match found on http://www.ngo.pl/ for  https://api.ngo.pl/css/vendor.css?_=0.10.1", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.780Z", "message": "OM: Malware (malware) detection on https://api.ngo.pl/css/vendor.css?_=0.10.1. Redirecting to block page.", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.781Z", "message": "ANY: Just matched "api.ngo.pl" in database: "mbgc.db.trojan", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.781Z", "message": "BTW: malware (trojan) match found on http://www.ngo.pl/ for  https://api.ngo.pl/css/custom.css?_=0.10.1", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.782Z", "message": "OM: Malware (malware) detection on https://api.ngo.pl/css/custom.css?_=0.10.1. Redirecting to block page.", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.783Z", "message": "ANY: Just matched "api.ngo.pl" in database: "mbgc.db.trojan", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.783Z", "message": "BTW: malware (trojan) match found on http://www.ngo.pl/ for  https://api.ngo.pl/css/poradnik.css?_=0.10.1", "level": "INFO"}
{"@timestamp": "2021-05-06T11:01:42.784Z", "message": "OM: Malware (malware) detection on https://api.ngo.pl/css/poradnik.css?_=0.10.1. Redirecting to block page.", "level": "INFO"}

 

Regards

Hello, thanks for bringing this to our attention. We've reviewed the site again and have determined it no longer warrants being blocked so we've disabled the block in our database. 

Removal should be reflected in the next database update going out in a few hours or so.

Link to post
Share on other sites
  • TeMerc locked this topic
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.