Jump to content

Please remove website malware block for planetwaves.fm


Dave123
 Share

Recommended Posts

  • Staff
16 minutes ago, Dave123 said:

Our website was blocked due to malware. The site has been cleaned. Please remove https://planetwaves.fm from your blocked list.

Hello- The block on this domain was disabled over a week ago, please assure you have the latest database installed and if you do, please send us the logs from the program showing the block, thanks.

Link to post
Share on other sites

10 minutes ago, TeMerc said:

please send us the logs from the program showing the block, thanks.

Here is one for you Tom. Redirects to this site.

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 8/13/21
Protection Event Time: 2:33 PM
Log File: 683a74aa-fc6d-11eb-ac2a-4439c43a4aa3.json

-Software Information-
Version: 4.4.5.130
Components Version: 1.0.1418
Update Package Version: 1.0.44100
License: Premium

-System Information-
OS: Windows 10 (Build 19043.1165)
CPU: x64
File System: NTFS
User: System

-Blocked Website Details-
Malicious Website: 1
, C:\Program Files\Mozilla Firefox\firefox.exe, Blocked, -1, -1, 0.0.0, ,

-Website Data-
Category: Phishing
Domain: chironreturn.org
IP Address: 173.231.203.67
Port: 443
Type: Outbound
File: C:\Program Files\Mozilla Firefox\firefox.exe

 

(end)

Edited by Porthos
Link to post
Share on other sites

  • Root Admin

You can find Scan and Protection logs within the Malwarebytes 4 program in the following location

 

image.png

 

RTP stands for Real-Time Protection and is where automatic protection operations would normally be logged

 

image.png

 

If you click on the View option you should get something similar to the following with other options available.

 

image.png

 

 

 

 

Link to post
Share on other sites

I notice that the planetwaves.fm domain is not listed in the block log.

Here is the exported log:

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 8/13/21
Protection Event Time: 4:27 PM
Log File: d07eae6c-fc74-11eb-aac0-2c44fd636e6f.json

-Software Information-
Version: 4.4.4.126
Components Version: 1.0.1413
Update Package Version: 1.0.44100
License: Trial

-System Information-
OS: Windows 10 (Build 19042.1110)
CPU: x64
File System: NTFS
User: System

-Blocked Website Details-
Malicious Website: 1
, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe, Blocked, -1, -1, 0.0.0, , 

-Website Data-
Category: Malware
Domain: 
IP Address: 173.231.203.67
Port: 443
Type: Outbound
File: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(end)

Link to post
Share on other sites

  • Staff
1 hour ago, Dave123 said:

I'm using the latest version of MalwareBytes.

Since multiple domains are using this IP address, I'm guessing there are other sites you are blocking.

Where do I find the lo file you want?

It's an P block, loads of bad actors on that range, see image attached for a very short sampling of various domains and there are several URLs from your domain.

 

17323120367IPRange.png

Link to post
Share on other sites

The list you provided shows a number of detections in red/89 - what exactly does that mean?

Are they results of actual scans performed by MalwareBytes of an accumulated counts as provided by other sources?

If they are actual scans, can you provide more information as to what the scan detected?

 

Link to post
Share on other sites

  • Staff
1 hour ago, Dave123 said:

The list you provided shows a number of detections in red/89 - what exactly does that mean?

Are they results of actual scans performed by MalwareBytes of an accumulated counts as provided by other sources?

If they are actual scans, can you provide more information as to what the scan detected?

 

They are the results of other scanners, no vendor relies solely on their on scanner, they all use a variety trusted vendors to draw a conclusion on whether or not to add a rule or disable a rule. Some vendors carry heavier weight in their detections due to their multi-year reputations of providing reliable detections.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.