Cathedral Posted October 17, 2021 ID:1484203 Share Posted October 17, 2021 We are receiving reports that users of Malwarebytes can't access the pastebin at https://paste.c-net.org/ We tested this outselves with the trial version, and attached the log. We have recently implemented automatic scanning of all binary uploads using VirusTotal, replacing our previous automated malware scanner. Just like WeTransfer, DropBox, MegaUpload, or any other website that allows file sharing, we do not control what users upload. Similar to these sites, we automatically scan all uploads and flag them as soon as possible if malware is detected. The following message will be displayed to users if a file is flagged, which includes no way to side step the protection and proceed anyway. Example flagged paste: https://paste.c-net.org/GiovanniKismet Feel free to upload a malware sample and test this feature. Please keep in mind that it can take a minute or two for VirusTotal to complete the scan and flag the file. If you are aware of any not flagged uploads on the pastebin, please let us know. Otherwise, pretty please do not block the entire pastebin? Let's make sending a file to someone a simple process? Ref: https://xkcd.com/949 blocked.txt Link to post Share on other sites More sharing options...
Staff JPopovic Posted October 17, 2021 Staff ID:1484208 Share Posted October 17, 2021 Hello, The domain is blocked due to these malicious files: https://paste.c-net.org/DelegatePumped http://paste.c-net.org/coercedsweater https://paste.c-net.org/DizzyJeebies Virus Total file detection: https://www.virustotal.com/gui/file/5a5932002524fe9d31d587faf32acf0b9f125b0c6515c57261e146f7de145326?nocache=1 https://www.virustotal.com/gui/file/ed3aa54989e6a1b26b9781a7deefc3428dc347eb451e9e961eeca391e4382793 https://www.virustotal.com/gui/file/7e3278605955770fc9b412a096bc6a8400005b38eef22e8c69f346d7b71bd4fb?nocache=1 Please remove them all and let us know so we can remove the block after. Thank you! Link to post Share on other sites More sharing options...
Cathedral Posted October 17, 2021 Author ID:1484211 Share Posted October 17, 2021 We will of course happily remove these files, but we humbly ask you to explain why you believe a text file containing a certificate should be flagged. We do not currently scan plain text files, only binaries. Nothing bad will happen to a user of any browser by clicking on this certificate. It is a text file, and it is always treated as such. If I were to post this certificate on pastebin.com, would you flag it? If I paste it into this forum thread, would this post be flagged? What if it was posted as a story on Facebook? No offense intended, please. We are merely trying to understand your thinking here. Link to post Share on other sites More sharing options...
Cathedral Posted October 17, 2021 Author ID:1484213 Share Posted October 17, 2021 The pastes have been removed. Link to post Share on other sites More sharing options...
Cathedral Posted October 18, 2021 Author ID:1484288 Share Posted October 18, 2021 DropBox doesn't seem to think this file is bad: https://www.dropbox.com/s/3aqt62404l7gnj1/cert.txt?dl=1 Link to post Share on other sites More sharing options...
Cathedral Posted October 18, 2021 Author ID:1484292 Share Posted October 18, 2021 Update: We are now also scanning plain text uploads. Hoping this is sufficient to unblock us. Link to post Share on other sites More sharing options...
Staff Solution JPopovic Posted October 18, 2021 Staff Solution ID:1484296 Share Posted October 18, 2021 The block will be removed. Thank you very much! 1 Link to post Share on other sites More sharing options...
Recommended Posts