Jump to content

Blocking Company Domain


MWW
 Share

Go to solution Solved by BjelakovicL,

Recommended Posts

  • Staff
9 minutes ago, MWW said:

We were notified by some partners using the malwarebytes AV client that our site was being blocked for potential trojan. The log shows a "malicious A record was detected".  Can you please let me know how to get this whitelisted? 

Malwarebytes A record Blocking.txt 6.04 kB · 1 download

Hello-We'll recheck the domain and return with our analysis to see if the block can be disabled, please be patient.

Link to post
Share on other sites

  • Staff
22 hours ago, MWW said:

We were notified by some partners using the malwarebytes AV client that our site was being blocked for potential trojan. The log shows a "malicious A record was detected".  Can you please let me know how to get this whitelisted? 

Malwarebytes A record Blocking.txt 6.04 kB · 6 downloads

Hello MWW,

We have conducted that this links was used by CobaltStrike -

cdn.coterieinsurance.com/Inform/v6.02/YMRGGGIAL6

Can you please check it out and remove the offending files?

Link to post
Share on other sites

5 hours ago, Dashke said:

Hello MWW,

We have conducted that this links was used by CobaltStrike -

cdn.coterieinsurance.com/Inform/v6.02/YMRGGGIAL6

Can you please check it out and remove the offending files?

Thanks Dashke! It looked like the file was caught in cache left over from a security test. I ran a purge on the /Inform/v6.02/* directory. Can you recheck?

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.