Jump to content

Recommended Posts

Hello –

A website built for one of my clients (interactcenter.org) was recently blocked, and then unblocked, by Malwarebytes (see thread below).

My client is reporting again that they are hearing from donors that they are blocked from coming to the website and make donations and purchase charitable event tickets. However, they don't know which anti-malware service was blocking it.

Is Malware bytes blocking it again?

I do see that VirusTotal is showing a handful of services flagging it again, though they weren't last month.

https://www.virustotal.com/gui/domain/interactcenter.org

I've contacted those services (except for Forcepoint which doesn't seem to have a way to contact or report), and one has already unblocked the site.

I believe the website is clean because:
 
1. All files are under version control (git) and there are no unexpected changes.
 
2. The server is highly secured and isn't shared with any other websites or users.
 
3. No unexpected or malicious content in CMS/client-managed portions, and only two other people (long-time employees) have access.
 
4. Developer network tools in Chrome, with no blockers or anti-malware running, don't show any unexpected external content being loaded.
 
5. Some other services have reported a malicious Windows DLL file, but I've never seen it, no one has shown me a URL to it, and when I've been able to contact them, they un-flag our domain.
 
If Malwarebytes is flagging this domain, could you please either tell me what the issue is, or un-flag the domain?
 
Thank you!
Jeremy

 

 

Link to post
Share on other sites

  • Staff
24 minutes ago, bicycle-theory said:

Hello –

A website built for one of my clients (interactcenter.org) was recently blocked, and then unblocked, by Malwarebytes (see thread below).

My client is reporting again that they are hearing from donors that they are blocked from coming to the website and make donations and purchase charitable event tickets. However, they don't know which anti-malware service was blocking it.

Is Malware bytes blocking it again?

I do see that VirusTotal is showing a handful of services flagging it again, though they weren't last month.

https://www.virustotal.com/gui/domain/interactcenter.org

I've contacted those services (except for Forcepoint which doesn't seem to have a way to contact or report), and one has already unblocked the site.

I believe the website is clean because:
 
1. All files are under version control (git) and there are no unexpected changes.
 
2. The server is highly secured and isn't shared with any other websites or users.
 
3. No unexpected or malicious content in CMS/client-managed portions, and only two other people (long-time employees) have access.
 
4. Developer network tools in Chrome, with no blockers or anti-malware running, don't show any unexpected external content being loaded.
 
5. Some other services have reported a malicious Windows DLL file, but I've never seen it, no one has shown me a URL to it, and when I've been able to contact them, they un-flag our domain.
 
If Malwarebytes is flagging this domain, could you please either tell me what the issue is, or un-flag the domain?
 
Thank you!
Jeremy

 

 

Hello- This block has been disabled in our database for over a month, not sure why anyone would be getting any alerts on it other than their database is not updated.

Multiple live urls were just rescanned and are still detected on VT with others being 404

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.