Jump to content

False positive - firstrays.com

raybark

By raybark
in Website Blocking

 Share

Recommended Posts

raybark

raybark

Posted
Posted

Question for the Pro's:

This is a Wordpress site that is very well protected from malware, but several customers report the Malwarebytes incorrectly declares the presence of a trojan.  

I saw that there was a fix for users of Chrome
https://forums.malwarebytes.com/topic/258886-chrome-secure-preferences-detection-always-returns/
but Firefox users have stated the same.

My question is what might be triggering the report?  The website is primarily a library of free informational articles, most Wordpress pages, but quite a few downloads are PDF's, so I created a wp/pdf/ directory within the Wordpress root to contain them, rather than adding them to the standard content/uploads/.   Might that be what is triggering Malwarebytes to report a Trojan?

Link to post
Share on other sites
Porthos

Porthos

Posted
Posted (edited)
18 minutes ago, raybark said:

but several customers report the Malwarebytes incorrectly declares the presence of a trojan.  

Malwarebytes does not "scan" websites. It works on a block list so the Chrome instructions are for actual computer infections not the web blocking.

Log for staff.

 

-Website Data-
Category: Trojan
Domain:
IP Address: 66.135.26.227
Port: 443
Type: Outbound
File: C:\Program Files\Mozilla Firefox\firefox.exe

 

 

Edited by Porthos
Link to post
Share on other sites
  • Staff
TeMerc

TeMerc

Posted
  • Staff
Posted
3 hours ago, raybark said:

Question for the Pro's:

This is a Wordpress site that is very well protected from malware, but several customers report the Malwarebytes incorrectly declares the presence of a trojan.  

I saw that there was a fix for users of Chrome
https://forums.malwarebytes.com/topic/258886-chrome-secure-preferences-detection-always-returns/
but Firefox users have stated the same.

My question is what might be triggering the report?  The website is primarily a library of free informational articles, most Wordpress pages, but quite a few downloads are PDF's, so I created a wp/pdf/ directory within the Wordpress root to contain them, rather than adding them to the standard content/uploads/.   Might that be what is triggering Malwarebytes to report a Trojan?

Hello, thanks for bringing this to our attention. We've reviewed the data from the IP again and have determined it no longer warrants being blocked so we've disabled the block in our database. 

Removal should be reflected in the next database update going out in a few hours or so.

Link to post
Share on other sites
  • TeMerc locked this topic
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.