Results 1 to 10 of 10
  1. #1
    3 Star Lounger
    Join Date
    Dec 2009
    Location
    Edinburgh, UK
    Posts
    320
    Thanks
    35
    Thanked 54 Times in 26 Posts

    Malwarebytes labels Pentontech as malicious!

    Malwarebytes popped up this morning to say that they considered Pentontech's website "malicious"!

    I whitelisted IP address 209.167.231.27, and the alerts have gone away.

  2. #2
    Administrator Rick Corbett's Avatar
    Join Date
    Dec 2009
    Location
    South Glos., UK
    Posts
    3,695
    Thanks
    153
    Thanked 951 Times in 763 Posts


    Thanks for letting us know, just in case we get any queries.

  3. #3
    New Lounger
    Join Date
    Jul 2016
    Location
    Sheffield, UK
    Posts
    6
    Thanks
    1
    Thanked 0 Times in 0 Posts
    Same here; I've added app.info.pentontech.com to website exlusions.

  4. #4
    5 Star Lounger
    Join Date
    Aug 2011
    Location
    South Africa
    Posts
    703
    Thanks
    61
    Thanked 1 Time in 1 Post
    Same here. Shown as malicious.

  5. #5
    Administrator Rick Corbett's Avatar
    Join Date
    Dec 2009
    Location
    South Glos., UK
    Posts
    3,695
    Thanks
    153
    Thanked 951 Times in 763 Posts
    Can one of you post the URL that prompts Malwarebytes' warning?

    WhatIsMyIP info for 209.167.231.27 appears to be ambiguous, showing owner as both Verizon and Oracle.

    malwarebytes-warning.png

    Hope this helps...

  6. #6
    3 Star Lounger
    Join Date
    Dec 2009
    Location
    Edinburgh, UK
    Posts
    320
    Thanks
    35
    Thanked 54 Times in 26 Posts
    I removed the Malwarebytes exclusion to try to reproduce it when launching Windows Secrets forums, which is what (I THINK) was what triggered it when I first reported the Malwarebytes hit. Now it doesn't hit.

    But, with the exclusion still removed. any attempt to navigate to app.info.pentontech.com gets a MWB hit.

    HTH

  7. #7
    Administrator Rick Corbett's Avatar
    Join Date
    Dec 2009
    Location
    South Glos., UK
    Posts
    3,695
    Thanks
    153
    Thanked 951 Times in 763 Posts
    Quote Originally Posted by JohnFleming
    any attempt to navigate to app.info.pentontech.com gets a MWB hit.
    Many thanks for the info. I see what you mean:

    pentontech.png
    Click to enlarge

    Will see if this can be passed on to backend support.

  8. #8
    Administrator satrow's Avatar
    Join Date
    Dec 2009
    Location
    Cardiff, UK
    Posts
    5,076
    Thanks
    430
    Thanked 670 Times in 565 Posts
    Quote Originally Posted by Rick Corbett View Post
    Will see if this can be passed on to backend support.
    Checking with Malwarebytes might be useful, I don't see it listed at hpHosts (owned by MBAM and a major source of their blocklists) and it might be an FP.

  9. The Following User Says Thank You to satrow For This Useful Post:

    Rick Corbett (2017-12-01)

  10. #9
    Administrator Rick Corbett's Avatar
    Join Date
    Dec 2009
    Location
    South Glos., UK
    Posts
    3,695
    Thanks
    153
    Thanked 951 Times in 763 Posts
    Quote Originally Posted by satrow
    Checking with Malwarebytes might be useful, I don't see it listed at hpHosts (owned by MBAM and a major source of their blocklists) and it might be an FP.
    Ticket submitted to Mbam Support re: probable false positive and asked JoeP if this can be passed on to backend support here at WSL.

  11. The Following User Says Thank You to Rick Corbett For This Useful Post:

    satrow (2017-12-01)

  12. #10
    Administrator Rick Corbett's Avatar
    Join Date
    Dec 2009
    Location
    South Glos., UK
    Posts
    3,695
    Thanks
    153
    Thanked 951 Times in 763 Posts
    No further info so far from MBAM support (or WSL backend support) despite receiving this email:

    mbam_support01.png
    Click to enlarge

    (After supplying me with a ticket number, I find it a bit incongruous that there doesn't appear to be a way for me to look this ticket number up on the MBAM support site to see if there's any further info/progress. A 'Follow Up Support Ticket' link would be nice... In the meantime I've emailed MBAM again.)

    However, opening app.info.pentontech.com no longer generates a MBAM warning.

    Instead, I see this:

    pentontech01.png

    Click to enlarge

    Hope this helps...

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •