Wordfence says patft.uspto.gov is on domain blacklist, why, looks fine?

  • Resolved jikamens

    (@jikamens)


    7 years, 5 months ago

    Today Wordfence reports to me:

    `Post contains a suspected malware URL: [elided]
    Title: [elided]
    Bad URL: https://patft.uspto.gov/netacgi/nph-Parser
    Posted on: 2009-01-04 23:44:47
    Severity: Critical
    Status New
    This post contains a URL that is currently listed on Wordfence’s domain blacklist. The URL is: https://patft.uspto.gov/netacgi/nph-Parser`

    There’s nothing wrong with that URL as far as I can tell (I looked at the page source, and it looks fine), and I find it hard to believe that the U.S. Patent and Trademark Office would be hosting malware.

    What’s up with that?

Viewing 10 replies - 1 through 10 (of 10 total)

  • Hi jikamens,
    it looks like this domain made it in there by accident. Most likely, it appeared on a page that was malicious at some point. For example, and attacker may have linked there in order to make their fake page look legit. However, it should not have slipped through in to the list when it’s clean so that’s our mistake. We will be removing it asap. Thanks a bunch for reporting!

    This is not resolved. Wordfence continues to report https://patft.uspto.gov as spam in my scans. Has it slipped back into the database or was this subdomain never cleared?

    Thanks
    Michael

    I too am having this issue on my multisite. I’ve a number of scientists that are using this type of URL to show their publications. But Wordfence is tagging them all as blacklisted.

    Is there a way in Wordfence to whitelist this domain on my end?

    Hi guys! Sorry I did not get notified about replies on this thread for some reason. I have asked our analysts to investigate and will report back soon as I know.

    Thanks for your patience.

    no sweat. I figured it was because it was closed. I thought it might help to repost.

    Thanks for looking in to this.

    Hello again!
    I have checked with the team and unfortunately it seems the domain blacklist suffered from a bug where it would not update properly. The domain in question has been removed from the list, but the updated list has not propagated. We are currently working on a fix which should be out sometime during this week. If you are still experiencing this issue next week, please send me an email at [email protected].

    Thanks!

    will do. thanks!

    Hi again Michael,
    I tested just now and from what I can see it appears to be fixed. Can you confirm that it’s fixed on your end?

    I can verify that it is fixed for me. I just ran another scan and all the offending “bad” urls are gone.

    Thank you!

    That’s great thanks for confirming uaoptics! Hopefully this issue is resolved permanently now. If it does pop up again, please email me directly. Thanks for your patience guys. Really appreciate your help in detecting and reporting the issue.

    Hope you have a great day!

Viewing 10 replies - 1 through 10 (of 10 total)
  • The topic ‘Wordfence says patft.uspto.gov is on domain blacklist, why, looks fine?’ is closed to new replies.