The site www.hamrick.com (http://www.hamrick.com) is the website of Vuescan software. However, this is currently being classified as Botnet C&C. Could you please verify this to be correct and adjust if necessary?
They may have been hacked, or been hacked in the past and remedied this since, or perhaps this is a misclassification of some sort.
A notification has been made to the Zenarmor AI-based Web Categorization and Threat Intelligence team for "www.hamrick.com" to be re-categorized.
Please note that it may take some time to complete the process.
You can perform the Cloud Cache process to get the change immediately.
Use the Clear Cache in Cloud Threat Intelligence - Cloud Cache.
As a workaround, you can also add "hamrick.com" to your whitelist policies.
https://www.zenarmor.com/docs/policies/exclusions
I hope this information has been useful for you.
Hi Dinguz,
Could you please provide a screenshot from the Threats tab filtering "hamrick.com" during the live sessions? Also, please mark the "src IP" from the layout.
Here they are, the source IP is just a 192.168.1.x address as is visible in the screenshots.
(https://i.postimg.cc/6yWBN8j9/Clipboard-09-19-2024-01.jpg) (https://postimg.cc/6yWBN8j9)
(https://i.postimg.cc/7bMqc3Ns/Clipboard-09-19-2024-03.jpg) (https://postimg.cc/7bMqc3Ns)
(https://i.postimg.cc/DmK2Bj14/Clipboard-09-19-2024-04.jpg) (https://postimg.cc/DmK2Bj14)
Are you using the paid or free version of Zenarmor?
I was able to go to his site without issue on the free version, though I might not have turned on all the selections.
I'm using the paid (Home) version, and the site is being blocked because it's classified as 'Botnet C&C.' It's possible that your current policy doesn't block this, or this setting might not be available in the free version.