Starting today I am receiving multiple warnings simultaneously regarding a blocked infection - the information is as follows:

Infection: URL:Mal
URL: http://sr.symcb.com/sr.crl
Process: /usr/sbin/ocspd

After doing a google search it was derterminded that ocspd performs caching and network fetching of Certificate Revocation Lists (CRLs) and Online Certificate Certificate Status Protocol (OCSP) responses. It is used by Security.framework during certificate verification. verification.
tion. Security.framework communicates with ocspd via a private RPC interface.

These are becoming quite bothersome and running a full scan with AVAST it returns no infections…

Any suggestions or comments would be greatly appreciated.

I’m having the same problem and would love to have this resolved. It happens every time I open Firefox, Chrome or Safari. Mine are a little different than robert’s, but they are essentially affecting the same process:

Infection: URL:Mal
URL: http://s2.symcb.com/
Process: /usr/sbin/ocspd

Hi all,

same problem here. It looks like false positive.

• the Services are operated by akamai (CDN)
• the URL belongs to a Symantec CRL caching service with several URL´s
• cant find any infection inside this URL´s and tested the downloaded CRL´s Files with https://www.virustotal.com/de/
• All Browsers with included Avast are affected, cause the Browsers want to update their CRL´s and certificates.

any Ideas to stop this ?

Regards
Athome

I have started having the same problem with s2.symcb.com

thanks

Yup me too

sd.symcb.com/sd.crt

then when I googled the above it flagged the article that I clicked on about it

See: https://forum.avast.com/index.php?topic=165098.msg1176411#msg1176411