False positive argentine bank site: smpc.cabal.coop

Good day, all.

I need help regarding the blacklisting of a bank site in Argentina, part of “Banco Credicoop” and the bussiness clients processing page called “Cabal Card”.
The site at smpc.cabal.coop is detected by Avast Antivirus Pro and I cannot work with this site.

However other paid antivirus that are using in other office (like Sophos Commercial) does not shown as suspicious.

We have looked at Virus total: only 1 of 92 antivirus link as suspicious: https://www.virustotal.com/gui/url/25a6c43e2905a8573248164ca32914cfdeb086d881a2cd81b706e6d31ecd5bee?nocache=1

We have looked at IP Quality Score and the site looks clean: https://www.ipqualityscore.com/threat-feeds/malicious-url-scanner/http%3A%2F%2Fsmpc.cabal.coop%2F

Waiting for your comments

Thanks and Regards!

I tried checking this site against this site - https://quttera.com/website-malware-scanner and came up with an error (I haven’t seen before), see attached image, click to expand. This would appear to say there is malware on the site, unless my trying to check directly could be an issue.

This could be my inputting an incorrect URL, attaching a screenshot of the Avast alert window with the Details option selected could help.ac

  • Attaching Images to your post - When you Click the Reply button it opens a text window for you to post your comment (reply or post).
    Click the Preview button, that shows what you have input and expands it to include ‘Attachments and other options’. Click that it further expands, here you can attach images, etc. at the bottom of your post.
    See my attached image, click to expand.

Considered a Medium Security Risk here - https://sitecheck.sucuri.net/results/https/smpc.cabal.coop

Hi David, thanks for your reply

I have attached the screenshot of Avast detection (in Spanish), and the login page for the Cabal bank card.

The path for reproduce this is: main site hxtps://www.cabal.coop , click in button “Ingresa a Cabal al dia” and next, select “Comercios”. This full URL is the blocked by Avast: hxtps://smpc.cabal.coop/Cabaldiaseguridad/Pages/LoginCabal.aspx

Regards!

I can only assume that the ‘Ver Details’ had you opened it would show your browser.

We don’t advise posting active links to suspect sites, to prevent accidental exposure. Please edit your post as I have in the quoted links above to break them.

I was able to get into the “Personas” and “Comercios” section without an Avast alert (browser Firefox). So I’m unable to go any further as I don’t know/have any credentials to get past those input pages:
smpc.cabal.coop/CabalIndividuos/Pages/HomeCabal.aspx or smpc.cabal.coop/Cabaldiaseguridad/Pages/LoginCabal.aspx

Hello,
detection will be fixed in few minutes. Next time use https://www.avast.com/false-positive-file-form.php#pc, please.

Milos

Thanks Milos.

Thanks Milos,
We have used the web false positive form previously, but the only response that have received was that “the detection was revised by our technics and is correct” . Reply received by email with thread::757VDydAe16Dzr-PJfBdWzU::

Thanks, the site is working OK now.