So, I’m using the latest firefox (33) on Win 8.1, and logging into http://subeta.net gets an alert. It’s a game site, and I’ve been using it safely for years. There hasn’t been any major changes lately, so I’m wondering if it could be a false positive?
→ http://sitecheck.sucuri.net/results/subeta.net/
→ http://zulu.zscaler.com/submission/show/a51dbbcd1d9f906a908c141319e1b5ef-1413865684
You can report a possible FP here: http://www.avast.com/contact-form.php
Site-owner should rather ask for a domain exclusion, see these scan results:
https://www.virustotal.com/nl/ip-address/162.159.249.54/information/
so it looks like an avast! general IP block.
DNS SOA issues: http://dnscheck.pingdom.com/?domain=subeta.net×tamp=1413901723&view=1
External link check - issues may be browser related, see: http://jsunpack.jeek.org/?report=ccb81d7cbd5b6a5a19412a07109506952dba91db
Above link meant for security researchers only.
Use with NoScript extension active and inside a VM/Sandbox or on a lab settings machine (disconnected).
Use of.modernizr may be exploitable through feature detection, see also XSS CWE-79, CAPEC-86 (an oldie really).
Report to http://www.avast.com/contact-form.php for a domain exclusion to the IP block.
polonus (volunteer website security analyst)