Hi,
Some people using a website I manage (hxtps://www.fondation-afnic.fr/) says that they have from AVAST a message warning them about URL:BLACKLIST when they tried to download PDF from it.
I tested the file on my Kaspersky, no pb; on gmail antivirus, no pb; on virus total online, no pb… I’m pretty sure that it’s a false positive but it’s a real problem now.
Even Google says it’s fine: https://transparencyreport.google.com/safe-browsing/search?url=https:%2F%2Fwww.fondation-afnic.fr%2F
Can you please help me on this?
Thank you.
Kind Regards,
Thibault
DavidR
March 10, 2020, 7:40pm
2
Some point you might wish to consider, see https://sitecheck.sucuri.net/results/fondation-afnic.fr .
Try using the - Reporting Possible False Positive File or Website - https://www.avast.com/false-positive-file-form.php .
This goes direct to Avast.
You should do as DavidR says, report it as an FP.
Here we see nothing being detected for IP related: https://www.virustotal.com/gui/ip-address/54.38.32.252/relations
Some security related hints for that website: https://webhint.io/scanner/8cd3545f-dff7-4a17-8955-474910917545
Blocked for me through Zenmate =
javascript errors
ReferenceError: $ is not defined
/content/themes/front/fondationafnic/js/myscripts.js:240
TypeError: Cannot read property ‘initialise’ of undefined
/fr/Accueil.htm:82
ReferenceError: Chart is not defined
/content/themes/front/fondationafnic/js/homepage.js:155
Consider host details: https://www.shodan.io/host/54.38.32.252 (especially see various vulnerabilities there).
Only security header set is for x-content-type-options ;
strict-content-secure-origin with a warning for such setting ;
access-control-allow-origin.
polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
Detection was removed in 10.03.2020
Our virus specialists have been working on this problem and it has now been resolved. The provided website isn't detected by Avast anymore.