I can access (https)://d1ros97qkrwjf5.cloudfront.net/42/eum/rum.js (the very same code) and not get a virus alert. I can download (http)://d1ros97qkrwjf5.cloudfront.net/42/eum/rum.js using wget and scan it and not get an alert. The alert its giving is a URL:Mal
I can upload the downloaded code to jotti.org and it passes as clean.
Yep same thing just happened to me visiting a jewellery website that i have used before (all the w’s acotisjewellery.co.uk) exactly the same pop up,avast blocked a malicious URL ://d1ros97qkrwjf5.cloudfront.net/42/eum/rum.js as other people are getting. :-\
I am getting this alert when I view my blog/website. I also get it when I try to expand the HTML template of my blog in the admin area. I use blogger, and have not recently made any changes to my site, nor do I allow spam comments on my blog. Pretty sure this is a false pos, but how do I report it?
Since it only seems to be getting caught by Avast, it would be great if someone from Avast could chime in and say if it’s a false positive, or something we actually need to worry about.
Somehow, do not seem able to reproduce it. Maybe it has gone with a new definition update…
RUM means real user monitoring by automatically injected javascript. Info on what RUM does from Dan Wright in this article of his → link here: http://blog.newrelic.com/2011/05/17/how-rum-works/
Hello, I’ve registered just to say I’m getting this problem too and it started today, It’s popping up at many safe websites I visit daily, including filehippo and ausgamers just to name a couple.
It would be great if someone at avast! could confirm if this is a false positive, before I decide to disintegrate my harddisk.
My screenshot and the one from Borgis refers to the same exact file.
EDIT: Forgot to mention that prior to Firefox, I had Waterfox installed (64bit Firefox variant) and that’s where I got the message first, my screenshot shows firefox portable cause I uninstalled waterfox thinking the exe got infected and so I switched on to the portable firefox I use for work.