Is this False Positive?Url Blacklist "track-portal.com",Firefox.exe issue

Hello,
few minutes ago I received a report that “Connection was aborted on track-portal.com”. Not sure what it is and why, but I have never experienced this before. Since it comes from firefox.exe, I suspect that Mozzilla did some sort of activity it always does, but this time avast reported it as a problem.
Something similiar happened I think year ago, also regarding Mozilla Firefox but some other false positive activity was reported as positive. I attached what was reported as a picture.

Can you please check this and verify that it is false positive? I have Avast version 24.2.6105- build 24.2.8918.830.

Thanks

Were you intending to visit the site ?

If not start by clearing your browser cache and cookies,including 3rd party cookies and restart your browser.
If that resolves it you should be good to go.
If it doesn’t try running your browser with add-ons disabled.

If that resolves it, have you added or updated any add-ons ?
If so try disabling that add-on - and restart and try again.

Not at all, I wasnt trying to visit the site.
I also dont have any addons/extensions in Mozilla.
I checked the cookies and I dont have anything new there either, among cookies I have only sites that I know and visit often.

What else could it be? Was it false positive?

Regardless of having nothing new in cookies (they change), to confirm one way or another you would need to clear it.

As an Avast User, I have no way to confirm or deny if it was an FP - I would be somewhat suspicious of a domain called track-portal.

Other than Avast isn’t alone in considering this suspect - https://www.virustotal.com/gui/url/1013a4f2af4d5b5591f823e7c021e4690ce1e6cddc8748faf4388f5ccf4c18df?nocache=1
I have no way to to confirm/deny it is an FP.

I uploaded firefox.exe, also the screenshot of report I received, and the url via “Report False Positive” form on official Avast website and also via Avast itself on last wednesday (3.4) and thursday (4.4), it is now monday evening and I still have not received a single reply/email from Avast as to whether that is false positive or not.

How can I get an official confirmation please?

Firefox.exe isn’t the problem - it is essentially the messenger - so nothing would be found in any submission to Avast.

So it isn’t a false positive in regard to Firefox.exe - As I said in my first and third replies.
You have to follow this to find what it is ‘directing firefox’ to connect to track-portal.com

Virus total is down to 3 detections now for track-portal.com - https://www.virustotal.com/gui/url/1013a4f2af4d5b5591f823e7c021e4690ce1e6cddc8748faf4388f5ccf4c18df?nocache=1

You could submit a possible false positive on track-portal.com (which is what is being detected) but that doesn’t get round ‘the why is it connecting there when you didn’t initiate it’.

That said I have been able to connect to the site without an Avast Alert, resulting in the following

YOUR DEVICE IS SAFE

You have landed in a domain that is being utilize as an adserver.
This domain is protected by Cloudflare’s security and reliability features.

Given this is an ad server there is potential for malicious ads, this may have been what triggered the Avast alert.

What it doesn’t do is identify either the website or Cookie, add-on that may have directed it there.

At the time of me receiving this warning from Avast I was on Humble Bundles new “Train Sim World 4” Bundle that launched almost week ago, and I think gg.deals at the same time, so it is possible that one of the ads on either of those two sites triggered it. Never happened to me before though or after.

Am I safe? I scanned my computer with Eset online scanner, Avast, Malwarebytes, Mbar and Roguekiller, neither of them found anything, nor have I received same warning again since then, and I visited gg deals many times and even humble bundle (just not the train bundle). Thanks

That would appear to be the culprit of pulling down ads from another site (the one avast initially blocked).

Because of this there shouldn’t be anything on your system. The Web Shield would not only have alerted but prevented the add being loaded in the site you were visiting and possibly been saved into your browsers cache or system. Should anything get downloaded don’t forget that you have all of the the Shields, mainly the File System Shield and Behaviour Shield, etc.