[RESOLVED]FALSE ALERM googleapis.com

http://fonts.googleapis.com/css?family=Open+Sans:400italic,700,400|Open+Sans+Condensed:700&subset=latin-ext
http://ajax.googleapis.com/ajax/libs/jquery/1.6/jquery.min.js

130624-1

avast! release engineering team are stupid.

The first one is blacklisted see http://sitecheck.sucuri.net/results/fonts.googleapis.com
The second one is good http://sitecheck.sucuri.net/results/ajax.googleapis.com

If you still feel these are false positives use this form http://www.avast.com/contact-form.php :slight_smile:

Avast is constantly blocking googleapis on websites. This is very annoying.

“URL: http://ajax.googleapis.com/ajax/libs/jqu
Process: C:\Program Files (x86)\Mozilla Firefox\f…
Infection: URL:Mal”

ahhhh, interesting
visit http://www.avast.com/virus-update-history,
alerm popups for http://fonts.googleapis.com/css?family=Open+Sans:400italic,700,400|Open+Sans+Condensed:700&subset=latin-ext

So, avast! home page is infected!!! infected!!! infected!!!

To check websites before entering use the virus total extension/add-on in both Firefox and Chrome.
Just right click on the link then click on “check with virus total”. Virus total uses multiple scanners
to check a site. The virus total add-on/extension is very handy. :slight_smile:

@mbd35 The avast page is “not” infected https://www.virustotal.com/en/url/c33d4eb8da4e52f2994721130ce29e2e50033dee681f5b385ccc8934ed3f6104/analysis/1372106960/
and http://sitecheck.sucuri.net/results/www.avast.com

Please do not hijack this thread!

I get a suspicious file from Quttera’s
Potentially Suspicious files: 1
http://quttera.com/detailed_report/www.schtserv.com
look here: http://jsunpack.jeek.org/?report=ead8ad1817185c38dde84421c3dbc2f7e588a95a
(visit last link with active script blocker and inside a VM)
similar script flagged here also: wXw.portlypiperpub.com/mobile/

polonus

I think what the OP is talking about is the Apis posted and othesr like them are being blocked all over the place.

Like when i visit Kickstarter.com i get a notification for a file http://ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js being blocked as a URL:Mal

when i click on More details in the popup, the Avat site has a notification popup for the file http://fonts.googleapis.com/css?family=Open+Sans:400italic,700,400|Open+Sans+Condensed:700&subset=latin-ext being blocked as URL:Mal

Point being is, it is making some sites almost unusable as it blocks functionality.

As a side note going to http://sitecheck.sucuri.net/results/www.avast.com i get two URL:Mal notifications one for http://ajax.googleapis.com/ajax/libs/webfont/1/webfont.js and one for http://ajax.googleapis.com/ajax/libs/jqueryui/1.7.1/jquery-ui.min.js

so yeah, very frustrating.

EDIT: it appears after restarting Firefox for the 5th time it has fixed itself.

24.6.2013 - 130624-2 fixes this problem.

Can confirm and no alerts going directly to http://ajax.googleapis.com/ajax/libs/jqueryui/1.7.1/jquery-ui.min.js
see: http://jsunpack.jeek.org/?report=09f11f2cea18b28b71a7de6a7f06bfb24f4e8ed2
OK now: http://urlquery.net/report.php?id=3309381

polonus

I am already running 130624-2. I have also restarted the service however google’s api’s are still giving false positives.

Is there another fix aside from shutting the av down?