After running an anti-virus scan yesterday, Avast picked up this possible threat HTML:Paypal-B [Phish] see link below for more.
I’m not sure if it’s a real threat, or a False Positive?
Using the search facility above others have found this to be a False Positive in the past, although their issues were not the same as mine, they didn’t pick this threat up from an A/Virus scan.
If I “Send for Analysis” will I hear back?
Also if I send it for analysis will I be sending a copy of this file or the actual file?
Paypal security is not optimal to say the least, see from these scan results: https://www.htbridge.com/websec/?id=ekedIL6b
The cookie is missing SameSite flag, make sure it does not store sensitive information.
Misconfiguration or weakness
COOKIE: X-PP-SILOVER
The cookie is missing SameSite flag, make sure it does not store sensitive information.
Misconfiguration or weakness
The cookie is missing HttpOnly flag, make sure it does not store sensitive information.
Misconfiguration or weakness
The cookie is missing Secure flag, make sure it does not store sensitive information.
Misconfiguration or weakness
COOKIE: AKDC
The cookie is missing SameSite flag, make sure it does not store sensitive information.
Misconfiguration or weakness
The cookie is missing HttpOnly flag, make sure it does not store sensitive information.
Misconfiguration or weakness
Not-secured connection- htxps://23.194.182.174/ with PHISHING threat… (no third party tracking seen?).
Whenever the site is brought up as a fake phish from inside a mail-link, avast may detect HTML:Paypal-B [Phish].
I’m sorry the link didn’t work for you, although it worked for DavidR, rather strange. I did try posting a screenshot yesterday, but for some reason or other I could only get a link to work, or not as the case may be
I heard back from Avast on the 16th July 2018 which I though was quite quick. Their reply is below in Blue text.
I didn’t post up here a day or so later as Avast A/V was still detecting it as a threat. Now however Avast A/V doesn’t detect any problem with it.
It’s good to know it was a False Positive.
Many thanks to Avast for checking this out and updating your database.
Hello,
Thank you for reporting this false positive.
Our virus specialists have now cleared its reputation in our database.
With URLs this change should be instant, but it might take up to 24 hours with files.
For future reference you might also find the following article to be useful: Avast Clean Guidelines.