Hello Avast Team, I am a security specialist (CEH) reporting a persistent false positive for 3dmaine.
Alert Details:
Threat Name: URL:Botnet
Alert ID: 147ec11f3785
Verification: VirusTotal 0/90 Clean
I have performed a full forensic audit and purged all outbound C2 requests. The “144 blocked sites” in the history reflect the previous state before remediation. Could a staff member please perform a manual cache purge for this domain in the Cloud Intelligence database?
This is a user forum so no gaurantee a staff member will see the post.
Have you reported a false/postive Report False Positive
Yes, I reported as a false positive. But they wouldn’t reply. What should I do now?
I have no idea as ive never had to report a false/positive.
Just hope someone sees this post but tbh i thought they would have seen it by now.
You need to give Avast at least 2 working days to investigate a False Positive form and take action. You will not receive a reply to your False Positive submission, but there is a small chance that you may possibly get an Avast staff member replying here.
Note. I am not an Avast team member, just another user.
Hello rashed88,
I reported it internally to the team handling FPs, that should give it a priority.
Regards,
Jiri
Hello rashed88,
the detection was resolved as false positive. It should be disabled in a couple of minutes via streaming updates.
Regards
Jiri