URL: Blacklist

Xanadu · June 22, 2023, 7:05pm

This popped up on Gateway Pundit last night. It is still showing today. I also got an email from Allstate that had the same URL: Blacklist but I do not have an image of that one. Just the one from Gateway Pundit. I ran the URL for GP in Virus Total and it was clean. Something is triggering this alert.

DavidR · June 22, 2023, 8:17pm

Are you trying to connect to the URL ?
Because that link (in the Details section) is to run a java script file, I’m not sure if that is legit or not and it isn’t Gateway Pundit. So it would appear that you are getting a redirect/3rd Party connection to the link in your image and that would appear to be the cause.

Again would you have expected an email from I also got an email from Allstate that had the same URL: Blacklist - seems suspect to me and I’m wondering if it might have something to do the the event-capture.min.js script run at Gateway Pundit.

However I’m not an Avast Team member.

Xanadu · June 22, 2023, 8:51pm

No I am not trying to connect to the URL. I opened the home page and up the alert popped.

Is the alert on Gateway Pundit something I can fix or is it on their end?

Thank you for responding so quickly.

DavidR · June 22, 2023, 10:48pm

You’re welcome.

As I said, I’m not an Avast user so I can’t say why it is alerting, only the information you have supplied.

You are connecting to Gateway Pundit and (according to the screenshot) it appears to be initiating a connection to the other URL in the screenshot (given you didn’t initiate it). Avast is alerting on that third party connection.

Xanadu · June 23, 2023, 3:59pm

Today there are no alerts on the site. Maybe they actually fixed it?

DavidR · June 23, 2023, 4:43pm

Hopefully so, thanks for the confirmation.

Xanadu · June 23, 2023, 6:12pm

And found something else that could be a contributing factor - I have Avast set to remind me when an update is available. It did not. My engine was out of date. Updated it and a couple other issues on Brave spontaneously resolved. The definitions were updated but the engine did not. Ticked the check box AGAIN to remind me when an update was available.

DavidR · June 23, 2023, 6:48pm

Did you do a restart, as I’m thinking that the engine wouldn’t be able to update whilst the old engine version was running.

Xanadu · June 23, 2023, 8:02pm

Yes it required a restart. All is running good now and no more alerts so far.

DavidR · June 23, 2023, 10:42pm

Thanks for the confirmation.

polonus · June 28, 2023, 4:13pm

Remember there could be quite some abuse from the racks of DigitalOcean,
for instance here: https://www.abuseipdb.com/check/104.16.181.15

That could also be a freason for the initial alert, digital ocean ‘fake’ error-5XX links, etc.
see: https://www.virustotal.com/gui/url/f78cf47b4489755ca81a893b76364ba4480e7ad5711ae906bf90793c02c81ad0/links

polonus

URL: Blacklist

Announcements