URL:mal Blocked

The following site is being blocked by avast, however i use the program on a daily basis and was wondering exactly why it was being blocked and if I should unblock it. It appears it is an update to the app i use (which works just fine).

hxxp.//vvv.privitize.com/api/dev/update?version

attched Screen Shot

http://sitecheck.sucuri.net/results/www.privitize.com
http://zulu.zscaler.com/submission/show/5afdf4993915835a1eabc1bc92d95f2a-1349095509

There is W32/TopMedia.A malcode-PUP there, since 2012-10-01 07:01:52.
This is a generic detection for a backdoor, PrivitizeVPN Installer, PUP detection, riskware or possible unwanted program flagged,

polonus

Is there a way to add an exception in our avast? Other than disabling avast complete to start/update our vpn?

Could you please unblock this VPN client? I think you are overenthusiastic about blocking it. I’m having no trouble with it.
If you don’t want to, then please explain how I can unblock it manually in Avast.
Thanks.

I have also been getting this message for the last 20 hours or so, despite doing 2 thorough scans of my machine which found nothing. The file being flagged is:

hxxp://ghgng44fgjl82509dfg90df.com/pics.php

I’ve no idea what this is. Can anyone advise how I get rid of this please?

Sophos also doesn’t like the site.
https://www.virustotal.com/url/f54bcc63a1ef89d4f2c45cc70176a17b0ddc6761ea6c5b8356240087e955165e/analysis/1349272232/
Please disable the live link by changing http to hxxp

Thanks for the reply Bob. Unfortunately I don’t know what this file is or where it’s coming from; the mal blocked message is popping up at odd times, I can’t tell where it’s coming from so don’t know to change the link from HTTP.
I’ve added the name of the file to the blocked list in my Internet Security options, is there anything you can suggest?

Please start a new topic here: http://forum.avast.com/index.php?board=4.0

Avoid the site till it’s been cleaned and be happy that if this is an infection that it hasn’t gotten to your system.

Please ‘modify’ your post change the URL from http to hXXp (as I have done in the quoted text), to break the link and avoid accidental exposure to suspect sites, thanks.

Also having this problem with this site and with Avast / PrivitizeVPN. I have put exclusions to the website in question and exclusions to the program attempting to make this connection (PrivitizeVPN), but Avast refuses to recognize the exceptions. The only way I can use this is by DISABLING Avast.

I have been using the VPN for months with no malware or adverse effects. Avast is falsely blocking it because it is a VPN? At any rate, how does Avast help me keep my computer safe if I must disable it to make connections that I choose?

This is an ongoing problem Many users are posting about it now. Be certain that you
inform the avast technical team about your specific issue. The more info that they receive the better.
IMO- Do not disable your antivirus protection in the meantime.
BTW, when I click on the button of the pop up window, I see the “virus”
identified as: hxxp://text-findservice.com/?q
and I have changed the http to hxxp as advised by others to protect the innocent!
Do you get this exact same identification of the “virus” in the pop up window that you receive?
I also do not think this has anything to do with toolbars or Google Chrome or Internet Explorer. It occurs
on my Windows XP run system but many others have posted that “it” is occurring on other O/S s.
Also I do not run any toolbar programs and I do not run any other anti-virus programs. I hope that it is just a coincidence that the commercial to encourage me to update my avast! for just $19.99 also accompanies each pop up window!
Good luck to you (and to me!)
8)

This still seems to be an issue. According to the Sucuri SiteCheck link, there is no malware on the site, but it’s blacklisted regardless. This doesn’t make any sense.

http://zulu.zscaler.com/submission/show/5f29394d67f321b7f4ee28287242a320-1354534152

I still see nothing there. Those files are marked as suspicious, but not malicious. Sounds more like a false positive than anything else to me.

It’s up to you what you think or do. I certainly wouldn’t go there.

It’s being flagged by Avast! just for the program attempting to update itself too. Theoretically, isn’t that anti-security if a known-good program can’t get it’s files to make sure it’s more secure? :stuck_out_tongue:

Why do you think so…??

It’s pretty well known and I’ve yet to see any complaints from anyone, nor have I had any issues myself…and I’m pretty security-conscious. In fact, most of those web-scanners out there are known to give a lot of false positives on sites with unpopular programs or URL’s. I can give a perfect example where a video game multiplayer modification I work on in another community keeps getting falsely flagged by Google’s Webmaster Tools scanner, and they have absolutely no way to request an exception to be made. Ironically, Avast! flagged the same program for 3 years until it was finally fixed.

I’m sorry to say, but suspicious domain and file names that clearly aren’t meant to be are pretty obviously not an issue. I do agree that being careful is a great idea, but this should be researched further before flagging it as malicious. Why not have Avast! warn users that the URL is suspicious, not malicious? It doesn’t have a way to add exceptions for scanning in the Network Shield itself.