URL.Phishing

Hopper15 · November 13, 2018, 5:08pm

I was checking my yahoo email and I got hit with this alert from Avast.

https://crl3.digicert.com/DigiCertAssuredDRootCA.crl

is this a false positive?

mrwhite2013 · November 13, 2018, 8:05pm

Im here searching the same though Im not loading yahoo, just opening chrome.

rebooted laptop and got the same

virus total reporting it all clear

system · November 13, 2018, 8:53pm

I’m getting the same thing today. Any word on whether it’s false or not?

LNM · November 13, 2018, 9:17pm

I also got the exact same alert. I had Opera & Chrome open with multiple tabs, but wasn’t actively using the computer at the time (idle) & got the popup alert (12:18pm PST).

Currently in the middle of a full virus scan…

Also seems like another user is having the same problem here https://forum.avast.com/index.php?topic=223214.0 but with https://crl4.digicert.com/DigiCertAssuredDRootCA.crl instead

PS - Sorry for the triple attachment post

Hopper15 · November 13, 2018, 10:27pm

I did a full scan as well. Nothing was detected.

Asyn · November 14, 2018, 4:38am

You can report a suspected FP (File/Website) here: https://www.avast.com/false-positive-file-form.php

polonus · November 14, 2018, 6:08am

Consider omniroot malcode: https://www.hybrid-analysis.com/sample/2c3699175aaa944d95156a8ff9b69feba3d14e1837faf889e1b4b6bee34948b5?environmentId=1

polonus

URL.Phishing

Announcements