For some reason, there is a big warning over visitors saying Malware Detected (see attachment) when Malware was NOT detected it was only reported by one person trying to harm me.
Why would you think a youtube playlist is Malware?
Based on one person and no verification?
Why tell all my visitors that it IS Malware when it had only been reported?
Is there any way we can find out how many things of mine this person falsely reported. I am getting MALWARE DETECTED on all my links. MALWARE WAS NOT detected. It was reported by the same person over and over again.
This is hurting my business.
How would you feel if one person that doesn’t like you says avast.com is malware and based on that someone put a big warning over your site that said Malware Detected! when it in fact was not?
This is not cool.
Do you actually verify the threats before you place big warnings over peoples businesses?
If you did you would see that I have harmless content. This is very concerning.
Report a false positive (select file or website)
https://www.avast.com/false-positive-file-form.php
I have already reported several false positives but I am not sure how many of my links were or will be effected.
[b]My questions are
Why would they not verify before slapping huge MALWARE DETECTED! warnings over my web properties deterring all of my customers over a false claim by one angry person ???\
How can I find out how many of my links were or are going to be effected by this malicous party and Avast slapping warnings to all my customers who will forever think I’m a scam and never come back?
[/b]
Since I got no response I am taking this up directly with Avast. Which I love but am very concerned about.
I think that maybe the mobile youtube links were somehow exploited and they will hopefully correct.
False reports being turned into unverified Phishing and Malware alerts should be a concern for us all.
I isn’t JUST one person reporting your sites Avasts Virus labs don’t work like that.
So far you haven’t given a single site, so those forum users who can investigate, don’t have much work with. Don’t post active links, just as I have below leave out the https:// etc
Based on the URL in the image, m.youtube.com/playlist gets detected by avast and I can only assume that the m in m.youtube.com/playlist isn’t your subdomain and has more than just your content on it. So there is a possibility of it isn’t only you finding this.
m.youtube.com/playlist?list=pI16e01e9f99afa734
this is ONLY a youtube playlist ON YouTubes server. There is no malware or phishing.
This happened all right after someone said they were going to harm me to all my links.
As I said, it is going to impact all playlists on that URL, as you can see from my image.
Again as you can see from my image, it isn’t just you that is impacted as this Avast alert/block is at a lower url level m.youtube.com so all playlists would be impacted.
For clarification, you are saying that all mobile playlist on youtube are giving people phishing and malware alerts?
HOLY CRAP they all are! WOW This is between Youtube and Avast then. dang…
I have done a little checking:
Nothing found here - https://www.virustotal.com/gui/url/cac4bda7fbb62dbefdb9aec5d3759e1be4b13084868a7ce5695ea9496a2813a4?nocache=1
Low security risk reported - https://sitecheck.sucuri.net/results/m.youtube.com
I have also tried to draw some avast attention to this topic.
I don’t know what you reported, but if you are reporting at a high level and not the lower level that is also getting detected, then you should report m.youtube.com as a possible false positive.
Reporting a Possible False Positive File or Website - https://www.avast.com/false-positive-file-form.php.
You should get a response in a day or two.
I’ve submitted them but it’s obviously not about just me anymore lol.
I reported it and have a ticket # that is going to tech support.
Thank you!
Since I didn’t go to a specific playlist and got an alert, then all playlists would get hit.
I’ve just been watching videos at youtube.com and no alerts so something on m.youtube.com is causing this problem (who or what is beyond my knowledge as an avast user).
You’re welcome.
L.S.
If you look what is being pinged from -https://m.youtube.com/playlist
we see connections that go out to this content delivery network
-ggpht.com and -yt3.ggpht.com,
a tool used to spread adware,
this while -googleads.g.doubleclick.net for me has been blocked by privacy badger.
But this one does not seem blocked anywhere:
https://www.dnsblacklist.org/?domain=yt3.ggpht.com
Suspected malicious behavior after watching adult content:
read: https://domain.opendns.com/yt3.ggpht.com
Wait for a final verdict by avast team,
as they are the only ones to decide on their own definitions,
a bit controversial here considering -yt3.ggpht is a valid google.api.
But some cleansing considers -yt3.ggpht.com to be part of a browser hijacker,
Possible ARG/Bot/Virus. And again where issue was being whitelisted
as a non-malicious false positive: https://github.com/mayesidevel/PiHoleLists/issues/1
polonus (volunteer 3rd party cold recon website security analyst and website-error-hunter)
Thanks for the feedback Pol.
Hi DavidR,
You are welcome.
By the way I now more and more lean to the conclusion that this could actually be an FP.
Although some may block this google address,
but for other reasons than it being malware per se.
But as said earlier let us wait what avast team’s final conclusion will be.
As we now have some understanding of what grounds have been trodden here
to arrive at that conclusion. ;D
See: https://www.dnsblacklist.org/?domain=https%3A%2F%2Fm.youtube.com%2Fplaylist
polonus
I have also tried to draw some avast attention to this topic.
But I dare say that won’t be until Monday.