False Positive - www.borderhawk.com

[borderhawk]

Hopefully, this will get a removal as the contact form has failed in the past. I have requested 2 times that the website www.borderhawk.com be removed from the URL:Mal blocklist that AVAST distributes with it's antivirus software.  The URL blocking is falsely reporting our website as having malware. However, we are malware research company and incident responder. A private URL was submitted to a blacklist by other colleagues in the malware research community for which I shared this piece of malware which AVAST uses and subsequently AVAST apparently blindly added the entire DOMAIN for our information security and malware research company.

This is the private URL that seems to have caused this issue.

011-02-25, www.borderhawk.com/malware/testing/test_oghmann.cz.cc.exe, 74.95.154.17 · US · 7725 · COMCAST-7725 - Comcast Cable Communications ...

[Pondus]

you need to update your wordpress   http://sitecheck.sucuri.net/results/http://www.borderhawk.com/

VirusTotal - 2/19
https://www.virustotal.com/url/1781f8fccfb5c8d906ba51b1d69acd2159f5835a2f552f8f8c6a681b73a41125/analysis/1327111782/

VirusTotal - HTML scan
https://www.virustotal.com/file/a1b7a7f58484c6a9ed61738883ea755bdf45fd6a170c532a990ba051e82fc96b/analysis/1327112010/





URLVoid.com

Report   2011-06-03 02:39:21 (GMT 1)
Website   borderhawk.com
Domain Hash   859e161a37f887ecc0416b12ac5c4105
IP Address   98.136.92.79 [SCAN]
IP Hostname   p6p.geo.vip.ac4.yahoo.com
IP Country    US (United States)
AS Number   14778
AS Name   INKTOMI-LAWSON - Inktomi Corporation
Detections   2 / 23 (9 %)
Status   SUSPICIOUS
      
Scanning site with:   AMaDa     CLEAN
Scanning site with:   BrowserDefender     UNRATED
Scanning site with:   DNS-BH     CLEAN
Scanning site with:   DShield SDL     CLEAN
Scanning site with:   Google Diagnostic     CLEAN
Scanning site with:   hpHosts     UNRATED
Scanning site with:   joewein.de LLC     CLEAN
Scanning site with:   Malc0de     CLEAN
Scanning site with:   Malware Domain List     CLEAN
Scanning site with:   Malware Patrol     CLEAN
Scanning site with:   MyWOT     DETECTED
Scanning site with:   Norton SafeWeb     UNRATED
Scanning site with:   ParetoLogic URL Clearing House     DETECTED
Scanning site with:   PhishTank     CLEAN
Scanning site with:   SCUMWARE     CLEAN
Scanning site with:   SpamhausDBL     CLEAN
Scanning site with:   SURBL     CLEAN
Scanning site with:   Threat Log     CLEAN
Scanning site with:   Trend Micro Site Safety Center     CLEAN
Scanning site with:   URIBL     CLEAN
Scanning site with:   VSCAN     CLEAN
Scanning site with:   Web Security Guard     UNRATED
Scanning site with:   ZeuS Tracker     CLEAN

[borderhawk]

I will also contact WOT and Pareto Logic in the Morning.  Wish I could update the wordpress but we are limited with the version of mysql provided by yahoo (time to move providers).

[Pondus]

If you think this is wrong, you can report it here
http://www.avast.com/en-eu/contact-form.php?loadStyles

[borderhawk]

It's wrong because basically anything you submit to VIRUStotal, so my colleagues directly linked the malware from VT likely. Also whatever gets pushed to Pareto Logic,I guess WOT picks it up.