« previous next »
Pages: [1]   Go Down

Author Topic: URL MAL or FP  (Read 2096 times)

0 Members and 1 Guest are viewing this topic.

rjw7

  • Guest
URL MAL or FP
« on: January 27, 2013, 06:00:05 AM »
After auto update last night I now get a url/mal block on a site I have been to many times before. Startup boot scan and full scan show no problems with both Avast and Macafee.
the blocked site is hxtp://mp3.li
I have checked with Wepawet, AVG Online, Virustotal and Sucuri sites and they report it's clean if I understand thier info correctly.
 
Is Avast reporting a FP and if so how can I get it to allow the site?
 
Thanks
Logged

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37529
  • Not a avast user
Re: URL MAL or FP
« Reply #1 on: January 27, 2013, 10:45:22 AM »
URL:mal is not malware, but means it is on a block list......for whatever reason

zulu analyzer
http://zulu.zscaler.com/submission/show/bbe2c33a8ae28eb00707fee5f037d190-1359280022


if you think this is wrong you can report it here.  http://www.avast.com/contact-form.php
you may add a link to this topic in case they reply

« Last Edit: January 27, 2013, 10:51:53 AM by Pondus »
Logged

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33900
  • malware fighter
Re: URL MAL or FP
« Reply #2 on: January 27, 2013, 02:38:14 PM »
Site seems to be on an Internet blacklist of sites that US Internet providers would be required to block.
Additionally avast found flavicon.ico malware on that site in /themes/default/images/logo/png  (on line 20)
Also Content after the < /html> tag should be considered suspicious.

235: < !-- from cache -->
Here nothing found: http://sitecheck.sucuri.net/results/mp3.li
and here nothing: http://quttera.com/detailed_report/mp3.li  (clean)
not here: http://urlquery.net/report.php?id=862401
and here: https://www.virustotal.com/url/a28942348125aa8a6ebfb47718e27cfcf5c4f09fdaa7fd518344ece0f472b62b/analysis/
Only code hick-ups found:  info: [decodingLevel=0] found JavaScript
     error: undefined variable a.style
     error: line:1: SyntaxError: missing ; before statement:
          error: line:1: var a.style = 1;
          error: line:1: ....^
and
 info: ActiveXDataObjectsMDAC detected Microsoft.XMLHTTP
     info: [decodingLevel=0] found JavaScript
     error: undefined variable d.isIE
     error: line:1: SyntaxError: missing ; before statement:
          error: line:1: var d.isIE = 1;
          error: line:1: ....^
and
info: [decodingLevel=0] found JavaScript
     error: undefined variable apiInit
     error: undefined function apiInit
     info: [var url] URL=mp3 dot li
     info: [var newurl] URL=mp dot li
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »