Today I've had two URL:Blacklist alerts from on-premise-managed Avast Business Pro concerning a single js script from cloudfront.net on a single computer.
A complete URL is given; VirusTotal doesn't see a problem with it.
The only websites I've visited on this computer today are this Avast forum, the Avast console, and my own organization's website, which runs on WordPress.
I'm not sure I'm supposed to post full URLs here, so these are munged:
Alleged problematic cloudfront URL is:
[https:] ... d275im4r3zngba[.]cloudfront[.]net/script.js
Our website is:
[http:] ... www[.]stic-cil[.]org
The console URL is local.
Windows 7 Ultimate
Avast Business Pro Program Version 22.1.2687 (build 22.1.6921.715)
Virus Definition Version 220330-2
I'm not trying to claim that this is a false positive (though it would be amusing if this is generated by Avast's forum website or its own on-premise console). I'd like to know what's going on here.
Thanks for any help.