Author Topic: JS:Feebs-A2? False positive? (Read 4217 times)

akashifire · « **on:** December 19, 2009, 01:01:38 PM »

Hey! I'm hoping to get some advice regarding a warning by avast!

It's detecting this thing called JS:Feebs-A2 on a website I really need to use (the site has OH&S training modules I need to download and complete before I start work at this place). When it detects it, I obviously abort connection.

The owner of the site is reliable, but the particular site I'm talking about is a standalone site. I'm able to see the site fine, but when I click on a module - which requries Macromedia Flash - avast! sends off its warning.

Does anyone know anything about JS:Feebs-A2?

polonus · « **Reply #1 on:** December 19, 2009, 07:12:07 PM »

Hi akashifire

This could be because there is copyright protection being used and that could be detected as JS:Feebs-A2:
Do they use this: http://html-protection.qarchive.org/
Because the protection could also be used to protect malcode then this could be at the base of this FP,
upload to virustotals and give us the results,

polonus

YoKenny · « **Reply #2 on:** December 19, 2009, 09:49:31 PM »

Malwarebytes' Anti-Malware (MBAM) blocks access to html-protection.qarchive.org:
http://hosts-file.net/?s=174.132.135.50

akashifire · « **Reply #3 on:** December 21, 2009, 06:54:38 AM »

Thanks for the responses. It was copyrighted material, so false positive.

Author Topic: JS:Feebs-A2? False positive? (Read 4217 times)

akashifire

JS:Feebs-A2? False positive?

polonus

Re: JS:Feebs-A2? False positive?

YoKenny

Re: JS:Feebs-A2? False positive?

akashifire

Re: JS:Feebs-A2? False positive?