1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Avast and now Norton!?!

Discussion in 'Web Design' started by somebodysomewhere, Apr 11, 2012.

  1. somebodysomewhere

    somebodysomewhere Junior Member

    Joined:
    Feb 24, 2008
    Messages:
    171
    Likes Received:
    66
    Location:
    USA
    Home Page:
    Don't know if this is the best place to post this but I didn't see another thread or category that fit better.

    Is it just me? Have I just gotten big enough to notice? WTF!?!? First avast gives off the random "suspicious" or "malware" warning to a site I've had forever and not made any changes to lately, causing a few links to get rejected here and there. Now this I get Norton telling me another domain has been flagged with webroot kit or some such non-sense. (new downloaded theme so I suppose it's possible). I look at the code and the only thing kinda off is some obfuscated java that re-directs to safe sites. Is everyone getting these flags all of the sudden or just me? and how do I avoid it? This crap keeps up and it'll cost me my adsense account, I'd bet $..... ug.

    Any ideas guys please pm me or post here.

    :confused:
     
  2. jazzc

    jazzc Moderator Staff Member Moderator Jr. VIP

    Joined:
    Jan 27, 2009
    Messages:
    2,468
    Likes Received:
    10,155
    First of all, it 's JavaScript not Java. Two completely different animals. Given that, why exactly do you think you can just "take a look" and see if there 's trojan code on a theme? There are so many ingenious ways to hide code that unless you know what you 're looking for or do a static analysis, you can't spot it.

    To answer you question, as far as I know, Anti 's use signature based detection on websites and not hybrid. So, if it says a site has an issue, it could be a false positive, but more likely it is not. It depends on how good the signature for the detection was.
     
  3. Indiigo007

    Indiigo007 Junior Member

    Joined:
    Nov 11, 2009
    Messages:
    189
    Likes Received:
    191
    Location:
    Los Angeles
    Yeah, I've noticed that. My avast goes off on a lot of the CPA network's email submit sites (like "retailbrandprizes" and "savvygiftrewards").

    Here's an example (note mods: there is no affiliate ID -- it's Peerfly's preview link):
    Code:
    http://peerfly.com/preview.php?offer=4785
    Avast blocks it -- "Malicious URL blocked"
     
  4. somebodysomewhere

    somebodysomewhere Junior Member

    Joined:
    Feb 24, 2008
    Messages:
    171
    Likes Received:
    66
    Location:
    USA
    Home Page:
    Thanks guys, Norton did a re-eval and it came up empty to I'm hoping it was just a false positive and not something too interesting that was missed. At least my site is off the list. Now how do I address Avasts false positives? or is this something you guys just deal with?
     
  5. monk13

    monk13 Power Member

    Joined:
    Jul 10, 2009
    Messages:
    547
    Likes Received:
    268
    if for some reason in the last 16 days you have not actually gone to avast's site and looked for the submit for reconsideration button
    here's the page
    http://www.avast.com/contact-form.php
    be aware though, that pop unders, redirects, cloaking etc... are things they consider unwanted website behavior (and so do users)
    so if your site has that, the flag will not only stay, it'll get set in stone