cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Who Me Too'd this topic

False positive alerts

L4 Transporter

A very high quantity of botnet false alerts being reported on our appliance. Using 9.1.3.

 

Botnet report alerts as noted below:

 

Repeatedly visited (10) the same URL 216.58.199.36/

Repeatedly visited (30) the same URL 142.250.66.164/

Repeatedly visited (69) the same URL 142.250.67.4

 

Visited malware URL tdsjsext1.life/ExtService.svc/getextparams .

216.58.203.100 resolves to app-id “google-base”/443

If you check the above IP addresses, you will see a common factor, it looks like this is normal behaviour for Googles ad platform?

 

How to fix this issue?

Who Me Too'd this topic