Hello,
Kaspersky has marked our entire domain (poke-nexus.com) and all subdomains as phishing. This started with our native application server subdomain being marked (live-srv.poke-nexus.com), and has now spread to the whole domain. The sub-domain has it's own internal server running so that the native application can use TLS without having to go through the Cloudflare CDN, which we *do* want for the main website as we utilise their caching - the same goes for the cdn sub-domain as we use the cloudflare cache to help reduce server load for shared resources.
1) The live-srv subdomain returns 444 on https which should be "No Response" to terminate the connection. This is to indicate there is no valid website here, and http should automatically redirect to https (which would then return 444).
2) We would also like to state that the root domain poke-nexus.com is also a false positive and is our community's main website and forum.
3) We would also like to state that the cdn subdomain is also a false positive, as this is our shared resource server.
I'm willing to help/validate/reconfigure/do whatever I need to, as our community is now struggling to connect to our services.
Thanks