Hello,

I can absolutely not reproduce this issue (tried with GTI enabled/disabled, local URL filter DB disabled, etc.). Due to trustedsource.org, it has category "Internet Services" and reputation "Minimal Risk" which is also fine.

In this case debug data is definitively required since the root cause can also be policy related. In order to check this, please open a SR with below information. This data should not be uploaded here because of sensitive information.

To troubleshoot a potential false positive, we need the following debug data:
-feedback file (to double-check your configuration and policy and to perform tests with it)
-rule trace (to double-check which rules and settings were applied for this specific request/response)
-password protected sample as described in “Virus To File.pdf” in KB62662
-download URL and/or blocked URL
-screenshot of error message in browser

Further information here:
https://kc.mcafee.com/corporate/index?page=content&id=KB62662

Once I have received this information, I can try to reproduce the issue with given sample/URL and check whether your policy is configured as recommended. In case, it is a false positive which can be reproduced and is not caused by a mis-configuration in policy, I can use the provided information and contact our Labs team for further analysis.

Feedback file:
To create a feedback file, navigate to "Troubleshooting" > "Feedback". Then click the "Create Feedback File" button. This provides us with your configuration as well as debug information to help troubleshoot any issues you may be experiencing.

Via CLI:
/opt/mwg/bin/feedback.sh -l 2

Rule trace:
Please navigate to "Troubleshooting" > "Rule tracing central". Enter the client IP you are testing with. Press the "Go" button and reproduce the issue. Afterwards, press the "Stop" button and export all visible traces.