My router has started flagging my FlightAware RPi as periodically reaching out to a potential malware site with IP address 184.108.40.206. A reverse lookup came back to ns1.ficustelecom.com. I can’t see any reason for FA to reach out to that company or its name server so I wanted to see if this is executed or if there is an issue. The router blocks access so if this is something FA relies on I’ll have to make an exception.
Note: My FA has been running for years. I’m currently on 3.7.1 (SD card). My router uses data from Google and Threat Intelligence to flag sites.