Hey everyone since last couple of days avast has been blocking a site for me. How can i change the settings so it doesnt block this website. Heres the screen shot:
Avast is blocking a normal sitewhat is a normal site?........and a not normal site?
Zulu URL Risk Analyzer
http://zulu.zscaler.com/submission/show/a09e39085ffc8799c20db2ab8309af80-1340249949
Hello,
it’s similar to other topics, which comes up in last days saying that avast! detects “HTML:Script-inf” there. In this site here is tag which leads to “phpinclude-bin.com”.
I other topics there are this URLs:
phpinclude-bin.com
scriptincludes.com
safesurf-check.com
jscriptss.com
this sites are blocked correctly.
Milos
but i know this site is not harmful. So how can i stop avast from blocking it?
Hello,
inform admin of that web to remove infection.
Milos
Hi Kaboose,
The problem is not with avast blocking this site. The detection is genuine as avast’s Milos stated here.
The problem is with the webmaster of the site and/or the hoster of that domain for not cleansing the site from malcode that avast detects.
Furthermore the vbulletin software on that site was not updated leaving it open to vulnerablities that could lead to malcode injections.
So you should not try to circumvent an appropriate avast blocking of a site, but rather inform the webmaster of that site he has serious security issues.
Funny is that we get a lot of reactions like this. Avast detects malcode on a site and then users ask: “What can avast do about this?”. Not a lot.
If something of a malware alert appears a lot of users try “to click this away as soon as possible, because it irritates them, putting themselves out to real danger of getting infected”. I do not mean this personally but as a general observation of the common average user reaction.
Users just demand instant solutions and are easily irritated these days…
polonus
I guess i havent been cleared so far. My purpose of this thread is to know is there any setting i can change in Avast so it DOESNT block this website? Because i knw for a fact by visiting that website its not doing any harm to my computer. PERIOD. thanks
Sure there are ways to get around this but no one here is likely to assist doing this when the site is clearly infected. Besides avast! there are several other antivirus/malware companies reporting it. Malwarebytes has this site on their blocklist too so while you “think” you know you will be safe others have proven there is an issue with that site , the warnings and blocking are in place for a very good reason.
Hi,
We have removed the malicious script from the code, does anyone know how long it takes for the blacklisting to be removed after submitting a removal request?
regards
rg
since it detects the script on the web site… (not a URL / black list block) …then detection should be gone as soon as the script is removed
VirusTotal returns clean:
https://www.virustotal.com/file/6dabbb49f27668f50366c5c28a5518274838685d4a8dfbfc01438757d64038f3/analysis/1340454684/
That might be true, Pondus, still that site throws up an IDS alert as malvertising site: ET RBN Known Malvertiser IP (5) (Suricata/Emerging Threats)
→ http://urlquery.net/report.php?id=74205
Check the JS writes [18] there is a GET request for some GET /contact/bct?pid=5CF40FD6-etc. etc.
also see: http://www.mywot.com/en/scorecard/p.brilig.com
p.brilig dot com is listed in OpenDNS’s Block Tool http://forums.opendns.com
creators view this as legit ads, others as malvertising adware/spyware (can make fx freeze)
polonus
thats the wrong url, you missed the s on the end… http://urlquery.net/report.php?id=72608 (how does this look ?)
regards
rg
Mawarebytes Pro is still blocking that site.
That link is outdated (21st June).
The new link has the phpinclude-bin link removed. See: http://urlquery.net/report.php?id=74230
I assume you mean malwarebytes pro http://www.malwarebytes.org/products/malwarebytes_pro ?
Yes, that is the one.
many thanks, i have requested removal of the ip-block
regards
rg
i got this all the time with sites i have used for years that are totally safe, had to turn off web shield, before they went to the “CLOUD” crap never had this problem
i got this all the time with sites i have used for years that are totally safewonder how many times that have been said in this forum......and avast detection proved to be correct ?