Hello,
A user has reported that they can’t access my site (handsupholidays.com), as it is blocked by Avast Web Shield, and regarded as a threat URL:scam
It has nothing to do with Avast. I have no idea what the &token element at the end of the URL in your image does.
There is a possibility that one of your 3rd party links could be triggering this.
On the VirusTotal link you sent, a security vendor named Webroot has labelled my site as malicious…do you know if I can reach out to them and ask Webroot to re-check?
As an Avast User and not Avast Team Member I can’t really suggest a company. Really whoever hosts the site or designed the site would be a good start.
Please break all active links to suspect site to avoid accidental exposure the http and https elements or use htxp or htxps.
Part of the problem is that there isn’t an automatic switch to a secure connection https as in my second link. So it isn’t just because of the http and https elements, it is the domain, just that it is less secure when using http.
Word Press CMS seems OK. Configuration also with no glitches.
Check on plug-ins for latest:
The following plugins were detected by reading the HTML source of the WordPress sites front page.
Plugin Update Status About
wp-rocket Unknown
elementor-pro Unknown
chatbase Unknown latest release (1.0.2)
-https://www.chatbase.co
ultimate-elementor Unknown
embed-calendly-scheduling Unknown latest release (3.6)
essential-addons-for-elementor-lite Unknown latest release (5.8.9)
-https://essential-addons.com/elementor/
elementor Unknown latest release (3.16.4)
-https://elementor.com/
Plugins are a source of many security vulnerabilities within WordPress installations, always keep them updated to the latest version available and check the developers plugin page for information about security related updates and fixes.
Missing Content-Security-Policy directive. We recommend to add the following CSP directives (you can use default-src if all values are the same): script-src, object-src, base-uri, frame-src (info-credits Sucuri’s.)