Domain blocked by avast

goldmovies · January 13, 2021, 3:22pm

hello , i got notified from my visitors that avast has blocked domain xrysoi.pro ,
domain is clear and every scanning virustotal , sucuri without issues…

Pondus · January 13, 2021, 3:52pm

Report it https://forum.avast.com/index.php?topic=14433.msg1289438#msg1289438

goldmovies · January 13, 2021, 4:08pm

okay i submit the issue…hope soon will be fixed…cause visitors cant enter on website

Pondus · January 13, 2021, 4:11pm

They can if they dont have avast ;D

goldmovies · January 13, 2021, 4:16pm

yes thats what i mean

DavidR · January 13, 2021, 5:36pm

Well this check doesn’t look too good, High Security Risk and Outdated Software Detected https://sitecheck.sucuri.net/results/xrysoi.pro whilst this may not be why avast is blocking it. It could make it more prone to being hacked.

You should also consider the security points raised in this check https://webhint.io/scanner/aef0dce6-37b9-409a-8d84-5bee457b3501

goldmovies · January 13, 2021, 9:10pm

wordpress has been update to last version ! so securi check is 100% clear
https://sitecheck.sucuri.net/results/xrysoi.pro

goldmovies · January 13, 2021, 9:16pm

https://www.virustotal.com/gui/url/c8266368f11bb5e47708774cffe31ca94e9b8f1e73ef564ac97182b7251029d4/detection

DavidR · January 13, 2021, 11:25pm

The virustotal scan doesn’t actually scan your site, but checks against blacklists.

You can use the - Reporting Possible False Positive File or Website - https://www.avast.com/false-positive-file-form.php - form if you think it is clear. It will be checked by the avast virus labs team, but that isn’t a guarantee it will be cleared and there are the points raised in the other check you need to consider.

goldmovies · January 14, 2021, 12:10am

what about sucuri ?

Pondus · January 14, 2021, 7:50am

You mean does it scan the website? … Yes

goldmovies · January 14, 2021, 10:14am

https://sitecheck.sucuri.net/results/xrysoi.pro
its clear , even all other antivirus has it as clear…hope it will fixed soon , cause a lot of my visitors using avast

polonus · January 14, 2021, 12:04pm

A WordPress security scan came up fine, so wait for a final verdict from an avast team member,
as they are the only ones to come and unblock.

This IP spam blocking could have caused the alert:
https://cleantalk.org/blacklists/104.247.132.212 (brute force & spam attacks).
CloudFlare abuse. → https://website.informer.com/172.67.169.246

polonus

goldmovies · January 14, 2021, 1:45pm

so the issue was cause of cloudflare ip

Pondus · January 14, 2021, 2:40pm

He said “could have caused the alert”

Avast lab should tell you what/why if you have reported it and gave your e-mail

polonus · January 14, 2021, 6:29pm

We just cannot tell, only avast team members with the information on which grounds the detection was added to their definition base,
are able to give you a final verdict and only they are enlisted to unblock this website.

I haven’t found any obvious reason but it could be because of some code issue, some script,
listing elsewhere on deny-lists or whatever.

Yes, it could be for malcreant action found on domains that share that same CloudFlare IP.
Bus as Pondus said, could be, could not be.

So it could be a genuine detection and also to be considered a false positive.
The only folks to tell for sure is avast team members, period,

polonus

Domain blocked by avast

Announcements