we are owners of http://zenitbet.com
and found FALSE positive virus detection on our site on computers, with avast installed
we manually check source code of all scripts and find nothing suspicious
also we check site with some online antivirus tools, like:
Report 2011-09-24 09:00:38 (GMT 1)
Website zenitbet.com
Domain Hash 830ff22d00b4f07c9f73fc9aac312d0c
IP Address 193.161.86.133 [SCAN]
IP Hostname 133.86.161.193.host-telecom.com
IP Country NO (Norway)
AS Number N/A
AS Name N/A
Detections 0 / 23 (0 %)
Status CLEAN
Report 2011-09-24 10:03:05 (GMT 1)
IP Address 193.161.86.133
IP Hostname 133.86.161.193.host-telecom.com
IP Country NO
AS Number N/A
AS Name N/A
Detections 0 / 26 (0 %)
Status CLEAN
“Strange” that, according to the OP, Avast identifies the site with malware, but the index.html, according to Virustotal, is not.
Of course the problem could be elsewhere in the site, but usually users get to the index page first (and there, they shouldn’t see any problem).
Having said that, checking the index.html in VT is not the same as actually surfing the site (which may very well load some additional code other than index.html), so it is indeed possible.
Anyway, Asyn already gave the most effective method to report it :).
@ neomag
It is blocked by the network shield, but the home page causes no alert by the web shield. I don’t know if you have recently had a malware problem on the site which has now been cleaned up.
Follow up the reporting suggestion by Asyn, above.
When reporting a False Positive on a web site, then you get another input field open, enter the web URL for the site. Stating in the Message box, that you wish a ‘Network Shield’ review, etc. A link to this topic won’t hurt as it contains useful information too.
Hello users avast antivirus. I have the same problem with access to the site, I wrote a letter about this issue, as suggested @davidr. But do not get an answer within 10 hours.
In this case the entire domain is blocked completely, when you click on details, see nothing wrong, it is written:
Infection Details
URL: http://www.zenitbet.com/
Process: file: / / C: \ Program Files (x86) \ Mozilla Firefox \ firefox.exe
Infection: al
What kind of infection - is unclear. Antivirus NOD, KAV, AVG does not see the domain are no viruses.
Most interesting is that if the go to this domain via ip address, then either AVAST sees no threat.
Then what happens? AVAST blocking a site based on some lists or antivirus should work on code analysis? If AVAST analyzes the code, why does he allow the use of this site by its ip address?
Dear forum users, moderators tell me what to do in this situation, how to get this site from the blacklist?
