My WebSite Blocked - URL:Phishing

Viruses and worms
1

Avast Team,

I have similar problem with my page hxtps://wifisifrekirma.plusapp.club/

There’s no phishing on my site , but also get this error when avast is active :

“URL:Phishing bulaştığı için, plusapp.club sitesindeki bağlantınızı güvenli bir şekilde kestik”

Thanks for your support

Could you please fix/unblock that for me?

Picture: https://prnt.sc/r8q32w

2

https://sitecheck.sucuri.net/results/https/wifisifrekirma.plusapp.club
https://www.virustotal.com/gui/url/a50452b7a6221148d898f26c4081d5c74974c5ef3426a9c9dea50aeb747309d8/detection

You can report a suspected FP (File/Website) here: https://www.avast.com/false-positive-file-form.php

3

I just bought the domain. I installed a subdomain. But when logging into subdomain, it gives the error in the picture. I did not install any on the main domain.

https://prnt.sc/r8q32w

4

As said, report it.

5

Hi plusapp,

Unable to scan the site: https://sitecheck.sucuri.net/results/wifisifrekirma.plusapp.club

Re:

Note: It looks like your site has returned a 403 Forbidden. In some cases the firewall or a bad bot utility will block the use of this tool as a “fake Googlebot”, the primary reason for this is the tool is a “fake Googlebot”. With a 403 response you should use the Fetch as Goolgebot utility in Webmaster Tools to verify your site is returning a 403.

Report: https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct → Access to this resource on the server is denied!
So not only report this to avast, but also take it up with CloudFlare’s.

Probably flagged because of what malware is found by other domains that share that same IP:
https://www.virustotal.com/gui/ip-address/104.24.100.126/relations

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)

6

Detection was removed yesterday

Our virus specialists have been working on this problem and it has now been resolved. The provided website isn't detected by Avast anymore.
7

Great the site is no longer being blocked.

Just still kicks up a javascript error with uMatrix enabled for

File not found: /assets/main.css

File not found: -https://ajax.cloudflare.com/cdn-cgi/scripts/7089c43e/cloudflare-static/rocket-loader.min.js


Site is not secure through DNSSEC and vulnerable to MiM-attacks.

This just for the record,

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)