My website is blacklisted

Hello everybody,

My website is blacklisted on Avast, i just want to know what is the reason for that, we are still in the pilot stage, its a business website.

Thank you.

Sorry no one can read you mind so we will need some information. Though don’t post active links to what is considered a suspect site, just the domain name no hxxps, etc.

A screenshot of the Avast Alert with the Details option selected would help.

Attaching Images to your post - When you Click the Reply button it opens a text window for you to post your comment (reply or post).
Click the Preview button, that shows what you have input and expands it to include ‘Attachments and other options’. Click that it further expands, here you can attach images, etc. at the bottom of your post.
See my attached image, click to expand.

Hi, Thank you for your reply.

The domain name is centrcaltd.com

Attached the alert screenshot.

Avast isn’t alone in detecting this but it isn’t massive - https://www.virustotal.com/gui/url/f69e750a4db9ac75c4fe2a3ca7cec3c60473ac18bbae9a59becf85363c22abd5/detection
Some security comments here that should be looked at - https://en.internet.nl/site/centrcaltd.com/2453816/
Considered a Medium Security Risk here - https://en.internet.nl/site/centrcaltd.com/2453816/ - with Hardening improvements.
Considered a Minimal Security Risk here - https://quttera.com/detailed_report/centrcaltd.com - Look at the Sandbox checks, 1 detected.

  • This may or may not be what Avast is alerting for - but you should certainly address this.
    You can report this to Avast but I don’t believe they give a detailed analysis as to why it is detected.
  • Reporting a Possible False Positive File or Website - https://www.avast.com/false-positive-file-form.php.
    You should get a response in a day or two.

4 av-vendors detect: https://www.virustotal.com/gui/url/389984c0d3df8eb9922bf2d7c9288924ab9d8a8f36f9815bc98837bcf8898e79?nocache=1

polonus

Thank you everybody,

the check is mentioning a javascript file which was on the purchased html theme (attached a screenshot), i have deleted this file for now, will this solve the issue?

Thanks

It won’t if that isn’t the true cause, you should also check out the other issues reported that may contribute to the detection.

For what is going to be a commercial site security should be the top issue.

Have you reported is as suggested, without that it may remain on the detections.

Here the site has been given as clean: https://quttera.com/detailed_report/centrcaltd.com
Here as well: https://zulu.zscaler.com/submission/773f1f3f-4383-40d9-9a28-a5aebfdc9e89
Also consider: https://www.shodan.io/host/192.185.7.210

Link to -https://www.linkedin.com/company/centrca/ is given as suspicious by one vendor.

For https://urlscan.io/responses/4d9bc12d794ed221ae1cbebbbeba7b267305c6dc94704412e6cfea0e156a5237/

I get - Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self' data: developers.google.com www.google.com www.gstatic.com". Either the 'unsafe-inline' keyword, a hash ('sha256-2cj/fOt+eNs2yDexDnjIVPVtMVmpCmKr+bXEl9MoTP4='), or a nonce ('nonce-...') is required to enable inline execution.

(anonymous) @ VM36:1
urlscan.io/:158 Uncaught SyntaxError: Unexpected token ‘<’

I get a 404 error for compressed.js
-centrcaltd.com/js/

But website is still given as malicious by google safebrowsing here: https://urlscan.io/result/95dd0722-dd90-401b-a62c-a58bb1c9f62e/

See community score here: https://www.virustotal.com/gui/ip-address/192.185.7.210/community

Also see: https://www.virustotal.com/gui/url/10812fb2cff1a12fd53ed437d6cfe2d79ac98e42c5d2efb34acdea18d3ed936d/details
No vulnerabilities for this there so far according to Snyk: https://security.snyk.io/package/npm/modernizr

Wait for the final verdict from avast, as these are their definitions.

This as we here are just volunteers with specific website error-hunting expertise.

polonus

Thank you everybody… I am totally lost… i have scanned the files on my machine and it is totally clean by avast… i copied the website files to another hosting service and scanned the URL by virustotal.com and also clean …
The theme used for the website is purchased and original… the website is developed and deployed from my machine.
the original website still gives the blacklist issue…