Please remove my site from blacklist

system · 2017-06-01T12:13:10.000Z

Our website is reported as being in the Avast blacklist. Here is the domain name: cadabams.org
We have proceeded with cleanup of all the malware, the issue was due to one of the outdated wordpress plugins in our blog.

We have even updated wordpress and its plugins to secure the site.

We are sure that our website is clean, therefore we would like you to take a look at it and remove it from your blacklist. Even after I submitted ticket to customer care at avast I got a response saying "We’re sorry, but we can’t seem to find a record of your license in our system.
" with ticket status as closed.

Eddy · 2017-06-01T13:02:00.000Z

6(!) vulnerable libraries detected :
http://retire.insecurity.today/#!/scan/45ad0cb248f2067309fba0fde4a5992a788d42e4f680d89d8c9bb2dbe42e620b

Blacklisted by Norton :
https://sitecheck.sucuri.net/results/www.cadabams.org

Really bad IP history :
https://www.virustotal.com/en/ip-address/69.16.243.49/information/

polonus · 2017-06-01T19:52:32.000Z

Additionally what Eddy has to report about this domain, I also found these reports.

There are some serious DNS issues for nameservers for that domain: http://www.dnsinspect.com/cadabams.org/10118493
Identical TXT records
FAIL: Your name servers returned different TXT records.

WARNING: Name servers software versions are exposed:
67.195.1.92: “9.4.3-P3”
98.139.247.192: “9.4.3-P3”
Exposing name server’s versions may be risky, when a new vulnerability is found your name servers may be automatically exploited by script kiddies until you patch the system. Learn how to hide version. Exploitable: security vulnerabilities of ISC Bind version 9.4.3

Nemucod malware on that IP: http://www.threatcrowd.org/ip.php?ip=69.16.243.49 → http://www.threatcrowd.org/malware.php?md5=838088167daef077818640b7d987c4bd

polonus

HonzaZ · 2017-06-02T07:29:28.000Z

Opening tickets does not work unless you have a licence, but you can still report malware / false positives without a licence: https://www.avast.com/report-a-url.php

Glad to know you have removed malware, I am removing cadabams[.]org from our blacklist.

system · 2017-06-03T02:40:14.000Z

Thank you very much for your assistance and support.

Announcements