A few months ago they were victims of an injection which we resolved within 24 hours and took steps to prevent from happening again.
Since then it has remained clean. But even though all the other blacklists have delisted us, customers using your Avast Antivirus are still getting warning messages which is hurting their business.
I do not see anything malicious right now, so I am unblocking the domain now
Please do pay attention to the security issues others pointed out, though.
We spotted this suspicious subdomain: d-click.abnt.org.br pointing to a blocked IP (169.45.180.204) along with many many other subdomains. The main domain points to 189.113.174.141. Care to explain what’s the purpose of this, if it is intentional?
No, what I mean is that many many suspicious subdomains of other domains point to the very same IP, but not subdomains of your domain.
The URL abnt.org.br is currently blacklisted for all Avast users.
I have heard of a couple users stating that the subdomains on another IP are indeed intentional, so I am unblocking 169.45.180.204 along with all domains that pointed to it.
Please do let me know here if you still have trouble
That is why I call this example “a lucky escape via a second op”.
See how it pays to analyze and discuss,
and bring up issues here in this section of the Avast support forums.
It is a sure thing that in the end we all prosper from the insights gained.
We cannot thank Avast enough for providing us with this platform.
polonus (volunteer website security analyst and website error-hunter)