Our website is reported as being in the Avast blacklist. Here is the domain name: www.gobizmo.in
All it subdomains are also being blacklisted. e.g., blog.gobizmo.in, apps.gobizmo.in, etc.
We are sure that our website is clean, therefore we would like you to take a look at it and remove it from your blacklist.
Indeed, the domain was blocked because of this URL: gobizmo.in/76g8h8y7
What have you done to remove the threat and what will prevent a security breach from happening again?
Double fail and errors here: https://asafaweb.com/Scan?Url=www.gobizmo.in
Server vulnerable. he address you entered is unnecessarily exposing the following response headers which divulge its choice of web platform:
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
X-AspNet-Version: 4.0.30319
Configuring the application to not return unnecessary headers keeps this information silent and makes it significantly more difficult to identify the underlying frameworks.
Looking at hxtp://www.gobizmo.in; 1 form(s) found.
HRMM; no injection found on: hxtp://www.gobizmo.in; form 1
URL WAS =>-htxp://www.gobizmo.in?__VIEWSTATE=%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%2B6uPlamEicTYvS&__VIEWSTATEGENERATOR=90059987&__EVENTVALIDATION=%2FwEdAAwHBWhr4O%2BQXSGJ0iyyQ038Ves4AfNrEwZQ25wFmngHn2kn4xl43Vl%2BXyw1G2m3RbU6xKhjucFeGG1n0D9XGSPi14Q42QClq%2FHLiph1S5KMNlKk8lTLo6aGfYR7kXQsxKQl7MgaUXd8jqW9XjOL9ggCzKotDXFjuZRBFsG3Q6cayfg8cjzpPmmA5Bz%2F6O5SkHc52dEQZm266BCrtt5ujb6fZNFffwYWNUcZ5YKywAkeWl4z5a1rmXFMQpsyaGa2zv259PhlvnusHH1L9zs30Hn67VpjOwWTFKtkrowubYdQ0g%3D%3D&ctl00%24ContentPlaceHolder1%24txtName=%3Ch1%3Esentinel%3C%2Fh1%3E&ctl00%24ContentPlaceHolder1%24txtEmailID=&ctl00%24ContentPlaceHolder1%24txtMobileNo=&ctl00%24ContentPlaceHolder1%24txtLoginEmailID=&ctl00%24hid_priviledgeId=&ctl00%24user_hidden=&ctl00%24HiddenFieldClientTime=
Scan tool is intended to scan site for potential HTML-injection.
The site you have mentioned has an old WordPress flavor. We have already upgraded it to the latest version and we have also implemented security plug-ins.