My website https://bellascositas.es is blocked by url: Scam and the website does not have any infection. Could you please review it and remove that lock from me
Considered a Low Security Risk here - https://sitecheck.sucuri.net/results/https/bellascositas.es
Some security points reported here - https://webhint.io/scanner/c8184a14-9dc5-4ee1-833a-61e458721755
Out of date software reported here, this could leave the site vulnerable - jQuery UI and jQuery - https://awesometechstack.com/analysis/website/bellascositas.es/?protocol=https%3A
These may or may not have contributed to Avast alert - but should certainly be considered and addressed.
Reporting Possible False Positive File or Website - https://www.avast.com/false-positive-file-form.php.
thanks for your answer, I have communicated the false positive so that they remove the block, there is nothing malicious on the web. Updating prestashop is not easy due to all the independent modules it has.
You’re welcome.
Though if nothing is found to indicate a false positive, then it would remain, but you should get a notification in a day or two.
However I would suggest that you report the findings in the checks I did to prestashop as out of date software can be exploited and that could impact your business/customers.
Thanks for the reply. Prestashop even in the latest version have jQuery UI in version 1.10.3 so all prestashop are vulnerable high and that is not why avast blocks it. It does not make sense, I wait for the positive response and the unlocking. Greetings
You’re welcome.
As an avast user not an avast team member, I don’t know why avast is blocking it.
I just check out some common site for issues that could leave a site vulnerable to exploit, which may (or may not) have an impact on Avasts detection. However that still is of concern to users of your site even if Avast were to remove it as a false positive.
Perhaps you should contact Prestashop and point out the vulnerabilities.
https://snyk.io/vuln/npm:jquery-ui?lh=1.10.3&utm_source=lighthouse&utm_medium=ref&utm_campaign=audit
Thanks a lot, David. Thanks to you I have been able to contact the avast team at least through the false positive. They have neither a telephone nor direct customer service for this. And I’ve been losing sales since Friday. Do you know how long it takes to answer? Prestashop is one of the most used systems in the world to make online stores, it is a big mistake to block because they all have jQuery UI in version 1.10.3. Now it was me, tomorrow it will be thousands of other clients
You’re welcome.
Generally they respond in a day or two.
I didn’t say that is why avast are blocking it.
These may or may not have contributed to Avast alert - but should certainly be considered and addressed.
But jQuery UI and jQuery are both out of date and that could put both your site and customers at risk.
Thanks, David. They just answered me and they have already removed the lock:
Hello,
Thank you for reporting this false positive.
Our virus specialists have now cleared its reputation in our database.
With URLs this change should be instant, but it might take up to 24 hours with files.
For future reference you might also find the following article to be useful: Avast Clean Guidelines.
I will take into account what you tell me to report it to Prestashop.
Good to hear you got a very prompt response.
there is no malware or phishing url in my website but avast is detecting my site as phishing…please check update the status,i am loosing trafic.
https://perfumeseuropeos.consitioweb.com
Then use the link given in Reply #1 to report it.
Considered a Medium Security Risk here - https://sitecheck.sucuri.net/results/https/perfumeseuropeos.consitioweb.com
Several security tips reported here - https://webhint.io/scanner/3358fd6c-7850-49a0-895d-e99805813d6c
Outdated software reported here - https://awesometechstack.com/analysis/website/perfumeseuropeos.consitioweb.com/?protocol=https%3A
- These may or may not be what Avast is alerting for - but you should certainly address this.
Hi sakibul00,
Apart from the information DavidR provided here and that should be looked into,
the main issue with your website’s CMS is that it should be updated to version 5.7.2.
It is outdated - Your JS links all seem google safeweb approved,
User Enumeration
The first two user ID’s were tested to determine if user enumeration is possible.
Username Name
ID: 1 admin admin
ID: 2 not found
It is recommended to rename the admin user account to reduce the chance of brute force attacks occurring. As this will reduce the chance of automated password attackers gaining access. Take note that if the author archives are enabled it is usually possible to enumerate all users within a WordPress installation.
polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
My website https://terminus.ua is blocked by url: Scam and the website does not have any infection. Could you please review it and remove that lock from me
https://sitecheck.sucuri.net/results/terminus.ua
Report Suspicious File or URL: https://www.avast.com/false-positive-file-form.php
Site seems to have 4 files with suspicious code inserted:
https://quttera.com/detailed_report/terminus.ua
Suspicious Threat: Heur.JS.Hidden.gen Reason: Suspicious hidden JavaScript load Details: Detected encoded JavaScript code commonly used to hide suspicious behaviour.
Wait for final verdict from avast team and cleanse suspicious code.
polonus (volunteer 3rd party cold recon website analyst and website error-hunter)