URL Scam false positive not allowing me to navigate the website

Hello, Avast is blocking me from navigate https://playdede.to as it detects https://playdede.to/ajax.php as url scam but it has nothing to do with any type of scam. I need to disable Avast so i can navigate normally. I have Avast since long ago and i usually navigate this website so i suppose this false positive has been active within the past few days.

Thank you

Ola ggomexg,

Some errors while scanning: https://sitecheck.sucuri.net/results/https/playdede.to

Added cdn-cgi script on your pages
DOM

{"alert":{"text":"M\u00e9todo inv\u00e1lido: ","level":"warning"}}
Take this up with Cloudflare's.

On this error, read here: https://magento.stackexchange.com/questions/323523/magento-2-how-to-insert-data-in-custom-table (you aren’t on Magento, but nevertheless the error-info is valid).
By the way your WordPress configuration is OK, user enumeration and directory listing neatly disabled. :slight_smile:

One potentially infested file found

Potentially Suspicious files:1
Detected Potentially Suspicious Files
File name /cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=7c96ff18de303620
Threat name PS.JS.Obfuscantion.gen
File type ASCII
Reason Too low entropy detected in string [[‘0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000’]] of length 100 which may point to obfuscation or shellcode.
Details Detected procedure that is commonly used in suspicious activity.
Threat dump [iv(1164))l=iiv(736);elseif(242===k)l=(k=fH(this,123)iv(1714),k[0]=fI(this),k[3]=fF(this)^164.28,k);elseif(k===217){for(k=fF(this)<<8|iiv(640),l=,s=0;s<k;liv(796),s++);}elseif(69===k){for(l=fF(this)<<8|iiv(905),k=‘’,s=0;s<l;k+=fz[iiv(1578)],s++);for(l=iiv(533),s=‘’,o=0;iiv(1393);s+=fz[fF(this)^61],o++);l=i[iv(5]]
Threat MD5 A92781BDEAC2746D1CA08B392C45D152
File MD5 B4A4188759B22BEAD101FD3A97DC7998
Line Available via API only.
Offset Available via API only.
File size Available via API only.
File type Available via API only.

Wait for a final answer from avast team and file a FP report here: https://www.avast.com/false-positive-file-form.php#pc whether this is a genuine detection or a false positive despite of the found low string entropy.
See: https://www.virustotal.com/gui/url/a26d09f5df9fec2626af1aec5e45159dbcec6f722dce62d7a9d2375253c674a7/detection

That is all we know for now,

polonus (volunteer 3rd party cold recon website security analyst and website error-hunbter)