Why the domain bsc.it is in blacklist only for Avast Antivirus?

system · 2015-04-28T14:14:00.000Z

Hi,
how to remove our domain bsc.it from blacklist?

We have performed multiple scans through the most popular sites and our domain (bsc.it) is always clean from viruses and malware.
Why our domain is in your blacklist?
We have try:

http://www.mcafee.com/threat-intelligence/domain/default.aspx?domain=www.bsc.it&region=us
https://www.virustotal.com/it/url/cbe30a76b01bfd339752eb7278039fef08df68fbae5d3b18c9c308586af57248/analysis/
http://www.urlvoid.com/scan/bsc.it/

Regards.
Daniele Valenti

Eddy · 2015-04-28T14:59:28.000Z

Blacklisted IP:
http://urlquery.net/report.php?id=1430232970463
http://urlquery.net/report.php?id=1430232951136

If you really believe there is nothing wrong with your website,
you can ask avast to review it and ask for removal of the domain from the list.
https://support.avast.com

Pondus · 2015-04-28T15:13:35.000Z

site is down http://www.downforeveryoneorjustme.com/bsc.it

urlVoid http://www.urlvoid.com/scan/bsc.it/ click IP adress tab … IP adress unknown?

Sucuri: Unable to properly scan your site. Unable to connect.

EDIT: just noticed, one of those that want www but urlVoid still give no IP ?

mikaelrask · 2015-04-28T15:18:24.000Z

hey i can add zulu also find the domian suspicoius

http://zulu.zscaler.com/submission/show/bc755d8580ecb6fe882d75d24ba1f8e6-1430229029

polonus · 2015-04-28T16:45:26.000Z

See: http://whois.domaintools.com/bsc.it
Re: http://www.dnsinspect.com/bsc.it/1430238951
This site is on that IP now: http://www.isspa.it/
Date: Tue, 28 Apr 2015 16:44:16 GMT Content-Encoding: gzip X-Content-Type-Options: nosniff Server: Apache-Coyote/1.1 ETag: “dc77a4d6” Liferay-Portal: Liferay Portal Community Edition 6.2 CE GA3 (Newton / Build 6202 / January 15, 2015), Liferay Portal Community Edition 6.2 CE GA3 (Newton / Build 6202 / January 15, 2015) X-Frame-Options: SAMEORIGIN Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding X-XSS-Protection: 1

polonus

system · 2015-05-06T10:57:31.000Z

The problem is back!
thank you for the support.
Daniele.

Pondus · 2015-05-06T12:32:03.000Z

daniele.valenti post:6:

The problem is back!
thank you for the support.
Daniele.

report it here https://support.avast.com > avast virus lab

polonus · 2015-05-06T12:56:20.000Z

See the problems here: http://www.dnsinspect.com/bsc.it/1430916268
http://www.bsc.it./ is being resolved alas SaferChrome: Insecure login: Password will be transmited in clear to http://www.bsc.it./web/guest/welcome?p_p_id=58&p_p_lifecycle=1&p_p_state=normal&p_p_mode=view&p_p_col_id=column-1&p_p_col_count=1&_58_struts_action=%2Flogin%2Flogin detected (see report)
OK: http://toolbar.netcraft.com/site_report?url=http://www.bsc.it.

Excessive headers warning: https://asafaweb.com/Scan?Url=www.bsc.it
See vuln.: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fwww.bsc.it
mitigated because of Cross Site Request Forgery (CSRF) Prevention in Liferay.

polonus (volunteer website security analyst and website error-hunter)

HonzaZ · 2015-05-06T14:52:43.000Z

Hi Daniele,
I unblocked the domain yesterday morning (GMT). I personally can access your website without any Avast warning.
Can you attach a printscreen of Avast detection, please?
Thanks!

system · 2015-07-01T00:39:11.000Z

We have been trying to get Avast blacklist removal for my website, www.phase4fs.com for a couple of months. It is the only antivirus still blocking the site. Based on recommendations I changed hosting company to GoDaddy and got a dedicated IP address since my old hosting company had me on an IP with 150 sites, several of which had issues. I posted a request for removal through the contact request, but thought I would do it here as well to get any additional insight. Hopefully I can finally get this done. Thanks,

Eddy · 2015-07-01T08:13:56.000Z

What is a site that seems to be about financial things doing with Viagra, pills and such ?
http://www.web-malware-removal.com/website-malware-virus-scanner?url=www.phase4fs.com

Problems on that ASN:
http://urlquery.net/report.php?id=1435738074828
http://urlquery.net/report.php?id=1435738089759

system · 2015-07-01T22:12:08.000Z

I obviously don’t intentionally have anything about Viagra. My computer guy has searched over 10 different scans and everything has come back clean so not sure why this shows up on that site. If I do actually have something on there how do I remove it?

system · 2015-07-01T23:21:51.000Z

The viagra issue doesn’t show up anymore on that link (it shows green). Did you do anything to remove it, Eddy?

system · 2015-07-01T23:24:08.000Z

I also don’t see anything on either of the links for the ASN that you referenced that show up as a problem specifically with my site. The 6 recent ASN inquiries has to do with GoDaddy, not me.

Eddy · 2015-07-02T11:12:04.000Z

I can’t change things on websites/IP’s/host that I don’t own.
If the scan shows “green” now, it sure wasn’t me that changed something.

Announcements