Avast WEBforum

Avast Products => Avast Online Security (browser extension) => Topic started by: Юрий178 on August 21, 2019, 08:21:46 AM

Title: remove my website from blacklist
Post by: Юрий178 on August 21, 2019, 08:21:46 AM
Why does my site mebel-darna.ru block browser applications. There are no viruses on this domain. As well as subdomains https: //*.mebel-darna.ru/*
Attached a screenshot about Avast blocking this site. http://joxi.ru/KAx5RWOiZozk8r

Crawled the site using special services located on the links:
[list type = decimal]
[li] https://www.virustotal.com/gui/url/138d76408c070d17040da618a94ba8d706b6dea3795d1dcf8dffa736949edb4b/details [/ li]
Title: Re: remove my website from blacklist
Post by: Asyn on August 21, 2019, 08:31:43 AM
-> https://sitecheck.sucuri.net/results/mebel-darna.ru
Title: Re: remove my website from blacklist
Post by: Юрий178 on August 21, 2019, 09:33:27 AM
Why do you think the sitecheck.sucuri.net website is true? Why do you think his assessment is objective?
Title: Re: remove my website from blacklist
Post by: Novels on August 22, 2019, 08:05:54 AM
Try to check uploaded files
Title: Re: remove my website from blacklist
Post by: jefferson sant on August 23, 2019, 04:03:02 AM
Detection was removed yesterday 21.08.2019

Quote from: Avast
Our virus specialists have been working on this problem and it has now been resolved. The provided website isn't detected by Avast anymore.
Title: Re: remove my website from blacklist
Post by: polonus on August 25, 2019, 07:54:55 PM
Witam Юрий178

Congrats as the site is neither malicious nor suspicious,
however site could do with some tips acquired through linting:
https://webhint.io/scanner/f6332ded-5892-4e56-9b31-d9c50a529f81

Potential DOM-XSS Issue:
Quote
em.async=true;em.src=('htxps:'==document.location.protocol?'htxps://':'htxps://')+'leadback.ru/js/leadback.js';var s=document.getElementsByTagName('script')[0]

DOM-XSS issues: Results from scanning URL: -https://apis.google.com/js/platform.js
Number of sources found: 412
Number of sinks found: 124 (all outside your scope  ;) )

Security Checks for https://mebel-darna.ru
(2) Susceptible to man-in-the-middle attacks
(2) Vulnerabilities can be uncovered more easily
Vulnerabilities
(2) Emails can be fraudulently sent
(2) Unnecessary open ports
DNS is susceptible to man-in-the-middle attacks

Javascript Errors: File not found: -http://mebel-darna.ru/modules/lazyload/js/jquery.lazyload.js

ErrorUtils caught an error: "Tried to listen to element of type click from Error: Cannot listen to an unde...". Subsequent errors won't be logged; see -https://fburl.com/debugjs.
 -https://www.facebook.com/rsrc.php/v3/y6/r/kApeDjx9YPr.js?_nc_x=Ij3Wp8lg5Kz:51 (Cavalry logger).

pozdrawiam,

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)