Avast WEBforum

Other => Viruses and worms => Topic started by: terje4 on July 14, 2022, 06:27:14 PM

Title: Why my site is blocked?
Post by: terje4 on July 14, 2022, 06:27:14 PM

fagmann.no/

It shows 1 errors:
- HTML:Script-inf [Susp]

b2a1ea7a61be/2022-07-14T16:13:50.366Z

I cant find anything elsewhere;
https://www.ssltrust.com.au/ssl-tools/website-security-check?domain=fagmann.no
https://sitechecker.pro/app/main/website-safety-land?pageUrl=https:%2F%2Ffagmann.no

Please help :)

Title: Re: Why my site is blocked?
Post by: DavidR on July 14, 2022, 06:29:57 PM

Please edit your post removing the http:// so the link isn't active.

Reporting a Possible False Positive File or Website - https://www.avast.com/false-positive-file-form.php (https://www.avast.com/false-positive-file-form.php).
You should get a response in a day or two.

Title: Re: Why my site is blocked?
Post by: Pondus on July 14, 2022, 06:34:34 PM

https://www.virustotal.com/gui/url/c707faee3a9aea67ca85d677e030eb6a19cabcbfdea935b501bc7065ecf00078?nocache=1

Title: Re: Why my site is blocked?
Post by: DavidR on July 14, 2022, 06:42:02 PM

Further checks:
Considered a Medium Security Risk here - https://sitecheck.sucuri.net/results/fagmann.no
One other detection here - https://www.virustotal.com/gui/url/0734da977e69c7aa844d7b6d3824d52454460005ceebea8ff8fc48834ca37d00?nocache=1
Webpage Security Score E - https://snyk.io/test/website-scanner/?test=220714_BiDcP0_949&utm_medium=referral&utm_source=webpagetest&utm_campaign=website-scanner
Some out of date software reported here - https://awesometechstack.com/analysis/website/fagmann.no/

These may or may not be contributing to the Avast detection, but should be considered to help your overall site security.

Title: Re: Why my site is blocked?
Post by: polonus on July 14, 2022, 11:23:31 PM

Additional to what DavidR so rightfully reports,
there are five serious security issues with your Word Press CMS on that site.
Outdated Word Press plug-ins
- drag-and-drop-multiple-file-upload-contact-form-7 1.3.6.2   Warning   latest release (1.3.6.4)
https://profiles.wordpress.org/glenwpcoder
   cf7-conditional-fields 2.1   Warning   latest release (2.2)
http://bdwm.be/
cookie-law-info 2.0.9   Warning   latest release (2.1.2)
https://www.webtoffee.com/product/gdpr-cookie-consent/
megamenu 2.9.4   Warning   latest release (2.9.7)
https://www.megamenu.com
Update a.s.a.p.

Misconfiguration detected: During the test an attempt was made to list the directory contents of the uploads and plugins folders to determine if Directory Indexing is enabled. This is a common information leakage vulnerability that can reveal sensitive information regarding your site configuration or content.

Path Tested   Status
/wp-content/uploads/     enabled
/wp-content/plugins/      disabled

Directory indexing is tested on the /wp-content/uploads/ and /wp-content/plugins/ directores. Note that other directories may have this web server feature enabled, so ensure you check other folders in your installation. It is good practice to ensure directory indexing is disabled for your full WordPress installation either through the web server configuration or .htaccess.

polonus (volunteer 3rd party cold reconnaissance website security-analyst and website error-hunter)