« previous next »
Pages: [1]   Go Down

Author Topic: Avast is blocking it but I've run a number of online screening  (Read 1687 times)

0 Members and 1 Guest are viewing this topic.

REDACTED

  • Guest
Avast is blocking it but I've run a number of online screening
« on: November 17, 2015, 03:41:14 PM »
Avast is blocking it but I've run a number of online detectors without success. Could you please give me some advise? Thx!

neo-tantra.es
Logged

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37698
Re: Avast is blocking it but I've run a number of online screening
« Reply #1 on: November 17, 2015, 04:10:18 PM »
as i replyed in your previous post today  ->    https://forum.avast.com/index.php?topic=179230.msg1268766#msg1268766

  INFECTED  https://sitecheck.sucuri.net/results/resto-web.es

  INFECTED  https://sitecheck.sucuri.net/results/neo-tantra.es


*This site was just scanned a few minutes ago.Force a Re-scan to clear the cache.


« Last Edit: November 17, 2015, 04:15:57 PM by Pondus »
Logged

Offline Eddy

  • Avast Evangelist
  • Maybe Bot
  • ***
  • Posts: 31072
  • Watching (over?) you
    • Malware removal, Biljart and other things.
Re: Avast is blocking it but I've run a number of online screening
« Reply #2 on: November 17, 2015, 04:12:50 PM »
Logged

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 34051
  • malware fighter
Re: Avast is blocking it but I've run a number of online screening
« Reply #3 on: November 17, 2015, 04:25:42 PM »
Yep, code on website should be retired as vulnerable: Detected libraries:
jquery-migrate - 1.2.1 : -http://neo-tantra.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=cbdfedb36cf6d9f4215b632ec6bdb6aa
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
1 vulnerable library detected

You should take issues up with your hoster of those that maintain the code on that website.

Check your WP plug-ins: WordPress Plugins
The following plugins were detected by reading the HTML source of the WordPress sites front page.

wp-super-cache   latest release (1.4.6)
http://wordpress.org/plugins/wp-super-cache/
asesor-cookies-para-la-ley-en-espana   latest release (0.21)
http://webartesanal.com
sitepress-multilingual-cms   
jetpack   latest release (3.8.0)
http://jetpack.me
jinda-facebook-lightbox   latest release (1.1.1)
http://www.jindatheme.com/blog/jinda-facebook-lightbox-wordpress-plugin
addthis   latest release (5.2.0)
http://www.addthis.com
bigbluebutton   latest release (1.4.2)
http://blindsidenetworks.com/integrations/wordpress
google-analyticator   latest release (6.4.9.6)
http://www.videousermanuals.com/google-analyticator/
iframe-popup   latest release (1.8)
http://www.gopiplus.com/work/2014/04/13/iframe-popup-wordpress-plugin/
wp-webinarsystem   latest release (1.2.1)
http://www.wpwebinarsystem.com
slide-in-popup   latest release (0.1)
http://www.vuleticd.com/products/wordpress-plugins/slide-in-popup/
icegram   latest release (1.9.9)
http://www.icegram.com/

Warning Directory Indexing Enabled
In the test we attempted to list the directory contents of the uploads and plugins folders to determine if Directory Indexing is enabled. This is an information leakage vulnerability that can reveal sensitive information regarding your site configuration or content.

/wp-content/uploads/ enabled

polonus (volunteer website security analyst and website error-hunter)
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »