My site got blocked by Avast product ?

[REDACTED]

Hi,
I just made a website few weeks ago and my friend said he unable to access the website, his avast software blocked the website.

I am not using Avast right now so I am not sure what's happen there but my website has no special script, just some jquery and some custom script from developer, developer said 100% safe script installed.

Could you please help me check? It's https://www.topwebhosting.tech

Thanks

[Pondus]

https://virustotal.com/en/url/f4f385e4e2c2b631b01674e8e57369f433858c6adfb8b26077750e854b1aef6b/analysis/1460548014/

IP history > https://virustotal.com/en/ip-address/198.143.149.137/information/
your site is located on a IP with many domains and many are blacklisted

click more button under list(s) for more info


http://www.urlvoid.com/ip/198.143.149.137

IP ADDRESS: 198.143.149.137

We have found in our database of already analyzed websites that there are 67 websites hosted in the same web server with IP address 198.143.149.137 and IP hostname shared.reliabledns.org. Remember that it is not good to have too many websites located in the same web server because if a website gets infected by malware, it can easily affect the online reputation of the IP address and also of all the other websites.

[Eddy]

avast is currently not blocking/flagging the website.

[Secondmineboy]

Update for OpenSSL(newest 1.0.2g), WordPress (newest 4.5)  and Apache(newest 2.4.20) required: http://prntscr.com/arr8cf

USER ENUMERATION and is possible and DIRECTORY INDEXING is enable, needs to be changed ASAP.

You need to work on the  security headers: https://securityheaders.io/?q=https%3A%2F%2Fwww.topwebhosting.tech%2F

And finally i would recommend a CDN (Best Incapsula) for further security and speed.

Also you may want to update to PHP 7 if not already done.

[REDACTED]

Thanks for your replies

Now I known many ways to check my IP/website and hosting. Too many sites on a same IP is a bad point of shared web hosting, I will move my site to a VPS with unique IP address soon.

About the headers security, I don't known how to fix them all but will keep it in the to-do list.

Thanks again for all helpful information

[polonus]

The major problem of your site is with the hoster and domain resolving: http://toolbar.netcraft.com/site_report?url=https://www.topwebhosting.tech
See nameserver problems and other issues: http://www.dnsinspect.com/topwebhosting.tech/1460648549
Mameservers without  A records and  stealth name servers.
The hosting IP has a double red bad web rep from WOT: https://www.mywot.com/en/scorecard/198.143.149.137?utm_source=addon&utm_content=popup                         IP with spammers and dictionnairy attackers.
IP badness history: https://www.virustotal.com/nl/ip-address/198.143.149.137/information/
and https://www.threatcrowd.org/ip.php?ip=198.143.149.137

Excessive server header info proliferation: Apache/2.4.12 Unix OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Your server should not speak out so loud....BEAST
The BEAST attack is not mitigated on this server.

polonus