Author Topic: Blocked site even with Exclusion  (Read 1103 times)

0 Members and 1 Guest are viewing this topic.

REDACTED

  • Guest
Blocked site even with Exclusion
« on: September 06, 2017, 02:20:27 PM »
I tried adding an exclusion for website sabrinacarpenter.com all I get is a WARNING This site could have harmed your computer. Then the button below says Get me out of here. How can I bypass this to get to the site???

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76037
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Blocked site even with Exclusion
« Reply #1 on: September 06, 2017, 02:28:20 PM »
You can report a URL here: https://www.avast.com/report-a-url.php
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Blocked site even with Exclusion
« Reply #2 on: September 06, 2017, 02:44:52 PM »
Configuration setting in Word Press CMS wrong: Warning User Enumeration is possible
The first two user ID's were tested to determine if user enumeration is possible.

ID   User   Login
1   admin   admin
2   Sabrina Carpenter   editor
It is recommended to rename the admin user account to reduce the chance of brute force attacks occurring. As this will reduce the chance of automated password attackers gaining access. However it is important to understand that if the author archives are enabled it is usually possible to enumerate all users within a WordPress installation.

2 vuln. jQuery libraries detected: http://retire.insecurity.today/#!/scan/972fcd1b28d2d91f72dc17e116763fb878ecab4c49f8d4eb590117c4bf88389b

Your site is not only generically blocked by avast's but also by MacAfee

Quttera flags: /wp-content/themes/sabrinacarpenter/assets/scripts/rdata.js
Severity:   Potentially Suspicious
Reason:   Detected procedure that is commonly used in suspicious activity.
Details:   Too low entropy detected in string [['<header><span class="callltr"></span><span class="name"></span><span class="geo"></span></header><fo']] of length 114 which may point to obfuscation or shellcode.

Nothing specific here: https://threatintelligenceplatform.com/report/sabrinacarpenter.com/i4rcHoRWYR

Wait for the final verdict of an avast team member whether this is indeed a false posiitive.

polonus (volunteer website security analyst and website error-hunter)
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Eddy

  • Avast Evangelist
  • Maybe Bot
  • ***
  • Posts: 31080
  • Watching (over?) you
    • Malware removal, Biljart and other things.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Blocked site even with Exclusion
« Reply #4 on: September 06, 2017, 09:59:21 PM »
Thanks, Eddy for precising that.
Google alerts are often precise, up to date and factual.

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!