CMS properly installed - phishing flagged because of redirect?

[polonus]

See: https://urlquery.net/report/b87b521e-f832-482f-ac47-94ab6194db15
Re: https://aw-snap.info/file-viewer/?protocol=not-secure&tgt=sommerfeldtransporte.de&ref_sel=GSP2&ua_sel=ff&fs=1

Check: WordPress Plugins

The following plugins were detected by reading the HTML source of the WordPress sites front page.

contact-form-7   latest release (5.0.1)
https://contactform7.com/
revslider   

Web Server:
Apache
X-Powered-By:
PHP/5.6.33, PleskLin
IP Address:
-85.214.51.232
Hosting Provider:
Strato Rechenzentrum, Berlin   
Shared Hosting:
11 sites found on -85.214.51.232
DNS from server.media-root.de  &  iad23s57-in-f42.1e100.net
Cert at server.media-root is not installed correctly.
The domain name does not match the certificate common name or SAN.
Warnings: Warnings
RC4
Your server's encryption settings are vulnerable. This server uses the RC4 cipher algorithm which is not secure. More information.
SSLv3
Your server's encryption settings are vulnerable. This server uses the SSLv3 protocol, which is not secure. More information.
This server is vulnerable to:
Poodle (SSLv3 protocol)
This server is vulnerable to a Poodle (SSLv3) attack.
Let's Encrypt Authority X3 
media-root.de tested cert.

polonus (volunteer website security analyst and website error-hunter)

[polonus]

More to explain these results from this scan: https://privacyscore.org/site/92613/
where the invalid SSLcertificate on the server stands out.

Compare: https://toolbar.netcraft.com/site_report?url=http%3A%2F%2Fsommerfeld-limousinen.de%2F

polonus