Author Topic: Why is Nevisport.com blocked? (Read 1634 times)

MiltonDG · « **on:** November 20, 2021, 11:25:31 AM »

A website I have used and a trusted UK shop and online store for Mountaineering equipment is classified as a fake website by Avast, this is not only annoying but also poor that it is next to impossible to submit a re-assessment of the website to resolve the issue

rocksteady · « **Reply #1 on:** November 20, 2021, 11:33:15 AM »

Just checked that url on virustotal and reported clean by most. However, didn't see Avast or AVG listed there.
I guess you could report a False Positive here: https://www.avast.com/false-positive-file-form.php

polonus · « **Reply #2 on:** November 20, 2021, 11:41:50 AM »

It is probably because of an unmaintained server for this webshop,
see https://www.magereport.com/scan/?s=https://www.nevisport.com/

cache-warning Refusing to overwrite response TTL for Magento 2

CSP Grade A 2 OK. Do as rocksteady suggests. Wait for a response from an avast team member.
So just wait for a final verdict by avast team, as they are the only ones to come and unblock.

The scan-problems may have subsided by now..

Failed scan results: https://sitecheck.sucuri.net/results/https/www.nevisport.com
Also see: https://www.virustotal.com/gui/url/43a83bc323a79ba0516b0987df5aa6f05a6b6906e0a917e8c6a34860196a4797?nocache=1

polonus

DavidR · « **Reply #3 on:** November 20, 2021, 12:34:30 PM »

Quote from: rocksteady on November 20, 2021, 11:33:15 AM

Just checked that url on virustotal and reported clean by most. However, didn't see Avast or AVG listed there.
<snip>

Avast/AVG don't do on-demand web site scans on VT only the on-demand scans of uploaded files. As far as I'm aware many of those so called website scans are just checking blacklists.

polonus · « **Reply #4 on:** November 20, 2021, 01:05:54 PM »

There are issues with the configuration of the site, missing jQuery implementation.

Quote

compat.js:1 Fallback to JQueryUI Compat activated.
Your store is missing a dependency for a jQueryUI widget.
Identifying and addressing the dependency will drastically improve the performance of your site.

jquery-migrate.js:3 JQMIGRATE: 'hover' pseudo-event is deprecated, use 'mouseenter mouseleave'
migrateWarn @ jquery-migrate.js:3
hoverHack @ jquery-migrate.js:38
jQuery.event.add @ jquery-migrate.js:42

main.js:2 Error: Script error for: Magento_GoogleTagManager/js/google-tag-manager
http://requirejs.org/docs/errors.html#scripterror
at makeError (require.js:16)
at HTMLScriptElement.onScriptError (require.js:107)

(
(index):1 Unchecked runtime.lastError: The message port closed before a response was received.

[Violation] Forced reflow while executing JavaScript took 69ms

anchor?ar=1&k=6LdlRbEcAAAAAIIIg5eJDZilDmMGa0EXaHW-rswL&co=aHR0cHM6Ly93d3cubmV2aXNwb3J0LmNvbTo0NDM.&hl=pl&v=_7Co1fh8iT2hcjvquYJ_3zSP&size=invisible&badge=bottomright&cb=cx1094fpm1pw:1 Unchecked runtime.lastError: Could not establish connection. Receiving end does not exist.
recaptcha__pl.js:296 [Report Only] Refused to create a worker from '-https://www.google.com/recaptcha/api2/webworker.js?hl=pl&v=_7Co1fh8iT2hcjvquYJ_3zSP' because it violates the following Content Security Policy directive: "worker-src 'none'".

etc. etc.

polonus