Author Topic: FALSE POSITIVE: www.turchini.it  (Read 1627 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33486
  • malware fighter
Re: FALSE POSITIVE: www.turchini.it
« Reply #15 on: November 29, 2022, 11:37:48 PM »
Hi speacetime07,

Well we will find it here - https://www.shodan.io/host/86.107.32.86  (your IP and your website hoster)
Server: BitNinja Captcha Server  (and that comes under constant attack)
It should cover and protect you against attacks, so is actually a good thing.

Read also here: https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/bitninja-captcha-server-identified/
(server info proliferation - good you could not find it).

But  again there is no direct impact arising from this issue.

Just added this to be complete in my information on your website's security situation and that at the hosting server
(but be aware of web technologies used there, as we have touched that already Word Press, PHP, My SQL).

Hope you will soon learn from avast about the present final detection position of your website.

Also report here: https://sitereport.netcraft.com/?url=https://www.turchini.it  (could report a mistake)

polonus
« Last Edit: November 29, 2022, 11:50:10 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline spacetime07

  • Newbie
  • *
  • Posts: 7
Re: FALSE POSITIVE: www.turchini.it
« Reply #16 on: November 30, 2022, 01:05:39 PM »
Thank you. Avast said that was a false positive so the website is again live without any advise.
Thank you all.

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 87267
  • No support PMs thanks
Re: FALSE POSITIVE: www.turchini.it
« Reply #17 on: November 30, 2022, 02:29:30 PM »
You're welcome.

Don't forget to address the outdated software, etc.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 22.12.6044 (build 22.12.7758.768) UI 1.0.741/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33486
  • malware fighter
Re: FALSE POSITIVE: www.turchini.it
« Reply #18 on: November 30, 2022, 10:59:25 PM »
Hi spacetime07 and DavidR,

What about this outgoing link, flagged as with PHISHING:
https://www.virustotal.com/gui/url/fae7d3021f142bcc20d0ef6fe209920ff6f9ac9b36586ecb7d65f54ab2f75f33/details

also see: https://sitecheck.sucuri.net/results/https/forms.gle/YCMeyXwf63pY9aMa8

and then see: https://www.abuseipdb.com/whois/199.36.158.100

So we are not completely out of the woods with this one, or arrived there once again (scam and phising abuse).

But wait, here it gets the all green and a full 100%: https://www.scam-detector.com/validator/forms-gle-review/
But as they say there it is the web admin's duty to read the signs there  ;)

polonus

P.S. This has turned into quite some interesting thread (i.m.h.o.), as it has gone over all sort of aspects of the Word Press CMS security features, to arrive at the conclusion, that without constant maintanance and updating no website will stay completely secure, and that's for sure.

« Last Edit: November 30, 2022, 11:21:39 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!