You can deny Avast,AVG etc and any other program Internet access and update the programs manually by downloading the updated AV definitions from a different source like majorgeeks dot com.
I’m not sure why this topic is labelled as “fixed”. The site is still blocked and my antivirus is still reporting the exact same threat… months later.
I feel for the owner of the website, if it is a false positive. It might be a good idea to change the website so that it doesn’t have the positive result at all?
Consider how much business/revenue is being lost from people who are blocked from the site and just go away never investigating further.
Yeah, the site is compromised.
Someone managed to insert some piece of javascript code in his html/php files, so I’d advise to not to type in any CC details while on his site, because they`ll likely be stolen. But if he uses some 3rd party payment gateway like Paypal, where you get redirected to their site, then it’s fine - that script can’t get anything.
@Hank you should wipe out your server, because you don’t know what else did the intruder change in your site (except the site files). He may have gotten root access too.
Then rebuild your site with modern tech, because right now I see that you are using some stuff last updated 20 years ago, like that scriptaculous bs.
Hank, I use you every now and again, 2 times very recently - I have to say these security worries are happening a bit often for my liking. There were plenty of warnings about cardstealers last time, and everyone said ‘don’t worry’ false positives, crap antivirus etc’ nothing to worry about!
But now it seems someone actually was stealing card details, is this correct? for how long? How many have been compromised, are our details safe? please advise asap.
PM me with any changes/info and I will happily update this thread title - pm is better so I don’t miss it.