Jump to content

Kaspersky blocking website, detected as HEUR:Trojan-PSW.Script.Generic


Recommended Posts

For over two months now KTS has been blocking this website:
https_://stilldragon.com/    [link disabled]

I am using google Chrome Version 83.0.4103.61 (Official Build) (64-bit)

I can find no way around this outside of turning KTS off.  I can open it in TOR no problem.

 

Object URL:

https://stilldragon.com/

Reason: the object is infected by HEUR:Trojan-PSW.Script.Generic

Message generated on: 6/9/2020 1:04:01 PM

 

Can you look into this issue?

 

Link to comment
Share on other sites

Hello @rgreen2002,

No apology necessary, we’re happy to help🙂

Kaspersky experts, Sent: Wednesday, 10 June 2020 16:58, have advised:

Quote

The detection is correct, the partial malicious codes is as follows:

 

The script connects and injects the blocked object into one's computer to steal cookies and website credentials.

Please advise the webmaster to remove the code from the page.

unquote. 

Thank you🙏

Flood🐳

Link to comment
Share on other sites

  • 8 months later...

Could you please have a look at keywestaloe.com? The Tag on the website does not have var_ or anything like that… any advice?

Hello @Franco8

Welcome!

It may be a false positive, we’ve submitted it for analysis & logged a case with Kaspersky.

We’ll update you when they respond

 

 

 

 

 

 

 

Thank you🙏

Flood🐳+🐋

Link to comment
Share on other sites

Hello @Franco8,

Virus analysts provided the following response:

qte:

This is not a false alarm. This site is infected. Here is the malicious code:

If you are a webmaster, please remove the above code from the page. Also we strongly recommend that you change passwords to all services that can be used to modify website contents because they may have been stolen.

unqte

Thank you🙏

Flood🐳+🐋

Link to comment
Share on other sites

Событие :    Загрузка остановлена
Пользователь : 
Тип пользователя :    Активный пользователь
Имя программы :    firefox.exe
Путь к программе :    C:\Program Files\Mozilla Firefox
Компонент :    Веб-Антивирус
Описание результата :    Запрещено
Тип :    Троянская программа
Название :    HEUR:Trojan-PSW.Script.Generic
Точность :    Эвристический анализ
Степень угрозы :    Высокая
Тип объекта :    Файл
Имя объекта :    data0000
Путь к объекту :    https://www.googletagmanager.com/gtm.js?id=GTM-MJDW8PM//
MD5 :    D0A55983032E397E8C4009A31290C94A
Причина :    Экспертный анализ
Дата выпуска баз :    Вчера, 26.02.2021 20:13:00

Link to comment
Share on other sites

Hello @Franco8

You’re most welcome!

Personally, no, we cannot → the Community cannot answer your questions, beyond what we already have. 

  1. Have you tried a different code? 
  2. We’ve asked you if you have a Kaspersky subscription license & received no reply; if you do, log a case with Kaspersky Technical Support & battle it out with them

 

 

  • After submitting the case, you’ll receive an automated email with an INC+12digits reference number, then, normally, within 5 business days, a Kaspersky Technical Support human will be in touch, also by email, you may continue to engage with the Kaspersky Technical Team via email or by updating the INC in your MyKaspersky account.

▶ Please share the outcome with the Community when it’s available? 

Thank you🙏

Flood🐳+🐋

Link to comment
Share on other sites

  • 2 weeks later...
  • 1 year later...

Good day

My site is 

www.pcdepotliquidation.com

and Kaspersky is blocking my site

I called WHC and I did several scan even with Kaspersky and there is no Torjan

but my customers that are using Kaspersky can't access my website

can you please help me with that issue

Thanks

Link to comment
Share on other sites

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now


×
×
  • Create New...