Kaspersky is classifying my website wrong! (HELP)

September 23, 2023

Good afternoon;
I've been a Kaspersky user for years and yesterday it started classifying my website as dangerous, I'm SURE I don't have any viruses on my website!

I would like to know what I can do to solve this problem, I looked for several experts and they all say that there is nothing wrong!

I tested it in several surveys and everyone says that the site is safe!

Please I need help!

My website: www.tudosalvo.com.br

September 23, 2023

@TudoSalvo Welcome.

Please submit your url here https://opentip.kaspersky.com and ask for reanalyze.

September 26, 2023

I sent several requests but unfortunately no one responded to me, is there any other channel? My subscribers are uninstalling Kaspersky because they can't access my website and I'm losing visits because of a false positive!

September 26, 2023

Virus Total also confirm that there is nothing wrong with my website! https://www.virustotal.com/gui/url/0988c87ca159fa069e7a689c95f9f7b9442a6b300fec276032b0e99f4d08a3c3

September 26, 2023

Iv'e just reported to K. analyst via KOTIP service.

September 26, 2023

Quote

Hello,

This is not a false alarm. This site is infected.

Here is the malicious code:

<link rel="pingback" ...... xmlrpc.php" />

If you are a webmaster, please remove the above code from the page. Also we strongly recommend that you change passwords to all services that can be used to modify website contents because they may have been stolen.

Best regards, Maxim, Malware analyst, Kaspersky Lab
39A/3 Leningradskoe Shosse, Moscow, 125212, Russia Tel./Fax: + 7 (495) 797 8700 http://www.kaspersky.com https://securelist.com
https://opentip.kaspersky.com/ - get insights about suspicious files, hashes, URLs, IP addresses or domain names

September 26, 2023

Initially I would like to thank Harlan4096 because you saved my life, I would never have discovered the problem on my own!

The problem was completely resolved, the line was removed from the entire site and xmlrpc.php was completely blocked!

But my website is still blocked for my users who use Kaspersky, how do I request it to be unblocked?

Could you help me one more time?

Thanks!

September 27, 2023

https://opentip.kaspersky.com/https%3A%2F%2Ftudosalvo.com.br/?tab=lookup

I've reported again the site to K. analysts.

Are You sure that line is removed from the full site code?

September 27, 2023

Quote

Hello,

Please advice to remove also this code. It is also malicious:

<script>(function(){try {let .... })();</script><style></style>

Best regards, Maxim, Malware analyst, Kaspersky Lab
39A/3 Leningradskoe Shosse, Moscow, 125212, Russia Tel./Fax: + 7 (495) 797 8700 http://www.kaspersky.com https://securelist.com
https://opentip.kaspersky.com/ - get insights about suspicious files, hashes, URLs, IP addresses or domain names

September 28, 2023

I would like to thank you again!
My problem was completely resolved, the problem was with the Theme Newspaper that I was using! I changed the Theme and the problem disappeared!

Thank you very much!
Have a great day!

Kaspersky is classifying my website wrong! (HELP)

Recommended Posts

TudoSalvo

Berny

TudoSalvo

TudoSalvo

harlan4096

harlan4096

TudoSalvo

harlan4096

harlan4096

TudoSalvo

Please sign in to comment

Forum

Products

Support

Personal Account