Jump to content

Kaspersky keeps detecting Heur:Trojan.script.generic in erdarchitect.com secure site website


Go to solution Solved by harlan4096,

Recommended Posts

quark95cos
Posted

Hello,

I am trying to connect to the ERD Architect Data Modeler website (it is "erdarchitect.com" and is an https site but for obvious reasons I am not putting the full URL here in this note) and Kaspersky keeps indicating that there is a dangerous object trying to download. This object is the Heur:Trojan.script.generic trojan. This occurs in both Firefox and Brave browsers which would be expected.

I understand that it is possible the site is in fact infected but I would like to confirm. I recall reading on the Kaspersky site about providing the same information as above in another area of the site so it can be reviewed. Unfortunately, I cannot recall where this is to submit this. I have also included screenshots as well.

Can someone direct me to this area so I can see if it is in fact an issue or a false positive?

Thank you

 

Trojan_reported_03252024.png

Trojan_reported_2_03252024.png

  • The title was changed to Kaspersky keeps detecting Heur:Trojan.script.generic in erdarchitect.com secure site website
harlan4096
Posted

Welcome to Kaspersky Community.

 

I just sent the URL to K. analysts.

 

To submit files/URL to K.: KOTIP

 

image.thumb.png.ff03b8e5af4ab570e83d948aa58573c9.png

 

 

  • Like 1
  • Solution
harlan4096
Posted
Quote

 

Hello,

This is not a false alarm. This site is infected.


Here is the malicious code:


;if(typeof ndsw==="

 

If you are a webmaster, please remove the above code from the page. Also we strongly recommend that you change passwords to all services that can be used to modify website contents because they may have been stolen.

 

Best regards,

Malware Analyst
39A/3 Leningradskoe Shosse, Moscow, 125212, Russia Tel./Fax: + 7 (495) 797 8700 http://www.kaspersky.com https://securelist.com
https://opentip.kaspersky.com/ - get insights about suspicious files, hashes, URLs, IP addresses or domain names

 

 

  • Like 1

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now


×
×
  • Create New...