Solinas 0 Posted March 25 Share Posted March 25 Hi, our corporate site is being blocked by Eset because this threat is detected: HTML/Refresh.AUD trojan horse I have not found information and there are no problems on the website. How can we go about solving it? Link to comment Share on other sites More sharing options...
Administrators Marcos 4,361 Posted March 25 Administrators Share Posted March 25 What's the website address? Link to comment Share on other sites More sharing options...
Administrators Solution Marcos 4,361 Posted March 25 Administrators Solution Share Posted March 25 Malware on the website appears to have been removed, we'll unblock the site. Link to comment Share on other sites More sharing options...
Solinas 0 Posted March 25 Author Share Posted March 25 Thanks! Link to comment Share on other sites More sharing options...
Peter REPAS 0 Posted March 25 Share Posted March 25 Hello, Our website is also blocked with the same error message: HTML/Refresh.AUD We have checked the website, refreshed JS. I already requested the whitelist at samples@eset.com. Can you help to remove our website from blacklist? Thank you for your help! Best regards, Peter Link to comment Share on other sites More sharing options...
Peter REPAS 0 Posted March 25 Share Posted March 25 (edited) Dear ESET, We have a Symphony-based site and the front page redirects to /login . The ESET endpoint security on out client computers denies the access with message : Blocked HTML/Redirect.AUD troyan The website has no security issue. The webpage sends the redirect via location header. Please remove our website from blocklist! In case any question, please contact me! Best regards, Peter Edited March 25 by Peter REPAS mistype in title Link to comment Share on other sites More sharing options...
Antonio Duran 0 Posted March 25 Share Posted March 25 Hello... Good morning... We got the same issue: This is the url : https://tspanampa.klassapp.com/login Could you try to check it, since other securities software are not reporting anything, and everything is good with us! Thanks, and best, Antonio Duran. Link to comment Share on other sites More sharing options...
Administrators Marcos 4,361 Posted March 26 Administrators Share Posted March 26 Both websites were infected in the past. They have been unblocked. Link to comment Share on other sites More sharing options...
karlisi 25 Posted March 28 Share Posted March 28 I doubt there are security issues with that sites, we also had the same problem connecting https://www.pakalpojumucentri.lv/ which is used widely in all Latvia, and only 2 customers had problems, and both are using ESET products. Link to comment Share on other sites More sharing options...
Recommended Posts