Jump to content
David A

False Positive on my site

Recommended Posts

Hi , Not sure why this started all of a sudden, but when trying to download a document hosted on my WP site it says  HTML/ScrInject.B trojan

the url is: hxxp://www.canacap.ca/canacap-iso-agreement-07-17-2018-1-1/

Checke don Total virus and no threat found: https://www.virustotal.com/#/url/ef7b70686c24c76966cd16ce16c8c5a7392a2e202bda9511c057a019ddb3cfc2/detection

Pls let me know, it seems only Eset is seeing this threat

 

Thx

Share this post


Link to post
Share on other sites

Although ESET is the only AV to detect the html code, I can assure you it is not a false positive:

image.png

It contains an obfuscated javascript that loads another javascript (malicious jquery.js) from another server. That url doesn't seem to work any more.

image.png

Share this post


Link to post
Share on other sites

Thank you very much for info and quick answer, I will have our Server Admin look into it!

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×