Jump to content

Link to Dodge.com a false positive?


Recommended Posts

  • Administrators

Are you using a Mikrotik router? If so, it might have been compromised and a CoinMiner javascript is being added through a special html file that has the original page included via a frame. This is currently detected as a PUA (JS/CoinMiner.AH) so make sure that you have PUA detection enabled and modules updated.

Link to comment
Share on other sites

  • Administrators

If the detection is still triggered on the website, please provide ELC logs but also select "quarantined files" prior to collecting the stuff.

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...