HSW 9 Posted February 29, 2016 Share Posted February 29, 2016 (edited) Nearly all pages on all clients, with JavaScript advertising Js/ScrInject.B Trojaner msn, amazon..... please check and correct Edited February 29, 2016 by HSW Link to comment Share on other sites More sharing options...
tsaccs 0 Posted February 29, 2016 Share Posted February 29, 2016 It would appear that update 13102 is causing false positives on every site, rolling back to previous update works. Come on eset I have over 2000 users on my case about this please fix. Link to comment Share on other sites More sharing options...
davidpitt 4 Posted February 29, 2016 Share Posted February 29, 2016 We're seeing this too on all version of Eset Security, AV and Endpoint products on various websites! Link to comment Share on other sites More sharing options...
A.Mannchen 0 Posted February 29, 2016 Share Posted February 29, 2016 At my company, too. The most are Windows-Client. On Mac is it not yet happened. Version: 5.0.2228.1 DB: 13102 (20160229) Link to comment Share on other sites More sharing options...
jimwillsher 65 Posted February 29, 2016 Share Posted February 29, 2016 (edited) Same here, www.amazon.co.uk being an example. Definitions 13102. Edited February 29, 2016 by jimwillsher Link to comment Share on other sites More sharing options...
Pascal Minery 0 Posted February 29, 2016 Share Posted February 29, 2016 Hi, We encounter the same issue on several network. HTML/Refresh.BC Trojan Hope it will be fixed soon ! Link to comment Share on other sites More sharing options...
siada 0 Posted February 29, 2016 Share Posted February 29, 2016 We're getting the same on all of our websites, also google and amazon and many others... Link to comment Share on other sites More sharing options...
pipboy3000 3 Posted February 29, 2016 Share Posted February 29, 2016 The same here, up so far 3 users, multiple websites latest example Financial Times website: hxxp://www.ft.com/cms/s/2e34304e-deae-11e5-b072-006d8d362ba3,Authorised=false.html?siteedition=uk&_i_location=http%3A%2F%2Fwww.ft.com%2Fcms%2Fs%2F0%2F2e34304e-deae-11e5-b072-006d8d362ba3.html%3Fsiteedition%3Duk&_i_referer=http%3A%2F%2Fwww.ft.com%2Fhome%2Fuk&classification=conditional_standard&iab=barrier-app Yet, the same URL scanned in virustotal comes out clean. Any suggestions? Link to comment Share on other sites More sharing options...
davidpitt 4 Posted February 29, 2016 Share Posted February 29, 2016 Can't get through to Eset Support number as the phone system keeps dropping out or not connecting. I'm going to assume they are very busy with people calling them regarding this issue Link to comment Share on other sites More sharing options...
VC-James 0 Posted February 29, 2016 Share Posted February 29, 2016 Same here... signatures 13102 Link to comment Share on other sites More sharing options...
HSW 9 Posted February 29, 2016 Author Share Posted February 29, 2016 same with "HTML/Refresh.BC" Link to comment Share on other sites More sharing options...
MildlyMiffed 0 Posted February 29, 2016 Share Posted February 29, 2016 Got it happening here too, various websites including Amazon UK and the Daily Mail homepage. Definitions: 13102 (20160229) Link to comment Share on other sites More sharing options...
ruidc 0 Posted February 29, 2016 Share Posted February 29, 2016 and even an own-goal: hxxp://static3.esetstatic.com/fileadmin/scriptmerger/merged/head-cdd769fd1330080cbaff836d7ddf60bf.merged.js JS/ScrInject.B trojan Has anyone raised a case for this with support? Link to comment Share on other sites More sharing options...
CMS 8 Posted February 29, 2016 Share Posted February 29, 2016 Same here. Posted in wrong forum, as we use the business product. JS/ScrInject.B trojan HTML/Refresh.BC trojan https://forum.eset.com/topic/7559-jsscrinjectb-trojan-htmlrefreshbc-trojan/ Link to comment Share on other sites More sharing options...
triamed 1 Posted February 29, 2016 Share Posted February 29, 2016 Same here, also using business product, Endpoint Protection and Endpoint Antivirus. All affected clients using 13102 definitions. Link to comment Share on other sites More sharing options...
JohnyHunt 0 Posted February 29, 2016 Share Posted February 29, 2016 Also HTML/Refresh.BC Link to comment Share on other sites More sharing options...
Sim 0 Posted February 29, 2016 Share Posted February 29, 2016 I have the same problem running 13102 (in Nod32) ... I rolled back to a previous version and the problem went away. Another machine running 13100 is fine. Link to comment Share on other sites More sharing options...
szerman 0 Posted February 29, 2016 Share Posted February 29, 2016 Big problems hope Eset solve it quickly with an update. Link to comment Share on other sites More sharing options...
pelikanr 0 Posted February 29, 2016 Share Posted February 29, 2016 ...uživatelé mě sežerou. Nešlo by to rychleji? Link to comment Share on other sites More sharing options...
MickZH 0 Posted February 29, 2016 Share Posted February 29, 2016 the same problems, Endpoint Security. on many sites, all computers in network, show JS/ScrInject.B Link to comment Share on other sites More sharing options...
akifumi.tanabe 0 Posted February 29, 2016 Share Posted February 29, 2016 I got the same error at the following URLs. hxxp://www.amazon.co.jp/exec/obidos/ASIN/0198566107/ hxxp://kakaku.com/script/libs/k3c/k3c.js hxxp://www.asahi.com/articles/ASJ2Y66QPJ2YOIPE02X.html Please fix. Link to comment Share on other sites More sharing options...
karlisi 26 Posted February 29, 2016 Share Posted February 29, 2016 The same here, business products, definition 13102 Link to comment Share on other sites More sharing options...
w.mayr@heson.com 0 Posted February 29, 2016 Share Posted February 29, 2016 Also same here, after update to 13102 the Problems start. Now rolled back the Virus signature database and there Problem disappears . Link to comment Share on other sites More sharing options...
Hozza12163 0 Posted February 29, 2016 Share Posted February 29, 2016 this latest update tells me that my internal web pages for my temp control monitor and my netgear switch are both infected!?!?!?! wtf eset? Link to comment Share on other sites More sharing options...
Piotrek 1 Posted February 29, 2016 Share Posted February 29, 2016 Yes, Problem appeared after update signature.ver number 13102. oh Eset, eset.......... hehe...... Link to comment Share on other sites More sharing options...
Recommended Posts