Scan false positive? Your site is compromised with...

eric_saldana · ‎08-16-2019

I got an alert that one my merged javascript files contains malware, upon quick analysis I don't see anything out of the ordinary, no redirects or unusual website behavior.

The file in question is the following: https://pastebin.com/raw/EFw8DE2f

Is this a false positive? Wouldn't be the first time I get a false positive from my javascript files.

Mukesh Tiwari · ‎08-18-2019

Hi @eric_saldana

Did you try to run the scan after unmerging the js files?

---
Problem Solved Click Accept as Solution!:Magento Community India Forum

eric_saldana · ‎08-18-2019

I unmerged the files and is still coming as malware positive.

This is the file the scan now detects as compromised: https://pastebin.com/gc0evLZB

Mukesh Tiwari · ‎08-19-2019

Hi @eric_saldana you may contact @msavich

---
Problem Solved Click Accept as Solution!:Magento Community India Forum

msavich · ‎08-21-2019

False positive confirmed.

Fixed.

Please expect changes to become live this Thursday 08/22

Scan false positive? Your site is compromised with injected JavaScript malware. (299)

Scan false positive? Your site is compromised with injected JavaScript malware. (299)

Re: Scan false positive? Your site is compromised with injected JavaScript malware. (299)

Re: Scan false positive? Your site is compromised with injected JavaScript malware. (299)

Re: Scan false positive? Your site is compromised with injected JavaScript malware. (299)

Re: Scan false positive? Your site is compromised with injected JavaScript malware. (299)