Any ideas what it is that they think is evidence of a compromise? Or how to stop it being shown as a compromise?
The following files are common across different magento stores as being compromised:
Thankyou in advance for any help/advice you can provide.
Which version of Magento are you using?
Thankyou for getting back to me, the error does seems to have fixed itself as this is no longer flagging on any of the stores we have setup on the security tool.
The error was showing across several versions: 184.108.40.206, 1.8.1 and 220.127.116.11. All of which had up to date patches installed.
I've saw a similar message in a scan result of a store with all the patches (so I can't explain the result)
Maybe @sherrie can point us in the right direction. I'm not sure where or who we can ask or comment this kind of issues with the Security Scan.
Confirmed the false positive.
The issue is fixed now.
Please re-run the scan.
Thank you @msavich!
Seems to be happening on Magento 2.2.3, so not fixed
Have scanned using lots of other tools including magereport.com and run malware scans directly on the files system, and dumped page source code, all report zero problems
Only the Magento Security Scan Tool reports this
We received this message with last week scan:
The malicious code signature(s) has been found on the page.
All security patchs up to date
Runned many malware / antivir tools, in own server and online tools. None of them found anything wrong.
Can be again false positive?