NOD32 flagging a script on the homepage as a trojan

[ensiform]

 

Never had this show up before, so not sure if its a false positive or not.  Thought I should bring it to your attention in case there's an issue on the server.

[IATW]

I have this message too and it's a false positive, i have the confirmation from the eset team . You have to wait the update.

[Som]

I've gotten this message on three separate websites I normally visit this morning

[Steven P. Administrators]

I have reported it, I can only assume that it was flagged because it contains the website name and isn't hosted by us, but it is basically the global script for our inline ads served via GPT.

[Tomo]

It's a known issue with the latest Eset definition, Eset are currently working on it.

 

https://forum.eset.com/topic/7567-jsscrinjectb-and-htmlrefreshbc-false-positive/

[Torolol]

i'm still using Feb-27 virus database (13097 20160227 version) and the NOD32 aren't (false postively) flagging for me

[Tomo]

17 minutes ago, Torolol said:

i'm still using Feb-27 virus database (13097 20160227 version) and the NOD32 aren't (false postively) flagging for me

That's because it's an issue with 13102

 

Quote

After the update 13102, we started receiving reports about "JS/ScrInject.B" and "HTML/Refresh.BC" detections on various websites. The update was stopped immediately to mitigate the impact on users.

A new engine update 13103 is being prepared that will address the issue. In the mean time, as a hotfix you can switch to pre-release updates and then back.

We apologize for the inconvenience.

 

[IATW]

It's ok for me now with the 13103 definition version

[Steven P. Administrators]

7 minutes ago, ffm76600 said:

It's ok for me now with the 13103 definition version

Thanks for the confirmation