I'm still seeing the malware, but I should point out that it is intermittent (not sure if I mentioned that before).If the devs are having trouble tracking down the source of the malware, I have a suggestion.I once encountered a website that was doing the same sort of thing... attempting to drive-by download files onto the visitor's computer. It turned out that it wasn't the website itself that was infected. The website had a section that displayed ads which it rented out to a third-party. And it wasn't this third-party that was infected either. The third-party re-sold the ad space to various advertisers. It was one of the advertisers that was pushing out malicious code through its ad.Long story short, my suggestion is to temporarily disable the "Hellobar" at the top of the site (the "We're hiring -- UI/UX Designers, Developers and DevOps" overlay). And any other scripts that are pulling in code from a third-party other than, say, Google or Gravatar.I hope this helps.