WordPress.org

Ready to get started?Download WordPress

Forums

[resolved] Trojan in latest download - Urgent (3 posts)

  1. tassos
    Member
    Posted 1 year ago #

    Sorry if this is nto right forum for it.

    I have just download the latest WordPress version 3.5 and CA (my anti-virus) advises me that there is a Trojan in the Twenty Eleven header image/trolley.jpg

    The threat is reported as PHP/Obfus.F

    This applies to both downloads .zp and gz.

    I checked all previeous downloads i.e. v3.42, 3.41.,3.3.1 etc and they are fine.

    As such I thought to report it just in case. My apologies if I am wrong.

  2. ClaytonJames
    Member
    Posted 1 year ago #

    I think it's probably going to be a false positive from the CA product. You might find that the header image check sums are also different from WordPress 3.4 to 3.5 because the .jpg files - I suspect all of the header images - are probably slightly different in size (kb, not px).

    You can submit the file to an online scan tool like this one if you like, but I don't think it's anything to be concerned with.

  3. tassos
    Member
    Posted 1 year ago #

    Hi Clayton

    Tahnk you for your reply and I agree with your comment as thought the same even though it did seem odd.

    Also it has definitely something to do with the compression rather than the file itself (even though the file is the one reported). I did uncompressed both the zip and gz files and then scanned the file itself and in both instances the uncompressed file comes clean.

    Si it must be a result of the compression for what ever reason. In any case thank you for your reponse

Topic Closed

This topic has been closed to new replies.

About this Topic