Support » Plugin: Quttera Web Malware Scanner » Avoid using – due to false positives!

  • Exo

    (@richardshea)


    This plugin already has some bad reviews, and deserves them.
    I’ve just ran this and straight away gave me false positives. There’s no excuse for this as they simply have not used a cross reference or checksum to legitimate/clean files.

    Furthermore, due to a poor interface you can’t even tell the exact file due to truncation of deep nested folders.

    Example:
    wp-content/plugins/js_composer/assets/lib/b/…/less.min.js
    Threat name: Trojan.PHP.Agent.gen.317
    Threat: eval(c,function(a,c)
    Details: Detected malicious PHP content

    On that example I had to try and work out the exact file by looking around for it deep in that folder name which is partially exposed.
    The file part of WPBakery Page Builder 5.6, and is clean… I even double checked by doing my own checksum and a visual comparison with an original version of the file.

    Other scanners sometimes class JS EVAL functions as above as a “potential threat”, but Quttera go further and even give it a name and call it malicious.

    The only thing I removed was Quttera’s plugin

Viewing 1 replies (of 1 total)
  • Plugin Author quttera

    (@quttera)

    Thank you for the comment.

    Can you please provide us more information on this detection?

    We need a plugin name to remove this FP?

    Thank you.

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this review.