virus or a false positive? | WordPress.org

Resolved duby2008
(@duby2008)

11 years, 2 months ago

Hello,

in a couple of websites that I have a Ubuntu ClamTk, I detected a threat (PUA.Script.Packed-1) in the following file: admin / js / Jquery.Multifile.pack.js of this plugin. Do you try a real virus or a false positive?.

To find out for sure, I downloaded the zip of this page and I also detected at this.

Best regards,

Gema

http://wordpress.org/extend/plugins/nextgen-gallery/

Viewing 2 replies - 1 through 2 (of 2 total)

Plugin Contributor photocrati
(@photocrati)

11 years, 2 months ago

Hi Gema,

This would be a False positive – PUA stands for “Potential Unwanted Application”, and Clam is making this decision based on whether the JavaScript is packed/obfuscated or not.

You can upload the file here to test for sure: http://www.garyshood.com/virus/

I went ahead and tested, and the results came out clean, you may be able to see my results here: http://www.garyshood.com/virus/results.php?r=027dc3cb269fb54aa866c8483648c385

Thread Starter duby2008
(@duby2008)

11 years, 1 month ago

Thank you. Now I realize that they are false positives because I also have to WordPress and Prestashop package.

The antivirus clamav to be too powerful 🙂

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘virus or a false positive?’ is closed to new replies.

In: Plugins
2 replies
2 participants
Last reply from: duby2008
Last activity: 11 years, 1 month ago
Status: resolved