Virus Detected on Upload

  • Resolved kaiserthegreat

    (@kaiserthegreat)


    16 years, 6 months ago

    Trying to install the latest version today, first as an update, and then as a fresh install, and I’ve come to find that my host gives me the following message when uploading 2.6.2.tar:

    Virus Detected; File not Uploaded! (PUA.Script.Packed-1 FOUND)

    Is my host being too picky or is there a real problem with this bundle? I also tried uploading 2.6 and 2.6.1 with the same results. I also tried to upload 0.71-gold (the oldest version) and it worked fine, so maybe it’s the js files that my host isn’t liking? Any help would be appreciated, because at this point I can’t even upload the files to use WordPress!

Viewing 2 replies - 1 through 2 (of 2 total)
  • Moderator Samuel Wood (Otto)

    (@otto42)

    www.ads-software.com Admin

    WordPress does not have a virus in it. Your host is registering a false positive. Somehow some file in WordPress has a signature similar to a threat. This has happened before, when several anti-virus systems misidentified jQuery as having a problem.

    Here’s the VirusTotal analysis:
    https://www.virustotal.com/analisis/719994894fd3c773ed1e99d52b64b9ca

    The “PUA” is ClamAV’s way of saying “Potentially Unwanted Application”. The “Script.Packed” is identifying the fact that several of the javascripts included with WordPress (probably jQuery again) are “packed”. That is, they are compressed to be smaller but to still work correctly. Many malware javascripts use packing too, and ClamAV is being overprotective in this respect.

    Thread Starter kaiserthegreat

    (@kaiserthegreat)

    Thanks for the help. I will ask my host if they are using ClamAV and see if they can’t fix this issue for me.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Virus Detected on Upload’ is closed to new replies.