[clamav-users] Heuristics.Filetype.ZipWithJS
Giles Coochey
giles at coochey.net
Tue Mar 28 12:10:12 UTC 2017
On 28/03/17 12:53, Jonas Manusch wrote:
> Cheers folks,
>
> since last weekend my clamscan states
>
> Heuristics.Filetype.ZipWithJS-6162396-0 FOUND
>
> on some files. These files are from 2015 and I assume it to be false
> positive. Since these files contain sensitive data I cannot hand out
> to third parties. I tried to find out what the above means, but only
> found very little information that was not really helpful. Also tried
> to find 'ZipWithJS' in ClamAV sourcecode, but without success. So I
> got here with a couple of questions:
>
> 1. Where can I find information about what kind of threat this?
Just guessing...
Sounds like it is going to fit on files of type ZIP containing .JS
(Javascript) files inside.
> 2. How could I disable only this one type?
>
> Thanks.
>
> Jonas
>
> _______________________________________________
> clamav-users mailing list
> clamav-users at lists.clamav.net
> http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
--
Regards,
Giles Coochey
+44 (0) 7584 634 135
+44 (0) 1803 529 451
giles at coochey.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3820 bytes
Desc: S/MIME Cryptographic Signature
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20170328/819a041d/attachment.bin>
More information about the clamav-users
mailing list