Support

I am greatly appreciative of the new scanner tool and have been running it on all my sites. I have one site that appears to be having all sorts of problems with files that have been flagged (260 total).

I know there is always diligence that needs to be addressed when looking at these reports and there will inevitably be false positives. At the top of the report is a file that is in Admin Tools and I decided to do some research on it.

The file in question is:

administrator/components/com_admintools/akeeba/platform/jfscan/engines/archiver/jfscan.php

I took this file from the suspicious site and compared it to one that it was not reported from another site and as far as I could tell there is nothing different between the two.

So is it fair to question if this tool is working properly? Or could there be variables that would be causing the report to go completely off the wall as it appears it has on this site?

I have added the file I tested that is being reported as infected for you to have a look at. I changed it to a txt file...

Thanks Nic, yes I did read it but I will probably read it a few more times. I think where things are throwing me off is most sites I have run this on are showing 0 threat warnings. I have ran it a few times on the ones that show 0 but it always stays 0. This site in question has a different amount of threats every time I scan. I will do some more testing today and see if this levels out to a normal (as it were) amount (so to speak).

This is weird as all theses sites are on the same domain. I will do some investigating and test more and let you know what I find out. I have ran this on 9 sites now and all but to of them came back with 0 threat warnings. Once was more in line with what I expected to see and then this one that I started this post with that had a huge amount of threat warnings.

Sorry I meant that they was all on the same server..

Yes, I am going to revisit those sites and run it a few times to see what happens.