There is a chance that it is setting off a false positive some kind of heuristic. But it is definitely worth looking into more. Is it setting off windows defender?
Humble Bundle
Unofficial community for the Humble Bundle website!
Community logo taken from https://www.humblebundle.com/
It's not in Windows. The bundle was bought on their website and I used the torrent option to get the files through downloading them to my Linux server acting as a NAS. That server runs regular virus scans before I let it interact with any other system.
You said you are running linux so you are pretty safe from a windows virus. Judging by the book and the alert it likely saw some PowerShell code and got a bit concerned about PowerShell inside a pdf inside a zip, a known way to deliver malware.
I would do 2 things.
Contact humble support, it may have been reported and they can reassure you of the validity of the file. Secondly, Submit the file to virus total and see if anything else sees it as a known malware sample.
Hey thanks for the reply. I just discovered this virustotal website and submitted the file there. Here is the results from their scan. It looks like only ClamAV found the virus so it may be a false positive. I just got worried because I often buy books from HumbleBundle and this is the second time ClamAV quarantined a file from them.
Might be worth tracking down one of the researchers submitting to the clamav software repos and forwarding them a copy of the flagged zip. If they don't dig in and find malware, they could at least improve the detection algo
Are you certain you were using an official download source?
I downloaded the torrents directly from their website after I paid for the books.
Not normal, but I have seen 100x more false positives than real detections over the years. Proceed with caution, but as long as it isn't an EXE you're running and/or the author seems trustworthy, I wouldn't worry much.
The virus detection program was ClamAV on my linux box. It does regular scans after I finish torrents.
Could you provide some screenshots?
This is a bit hard to believe without seeing what you're seeing as I've personally never seen Humblebundle provide torrent links(maybe things have changed recently?)
Here's a screenshot: Screenshot Here's a link to virustotal: VirusTotal
I did try to imply I wanted to see a screenshot of the download link from Humblebundle