1   1  /  1  页   跳转

[求助] 瑞星把Teracopy判断为病毒?

收藏
cagen
头像
初生襁褓狮
  • 帖子:7
  • 注册: 2008-08-21
  • 来自:
发表于: 2010-02-03 18:55 | 显示全部 短消息 资料
字号: 1楼

瑞星把Teracopy判断为病毒?

瑞星杀毒结果,判断Teracopy.exe为 “可疑:Packer.Win32.UnkPacker.d”
这个软件我用得好好的,为什么呢?我的瑞星版本为2010版 22.00.02.96
附上Virustotal 的结果,6款软件判断有问题:


引用:
File TeraCopy.exe received on 2010.02.02 16:34:12 (UTC)
Current status: finished
Result: 6/40 (15.00%)


Compact
Print results




AntivirusVersionLast UpdateResult
a-squared4.5.0.502010.02.02-
AhnLab-V35.0.0.22010.02.01-
AntiVir7.9.1.1562010.02.02-
Antiy-AVL2.0.3.72010.02.02-
Authentium5.2.0.52010.02.02W32/Heuristic-210!Eldorado
Avast4.8.1351.02010.02.02-
AVG9.0.0.7302010.02.02-
BitDefender7.22010.02.02-
CAT-QuickHeal10.002010.02.02(Suspicious) - DNAScan
ClamAV0.96.0.0-git2010.02.02-
Comodo37942010.02.02-
DrWeb5.0.1.122222010.02.02-
eSafe7.0.17.02010.02.02-
eTrust-Vet35.2.72762010.02.02-
F-Prot4.5.1.852010.02.01W32/Heuristic-210!Eldorado
F-Secure9.0.15370.02010.02.02-
Fortinet4.0.14.02010.02.02-
GData192010.02.02-
IkarusT3.1.1.80.02010.02.02-
Jiangmin13.0.9002010.02.02-
K7AntiVirus7.10.9632010.02.02-
Kaspersky7.0.0.1252010.02.02-
McAfee58792010.02.01-
McAfee+Artemis58792010.02.01Artemis!65C4771ACC2E
McAfee-GW-Edition6.8.52010.02.02Heuristic.LooksLike.Win32.Suspicious.K!89
Microsoft1.54062010.02.02-
NOD3248282010.02.02-
Norman6.04.032010.02.02-
nProtect2009.1.8.02010.02.02-
Panda10.0.2.22010.02.02-
PCTools7.0.3.52010.02.02-
Prevx3.02010.02.02-
Rising22.33.01.042010.02.02Packer.Win32.UnkPacker.d
Sophos4.50.02010.02.02-
Sunbelt3.2.1858.22010.02.02-
TheHacker6.5.1.0.1762010.02.02-
TrendMicro9.120.0.10042010.02.02-
VBA323.12.12.12010.02.02-
ViRobot2010.2.2.21682010.02.02-
VirusBuster5.0.21.02010.02.02-
Additional information
File size: 957952 bytes
MD5  : 65c4771acc2e1b4b761d8518596acc10
SHA1  : 9f925a384ef9c8a721efc193bbb7911af012522b
SHA256: 0ebc770faefd76f0b8f44f5e9b6f641e72a6d46af840f7f35a8a5e0783fe8537
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x119000
timedatestamp.....: 0x2A425E19 (Sat Jun 20 00:22:17 1992)
machinetype.......: 0x14C (Intel I386)

( 6 sections )
name viradd virsiz rawdsiz ntrpy md5
0x1000 0xE2000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
0xE3000 0x1000 0x200 2.13 1b6cb2e05ff6f2080e7ff6bd225a89b8
.rsrc 0xE4000 0x33000 0x32300 4.21 d671c7b2ceeeee493e21536561e6feb4
0x117000 0x1000 0x200 0.00 bf619eac0cdf3f68d496ea9344137e8b
0x118000 0x1000 0x18 1.44 0d63af0ace18f890fe7844d79c7fc7cf
0x119000 0xD000 0xC600 7.98 6429d8040c3ed87290030197ab4e6838

( 3 imports )

> comctl32.dll: InitCommonControls
> kernel32.dll: ExitProcess
> user32.dll: MessageBoxA

( 0 exports )
TrID  : File type identification
Win32 Executable Generic (58.3%)
Win16/32 Executable Delphi generic (14.1%)
Generic Win/DOS Executable (13.7%)
DOS Executable Generic (13.6%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
ssdeep: 24576:gFVe84ggoZpus/gSTUeAOEkLWfiIW/79:YU845sBdE2WfXW
PEiD  : -
packers (F-Prot): Obsidium
packers (Authentium): Obsidium
RDS  : NSRL Reference Data Set
-




求真相!!

用户系统信息:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1;  Embedded Web Browser from: http://bsalsa.com/; .NET CLR 2.0.50727; CIBA; 360SE)
分享到:
gototop
 
cagen
头像
初生襁褓狮
  • 帖子:7
  • 注册: 2008-08-21
  • 来自:
发表于: 2010-02-03 19:14 | 显示全部 短消息 资料
字号: 2楼

回复 2F is狐狸吖 的帖子

那么我现在扫描结束后,是否要“手动删除可疑文件”呢?
如果不选择,是否会有潜在危害?
gototop
 
cagen
头像
初生襁褓狮
  • 帖子:7
  • 注册: 2008-08-21
  • 来自:
发表于: 2010-02-04 17:26 | 显示全部 短消息 资料
字号: 3楼

回复 7F 1輩吇筷楽 的帖子

谢了,可疑文件上传后已经判断为安全的了,希望瑞星尽快更新病毒库~~
gototop
 
<<上一主题|下一主题>>
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT