Re: [問題] combofix被小紅傘判斷有毒?
※ 引述《kaosps2 (三下男)》之銘言:
: 今天用小紅傘掃電腦
: 發現combofix居然被判定為病毒
: 以下是小紅傘的報告
: 我只複製這個檔案的部份
: 因為我當初把置底下載完後
: 把置底的三個程式全部塞到壓縮檔裡
: D:\SYSTEM\SOURCE\解毒.rar
: [0] Archive type: RAR
: --> ComboFix.exe
: [DETECTION] Contains recognition pattern of the SPR/Tool.2992910 program
: --> ComboFix.exe
: [1] Archive type: RAR SFX (self extracting)
: --> 32788R22FWJFW\NirCmd.cfexe
: [DETECTION] Contains recognition pattern of the APPL/NirCmd.E.2.B
: application
: --> 32788R22FWJFW\nircmd.com
: [DETECTION] Contains recognition pattern of the APPL/NirCmd.E.2.B
: application
: --> 32788R22FWJFW\NirCmdC.cfexe
: [DETECTION] Contains recognition pattern of the APPL/NirCmd.E.1.B
: application
: --> 32788R22FWJFW\psexec.cfexe
: [2] Archive type: RSRC
: --> Object
: [DETECTION] Contains recognition pattern of the APPL/PsExec.E
: application
: [NOTE] A backup was created as '4a1517e7.qua' ( QUARANTINE )
: [NOTE] The file was deleted!
: 怎麼會這樣呢.....
這是正常的,combofix屬於封裝程式,裡面有些檔案會被某些防毒軟體判斷為惡意程式,
combofix執行時候一定要在安全模式或是防毒軟體關閉情況下執行,因為它的AV-TEST會
被防毒軟體擋掉
--
※ 發信站: 批踢踢實業坊(ptt.cc)
◆ From: 220.130.83.70
討論串 (同標題文章)
本文引述了以下文章的的內容:
完整討論串 (本文為第 2 之 2 篇):