jb0nez

Sorry, one more addition: the md5sum of both of those files matches what the developer says they should be on his web site. So I'm pretty much certain this is a false positive.

I wanted to add that one of the online scanners was MBAM and it reported negative for both. I then tried another site, install.exe was negative, but for tr.exe one program "ClamAV" reported "PUA.Win32.Packer.Devcpp-1".

I recently downloaded "unxutils" from SourceForge, a port of common GNU Unix command line commands to Windows. My last automated MBAM reports the commands install.exe and tr.exe as "trojan.downloder" and "spyware.onlinegames" respectively. I updated my data base and tried again, same result. But when I upload the files to those online sites that run it against 46 virus/malware programs they are not reported as positive. So I'm wondering if it really is a false positive or if these files got infected. Note that for the re-run using the /developer I did a quick scan, so I could get the results quicker and post this. The original scan was a full scan and nothing else on the system came up positive. Attached are the log and the files in one zip. mbam-log-unix-utils.zip