各アンチウイルスソフトの対応

サイトのHTMLファイルのVirusTotalでの検出結果

ファイル名 up.htm 受理 2008.08.13 18:25:12 (CET)
アンチウイルスバージョン更新日結果
AhnLab-V32008.8.13.02008.08.13-
AntiVir7.8.1.192008.08.13HEUR/HTML.Malware
Authentium5.1.0.42008.08.13JS/Agent.FA
Avast4.8.1195.02008.08.13-
AVG8.0.0.1612008.08.13Downloader.Zlob.HTML
BitDefender7.22008.08.13Trojan.HTML.Zlob.Y
CAT-QuickHeal9.502008.08.13HTM/Zlob.GEN.2
ClamAV0.93.12008.08.13-
DrWeb4.44.0.091702008.08.13-
eSafe7.0.17.02008.08.13JS.Agent.ib.
eTrust-Vet31.6.60302008.08.13-
Ewido4.02008.08.13-
F-Prot4.4.4.562008.08.13JS/Agent.FA
F-Secure7.60.13501.02008.08.13-
Fortinet3.14.0.02008.08.13JS/Zlob!tr.dldr
GData2.0.7306.10232008.08.13-
IkarusT3.1.1.34.02008.08.13Trojan.HTML.Zlob.Y
K7AntiVirus7.10.4132008.08.13-
Kaspersky7.0.0.1252008.08.13-
McAfee53592008.08.12-
Microsoft1.38072008.08.13-
NOD32v233522008.08.13-
Norman5.80.022008.08.13-
Panda9.0.0.42008.08.13-
PCTools4.4.2.02008.08.13-
Rising20.57.22.002008.08.13-
Sophos4.32.02008.08.13-
Sunbelt3.1.1542.12008.08.13-
Symantec102008.08.13-
TheHacker6.3.0.3.0462008.08.13-
TrendMicro8.700.0.10042008.08.13JS_AGENT.AMQS
VBA323.12.8.32008.08.13-
ViRobot2008.8.13.13352008.08.13-
VirusBuster4.5.11.02008.08.13-
Webwasher-Gateway6.6.22008.08.13Heuristic.HTML.Malware
 
追加情報
File size: 20881 bytes
MD5...: f610dd6607641f7de0a0e504147534a1
SHA1..: 27c52ffd95c799a787c081f3a55cbf61a4b9e528
SHA256: 56086eb41f081f1b7faea2807082097a0b677858a45336edd30e6a756c69afae
SHA512: 78395acdb375c97692110fc0f263a07f5b173cc443e6c0d688af4dc9774927d3
7fcb3ea7eca617c42d14fe7001b9f68e5242594e60443fd5722894182de47fc7
PEiD..: -
PEInfo: -

サイトにアクセスするとダウンロードさせようとするファイル(adobe_flash.exe)をスキャンした結果

ファイル名 adobe_flash.exe 受理 2008.08.13 18:34:39 (CET)
アンチウイルスバージョン更新日結果
AhnLab-V32008.8.13.02008.08.13-
AntiVir7.8.1.192008.08.13-
Authentium5.1.0.42008.08.13-
Avast4.8.1195.02008.08.13-
AVG8.0.0.1612008.08.13I-Worm/Nuwar.W
BitDefender7.22008.08.13Trojan.Downloader.Exchanger.Gen.2
CAT-QuickHeal9.502008.08.13(Suspicious) - DNAScan
ClamAV0.93.12008.08.13-
DrWeb4.44.0.091702008.08.13-
eSafe7.0.17.02008.08.13Suspicious File
eTrust-Vet31.6.60302008.08.13-
Ewido4.02008.08.13-
F-Prot4.4.4.562008.08.13-
F-Secure7.60.13501.02008.08.13-
Fortinet3.14.0.02008.08.13-
GData2.0.7306.10232008.08.13-
IkarusT3.1.1.34.02008.08.13-
K7AntiVirus7.10.4132008.08.13-
Kaspersky7.0.0.1252008.08.13-
McAfee53592008.08.12-
Microsoft1.38072008.08.13TrojanDropper:Win32/Nuwar.gen!ldt
NOD32v233522008.08.13a variant of Win32/Agent.ETH
Norman5.80.022008.08.13-
Panda9.0.0.42008.08.13-
PCTools4.4.2.02008.08.13-
Rising20.57.22.002008.08.13-
Sophos4.32.02008.08.13Mal/EncPk-DA
Sunbelt3.1.1542.12008.08.13-
Symantec102008.08.13-
TheHacker6.3.0.3.0462008.08.13-
TrendMicro8.700.0.10042008.08.13-
VBA323.12.8.32008.08.13-
ViRobot2008.8.13.13352008.08.13-
VirusBuster4.5.11.02008.08.13-
Webwasher-Gateway6.6.22008.08.13Worm.Win32.Malware.gen (suspicious)
 
追加情報
File size: 74752 bytes
MD5...: 61229aa4f0bb47a80df0b1026cb30fe9
SHA1..: 8a1d2cbef4354f27c7b44af1d63bfdcae3c1fa70
SHA256: 2fb8a4ecb561475b52883b535ce9810e6021ebe666e16e89cbbc86018d153547
SHA512: a80021344ef6550fce03af8972ab01308053db9433babdafef188cef5dc78b25
1e6dfee742e11bdea74608e8b3a5f9fb7660fc17a519cafd49c8d1e63aabe5ae
PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x40286b
timedatestamp.....: 0x48907860 (Wed Jul 30 14:19:12 2008)
machinetype.......: 0x14c (I386)

( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0xdfef 0xc200 8.00 82bf0dca43b012fd131f543b8fd12c05
.rdata 0xf000 0x3bd5 0x2200 7.98 e909c0236927d668a6de21746539156d
.data 0x13000 0x5000 0x3000 4.17 503c11fdf86a619caf9890fcc4f89556

( 4 imports )
> MSVCRT.DLL: memcmp, iswcntrl, strcmp
> USER32.DLL: GetScrollPos, LoadKeyboardLayoutW, GetForegroundWindow, GetMenuStringW, SetDoubleClickTime, SendInput
> WININET.DLL: ShowCertificate, InternetDialW, InternetGetCookieW, InternetSetCookieW, UrlZonesDetach
> ADVAPI32.DLL: LsaOpenSecret, RegUnLoadKeyW, UnlockServiceDatabase, RevertToSelf, LsaClose

( 0 exports )