各アンチウイルスソフトの対応
サイトのHTMLファイルのVirusTotalでの検出結果
ファイル名 up.htm 受理 2008.08.13 18:25:12 (CET) | |||
アンチウイルス | バージョン | 更新日 | 結果 |
AhnLab-V3 | 2008.8.13.0 | 2008.08.13 | - |
AntiVir | 7.8.1.19 | 2008.08.13 | HEUR/HTML.Malware |
Authentium | 5.1.0.4 | 2008.08.13 | JS/Agent.FA |
Avast | 4.8.1195.0 | 2008.08.13 | - |
AVG | 8.0.0.161 | 2008.08.13 | Downloader.Zlob.HTML |
BitDefender | 7.2 | 2008.08.13 | Trojan.HTML.Zlob.Y |
CAT-QuickHeal | 9.50 | 2008.08.13 | HTM/Zlob.GEN.2 |
ClamAV | 0.93.1 | 2008.08.13 | - |
DrWeb | 4.44.0.09170 | 2008.08.13 | - |
eSafe | 7.0.17.0 | 2008.08.13 | JS.Agent.ib. |
eTrust-Vet | 31.6.6030 | 2008.08.13 | - |
Ewido | 4.0 | 2008.08.13 | - |
F-Prot | 4.4.4.56 | 2008.08.13 | JS/Agent.FA |
F-Secure | 7.60.13501.0 | 2008.08.13 | - |
Fortinet | 3.14.0.0 | 2008.08.13 | JS/Zlob!tr.dldr |
GData | 2.0.7306.1023 | 2008.08.13 | - |
Ikarus | T3.1.1.34.0 | 2008.08.13 | Trojan.HTML.Zlob.Y |
K7AntiVirus | 7.10.413 | 2008.08.13 | - |
Kaspersky | 7.0.0.125 | 2008.08.13 | - |
McAfee | 5359 | 2008.08.12 | - |
Microsoft | 1.3807 | 2008.08.13 | - |
NOD32v2 | 3352 | 2008.08.13 | - |
Norman | 5.80.02 | 2008.08.13 | - |
Panda | 9.0.0.4 | 2008.08.13 | - |
PCTools | 4.4.2.0 | 2008.08.13 | - |
Rising | 20.57.22.00 | 2008.08.13 | - |
Sophos | 4.32.0 | 2008.08.13 | - |
Sunbelt | 3.1.1542.1 | 2008.08.13 | - |
Symantec | 10 | 2008.08.13 | - |
TheHacker | 6.3.0.3.046 | 2008.08.13 | - |
TrendMicro | 8.700.0.1004 | 2008.08.13 | JS_AGENT.AMQS |
VBA32 | 3.12.8.3 | 2008.08.13 | - |
ViRobot | 2008.8.13.1335 | 2008.08.13 | - |
VirusBuster | 4.5.11.0 | 2008.08.13 | - |
Webwasher-Gateway | 6.6.2 | 2008.08.13 | Heuristic.HTML.Malware |
追加情報 | |||
File size: 20881 bytes | |||
MD5...: f610dd6607641f7de0a0e504147534a1 | |||
SHA1..: 27c52ffd95c799a787c081f3a55cbf61a4b9e528 | |||
SHA256: 56086eb41f081f1b7faea2807082097a0b677858a45336edd30e6a756c69afae | |||
SHA512: 78395acdb375c97692110fc0f263a07f5b173cc443e6c0d688af4dc9774927d3 7fcb3ea7eca617c42d14fe7001b9f68e5242594e60443fd5722894182de47fc7 | |||
PEiD..: - | |||
PEInfo: - |
サイトにアクセスするとダウンロードさせようとするファイル(adobe_flash.exe)をスキャンした結果
ファイル名 adobe_flash.exe 受理 2008.08.13 18:34:39 (CET) | |||
アンチウイルス | バージョン | 更新日 | 結果 |
AhnLab-V3 | 2008.8.13.0 | 2008.08.13 | - |
AntiVir | 7.8.1.19 | 2008.08.13 | - |
Authentium | 5.1.0.4 | 2008.08.13 | - |
Avast | 4.8.1195.0 | 2008.08.13 | - |
AVG | 8.0.0.161 | 2008.08.13 | I-Worm/Nuwar.W |
BitDefender | 7.2 | 2008.08.13 | Trojan.Downloader.Exchanger.Gen.2 |
CAT-QuickHeal | 9.50 | 2008.08.13 | (Suspicious) - DNAScan |
ClamAV | 0.93.1 | 2008.08.13 | - |
DrWeb | 4.44.0.09170 | 2008.08.13 | - |
eSafe | 7.0.17.0 | 2008.08.13 | Suspicious File |
eTrust-Vet | 31.6.6030 | 2008.08.13 | - |
Ewido | 4.0 | 2008.08.13 | - |
F-Prot | 4.4.4.56 | 2008.08.13 | - |
F-Secure | 7.60.13501.0 | 2008.08.13 | - |
Fortinet | 3.14.0.0 | 2008.08.13 | - |
GData | 2.0.7306.1023 | 2008.08.13 | - |
Ikarus | T3.1.1.34.0 | 2008.08.13 | - |
K7AntiVirus | 7.10.413 | 2008.08.13 | - |
Kaspersky | 7.0.0.125 | 2008.08.13 | - |
McAfee | 5359 | 2008.08.12 | - |
Microsoft | 1.3807 | 2008.08.13 | TrojanDropper:Win32/Nuwar.gen!ldt |
NOD32v2 | 3352 | 2008.08.13 | a variant of Win32/Agent.ETH |
Norman | 5.80.02 | 2008.08.13 | - |
Panda | 9.0.0.4 | 2008.08.13 | - |
PCTools | 4.4.2.0 | 2008.08.13 | - |
Rising | 20.57.22.00 | 2008.08.13 | - |
Sophos | 4.32.0 | 2008.08.13 | Mal/EncPk-DA |
Sunbelt | 3.1.1542.1 | 2008.08.13 | - |
Symantec | 10 | 2008.08.13 | - |
TheHacker | 6.3.0.3.046 | 2008.08.13 | - |
TrendMicro | 8.700.0.1004 | 2008.08.13 | - |
VBA32 | 3.12.8.3 | 2008.08.13 | - |
ViRobot | 2008.8.13.1335 | 2008.08.13 | - |
VirusBuster | 4.5.11.0 | 2008.08.13 | - |
Webwasher-Gateway | 6.6.2 | 2008.08.13 | Worm.Win32.Malware.gen (suspicious) |
追加情報 | |||
File size: 74752 bytes | |||
MD5...: 61229aa4f0bb47a80df0b1026cb30fe9 | |||
SHA1..: 8a1d2cbef4354f27c7b44af1d63bfdcae3c1fa70 | |||
SHA256: 2fb8a4ecb561475b52883b535ce9810e6021ebe666e16e89cbbc86018d153547 | |||
SHA512: a80021344ef6550fce03af8972ab01308053db9433babdafef188cef5dc78b25 1e6dfee742e11bdea74608e8b3a5f9fb7660fc17a519cafd49c8d1e63aabe5ae | |||
PEiD..: - | |||
PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x40286b timedatestamp.....: 0x48907860 (Wed Jul 30 14:19:12 2008) machinetype.......: 0x14c (I386) ( 3 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0xdfef 0xc200 8.00 82bf0dca43b012fd131f543b8fd12c05 .rdata 0xf000 0x3bd5 0x2200 7.98 e909c0236927d668a6de21746539156d .data 0x13000 0x5000 0x3000 4.17 503c11fdf86a619caf9890fcc4f89556 ( 4 imports ) > MSVCRT.DLL: memcmp, iswcntrl, strcmp > USER32.DLL: GetScrollPos, LoadKeyboardLayoutW, GetForegroundWindow, GetMenuStringW, SetDoubleClickTime, SendInput > WININET.DLL: ShowCertificate, InternetDialW, InternetGetCookieW, InternetSetCookieW, UrlZonesDetach > ADVAPI32.DLL: LsaOpenSecret, RegUnLoadKeyW, UnlockServiceDatabase, RevertToSelf, LsaClose ( 0 exports ) |