HEUR/HTML.Malware

VISN

Starting the file scan:
Begin scan in 'C:\Users\zhou\Documents\Documents.rar'
C:\Users\zhou\Documents\Documents.rar
  [0] Archive type: RAR
    --> iframe_07web_top2.htm
      [1] Archive type: GZ
      --> AV00000000
          [DETECTION] Contains suspicious code HEUR/HTML.Malware
    --> iframe_08end_right.shtml
      [1] Archive type: GZ
      --> AV00000002
          [DETECTION] Contains suspicious code HEUR/HTML.Malware
      [WARNING]   The file was ignored!

Scanning for 1348510 virus strains and unwanted programs

VISN

AhnLab-V3 2008.6.19.0 2008.06.19 -
AntiVir 7.8.0.55 2008.06.19 HEUR/HTML.Malware
Authentium 5.1.0.4 2008.06.19 -
Avast 4.8.1195.0 2008.06.19 -
AVG 7.5.0.516 2008.06.19 -
BitDefender 7.2 2008.06.20 -
CAT-QuickHeal 9.50 2008.06.19 -
ClamAV 0.93.1 2008.06.20 -
DrWeb 4.44.0.09170 2008.06.19 -
eSafe 7.0.15.0 2008.06.19 -
eTrust-Vet 31.6.5889 2008.06.19 -
Ewido 4.0 2008.06.19 -
F-Prot 4.4.4.56 2008.06.19 -
F-Secure 6.70.13260.0 2008.06.19 -
Fortinet 3.14.0.0 2008.06.19 -
GData 2.0.7306.1023 2008.06.19 -
Ikarus T3.1.1.26.0 2008.06.20 -
Kaspersky 7.0.0.125 2008.06.20 -
McAfee 5321 2008.06.19 -
Microsoft 1.3604 2008.06.20 -
NOD32v2 3201 2008.06.19 -
Norman 5.80.02 2008.06.19 -
Panda 9.0.0.4 2008.06.19 -
Prevx1 V2 2008.06.20 -
Rising 20.49.32.00 2008.06.19 -
Sophos 4.30.0 2008.06.20 -
Sunbelt 3.0.1153.1 2008.06.15 -
Symantec 10 2008.06.20 -
TheHacker 6.2.92.355 2008.06.19 -
TrendMicro 8.700.0.1004 2008.06.19 -
VBA32 3.12.6.7 2008.06.19 -
VirusBuster 4.3.26:9 2008.06.12 -
Webwasher-Gateway 6.6.2 2008.06.19 Heuristic.HTML.Malware
附加信息
File size: 7494 bytes
MD5...: ac63f81de1911ebc08cd6ed7428d6e8e
SHA1..: bb2e37f04030e210891da6d76293ca2b1fe69cf7
SHA256: 754adf118fe314679ee18d8a1cd5163b29204d5731ce20c91d20a8675c26e990
SHA512: 27ed3ce48f3fa444c60585edb5a32bdeff19d1dd067ac3db1850cda88570c436
a7772a4870ed603a7bf89cbf209334795848e0a9c4a18e8eb5587e974be62f9a
PEiD..: -
PEInfo: -
packers (F-Prot): packed


注意: VirusTotal 是 Hispasec Sistemas 提供的免费服务. 我们不保证任何该服务的可用性和持续性. 尽管使用多种反病毒引擎所提供的检测率优于使用单一产品, 但这些结果并不保证文件无害. 目前来说, 没有任何一种解决方案可以提供 100% 的病毒和恶意软件检测率. 如果您购买了一款声称具有此能力的产品, 那么您可能已经成为受害者.

sam.to

已上报,可能是誤报

File ID          Filename          Size (Byte)         Result
25052653          iframe_07web_top2.htm          2.36 KB          UNDER ANALYSIS
25052654          iframe_08end_right.shtml          33.28 KB          UNDER ANALYSIS

sanhu35

这个报法也很无敌。

qigang

RS20.49.42未杀！

VISN

We received the following archive files:



File ID  Filename Size (Byte) Result
25052652  Documents.rar 7.32 KB OK

A listing of files contained inside archives alongside their results can be found below:

File ID  Filename Size (Byte) Result
25052653  iframe_07web_top2.htm  2.36 KB  FALSE POSITIVE
25052654  iframe_08end_right.shtml  33.28 KB  FALSE POSITIVE


Please find a detailed report concerning each individual sample below:

Filename Result
iframe_07web_top2.htm  FALSE POSITIVE

The file 'iframe_07web_top2.htm' has been determined to be 'FALSE POSITIVE'. In particular this means that this file is not malicious but a false alarm. Detection is removed from our virus definition file (VDF) with the version: 7.0.4.231.

Filename Result
iframe_08end_right.shtml  FALSE POSITIVE

The file 'iframe_08end_right.shtml' has been determined to be 'FALSE POSITIVE'. In particular this means that this file is not malicious but a false alarm. Detection is removed from our virus definition file (VDF) with the version: 7.0.4.231.


--------------------------------------------------------------------------------
Please note that you will receive an email which will contain the results shown above. In case the final outcome of the analysis is not yet finished for all files the notification will be sent once ready.

sam.to

Filename         Result
iframe_07web_top2.htm          FALSE POSITIVE

The file 'iframe_07web_top2.htm' has been determined to be 'FALSE POSITIVE'. In particular this means that this file is not malicious but a false alarm. Detection will be removed from our virus definition file (VDF) with one of the next updates.
Filename         Result
iframe_08end_right.shtml          FALSE POSITIVE

The file 'iframe_08end_right.shtml' has been determined to be 'FALSE POSITIVE'. In particular this means that this file is not malicious but a false alarm. Detection will be removed from our virus definition file (VDF) with one of the next updates.