Total上Kaspersky獨家引擎已知,Webwasher-Gateway啓發!!!

显示全部楼层 · 发表于 2007-5-27 16:01:30

看看有沒有問題!!!

AhnLab-V3 2007.5.24.0 05.25.2007  no virus found
AntiVir 7.4.0.27 05.25.2007  no virus found
Authentium 4.93.8 05.23.2007  no virus found
Avast 4.7.997.0 05.26.2007  no virus found
AVG 7.5.0.467 05.26.2007  no virus found
BitDefender 7.2 05.27.2007  no virus found
CAT-QuickHeal 9.00 05.26.2007  no virus found
ClamAV devel-20070416 05.27.2007  no virus found
DrWeb 4.33 05.26.2007  no virus found
eSafe 7.0.15.0 05.24.2007  no virus found
eTrust-Vet 30.7.3665 05.26.2007  no virus found
Ewido 4.0 05.27.2007  no virus found
FileAdvisor 1 05.27.2007  no virus found
Fortinet 2.85.0.0 05.27.2007  no virus found
F-Prot 4.3.2.48 05.25.2007  no virus found
F-Secure 6.70.13030.0 05.25.2007 Trojan-Downloader.VBS.Agent.p
Ikarus T3.1.1.8 05.27.2007  no virus found
Kaspersky 4.0.2.24 05.27.2007 Trojan-Downloader.VBS.Agent.p
McAfee 5039 05.25.2007  no virus found
Microsoft 1.2503 05.27.2007  no virus found
NOD32v2 2292 05.25.2007  no virus found
Norman 5.80.02 05.25.2007  no virus found
Panda 9.0.0.4 05.26.2007  no virus found
Prevx1 V2 05.27.2007  no virus found
Sophos 4.18.0 05.25.2007  no virus found
Sunbelt 2.2.907.0 05.26.2007  no virus found
Symantec 10 05.27.2007  no virus found
TheHacker 6.1.6.123 05.25.2007  no virus found
VBA32 3.12.0 05.26.2007  no virus found
VirusBuster 4.3.23:9 05.26.2007  no virus found
Webwasher-Gateway 6.0.1 05.27.2007 JavaScript.Vulnerable.gen!High (suspicious)

显示全部楼层 · 发表于 2007-5-27 16:02:35

Kaspersky Internet Security 7.0
The requested URL http://bbs.kafan.cn/attachment.php?aid=76732 is infected with Trojan-Downloader.VBS.Agent.p virus

显示全部楼层 · 发表于 2007-5-27 16:05:06

脚本。。。不过很奇怪。。。按照卡巴报的是用vb编写的脚本。。。但是按照Webwasher报的是用Java编写的脚本。。。。。

显示全部楼层 · 发表于 2007-5-27 16:05:44

确实有问题。。
上报antivir，不知道新的引擎能不能侦测出。。

显示全部楼层 · 发表于 2007-5-27 16:11:13

风暴胜者V2 测试版本(http://www.v0day.com)
_________您的安全是我们的责任_______________
载入病毒库…进行整理…分配内存…可以使用
蜜罐检测:正常 OK!

===============================================
___________病毒查杀结果__________________

===============================================

2007年5月27日16时11分13秒开始查杀C:\Documents and Settings\root\桌面\virus\counter21[1]
=========================================

_________文件性质分析结果________________
"带壳"仅指文件性质,仅供专业人员分析使用。

-----------------------------------------

2007年5月27日16时11分13秒收起线程…100% 查杀完毕！
扫描文件：1查杀病毒：0

显示全部楼层 · 发表于 2007-5-27 16:16:31

antivir beta engine搞定

Starting the file scan:

Begin scan in 'C:\Documents and Settings\morgan\My Documents\counter21[1].rar'
C:\Documents and Settings\morgan\My Documents\
  counter21[1].rar
[0] Archive type: RAR
--> counter21[1].htm
      [DETECTION] Contains suspicious code HEUR/Exploit.HTML
      [WARNING] Infected files in archives cannot be repaired!
      [WARNING] The file was ignored!

显示全部楼层 · 发表于 2007-5-28 17:10:57

:\DOCUMENTS AND SETTINGS\MASTER.MASTE\LOCAL SETTINGS\TEMP\TVGBIZB.EXE C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
:\DOCUMENTS AND SETTINGS\MASTER.MASTE\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\J81DC4NX\COUNTER21[1].PHP C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE

[病毒样本] Total上Kaspersky獨家引擎已知,Webwasher-Gateway啓發!!!

本帖子中包含更多资源

生成物微点报已知

本帖子中包含更多资源