CHINA中毒最多的下载者

dayang1717

http://s1.jud4g.com/1/cX.exe

过今天的瑞星和卡巴！

请热心的朋友帮忙提交了！

[ 本帖最后由 dayang1717 于 2009-5-6 08:19 编辑 ]

jefffire

不过卡巴高启发。。。[:27:]

HC303

When accessing data from the URL, "http://bbs.kafan.cn/attachment.php?aid=528936&k=a6b1d6507627fe9ae8a997e718895f1c&t=1241568872"
a virus or unwanted program 'TR/Killav.PN' [trojan] was found.
Action taken: Blocked file

fatezero

请求的对象被感染，发现下列病毒 HEUR:Trojan.Win32.AntiAV

dayang1717

a-squared - - Trojan.Win32.AntiAV!IK
AhnLab-V3 - - -
AntiVir - - TR/Killav.PN
Antiy-AVL - - -
Authentium - - -
Avast - - Win32:Rootkit-gen
AVG - - Win32/Heur
BitDefender - - Gen:Trojan.Heur.2014755353
CAT-QuickHeal - - -
ClamAV - - -
Comodo - - -
DrWeb - - -
eSafe - - Suspicious File
eTrust-Vet - - Win32/Dogrobot.V
F-Prot - - -
F-Secure - - -
Fortinet - - -
GData - - Gen:Trojan.Heur.2014755353
Ikarus - - Trojan.Win32.AntiAV
K7AntiVirus - - -
Kaspersky - - -
McAfee - - -
McAfee+Artemis - - Artemis!BAA90A51414E
McAfee-GW-Edition - - Trojan.Killav.PN
Microsoft - - Trojan:Win32/Dogrobot.I
NOD32 - - a variant of Win32/AntiAV.NAC
Norman - - -
nProtect - - -
Panda - - -
PCTools - - -
Prevx1 - - Medium Risk Malware
Prevx1 - - Medium Risk Malware
Rising - - -
Sophos - - Mal/Mdrop-N
Sunbelt - - BehavesLike.Win32.Malware (v)
Symantec - - Downloader
TheHacker - - -
TrendMicro - - Possible_Mlwr-13
VBA32 - - -
ViRobot - - -
VirusBuster - - -

a-squared	4.0.0.32	20090506030215	2009-05-06	Trojan.Win32.AntiAV!IK	7.020
AntiVir	7.9.0.160	7.1.3.157	2009-05-05	TR/Killav.PN	2.217
Arcavir	2009	200905051930	2009-05-05	-	0.105
Authentium	5.1.1	200905051915	2009-05-05	-	1.196
AVAST!	3.0.1	090505-0	2009-05-05	-	0.015
AVG	7.5.52.442	270.12.11/2089	2009-04-30	-	2.045
BitDefender	7.81008.2901915	7.25222	2009-05-06	Gen:Trojan.Heur.2014755353	2.768
CA (VET)	9.0.0.143	31.6.6489	2009-05-05	Win32/Dogrobot.V trojan.	18.187
ClamAV	0.95	9329	2009-05-05	-	0.032
Comodo	3.8	1151	2009-05-05	-	1.035
CP Secure	1.1.0.715	2009.05.05	2009-05-05	-	8.889
Dr.Web	4.44.0.9170	2009.05.05	2009-05-05	-	4.488
F-Prot	4.4.4.56	20090505	2009-05-05	-	1.163
F-Secure	5.51.6100	2009.05.05.09	2009-05-05	-	0.211
GData	19.5053/19.321	20090506	2009-05-06	-	6.828
Ikarus	T3.1.01.49	2009.05.05.72674	2009-05-05	Trojan.Win32.AntiAV	2.830
Microsoft	1.4602	2009.05.05	2009-05-05	Trojan:Win32/Dogrobot.I	11.120
mks_vir	2.01	2009.05.05	2009-05-05	-	2.860
Norman	6.01.05	6.01.00	2009-05-05	-	4.007
nProtect	20090504.01	3571553	2009-05-04	-	23.946
Quick Heal	10.00	2009.05.05	2009-05-05	-	3.841
Sophos	2.86.0	4.41	2009-05-06	Mal/Mdrop-N	2.257
Sunbelt	5122	5122	2009-05-05	BehavesLike.Win32.Malware (v)	12.679
The Hacker	6.3.4.1	v00319	2009-05-05	-	0.644
VBA32	3.12.10.4	20090505.1100	2009-05-05	-	2.939
ViRobot	20090504	2009.05.04	2009-05-04	-	1.429
VirusBuster	4.5.11.10	10.105.16/1327531	2009-05-05	-	1.865
卡巴斯基	5.5.10	2009.05.05	2009-05-05	-	0.130
安博士V3	2009.05.06.01	2009.05.06	2009-05-06	-	1.003
安天	2.0.18	20090503.2333071	2009-05-03	-	0.027
江民杀毒	11.0.706	2009.05.05	2009-05-05	-	2.933
熊猫卫士	9.05.01	2009.05.04	2009-05-04	-	4.622
瑞星	20.0	21.28.12.00	2009-05-05	-	5.210
赛门铁克	1.3.0.24	20090505.003	2009-05-05	Downloader	0.053
趋势科技	8.700-1004	6.110.06	2009-05-05	Possible_Mlwr-13	0.129
迈克菲	5.3.00	5606	2009-05-05	-	2.926
金山毒霸	2009.2.5.15	2009.5.5.21	2009-05-05	-	9.153
飞塔	2.81-3.117	10.355	2009-05-05	-

[ 本帖最后由 dayang1717 于 2009-5-6 08:31 编辑 ]

bjkk988

小红伞杀了。

kingmuro

Sign of "Win32:Rootkit-gen [Rtk]" has been found in "C:\Documents and Settings\gxf\桌面\cX\cX.exe\[UPX]\[Embedded_Ra#14110]" file.

幸福的猪猪

http://s1.jud4g.com/1/ActivcX.exe
http://s1.jud4g.com/1/cX.exe
是不同的病毒样本！（病毒下载地址已上报kaba，遗憾的是没有找到那个网马网页的swf文件！）

Hello,


ActivcX.exe - Trojan-Downloader.Win32.Geral.jo
cX.exe - Trojan-Downloader.Win32.Geral.jl

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

[ 本帖最后由 幸福的猪猪 于 2009-5-6 09:01 编辑 ]

einnawy

nis kill

will

在 ActivcX.exe 中发现 TrojanDownloader.Agent.bebh 病毒