每次下载都不同的木马网站(148楼有最新样本下载)

sam.to

341-360，上报卡巴

Hello,

341.int, 342.int, 343.int, 344.int, 345.int, 346.int, 347.int, 348.int, 349.int, 350.int, 351.int, 352.int, 353.int, 354.int, 355.int, 356.int, 357.int, 358.int, 359.int, 360.int - Trojan-Downloader.Win32.Obfuscated.nz

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

Please quote all when answering.

--
Best regards, Yury Nesmachny
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

[ 本帖最后由 kato9096 于 2008-4-10 00:05 编辑 ]

allinwonderi

[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part01.rar->357.int
[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part01.rar->358.int
[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part02.rar->360.int
[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part02.rar->341.int
[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part03.rar->343.int
[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part04.rar->345.int
[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part04.rar->346.int
[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part05.rar->348.int
[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part06.rar->350.int
[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part06.rar->351.int
[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part07.rar->353.int
[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part07.rar->354.int
[Found possible virus]         <W32/Swizzor-based!Maximus (not disinfectable)>        C:\Documents and Settings\All Users\Documents\Test\TRR18.part08.rar->356.int

---------------------------------------------------------------------
Scan ended:        2008-4-9, 22:11:43
Duration:        0:00:33

Scan result:

Scanned files:                 13
Infected objects:         13
Disinfected objects:         0
Quarantined files:         0
---------------------------------------------------------------------

Starting the file scan:

Begin scan in 'E:\新建文件夹 (2)'
E:\新建文件夹 (2)\337.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\338.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\339.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\340.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\321.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\324.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\325.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\326.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\327.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\328.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\329.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\332.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\333.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\336.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\357.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\359.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\360.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\343.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\344.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\345.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\347.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\349.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\350.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\352.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\355.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\356.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!


End of the scan: 2008年4月10日  08:11
Used time: 00:22 min

The scan has been done completely.

      1 Scanning directories
     40 Files were scanned
     26 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
     26 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
     14 Files not concerned
      0 Archives were scanned
      0 Warnings
      0 Notes

3814239  322.int  454 KB  MALWARE
3814240  323.int  422 KB  MALWARE
3814241  330.int  420 KB  MALWARE
3814242  331.int  421.5 KB  MALWARE
3814243  334.int  432.5 KB  MALWARE
3814244  335.int  431.5 KB  MALWARE
3814245  341.int  413.5 KB  MALWARE
3814246  342.int  589 KB  MALWARE
3814247  346.int  581.5 KB  MALWARE
3814248  348.int  585 KB  MALWARE
3814249  351.int  418.5 KB  MALWARE
3814250  353.int  428 KB  MALWARE
3814251  354.int  420.5 KB  MALWARE
3814252  358.int  440.5 KB  MALWARE

[ 本帖最后由 Exia 于 2008-4-10 15:58 编辑 ]

sam.to

上报卡巴

Hello.
New malicious software was found in the attached file.
It's detection will be included in the next update. Thank you for your help.
-----------------
Regards, Yury Nesmachny
Virus Analyst, Kaspersky Lab.

Ph.: +7(495) 797-8700
E-mail: newvirus@kaspersky.com
http://www.kaspersky.com   http://www.viruslist.com

[ 本帖最后由 kato9096 于 2008-4-11 12:52 编辑 ]

sam.to

上报卡巴

Hello.
New malicious software was found in the attached file.
It's detection will be included in the next update. Thank you for your help.
-----------------
Regards, Yury Nesmachny
Virus Analyst, Kaspersky Lab.

Ph.: +7(495) 797-8700
E-mail: newvirus@kaspersky.com
http://www.kaspersky.com   http://www.viruslist.com

[ 本帖最后由 kato9096 于 2008-4-11 12:52 编辑 ]

Starting the file scan:

Begin scan in 'E:\新建文件夹 (2)'
E:\新建文件夹 (2)\380.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\361.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\363.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\364.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\366.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\370.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\373.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\374.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\375.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\376.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\377.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\378.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!


End of the scan: 2008年4月10日  13:30
Used time: 00:27 min

The scan has been done completely.

      1 Scanning directories
     20 Files were scanned
     12 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
     12 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      8 Files not concerned
      0 Archives were scanned
      0 Warnings
      0 Notes

3814429  362.int  405.5 KB  MALWARE
3814430  365.int  415 KB  MALWARE
3814431  367.int  414.5 KB  MALWARE
3814432  369.int  380.5 KB  MALWARE
3814433  371.int  425.5 KB  MALWARE
3814434  372.int  431.5 KB  MALWARE
3814435  379.int  424.5 KB  MALWARE
3814436  381.int  412.5 KB  MALWARE

[ 本帖最后由 Exia 于 2008-4-10 16:49 编辑 ]

Starting the file scan:

Begin scan in 'E:\新建文件夹 (2)'
E:\新建文件夹 (2)\398.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\426.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\382.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\383.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\384.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\385.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\386.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\388.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\392.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\393.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\396.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!


End of the scan: 2008年4月10日  13:40
Used time: 00:41 min

The scan has been done completely.

      1 Scanning directories
     20 Files were scanned
     11 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
     11 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      9 Files not concerned
      0 Archives were scanned
      0 Warnings
      0 Notes

3814450  387.int  419.5 KB  MALWARE
3814452  389.int  443 KB  MALWARE
3814453  390.int  403.5 KB  MALWARE
3814454  391.int  398 KB  MALWARE
3814455  394.int  407.5 KB  MALWARE
3814456  395.int  413 KB  MALWARE
3814457  397.int  421 KB  MALWARE
3814458  399.int  394 KB  MALWARE
3814459  400.int  426.5 KB  MALWARE

[ 本帖最后由 Exia 于 2008-4-10 16:52 编辑 ]

sam.to

401-420，上报卡巴

Hello.
New malicious software was found in the attached file.
It's detection will be included in the next update. Thank you for your help.
-----------------
Regards, Namestnikov Yury
Virus Analyst, Kaspersky Lab.

Ph.: +7(095) 797-8700
E-mail: newvirus@kaspersky.com
http://www.kaspersky.com   http://www.viruslist.com

[ 本帖最后由 kato9096 于 2008-4-11 20:41 编辑 ]

Starting the file scan:

Begin scan in 'E:\新建文件夹 (2)'
E:\新建文件夹 (2)\419.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\402.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\403.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\404.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\405.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\406.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\407.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\408.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\409.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\410.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!
E:\新建文件夹 (2)\413.int
      [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen
      [INFO]      The file was deleted!


End of the scan: 2008年4月11日  20:36
Used time: 00:16 min

The scan has been done completely.

      1 Scanning directories
     20 Files were scanned
     11 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
     11 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      9 Files not concerned
      0 Archives were scanned
      0 Warnings
      0 Notes

3816086  401.int  441.5 KB  MALWARE
3816087  411.int  563 KB  MALWARE
3816088  412.int  395.5 KB  MALWARE
3816089  414.int  396 KB  MALWARE
3816090  415.int  480.5 KB  MALWARE
3816091  416.int  414 KB  MALWARE
3816092  417.int  427 KB  MALWARE
3816093  418.int  415.5 KB  MALWARE
3816094  420.int  400.5 KB  MALWARE

[ 本帖最后由 Exia 于 2008-4-11 21:14 编辑 ]

sam.to

421-440,上报卡巴

Hello.
New malicious software was found in the attached file.
It's detection will be included in the next update. Thank you for your help.
-----------------
Regards, Yury Nesmachny
Virus Analyst, Kaspersky Lab.

Ph.: +7(495) 797-8700
E-mail: newvirus@kaspersky.com
http://www.kaspersky.com   http://www.viruslist.com

[ 本帖最后由 kato9096 于 2008-4-11 21:16 编辑 ]