收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 Swizzor 更新至#375
1 ...111213141516171819... 32下一页
返回列表 发新帖
楼主: jason_jiang
 收起左侧

[病毒样本] Swizzor 更新至#375

  [复制链接]
jason_jiang
 楼主| 发表于 2010-4-22 08:55:46 | 显示全部楼层
更新
回复

举报

jayavira
发表于 2010-4-22 09:01:15 | 显示全部楼层
343
ess kill23个

http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135        多个威胁        连接中断 - 已隔离        通过应用程序访问 web 时检测到威胁: E:\谷歌浏览器\chrome.exe.
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > 1d47adcb3ca24601a7c67819e7b75abc        Win32/TrojanDownloader.Swizzor.NCS 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > 26b43b02e314bf30993d159b0871a637        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > 31634c8de31b4ab7d12c3feda2537811        Win32/TrojanDownloader.Swizzor.NEH 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > 4659c243b7b9b5505d01d5e0daf932d8        Win32/TrojanDownloader.Swizzor.NDR 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > 62ec54c01b590f2cca3bb7984ea2526f        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > 67af744a09a6299d8adbc9abd6cc5e96        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > 690003b6b39d19c62428abf5e66bd4b0        Win32/TrojanDownloader.Swizzor.NEY 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > 6aea8b7c05710c8584f532d21a482438        Win32/TrojanDownloader.Swizzor.NEP 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > 86064ba34f50cc8498f74ca66d91b4d9        Win32/TrojanDownloader.Swizzor.NES 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > 8954cd78a919e584dd174717e8967b90        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > 8cb5867ef7a153545fd04f7677d55417        Win32/TrojanDownloader.Swizzor.NCS 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > 957611fd4516c58e14c43a4e759a806f        Win32/TrojanDownloader.Swizzor.NCS 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > a20243ae429b349145aa2f16a3d02015        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > b23587815bc37aaef0355591c7bfab2c        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > b5e4cb2865f207ca6aa05d288c81c68e        Win32/TrojanDownloader.Swizzor.NES 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > b86f0fad6ad86761a4e00ad9c885f83d        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > d18b5231556728fe41b30f32b582a46e        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > d5cdc25aac3c976b57bfa650b7c8eb89        Win32/TrojanDownloader.Swizzor.NEY 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > df7d48203a7a08f95bd7ba66683e27cf        Win32/TrojanDownloader.Swizzor.NEP 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > e10ca5743bf2bf166e68d6d46592e151        Win32/TrojanDownloader.Swizzor.NCS 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > f1a603733139182523f2f2f04cacce74        Win32/TrojanDownloader.Swizzor.NES 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > faa9c7e186779064f2f559f35465ddc0        Win32/TrojanDownloader.Swizzor.NEN 特洛伊木马 的变种               
http://14.tel.115cdn.com:8080/pi ... 7382e3138302e313135 > RAR > fdf6db72403386e99331ad5b8292eba8        Win32/TrojanDownloader.Swizzor.NEO 特洛伊木马 的变种
回复

举报

ablhr
发表于 2010-4-22 09:07:43 | 显示全部楼层
343
to avast forti
回复

举报

rok827
发表于 2010-4-22 11:18:12 | 显示全部楼层
kaspersky kill all
回复

举报

mofunzone
发表于 2010-4-22 16:34:08 | 显示全部楼层
343 clean

Starting the file scan:

Begin scan in 'C:\Users\morgan\Desktop\343'
C:\Users\morgan\Desktop\343\1d47adcb3ca24601a7c67819e7b75abc
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c0409c2.qua'!
C:\Users\morgan\Desktop\343\26b43b02e314bf30993d159b0871a637
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c320994.qua'!
C:\Users\morgan\Desktop\343\31634c8de31b4ab7d12c3feda2537811
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c06098f.qua'!
C:\Users\morgan\Desktop\343\4659c243b7b9b5505d01d5e0daf932d8
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c050994.qua'!
C:\Users\morgan\Desktop\343\60a3bd0987f82d3d70b5bc88cf559259
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c31098e.qua'!
C:\Users\morgan\Desktop\343\62ec54c01b590f2cca3bb7984ea2526f
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c350990.qua'!
C:\Users\morgan\Desktop\343\67af744a09a6299d8adbc9abd6cc5e96
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c310995.qua'!
C:\Users\morgan\Desktop\343\690003b6b39d19c62428abf5e66bd4b0
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c000997.qua'!
C:\Users\morgan\Desktop\343\6aea8b7c05710c8584f532d21a482438
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c3509bf.qua'!
C:\Users\morgan\Desktop\343\86064ba34f50cc8498f74ca66d91b4d9
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c000994.qua'!
C:\Users\morgan\Desktop\343\8954cd78a919e584dd174717e8967b90
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c050997.qua'!
C:\Users\morgan\Desktop\343\8cb5867ef7a153545fd04f7677d55417
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c3209c1.qua'!
C:\Users\morgan\Desktop\343\957611fd4516c58e14c43a4e759a806f
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c070993.qua'!
C:\Users\morgan\Desktop\343\a20243ae429b349145aa2f16a3d02015
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c000990.qua'!
C:\Users\morgan\Desktop\343\b23587815bc37aaef0355591c7bfab2c
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c030990.qua'!
C:\Users\morgan\Desktop\343\b5e4cb2865f207ca6aa05d288c81c68e
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c350993.qua'!
C:\Users\morgan\Desktop\343\b86f0fad6ad86761a4e00ad9c885f83d
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c060996.qua'!
C:\Users\morgan\Desktop\343\d18b5231556728fe41b30f32b582a46e
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c08098f.qua'!
C:\Users\morgan\Desktop\343\d5cdc25aac3c976b57bfa650b7c8eb89
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c330993.qua'!
C:\Users\morgan\Desktop\343\df7d48203a7a08f95bd7ba66683e27cf
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c0709c4.qua'!
C:\Users\morgan\Desktop\343\e10ca5743bf2bf166e68d6d46592e151
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c00098f.qua'!
C:\Users\morgan\Desktop\343\f1a603733139182523f2f2f04cacce74
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c31098f.qua'!
C:\Users\morgan\Desktop\343\faa9c7e186779064f2f559f35465ddc0
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c3109bf.qua'!
C:\Users\morgan\Desktop\343\fdf6db72403386e99331ad5b8292eba8
    [DETECTION] Is the TR/Dldr.Swizzor.Gen2 Trojan
    [NOTE]      The file was moved to '4c3609c2.qua'!
回复

举报

417394310
发表于 2010-4-22 19:07:12 | 显示全部楼层
343还没下载完呢就给隔离了,eav
回复

举报

jason_jiang
 楼主| 发表于 2010-4-23 19:56:50 | 显示全部楼层
更新
回复

举报

ablhr
发表于 2010-4-23 20:02:14 | 显示全部楼层
344
16x to avast,17x to forti
回复

举报

jayavira
发表于 2010-4-24 07:30:29 | 显示全部楼层
344
ess kill23个

http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239        多个威胁        连接中断 - 已隔离        通过应用程序访问 web 时检测到威胁: E:\谷歌浏览器\chrome.exe.
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 02b3ad0e99c8d615fc908c7069a39cea        Win32/TrojanDownloader.Swizzor.NEO 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 0c95ddafdf69552fc9610e59e3f06b60        Win32/TrojanDownloader.Swizzor.NEN 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 1d47adcb3ca24601a7c67819e7b75abc        Win32/TrojanDownloader.Swizzor.NCS 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 2d77f947e399265f76b41aa55d581599        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 49417531c6b24b29732bbd42f01b701b        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 5497412945b221a4d0c00bf9fb685a72        Win32/TrojanDownloader.Swizzor.NEN 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 5796e5afb83778b81aa4823e06f68bcb        Win32/TrojanDownloader.Swizzor.NDR 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 57fbd6d53e75e166382c41cf3b70547b        Win32/TrojanDownloader.Swizzor.NEP 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 7448bb90b2ae7a03a544978158565fa0        Win32/TrojanDownloader.Swizzor.NCS 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 7c0aa5658028337856d0556c9b954389        Win32/TrojanDownloader.Swizzor.NET 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 7e8faa127f11fa1fb257e3e172979fc0        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 86064ba34f50cc8498f74ca66d91b4d9        Win32/TrojanDownloader.Swizzor.NES 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > 9995be2277e1bb4ed92ed7b9c48a717c        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > a3f5afede8435daa0ba34d85e6d8a53f        Win32/TrojanDownloader.Swizzor.NDR 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > ab96c16765a165c46587ec028015a013        Win32/TrojanDownloader.Swizzor.NES 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > ad5690ea9e3df77a53a12b818113ebaa        Win32/TrojanDownloader.Swizzor.NEX 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > b1242e005652b07686a42be2e3f52b43        Win32/TrojanDownloader.Swizzor.NEY 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > b5807df1577e8fa9275bd8a2b42a0dea        Win32/TrojanDownloader.Swizzor.NEE 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > d8312fac74a4a33404c1315cd827b869        Win32/TrojanDownloader.Swizzor.NCS 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > dac4e8f6c656d690d375867840b896a8        Win32/TrojanDownloader.Swizzor.NDR 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > e922fa67f73d39b05fdc4ef03ada1be4        Win32/TrojanDownloader.Swizzor.NEN 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > e9cb8d1f9701a5c538e5ec3c2b6171ab        Win32/TrojanDownloader.Swizzor.NES 特洛伊木马 的变种               
http://1.tel.s9.115.com:8080/pic ... e37382e3138312e3239 > RAR > f538f391e11141cd99db2bd08ef707b1        Win32/TrojanDownloader.Swizzor.NEY 特洛伊木马 的变种
回复

举报

jason_jiang
 楼主| 发表于 2010-4-24 16:17:55 | 显示全部楼层
更新
回复

举报

下一页 »
1 ...111213141516171819... 32下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-9-20 10:56 , Processed in 0.104540 second(s), 14 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表