new bak.css更新下载地址

显示全部楼层 · 发表于 2008-5-25 16:29:29

http://lo.121565.net/dd.exe
http://lo.121565.net/d0.exe
http://lo.121565.net/d1.exe
http://lo.121565.net/d2.exe
http://lo.121565.net/d3.exe
http://lo.121565.net/d4.exe
http://lo.121565.net/d5.exe
http://lo.121565.net/d6.exe
http://lo.121565.net/d7.exe
http://pg.121565.net/d8.exe
http://pg.121565.net/d9.exe
http://pg.121565.net/d10.exe
http://pg.121565.net/d11.exe
http://pg.121565.net/d12.exe
http://pg.121565.net/d13.exe
http://pg.121565.net/d14.exe
http://to.121565.net/d15.exe
http://to.121565.net/d16.exe
http://to.121565.net/d17.exe
http://to.121565.net/d18.exe
http://to.121565.net/d19.exe
http://to.121565.net/d20.exe
http://to.121565.net/d21.exe
http://to.121565.net/d22.exe
http://to.121565.net/d23.exe
http://to.121565.net/d24.exe
http://zi.121565.net/d25.exe
http://zi.121565.net/d26.exe
http://zi.121565.net/d27.exe
http://zi.121565.net/d28.exe
http://zi.121565.net/d29.exe
http://zi.121565.net/d30.exe
http://zi.121565.net/d31.exe
http://zi.121565.net/d32.exe
http://zi.121565.net/d33.exe
http://zi.121565.net/d34.exe
http://zi.121565.net/d35.exe
http://zi.121565.net/d36.exe

谁下..我没下载工具

显示全部楼层 · 发表于 2008-5-25 16:32:42

迅雷下载就可以了

显示全部楼层 · 发表于 2008-5-25 16:34:22

显示全部楼层 · 发表于 2008-5-25 16:36:20

附上样本

---------------------------------

kingsoft 22
avast 34
kaspersky 38
jiangmin 31
antivir 33
bitdefender 29

[ 本帖最后由 yimike 于 2008-5-25 16:44 编辑 ]

显示全部楼层 · 发表于 2008-5-25 16:40:03

AVG x34，挂4

Scan Shell extension scan was finished.
Infections found: 34
Infected objects removed or healed: 34
Not removed or healed: 0
Time needed: 43 second(s)
Errors encountered: 0

Infections
File; Infection; Result
C:\Documents and Settings\Admin\Desktop\d0.exe; Trojan horse Generic10.ABRI; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d1.exe; Trojan horse PSW.OnlineGames.AQAU; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d10.exe; Trojan horse PSW.OnlineGames.APUI; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d12.exe; Trojan horse Generic10.YSC; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d13.exe; Trojan horse PSW.OnlineGames.AQAH; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d14.exe; Trojan horse Generic10.XSX; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d15.exe; Trojan horse Generic10.XAF; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d16.exe; Trojan horse Generic10.AAII; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d17.exe; Trojan horse BackDoor.Generic9.APSV; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d18.exe; Trojan horse Rootkit-Agent.E; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d2.exe; Trojan horse PSW.OnlineGames.AQAR; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d20.exe; Trojan horse PSW.OnlineGames.AQAT; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d21.exe; Trojan horse PSW.OnlineGames.APZV; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d22.exe; Trojan horse Generic10.WHF; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d23.exe; Trojan horse PSW.OnlineGames.AQQA; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d24.exe; Trojan horse Rootkit-Agent.E; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d25.exe; Trojan horse PSW.OnlineGames.BU; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d26.exe; Trojan horse PSW.OnlineGames.APWB; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d27.exe; Trojan horse PSW.OnlineGames.BU; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d28.exe; Trojan horse PSW.OnlineGames.AOWD; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d29.exe; Trojan horse Rootkit-Agent.E; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d3.exe; Trojan horse PSW.OnlineGames.AQQD; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d30.exe; Trojan horse PSW.OnlineGames.AOBL; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d31.exe; Trojan horse PSW.OnlineGames.BU; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d33.exe; Trojan horse PSW.OnlineGames.AQQT; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d34.exe; Trojan horse PSW.OnlineGames.BU; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d35.exe; Trojan horse Generic10.AAIO; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d36.exe; Trojan horse Generic10.ABRX; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d4.exe; Trojan horse PSW.OnlineGames.AQQE; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d5.exe; Trojan horse PSW.OnlineGames.AQAW; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d6.exe; Trojan horse PSW.OnlineGames.APIP; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d7.exe; Trojan horse Rootkit-Agent.E; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d8.exe; Trojan horse Rootkit-Agent.E; Moved to Virus Vault
C:\Documents and Settings\Admin\Desktop\d9.exe; Trojan horse Generic10.YSJ; Moved to Virus Vault

显示全部楼层 · 发表于 2008-5-25 16:42:00

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： RootKit.Win32.Undef.hv
病毒： Trojan.PSW.Win32.GameOL.non
病毒： RootKit.Win32.RESSDT.al
病毒： Trojan.PSW.Win32.SunOnline.og
病毒： Trojan.PSW.Win32.GameOL.GEN
病毒： Trojan.PSW.Win32.GamesOnline.abi
病毒： Trojan.PSW.Win32.GameOL.nlt
病毒： Trojan.PSW.Win32.GameOL.nka
病毒： RootKit.Win32.Undef.hu
病毒： Trojan.PSW.Win32.GameOL.npc
病毒： Trojan.PSW.Win32.GamesOnline.abn
病毒： Trojan.PSW.Win32.SunGame.s
病毒： Trojan.PSW.Win32.GamesOnline.abg
病毒： Trojan.PSW.Win32.GameOL.njs
病毒： Trojan.PSW.Win32.GameOL.npy
病毒： RootKit.Win32.Undef.gt
病毒： Trojan.PSW.Win32.QQHX.twz
病毒： Trojan.PSW.Win32.GameOL.gef
病毒： Trojan.PSW.Win32.GamesOnline.wb
病毒： Trojan.PSW.Win32.GameOL.nqf
病毒： Trojan.PSW.Win32.GameOL.npw
病毒： Trojan.PSW.Win32.GameOL.gbk
病毒： RootKit.Win32.Mnless.pn
病毒： Trojan.PSW.Win32.QQHX.txk
病毒： Trojan.PSW.Win32.GameOL.nnn
病毒： Trojan.PSW.Win32.SunOnline.op
病毒： Trojan.PSW.Win32.GamesOnline.acs
病毒： RootKit.Win32.Undef.hm
病毒： Trojan.PSW.Win32.GameOL.nlm
病毒： Trojan.PSW.Win32.LMir.bpx

MAC 地址：00:17:31:40:A3:57

用户来源：局域网

软件版本：20.45.61

显示全部楼层 · 发表于 2008-5-25 16:42:42

Starting the file scan:

Begin scan in 'E:\AV\新建文件夹'
E:\AV\新建文件夹\mm\d1.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.aiyg
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d10.exe
  [0] Archive type: RSRC
  --> Object
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.afqn
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d11.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d12.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NVI.104
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d13.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NVI.135
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d14.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.aiaq
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d15.exe
   [DETECTION] Is the Trojan horse TR/Onlinegames.NVI
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d16.exe
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d17.exe
  [0] Archive type: RSRC
  --> Object
   [DETECTION] Contains suspicious code HEUR/Malware
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d18.exe
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d2.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NVI.134
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d20.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ajhk
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d21.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ajjy
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d22.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.afeg
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d23.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ajnd
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d24.exe
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d25.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/Proxy.Xorpix.EQ
   --> Object
      [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.ald
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d26.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ajcm
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d27.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/Proxy.Xorpix.EW
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d28.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.afqn
   [DETECTION] Is the Trojan horse TR/Dldr.Delphi.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d29.exe
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d3.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d30.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d31.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/Proxy.Xorpix.FC
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d33.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d34.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/Proxy.Xorpix.FC
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d35.exe
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d4.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Delphi.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d5.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ajgn
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d6.exe
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d7.exe
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d8.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Contains detection pattern of the worm WORM/Downloader.LY
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
E:\AV\新建文件夹\mm\d9.exe
--> Object
   [1] Archive type: RSRC
   --> Object
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NVI.113
   [NOTE]    The file was deleted!

End of the scan: 2008年5月25日  16:45
Used time: 00:20 min

The scan has been done completely.

   2 Scanning directories
   38 Files were scanned
   40 viruses and/or unwanted programs were found
   1 Files were classified as suspicious:
   33 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   -2 Files not concerned
   0 Archives were scanned
   0 Warnings
   33 Notes

显示全部楼层 · 发表于 2008-5-25 17:14:13

kis2009发现41个

显示全部楼层 · 发表于 2008-5-25 17:21:02

信息 2008-05-25  17:20:49 您此次查毒清除了27个病毒
信息 2008-05-25  17:20:49 您此次查毒共查出27个病毒以及危险代码
信息 2008-05-25  17:20:49 您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件81个
信息 2008-05-25  17:20:49 金山毒霸主程序查毒过程结束，查毒方式：命令行查毒

显示全部楼层 · 发表于 2008-5-25 17:23:57

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： Trojan.PSW.Win32.XYOnline.aet

MAC 地址：00:17:31:40:A3:57

用户来源：局域网

软件版本：20.45.62

[病毒样本] new bak.css更新下载地址

本帖子中包含更多资源

本帖子中包含更多资源

115/38

本帖子中包含更多资源

更新病毒库后再杀一个~