virus

woai_jolin

=============================================================================
Dr.Web(R) Scanner for Windows v4.44.2 (4.44.2.11261)
(c) 1992-2007 Igor Daniloff. All rights reserved.
Log generated on: 2008-02-09, 15:17:28 [Administrator]
Command-line: "E:\DrWeb\DrWeb32W.Exe" /ARN /HA /OK /UPN /TM- /AL /SS- /SD /SHELL /TB-
Operating system:Windows XP Professional x86 (Build 2600), Service Pack 2
=============================================================================
DwShield started
Engine version: 4.44 (4.44.0.09170)
Engine API version: 2.02
[Virus database] E:\DrWeb\drwtoday.vdb - 789 virus records
[Virus database] E:\DrWeb\drw44425.vdb - 3609 virus records
[Virus database] E:\DrWeb\drw44424.vdb - 7770 virus records
[Virus database] E:\DrWeb\drw44423.vdb - 4210 virus records
[Virus database] E:\DrWeb\drw44422.vdb - 1010 virus records
[Virus database] E:\DrWeb\drw44421.vdb - 421 virus records
[Virus database] E:\DrWeb\drw44420.vdb - 1306 virus records
[Virus database] E:\DrWeb\drw44419.vdb - 1234 virus records
[Virus database] E:\DrWeb\drw44418.vdb - 1238 virus records
[Virus database] E:\DrWeb\drw44417.vdb - 4406 virus records
[Virus database] E:\DrWeb\drw44416.vdb - 7847 virus records
[Virus database] E:\DrWeb\drw44415.vdb - 6014 virus records
[Virus database] E:\DrWeb\drw44414.vdb - 804 virus records
[Virus database] E:\DrWeb\drw44413.vdb - 5020 virus records
[Virus database] E:\DrWeb\drw44412.vdb - 1565 virus records
[Virus database] E:\DrWeb\drw44411.vdb - 1582 virus records
[Virus database] E:\DrWeb\drw44410.vdb - 1131 virus records
[Virus database] E:\DrWeb\drw44409.vdb - 2303 virus records
[Virus database] E:\DrWeb\drw44408.vdb - 3904 virus records
[Virus database] E:\DrWeb\drw44407.vdb - 2456 virus records
[Virus database] E:\DrWeb\drw44406.vdb - 4411 virus records
[Virus database] E:\DrWeb\drw44405.vdb - 1311 virus records
[Virus database] E:\DrWeb\drw44404.vdb - 2486 virus records
[Virus database] E:\DrWeb\drw44403.vdb - 4462 virus records
[Virus database] E:\DrWeb\drw44402.vdb - 94 virus records
[Virus database] E:\DrWeb\drw44401.vdb - 557 virus records
[Virus database] E:\DrWeb\drw44400.vdb - 945 virus records
[Virus database] E:\DrWeb\drwebase.vdb - 209466 virus records
[Virus database] E:\DrWeb\dwrtoday.vdb - 296 virus records
[Virus database] E:\DrWeb\dwntoday.vdb - 161 virus records
[Virus database] E:\DrWeb\dwn44402.vdb - 814 virus records
[Virus database] E:\DrWeb\dwn44401.vdb - 698 virus records
[Virus database] E:\DrWeb\drwrisky.vdb - 2747 virus records
[Virus database] E:\DrWeb\drwnasty.vdb - 13534 virus records
Total virus records: 300601
Key file: E:\DrWeb\drwdemo.key
License key number: 0010092936
Registered to: Dr.Web CureIt Project
License key activates on: 2007-02-05
License key expires on: 2010-02-11
Master Boot Record HDD1 - Ok
Active OS/2 or WinNT Boot Sector HDD1 - Ok
[Scan path] G:\v\1[1].exe
>G:\v\1[1].exe probably infected with BACKDOOR.Trojan
[Scan path] G:\v\bauhgnem.dll
>>G:\v\bauhgnem.dll\data001 infected with Trojan.PWS.Wsgame.3279
>G:\v\bauhgnem.dll\data002 infected with Trojan.PWS.Wsgame.3278
>G:\v\bauhgnem.dll\data003 - Ok
G:\v\bauhgnem.dll - archive contains infected objects
[Scan path] G:\v\cq[1].exe
>G:\v\cq[1].exe infected with Trojan.PWS.Wsgame.3240
[Scan path] G:\v\cs[1].exe
>G:\v\cs[1].exe infected with Trojan.PWS.Wsgame.3262
[Scan path] G:\v\dj[1].exe
>G:\v\dj[1].exe infected with Trojan.PWS.Wsgame.3240
[Scan path] G:\v\hjiq.dll
>>G:\v\hjiq.dll\data001 infected with Trojan.PWS.Wsgame.3264
>G:\v\hjiq.dll\data002 infected with Trojan.PWS.Wsgame.3265
G:\v\hjiq.dll - archive contains infected objects
[Scan path] G:\v\hjxr.dll
>G:\v\hjxr.dll infected with Trojan.PWS.Wsgame.3243
[Scan path] G:\v\host.exe
G:\v\host.exe infected with BackDoor.Attack.22
[Scan path] G:\v\hx[1].exe
>G:\v\hx[1].exe infected with Trojan.PWS.Gamania.7327
[Scan path] G:\v\iqnauhc.dll
>G:\v\iqnauhc.dll infected with Trojan.PWS.Wsgame.3238
[Scan path] G:\v\jh[1].exe
>G:\v\jh[1].exe infected with Trojan.PWS.Wsgame.3240
[Scan path] G:\v\ma[1].exe
>G:\v\ma[1].exe - Ok
[Scan path] G:\v\mh[1].exe
>G:\v\mh[1].exe infected with Trojan.PWS.Wsgame.2924
[Scan path] G:\v\msapi32.dll
G:\v\msapi32.dll infected with DDoS.Keznet.origin
[Scan path] G:\v\msepion.sys
G:\v\msepion.sys - Ok
[Scan path] G:\v\naijoad.dll
>>G:\v\naijoad.dll\data001 infected with Trojan.PWS.Wsgame.3233
>G:\v\naijoad.dll\data002 infected with Trojan.PWS.Wsgame.3235
G:\v\naijoad.dll - archive contains infected objects
[Scan path] G:\v\naixuhz.dll
>>G:\v\naixuhz.dll\data001 - Ok
>G:\v\naixuhz.dll\data002 - Ok
G:\v\naixuhz.dll - Ok
[Scan path] G:\v\niluw.dll
>G:\v\niluw.dll infected with Trojan.PWS.Wsgame.3242
[Scan path] G:\v\pabc.sys
G:\v\pabc.sys - Ok
[Scan path] G:\v\qj[1].exe
>G:\v\qj[1].exe infected with Trojan.PWS.Wsgame.3262
[Scan path] G:\v\qq[1].exe
>>G:\v\qq[1].exe infected with Trojan.PWS.Lineage.origin
[Scan path] G:\v\Sy_Win7k.Jmp
G:\v\Sy_Win7k.Jmp - Ok
[Scan path] G:\v\tl[1].exe
>>>G:\v\tl[1].exe infected with Trojan.PWS.Gamania.origin
[Scan path] G:\v\tl[1]lt.dll
>G:\v\tl[1]lt.dll infected with Trojan.PWS.Gamania.origin
[Scan path] G:\v\tmp152.tmp
G:\v\tmp152.tmp infected with Trojan.PWS.Wsgame.3233
[Scan path] G:\v\tmp155.tmp
G:\v\tmp155.tmp infected with Trojan.PWS.Wsgame.3264
[Scan path] G:\v\tmp158.tmp
G:\v\tmp158.tmp - Ok
[Scan path] G:\v\tmp15B.tmp
G:\v\tmp15B.tmp infected with Trojan.PWS.Wsgame.3273
[Scan path] G:\v\tmp15E.tmp
G:\v\tmp15E.tmp infected with Trojan.PWS.Wsgame.3233
[Scan path] G:\v\tmp161.tmp
G:\v\tmp161.tmp infected with Trojan.PWS.Wsgame.3233
[Scan path] G:\v\tmp164.tmp
G:\v\tmp164.tmp infected with Trojan.PWS.Wsgame.3279
[Scan path] G:\v\tmp167.tmp
G:\v\tmp167.tmp infected with Trojan.PWS.Wsgame.3264
[Scan path] G:\v\tmp16A.tmp
G:\v\tmp16A.tmp infected with Trojan.PWS.Wsgame.3233
[Scan path] G:\v\tsqc.dll
>G:\v\tsqc.dll infected with Trojan.PWS.Wsgame.3272
[Scan path] G:\v\vhqq.dll
>>G:\v\vhqq.dll\data001 infected with Trojan.PWS.Wsgame.3273
>G:\v\vhqq.dll\data002 infected with Trojan.PWS.Wsgame.3274
G:\v\vhqq.dll - archive contains infected objects
[Scan path] G:\v\wd[1].exe
>G:\v\wd[1].exe infected with Trojan.PWS.Gamania.7326
[Scan path] G:\v\wd[1]dw.dll
G:\v\wd[1]dw.dll infected with Trojan.PWS.Gamania.7326
[Scan path] G:\v\wl[1].exe
>G:\v\wl[1].exe infected with Trojan.PWS.Wsgame.3240
[Scan path] G:\v\Wn_Sys8x.Sys
G:\v\Wn_Sys8x.Sys infected with Trojan.PWS.Lineage.origin
[Scan path] G:\v\xy[1].exe
>G:\v\xy[1].exe infected with BackDoor.Wowish
[Scan path] G:\v\zx[1].exe
>G:\v\zx[1].exe infected with Trojan.PWS.Wsgame.3104
[Scan path] G:\v\~Fa14F.tmp
G:\v\~Fa14F.tmp - Ok
-----------------------------------------------------------------------------
Scan statistics
-----------------------------------------------------------------------------
Objects scanned: 50
Infected objects found: 38
Objects with modifications found: 0
Suspicious objects found: 1
Adware programs found: 0
Dialer programs found: 0
Joke programs found: 0
Riskware programs found: 0
Hacktool programs found: 0
Cured: 0
Deleted: 0
Renamed: 0
Moved: 0
Ignored: 0
Scan speed: 1229 Kb/s
Scan time: 00:00:01
-----------------------------------------------------------------------------
G:\v\1[1].exe - deleted
G:\v\bauhgnem.dll - deleted
G:\v\cq[1].exe - deleted
G:\v\cs[1].exe - deleted
G:\v\dj[1].exe - deleted
G:\v\hjiq.dll - deleted
G:\v\hjxr.dll - deleted
G:\v\host.exe - deleted
G:\v\hx[1].exe - deleted
G:\v\iqnauhc.dll - deleted
G:\v\jh[1].exe - deleted
G:\v\mh[1].exe - deleted
G:\v\msapi32.dll - deleted
G:\v\naijoad.dll - deleted
G:\v\niluw.dll - deleted
G:\v\qj[1].exe - deleted
G:\v\qq[1].exe - deleted
G:\v\tl[1].exe - deleted
G:\v\tl[1]lt.dll - deleted
G:\v\tmp152.tmp - deleted
G:\v\tmp155.tmp - deleted
G:\v\tmp15B.tmp - deleted
G:\v\tmp15E.tmp - deleted
G:\v\tmp161.tmp - deleted
G:\v\tmp164.tmp - deleted
G:\v\tmp167.tmp - deleted
G:\v\tmp16A.tmp - deleted
G:\v\tsqc.dll - deleted
G:\v\vhqq.dll - deleted
G:\v\wd[1].exe - deleted
G:\v\wd[1]dw.dll - deleted
G:\v\wl[1].exe - deleted
G:\v\Wn_Sys8x.Sys - deleted
G:\v\xy[1].exe - deleted
G:\v\zx[1].exe - deleted
=============================================================================
Total session statistics
=============================================================================
Objects scanned: 50
Infected objects found: 38
Objects with modifications found: 0
Suspicious objects found: 1
Adware programs found: 0
Dialer programs found: 0
Joke programs found: 0
Riskware programs found: 0
Hacktool programs found: 0
Cured: 0
Deleted: 35
Renamed: 0
Moved: 0
Ignored: 0
Scan speed: 1229 Kb/s
Scan time: 00:00:01
=============================================================================

[ 本帖最后由 woai_jolin 于 2008-2-9 15:17 编辑 ]

qigang

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.PSW.Win32.GamesOnline.mh
病毒： Trojan.PSW.Win32.GamesOnline.mn
病毒： Trojan.PSW.Win32.GameOL.lvx
病毒： Trojan.PSW.Win32.YBOnline.dg
病毒： Backdoor.Win32.Ceckno.DL
病毒： RootKit.Win32.GameHack.GEN
病毒： Trojan.PSW.Win32.OnlineGames.GEN
病毒： Backdoor.Win32.Agent.yqs
病毒： RootKit.Win32.GameHack.GEN
病毒： RootKit.Win32.GameHack.ger
病毒： RootKit.Win32.GameHack.get
病毒： RootKit.Win32.GameHack.az
病毒： Trojan.PSW.Win32.AskTao.gw
病毒： Trojan.PSW.Win32.AskTao.gw
病毒： Backdoor.Jusi.ar         
病毒： Trojan.PSW.Win32.GameOL.lle

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.30.40