红伞查不到病毒的问题

bajefghy

对啊

但是为什么小月小红伞检测不出来?

yuuto

Begin scan in 'F:\download\病毒样本.rar'
F:\download\病毒样本.rar
    [0] Archive type: RAR
发表帖子[完成后可按 Ctrl      --> ﾲﾡﾶﾾ￑ﾱﾾ\10ﾸ?￑ﾱﾾ.rar
        [1] Archive type: RAR
        --> 3.exe
          [DETECTION] Contains recognition pattern of the DR/BHO.abh dropper
        --> 360safe.exe
          [DETECTION] Is the TR/Spy.Small.bua Trojan
        --> host.exe
          [DETECTION] Contains recognition pattern of the DR/Drop.Exebinder.K.6 dropper
        --> lsass.exe
          [DETECTION] Contains recognition pattern of the DR/BHO.abh dropper
        --> Temp0.exe
          [DETECTION] Contains recognition pattern of the DR/BHO.aai.13 dropper
        --> Temp1.exe
          [DETECTION] Contains recognition pattern of the DR/Cinmus.jvp dropper
        --> Temp2.exe
          [DETECTION] Contains recognition pattern of the DR/Cinmus.mvg dropper
        --> Temp4.exe
          [DETECTION] Is the TR/Drop.Agent.rga.2 Trojan
      --> ﾲﾡﾶﾾ￑ﾱﾾ\Beat_Obama_152.rar
        [1] Archive type: RAR
        --> Beat_Obama_152.exe
          [DETECTION] Is the TR/Killwin.EA.1 Trojan
      --> ﾲﾡﾶﾾ￑ﾱﾾ\df.rar
        [1] Archive type: RAR
        --> VMwareService.exe
          [DETECTION] Contains recognition pattern of the WORM/Cekar.A worm
        --> tmp7A.tmp
          [DETECTION] Is the TR/Rootkit.Gen Trojan
        --> pcibus.sys
          [DETECTION] Is the TR/Drop.Agent.23552 Trojan
        --> 8838283[1].htm
          [DETECTION] Is the TR/IFrame.AW Trojan
        --> XunLei[1].htm
          [DETECTION] Contains recognition pattern of the HTML/IFrame.gcc HTML script virus
        --> noani[2].htm
          [DETECTION] Contains recognition pattern of the HTML/Dldr.Agent.ZY HTML script virus
        --> Ms06014[1].htm
          [DETECTION] Contains recognition pattern of the HTML/IFrame.gcc HTML script virus
        --> haha[1].htm
          [DETECTION] Contains recognition pattern of the JS/Dldr.Psyme.ED Java script virus
        --> jh[1].htm
          [DETECTION] Contains recognition pattern of the JS/Dldr.Agent.afm Java script virus
        --> kong[1].htm
          [DETECTION] Contains recognition pattern of the HTML/Dldr.Agent.bcd HTML script virus
        --> htm[1].htm
          [DETECTION] Contains recognition pattern of the JS/Dldr.Agent.AS Java script virus
        --> gm[1].htm
          [DETECTION] Is the TR/Dldr.Agent.ala.10 Trojan
        --> 6671697[1].htm
          [DETECTION] Is the TR/IFrame.AW Trojan
        --> Ajax[1].htm
          [DETECTION] Contains recognition pattern of the HTML/IFrame.gcc HTML script virus
        --> ani[1].htm
          [DETECTION] Contains recognition pattern of the HTML/Dldr.Agent.ZY HTML script virus
        --> 11[1].js
          [DETECTION] Contains recognition pattern of the JS/Dldr.Psyme.CN Java script virus
        --> rl[2].js
          [DETECTION] Contains recognition pattern of the EXP/RealPlay.E exploit
        --> realplayer[1].htm
          [DETECTION] Contains recognition pattern of the EXP/RealPlr.CT exploit
        --> kaka[1].htm
          [DETECTION] Contains recognition pattern of the HTML/IFrame.gcc HTML script virus
        --> down1[1].txt
          [DETECTION] Contains recognition pattern of the HTML/IFrame.gcc HTML script virus
        --> 2[1].htm
          [DETECTION] Contains recognition pattern of the JS/Dldr.Agent.bxf Java script virus
        --> 1[1].js
          [DETECTION] Contains recognition pattern of the JS/Dldr.Agent.bxf Java script virus
        --> realplay_071122_exp[1].htm
          [DETECTION] Contains recognition pattern of the EXP/RealPlr.CT exploit
        --> realplayer[2].htm
          [DETECTION] Contains recognition pattern of the HTML/Dldr.Agent.ZY HTML script virus
        --> lz[1].htm
          [DETECTION] Contains recognition pattern of the HTML/Shellcode.Gen HTML script virus
        --> gege[1].htm
          [DETECTION] Contains recognition pattern of the EXP/RealPlay.I exploit
        --> ani[1].c
          [DETECTION] Contains recognition pattern of the EXP/Ani.Gen exploit
        --> tmp7C.tmp
          [DETECTION] Is the TR/Rootkit.Gen Trojan
        --> tmp77.tmp
          [DETECTION] Is the TR/Rootkit.Gen Trojan
        --> tmp83.tmp
          [DETECTION] Is the TR/Rootkit.Gen Trojan
      --> ﾲﾡﾶﾾ￑ﾱﾾ\ￗﾢﾲ￡ﾱ￭ﾵﾼ￈￫ﾹﾤﾾ￟.rar
        [1] Archive type: RAR
        --> ￗﾢﾲ￡ﾱ￭ﾵﾼ￈￫ﾹﾤﾾ￟.exe
            [DETECTION] Is the TR/Agent.msd.1 Trojan
      --> ﾲﾡﾶﾾ￑ﾱﾾ\￐ￜￃﾨ￉ￕￏ￣ﾲﾡﾶﾾ￑ﾱﾾ.RAR
        [1] Archive type: RAR
        --> GameSetup.exe
            [DETECTION] Contains a recognition pattern of the (harmful) BDS/Backdoor.Gen back-door program
    [NOTE]      A backup was created as 'b12a7ba9.qua'  ( QUARANTINE )
    [NOTE]      Attempting to perform action using the ARK lib.
    [NOTE]      A backup was created as 'b38e137a.qua'  ( QUARANTINE )


End of the scan: 2008年10月13日  17:07
Used time: 00:03 Minute(s)

The scan has been done completely.

      0 Scanning directories
     55 Files were scanned
     41 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      0 files were deleted
      0 files were repaired
      2 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
     14 Files not concerned
      9 Archives were scanned
      0 Warnings
      1 Notes

索琊

高手来啊！

hayuanjie

晓月红伞貌似默认不测各种压缩包  自称没有意义   什么包里封着不害人还是怎么着的

eyesineyes

原帖由 hayuanjie 于 2008-10-13 17:40 发表
晓月红伞貌似默认不测各种压缩包  自称没有意义   什么包里封着不害人还是怎么着的

是的。封装在包里面的毒，不会对系统产生危害，所以不检测这样可以加快全盘检测的速度。但是默认设定的小红伞是检查压缩包的。

[ 本帖最后由 eyesineyes 于 2008-10-13 18:18 编辑 ]

dongxi124214

更新病毒库！

wcb46888

自行设置..

bluemax

更改一个设置便可了，scan archives打上勾就OK了。

xiaojinglf

好简单的道理。你没有开扫描压缩包功能。
如果是我的绿色版。默认我是关闭了扫描压缩包的。
如果你要用绿色版是为了扫描样本，自己去配置里面打开。
如果是杀毒。就没有必要打开

lingbo110120

如晓月所说
其实就是设置问题