达人帮忙看看这个是木马或病毒吗？

显示全部楼层 · 发表于 2008-10-28 09:48:11

我用卡巴2009已经多次在完全扫描中发现这个威胁
然后也没有说明到底是病毒还是木马还是什么，刚接触2009，还用的不太熟，没有看到相应威胁说明，以前都用kis7，
但我设置了“清除，假如无法清除就删除”，我也不知道这个东西到底是否被隔离了，打开文件夹发现这个文件仍然存在
每次扫描都会这样提示。

2008-10-27 21:42:13 C:\System Volume Information\_restore{869F4FCE-F6D0-49CA-AAD5-DD6C18B32AF6}\RP327\A0097782.SYS
2008-10-27 21:42:13 C:\System Volume Information\_restore{869F4FCE-F6D0-49CA-AAD5-DD6C18B32AF6}\RP327\A0097809.SYS

麻烦哪位达人帮忙分析一下，这两个文件到底出了什么问题。

附件里是两个文件

谢谢

显示全部楼层 · 发表于 2008-10-28 10:01:31

BitDefender Log File !!!!!
Product : BitDefender Internet Security 2008
Version : BitDefender UIScanner v.11
Log date : 10:00:49 28/10/2008
Log path : C:\Documents and Settings\chuck-you\Application Data\BitDefender\Desktop\Profiles\Logs\contextual\1225159249_1_00.xml

Scan Paths:Path0000: C:\Documents and Settings\chuck-you\桌面\A0097782.rar

Scan Options:Scan for viruses : Yes
Scan for adware : Yes
Scan for spyware : Yes
Scan for applications : Yes
Scan for dialers : Yes
Scan for rootkits : No

Target selection options:Scan registry keys : No
Scan cookies : No
Scan boot sectors : No
Scan memory processes : No
Scan archives : Yes
Scan runtime packers : Yes
Scan emails : Yes
Scan all files : Yes
Heuristic Scan : Yes
Scanned extensions :
Excluded extensions :

Target ProcessingDefault action for infected objects : Disinfect
Default action for suspicious objects : None
Default action for hidden objects : None

Scan engines summaryNumber of virus signatures : 1967945
Archive plugins : 43
Email plugins : 6
Scan plugins : 12
Archive plugins : 43
System plugins : 5
Unpack plugins : 7

Overall scan summaryScanned items : 4
Infected items : 0
Suspicious items : 0
Resolved items : 0
Individual viruses found : 0
Scanned directories : 0
Scanned boot sectors : 0
Scanned archives : 1
Input-output errors : 0
Scan time : 00:00:00:02
Files per second : 2

Scanned processes summaryScanned : 0
Infected : 0

Scanned registry keys summaryScanned : 0
Infected : 0

Scanned cookies summaryScanned : 0
Infected : 0

Remaining issues:Object Name Threat Name Final Status

Resolved issues:Object Name Threat Name Final Status

Objects that were not scanned:Object Name Reason Final Status

显示全部楼层 · 发表于 2008-10-28 10:07:03

原帖由 korealienzhu 于 2008-10-28 10:01 发表
BitDefender Log File !!!!!
Product : BitDefender Internet Security 2008
Version : BitDefender UIScanner v.11
Log date : 10:00:49 28/10/2008
Log path : C:\Documents and Settings\chuck-you\Applic ...

呃，英文不太好，您能大体解释一下吗？

显示全部楼层 · 发表于 2008-10-28 13:58:55

System Volume Information是系统还原的文件夹，关闭系统还原，删除就可以了。

[病毒样本] 达人帮忙看看这个是木马或病毒吗？

本帖子中包含更多资源