Method and system for scanning and cleaning known and unknown computer viruses, recording medium and transmission medium therefor

摘要

A method, system and mediums for scanning and cleaning computer viruses. Said method comprises the steps of: simulating in a computer a virtual computer circumstance that the computer viruses reside; providing a plurality of infected objects or baits to be infected by computer viruses for inducing virus infection; loading a target object to be scanned into said simulated virtual computer circumstance; activating the target object to be scanned in said simulated virtual computer circumstance to induce the viruses possibly attached on said target object to infect the plurality of objects to be infected and generating standard samples which have been infected; comparing the plurality of objects after processing in the activating step with the plurality of objects to be infected originally provided, determining whether there is any change or not, if yes, the target object to be scanned contains virus, otherwise the target object to be scanned is free of virus. Said method further comprises the steps of: analyzing and learning from the viruses by analyzing the generated standard samples and extracting information and knowledge on the viruses when it is determined that said target object to be scanned contains a virus; and cleaning viruses from the infected target object by removing the virus' s body and modifying key information which has been changed by said virus on the basis of said information and knowledge on the viruses and on the basis of the modification that viruses have made to said infected objects ,i.e. the baits. The known and unknown viruses can be cleaned effectively.