Re: Root kits ...luvly !

Oh well, won't work, ...fiddled briefly with subst and assign - then
remembered that David H Lipman told me that Multi-av is an XP console app. ?
....off I got to bootdisk.com and start playing with tricking Nero to read in
a dos os I suppose ! ...and hours of locating/downloading/fiddling with
those individual command line scanners and all their switches !
I used to think of all that as "FUN" !

regards, Richard

"Modern day home computing is trying to remember just how much one has
forgotten !"


"RJK" <notatospam@xxxxxxxxxxx> wrote in message
news:OVnGka6iGHA.1640@xxxxxxxxxxxxxxxxxxxxxxx
Oops! silly me, ...you did tell me the other day that the drive and
pathnames are hardcoded into multi-av,
but, it'll still be of use, if i can copy multi-av to a target machine and
run it, after booting into BartsPE !

regards, Richard


"RJK" <notatospam@xxxxxxxxxxx> wrote in message
news:%2353oxS6iGHA.412@xxxxxxxxxxxxxxxxxxxxxxx
...Huge thanx David !

...heaven is http://www.nu2.nu/pebuilder/start/ which pops up a box with
slots where I can point to the drive with my XP Home OEM (sp2
slipstreamed) cd in it, and the "custom" slot underneath let me "include
files and folders from this directory" i.e. c:\av-cls and off it
went and created a *.iso
...all in about a minute !!

...off I go now to burn a bootable cd-r ...I wonder if it'll work ...
....I wonder if BartsPE has a rootkit in it !! :-)

regards, Richard


"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message
news:upETUVoiGHA.4580@xxxxxxxxxxxxxxxxxxxxxxx
From: "RJK" <notatospam@xxxxxxxxxxx>

| ...forgot my question !
|
| Do any of the 4 command line scanners in David H Lipmans Multi-AV
detect
| known root-kits ?
|
| ...I noticed during my earlier web-wading that Symantec is working on
/
| detecting root-kits !!
|
| regards, Richard
|

Yes. Sophos is excellent for their detection. However, it would be
*best* doen outside the
running OS. That is by downloading teh Sophos files then booting from a
DOS Boot Disk or a
DOS Boot Disk with NTFS4DOS and then scanning the platform.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm








.

Relevant Pages

  • Re: Link is to email address not to a URL
    ... This was NOT a security related question and thus should not have been ... It is not a link nor URI. ... Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp ... David - I simply wanted folk outwith the Microsoft ...
    (alt.computer.security)
  • Re: copy large file to USB drive hangs
    ... David H. Lipman wrote: ... | When you say 250MB to 500MB, are you referring to file size or the ... Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp ...
    (microsoft.public.win2000.general)
  • Re: OL03 on Exchange03 server - export personal contact Distrib. list
    ... News Group due to proprietary information contained within. ... Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp ...
    (microsoft.public.outlook)
  • Re: Malwarebytes Anti-Malware
    ... Beady or whatever 'nym you shift to. ... Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp ... I'm not really trying very hard to hide though, am I David? ...
    (alt.computer.security)
  • Re: What is HwInfoD.vxd ?
    ... | Good read thanks David. ... And thank you for all the helpful information. ... SpyWare Warrior is unfortunately out-of-date. ... Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp ...
    (microsoft.public.security.virus)