Re: SOPHOS found...

Thanks for explanation. On the side - both: GUI and command line (which I
tried too) in a Safe Mode are limited (in my trials, at least). They can't
do the first step (I don't remember - check memory or something else). They
work in full in Normal Mode, however.
Marek Kalisz

"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message
news:OJAAJFq4GHA.1188@xxxxxxxxxxxxxxxxxxxxxxx
From: "Marek Kalisz" <kalisz_m@xxxxxxxxxxxxx>

| As I remember, in your Multi-AV that you so often promoting here you
| suggested as the first option Sophos. So, I tried it (without involving
| whole Multi-AV. Second, instruction in Sophos is clear enough - no
mark, no
| suggested deleting. However, computers still can't (fortunately)
replace
| human brains and no program can do everything automatically. So, I was
| hoping that someone, more knowledgeably with the deeps of Windows can
give
| me some idea what those items in System Volume Information are and what
| their meaning/function might be.
| Just this.
| Besides - Sophos support is only for their customers. I used its free
tool
| (part of YOUR "Multi") so - no Sophos support available.
| Marek Kalisz
| PS. I understand. Often I have a bad day too...


The Sophos Command Line Scanner uses Signature and Heuristics detection to
find and remove
infected files.

Anti-RootKit utilities look through known areas of system and Registry for
Rooted types of
Trojan infection vectors and list them as possibilities. It takes a
knowledgeable
interpretation to understand the results of such utilities. They are NOT
for novices.

Please do NOT equate the Sophos anti-RootKit utility with the Sophos
command line scanner.
They are as different as night and day.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm




.

Relevant Pages

  • Re: Troj_Renos.DK
    ... If it was just easily deleted then the Sophos 32bit Command Line Scanner would ... Reboot the PC into Safe Mode and then perform a full scan in Safe Mode using the Sophos ...
    (microsoft.public.windowsxp.general)
  • Re: Cant update AdAWare,SpyBot,AVG
    ... I disabled the Windows Firewall, ... When I went to Safe Mode, ... Sophos, and I had to D/L again in Normal Mode. ... > FireWall to allow it to download the needed AV vendor related files. ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Isass.exe application error at log on in windows xp
    ... | It all started with my AV (Sophos) found a file called DDCCB.DLL. ... It is suggested that you execute each tool in Normal Mode then in Safe Mode. ... The only folder under that folder should be the latest version. ... Download Atribune's VUNDOFIX.EXE ...
    (microsoft.public.windowsxp.general)
  • Re: Regsvr.exe locks me out of task manager and regedit
    ... | I've tried Sophos and Trend both in normal and safe mode with no luck. ... | viruses related to the REGSVR.EXE process. ... The LOG files cound not be scaned because the OS is actively using those Log files and their ... Scan in Normal Mode and reboot the PC into "Safe Mode with Command ...
    (alt.comp.anti-virus)
  • Re: VX2?
    ... I ran the Sophos scan using David Lipman's ... haven't run Trend - McAfee is my "native" installation). ... Neither Sophos or McAfee flag this as a virus, unless I've made a poor job ... > After the software is updated, I suggest scanning the system in Safe Mode. ...
    (microsoft.public.security.virus)