Jump to content

Archived

This topic is now archived and is closed to further replies.

siljaline

Stand-alone malware removal tools

Recommended Posts

And what about ESET SysRescue?

In wich category belong this tool?

Do we count it as part of NOD32 / ESS or...?

 

Share this post


Link to post
Share on other sites

And what about ESET SysRescue?

In wich category belong this tool?

Do we count it as part of NOD32 / ESS or...?

 

SysRescue is not currently available as a stand-alone tool. It's part of ESET's desktop and server products.

Share this post


Link to post
Share on other sites

Does the ESETSirefef removal tool fix the junctions created by the new variant in the Windows Defender and/or Microsoft Sercurity Client directory?

Share this post


Link to post
Share on other sites
Does the ESETSirefef removal tool fix the junctions created by the new variant in the Windows Defender and/or Microsoft Sercurity Client directory?

 

:huh:

Share this post


Link to post
Share on other sites

Thanks Piotr, for the provided links to the other free security products that ESET offers. I have long known of the fantastic ESET Online Scanner, of which I use to scan any new install, re-install or a new computer with, once all updates/apps are installed. Most of the time, something is quarantined during this first scan. Though I never delete the items until I know for certain that it's unneeded. I did know of the SysRescue (recent AIK package install required) & SysInspector already. The stand alone tools, I wasn't aware of.

 

And many Thanks to ESET for providing them. There's no such thing as "too many" virus/malware cleaners & if one only has one available computer, it's good to keep as many current emergency apps as the user deems reasonable. Some stubborn malware requires more than one tool for discovery/removal. I have personally seen this on several occasions.

 

Cat

Share this post


Link to post
Share on other sites

Does the ESETSirefef removal tool fix the junctions created by the new variant in the Windows Defender and/or Microsoft Sercurity Client directory?

 

Yes the ESETSirefefCleaner will not only correct the junctions/symbolic links which Sirefef puts in Windows Defender/Microsoft Security Essentials, but it will also repair the services which Sirefef removes from a system.

Share this post


Link to post
Share on other sites

 

Does the ESETSirefef removal tool fix the junctions created by the new variant in the Windows Defender and/or Microsoft Sercurity Client directory?

 

Yes the ESETSirefefCleaner will not only correct the junctions/symbolic links which Sirefef puts in Windows Defender/Microsoft Security Essentials, but it will also repair the services which Sirefef removes from a system.

 

 

Thanks for the info James. The KB article for removing Sirefef has recently been updated and the above info may also be added into the article soon.

Share this post


Link to post
Share on other sites

 

Does the ESETSirefef removal tool fix the junctions created by the new variant in the Windows Defender and/or Microsoft Sercurity Client directory?

 

Yes the ESETSirefefCleaner will not only correct the junctions/symbolic links which Sirefef puts in Windows Defender/Microsoft Security Essentials, but it will also repair the services which Sirefef removes from a system.

 

Very nice!  I look forward to using it....well...as much as someone can look forward to having an infected system I guess.   :D  Thank you for checking into that.  

Share this post


Link to post
Share on other sites

Hello,

Removal of junction points ("%programfiles%\Microsoft Security Client", "%programfiles%\Windows Defender\" etc.) used by new variants of Win32/Sirefef was added in v1.1.0.11 of the standalone cleaner, released on 23-MAY-2013.

 

Regards,

 

Aryeh Goretsky

Share this post


Link to post
Share on other sites

Removal of junction points ("%programfiles%\Microsoft Security Client", "%programfiles%\Windows Defender\" etc.) used by new variants of Win32/Sirefef was added in v1.1.0.11 of the standalone cleaner, released on 23-MAY-2013.

 

Regards,

 

Aryeh Goretsky

 

Thank you!  :)

Share this post


Link to post
Share on other sites

Hello Trooper,

 

sadly there is no information, what kind of malware are we talking of.

There is described heuristic detection based on exploiting particular vulnerability, which can be possibly exploited by any kind of malware.

 

I would recommend you to use ESET SysRescue to scan the system offline.

In case it detects something from this list use appropriate tool.

 

Please let us know the result.

Share this post


Link to post
Share on other sites

Trooper

 

See link provided

 

hxxp://technet.microsoft.com/en-us/security/bulletin/ms04-013

 

After update or KB checked to be installed: See below :

Threat Assessment Wild
  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy

 

Removal is stated as easy from Symantec

 

Then see this :hxxp://www.pchell.com/virus/bloodhound.shtml

 

Removal should be as easy as clearing all your temp folders.

 

Also, please still report back of what variant or flavor Eset states this vulnerability is :)

 

Good luck.

Share this post


Link to post
Share on other sites

I have a huge problem with worm Budpil.BO eset nod32 didn't detect it but ERA Remover in Safe Mode detects and delete it but in meanwhile it happens again the same.

Share this post


Link to post
Share on other sites

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...