From: <hmmm@hmmm>; <.org>
| "R.V.Gronoff" <regis.gronoff.DeleteThis@gremlinifrance.com> wrote in
| news:4833a27b$0$6582$426a34cc@news.free.fr:
|
>> OK, my bad: Avast is God and I am Dr Evil's mini-me: the exe in question
>> WAS infected! I un/re-installed the progamme from a fresh download and
>> now it's clean.
>>
| How did you finally determine that? Did Avast send you a full report or did
| you upload it to Virustotal? Were there any symptoms of the infection, ie
| were there any registry strings added, any unusual additions to a hijackthis
| log that you hadn't seen before, or were any files added to your OS
| directory?
|
| What's always puzzled me is that since these AV programs are scanning files
| so quickly, are they actually "reading" every file or are they just checking
| the filenames against a definition database.
|
| How many AV programs actually can clean the registry and OS/programs
| partition(s) of all the remnants of these trojans/viruses? Is just deleting
| or quaranting the offending file enough?
|
| If you read the Symantec manual cleaning instructions for any given trojan,
| there's quite a few areas that have to be cleaned.
They (AV applications) use signature and heuristics and do NOT use filenames.
Symantec has traditionally been bad at removing Registry modifications and is one of the
*many* reasons why Symantec is not at the top of the list of suggested AV applications.
--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV -
http://www.pctipp.ch/downloads/dl/35905.asp
FAQ
Search
Profile
Private Messages
Log in
