View Full Version : Remote scan does not clean?
mladen
November 16th, 2004, 06:52 AM
Hi,
there is one thing which is definitely unclear to me why is not working. When I initiate a remote scan of the machine which is infected by a trojan, even though scan finds this trojan, the trojan is not deleted.
Can you, please, tell me, what might be the cause of this and what should I check to enable remote "cleaning" as well? My default profile for NOD32 scanner is "My profile" and it has delete + quarantine combination defined for Files, Archives and Runtime packers. Is this wrong? Should I use clean instead?
Many thanks in advance,
Mladen
Blackspear
November 16th, 2004, 07:01 AM
Hi Mladen, welcome to Wilders, with Trojans, they are typically injected into memory, and as such they require a scan in "Safe Mode".
Do you have the latest Nod32 version 2.12.3?
There is a tutorial on tweaking Nod32 here: http://www.wilderssecurity.com/showthread.php?t=37509
Hope this helps...
Let us know how you go...
Cheers ;D
mladen
November 16th, 2004, 07:53 AM
Hi Blackspear,
thank you very much for your answer. I have compared my configuration file with the configuration presented on the link you gave me and there were several things missing.
Now, I will make changes and see what will happen.
Thanks once more,
Mladen
mladen
November 16th, 2004, 08:30 AM
Hi Blackspear,
just one thing. I have managed to configure all the missing options through the xml configuration file (using NOD32 Configuration Editor) except one: Diagnostic Methods->Potentially dangerous applications presented in NOD32 under Setup dialog, Diagnostic Methods.
Is it possible to configure this option as well or not? (I have "downloaded" the configuration file from the machine where it is manually set, but I do not see it).
Thank you in advance,
Mladen
Marcos
November 16th, 2004, 10:36 AM
Hi Mladen,
you'll need to use cfgedit.xml from the actual version of RA server/console, or wait for the next program component update
rumpstah
November 16th, 2004, 11:59 AM
Hi Mladen:
You may want to check this thread (http://www.wilderssecurity.com/showthread.php?t=54428) if you are using Remote Administrator for NOD32.
{QUOTE-> Hi Blackspear,
just one thing. I have managed to configure all the missing options through the xml configuration file (using NOD32 Configuration Editor) except one: Diagnostic Methods->Potentially dangerous applications presented in NOD32 under Setup dialog, Diagnostic Methods.
Is it possible to configure this option as well or not? (I have "downloaded" the configuration file from the machine where it is manually set, but I do not see it).
Thank you in advance,
Mladen <-QUOTE}
mladen
November 17th, 2004, 02:54 AM
Hi guys,
thank you very much for your answers. I really did not know that.
Best regards,
Mladen
vBulletin® Copyright ©2000-2009, Jelsoft Enterprises Ltd.
Copyright ©2002 - 2009, Wilders Security Forums