SysRescue CD can't find viruses

Discussion in 'ESET NOD32 Antivirus' started by xerces8, Oct 9, 2010.

Thread Status:
Not open for further replies.
  1. xerces8

    xerces8 Registered Member

    Joined:
    Aug 24, 2005
    Posts:
    7
    Hi!

    I have NOD32 4.0.417.0 on Windows XP Pro SP3.
    I updated to latest virus definitions and then created a rescue CD.

    I booted the CD on different PC (that has Vista installed) and observed weird behavior:
    - Smart scan finishes in 3 minutes which seems a bit too fast
    - Custom scan, set to scan the 2 partitions on the hard drive finishes in 10 seconds. The statistic says Number of scanned objects : 0

    This happened once before (march 2010), so it is not a new issue.

    The hard drive, folders and files of the PC are all readable and accessible. I even started programs from it in the CMD window behind the NOD32 window.

    I have put on purpose a folder with EICAR test file, john the ripper and pwdump, to see if NOD32 finds them.
    It does not find them neither in Smart or Custom mode.
    If I select Custom mode and select just the folder with these file, it appear the scan hangs.

    Any idea what is going on?

    Regards,
    David
     
  2. toxinon12345

    toxinon12345 Registered Member

    Joined:
    Sep 8, 2010
    Posts:
    1,200
    Location:
    Managua, Nicaragua
    you have verified the version of virus signature database (in SysRescue CD)?
    ESET ThreatSense engine parameters in Custom Mode (in SysRescue CD)?
     
  3. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,963
    Location:
    Somethingshire
    did you try with the latest version?
     
  4. xerces8

    xerces8 Registered Member

    Joined:
    Aug 24, 2005
    Posts:
    7
    No, I have a company license and can't upgrade just like that.
    We have a central repository.

    I haven't done any special checks on the SysRescue CD, I just booted it. Where should I look?
     
  5. Fidelius

    Fidelius Registered Member

    Joined:
    Oct 2, 2006
    Posts:
    151
  6. xerces8

    xerces8 Registered Member

    Joined:
    Aug 24, 2005
    Posts:
    7
    It was quite easy for me: Start ESET SysRescue in start menu, click "next" a few times and I had an ISO file, that I wrote to a CD.

    About the other rescue CDs, I tried almost all of them in march 2010 and they mostly suck:
    - either they have outdated virus definitions and don't support updating over internet
    - or support updating, but don't support the installed network card
    - or they don't recognize the hard drive or partitions on it
    - they hang
    - and so on.

    I think half of them were completely useless (tried on multiple PCs).


    But, I digress....
     
  7. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,456
    First of all, I'd suggest installing the latest version of EAV that contains the most current version of SysRescue and creating a rescue media from scratch. Maybe you could enable listing of all files in the on-demand scanner setup to see if the files are actually scanned.
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.