SysRescue CD can't find viruses

Discussion in 'ESET NOD32 Antivirus' started by xerces8, Oct 9, 2010.

Thread Status:
Not open for further replies.
  1. xerces8

    xerces8 Registered Member

    Joined:
    Aug 24, 2005
    Posts:
    7
    Hi!

    I have NOD32 4.0.417.0 on Windows XP Pro SP3.
    I updated to latest virus definitions and then created a rescue CD.

    I booted the CD on different PC (that has Vista installed) and observed weird behavior:
    - Smart scan finishes in 3 minutes which seems a bit too fast
    - Custom scan, set to scan the 2 partitions on the hard drive finishes in 10 seconds. The statistic says Number of scanned objects : 0

    This happened once before (march 2010), so it is not a new issue.

    The hard drive, folders and files of the PC are all readable and accessible. I even started programs from it in the CMD window behind the NOD32 window.

    I have put on purpose a folder with EICAR test file, john the ripper and pwdump, to see if NOD32 finds them.
    It does not find them neither in Smart or Custom mode.
    If I select Custom mode and select just the folder with these file, it appear the scan hangs.

    Any idea what is going on?

    Regards,
    David
     
  2. toxinon12345

    toxinon12345 Registered Member

    Joined:
    Sep 8, 2010
    Posts:
    1,200
    Location:
    Managua, Nicaragua
    you have verified the version of virus signature database (in SysRescue CD)?
    ESET ThreatSense engine parameters in Custom Mode (in SysRescue CD)?
     
  3. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    did you try with the latest version?
     
  4. xerces8

    xerces8 Registered Member

    Joined:
    Aug 24, 2005
    Posts:
    7
    No, I have a company license and can't upgrade just like that.
    We have a central repository.

    I haven't done any special checks on the SysRescue CD, I just booted it. Where should I look?
     
  5. Fidelius

    Fidelius Registered Member

    Joined:
    Oct 2, 2006
    Posts:
    146
  6. xerces8

    xerces8 Registered Member

    Joined:
    Aug 24, 2005
    Posts:
    7
    It was quite easy for me: Start ESET SysRescue in start menu, click "next" a few times and I had an ISO file, that I wrote to a CD.

    About the other rescue CDs, I tried almost all of them in march 2010 and they mostly suck:
    - either they have outdated virus definitions and don't support updating over internet
    - or support updating, but don't support the installed network card
    - or they don't recognize the hard drive or partitions on it
    - they hang
    - and so on.

    I think half of them were completely useless (tried on multiple PCs).


    But, I digress....
     
  7. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    First of all, I'd suggest installing the latest version of EAV that contains the most current version of SysRescue and creating a rescue media from scratch. Maybe you could enable listing of all files in the on-demand scanner setup to see if the files are actually scanned.
     
Thread Status:
Not open for further replies.