win32\patched.NAW Trojan...

so you mean my pc is in trouble for some reasons?

 

sfc_os.dll still reported as virus in my organization, on old XP machines.

 

Are you using VSD 6247 or later?

 

It depends on whether you consider disabling the System File Checker feature safe. I, for one, would not want to have such a patched dll in a network running production systems.

 

6248 currently

 

I've dealing with the exact type of problem in another forum. Just waiting for the complete logs from multiple scanners from the user to verify if there's any malware activity. But 1 log viewed so far it looks like a Nod false positive. The problem is SFC won't run without that file.

 

What should I do? What should I disable or delete? do you want to see my sysInspector log? I removed that dll on the exclusion list. It's not popping out now but I don't know if there's some malicious activity going on here on my pc.

 

Can your forward me the file?

 

Is there any confidential info in the sysinspector?

 

Not system inspector the file that was quarantined. I'm already sitting with another users one who got the same problem as I helped him at another forum. According to his logs his pc is clean. Its only the false positive that's the problem. I busy with nlite and notice SFC gets disabled and the SFC_Os.dll patched when you choose to remove the catalog files to make the install a bit smaller.
Don't know if I can fwd the info I collected to marcos so they can have a look at it. I'm just trying to make it easier for them to see if there's a issue or not.