Login to participate
Security IdeasRSS
63
Antivirus/Antispyware Scanning Recovery Boot CD
GrahamA
July 7th, 2009
Filed under: Endpoint Protection (AntiVirus) - 11.x, Endpoint Protection (AntiVirus), Endpoint Protection Small Business, Malicious Code, Tip/How to, In Development, Security
63 Agree, 0 Disagree
Status:
In Development
(re-posting a previously requested item)
Require Symantec to provide a boot CD (or instructions on how to create one), so we can boot from this CD and fully scan a machine, without having to load Windows. This can be very useful when attempting to detect or remove a stubborn threat / trojan / virus, especially when the threat can't be removed, even via Windows Safe Mode.
Being able to also run this via USB key would be ideal.
This would be useful to have
This would be useful to have a full copy of SEP to run via a live cd. Until that point this is what I suggest to customers:
Startup the machine using Windows Preinstall Environment (WinPE) on a CD or USB stick that has the latest NSS tool to clean the infected machine.
Steps to do this:
1. Get WinPE
2. Download and update Norton Security Scanner(NSS)
3. Copy the NSS folder on the WinPE CD/USB
4. Boot the infected machine using the WinPE live cd or usb stick
5. Browse to NSS folder and run nss.exe too to scan and clean the infected machine.
Thought you guys would find this useful
Grant-
Please don't forget to mark your thread solved with whatever answer helped you : )
Is the NSS not only for
Is the NSS not only for detection, if i got i right it does not remove threats?
This already exists
Hello,
I was looking for the very same thing and was given the SymPE.rar which is an .iso and PDF instructions by my Sales Rep, I believe it is considered BETA and designed by Paul Murgatroyd from the SEP11 forum fame, you should check with him. I have used it to successfully find the eicar virus on an HDD.
It may just be a packaged version of what Grant Hall recommends in the post above.
My blog: http://www.scottfromsecurity.com/blog
New version in work
Hi all, thx for the input.
Its true, we have an unofficial version of this type of CD which has been working pretty well, but we are in the process of creating an updated officially supported version of the same thing. Look out for that in the future.
If anyone needs this type of CD in the meantime, we can provide on case per case basis, with the understanding that it's use is not officially supported right now, so it is use at your own risk.
GrahamA
Product Management, Symantec Security Solutions
I need the Live Antivirus CD
First of all, let me thank's a lot for anybody who publish such a Usefull Tools like Live Antivirus CD.
Then I have some questions from Symantec Support as Follows:
1. why the Symantec Technical Team, Don't Update all Usefull Tools by Collecting them on a known Location such a Special Web Sites or on the Second CD in Tools Sub Directory or ... & Give a chance for All Customers to use these Utilities & Solve their Problem & ... Enjoy ???
As i know, there is a Sub Directory on Second CD ( Tool ) that is for above mentioned, but the problem accured when some new Tools arrived & we don't know about that untill lookup in forums or wait for a New Release / New CD & this take some months, ( Depending on Symantec Upgrade Programs ) .
2. Why Remote Removal from SEPM Console is not on the Sujestion list ? Please do it. Also Still, Removing the Old version or Currupted Antivirus from a Client, need a Professional Knowledge & isn't Easy as Others. All Cleanwipe Tools are not Completed / Working fine & Allways, you should Verify some Points by Yourself to be Sure.
3. Some Simple request such a Modification in Home Page of SEPM, is not possible exept of Favorites. normaly Admins need to change some Parts (e.g. Attacks Per Hour: Last 12 Hours or Watched Applications Summary ) to achive Best result in First look for Fast Action .
4. Why, there is not some Tools, for Diagnostis Most Common Problems on Client / Servers & Collect some Necessary Information for Help to the Support / Technical Dept. of Symantec for Fast Response & Also feedback ?
So, it could be a Good Sujestion for Symantec Technical Team & According to CRM / Support on Symantec Groups .
Best Regards, & Try to Improve Performance & Best Support on Symantec
I am happy to here this.
I am happy to here this. Because I am sure that it will a very useful CD in my tool kit
CD works well, for the most part.
Thanks very much for letting me try the cd.
It cleaned off my computer nicely, however I did have a few problems. I could not get any virus definitions off the disk, or off my hard drive, so I had to dig out a network cable to do the online option. (which is a nice feature, btw) Also, it ran quite slowly, with long periods looking at a blank screen. If there was some type of loading or progress indicator, someone would be less likely to assume it has crashed.
I have Windows Vista, on an intel core 2 duo, if that makes any difference.
Norton Secutity Scan vs Norton Secutity Scan and Clean
Is the product Norton Secutity Scan possible to clean infections, when i downloaded it and found bad things, it was not able to clean, advising me to buy another product to be able to clean. does the NSS really support cleaning infiections?
How can I obtain a copy of
How can I obtain a copy of this "Live antivirus CD"?
Can i also get a copy of this CD/ISO?
I have run into an instance where my user got her PC infected so bad that symantec will no longer start (not even in safe mode). I need to run the scan without windows loading. Could you email me a link to this software? It would be greatly appreciated.
ETA
Have we got any sort of ETA on when this might be released, as we have a number of people in the business after this.
Recovery CD
This would be extremely useful as I have a machine that even after doing a XP repair is so messed up that norton or much else wont run. The more frustrating piece is that I have Norton and cant figure out how to make a recovery cd! the help files are no help and so far the forums have not been much help either. I have an older version to be sure Symantec Antivirus 9.0.0.338
Would you like to reply?
Login or Register to post your comment.