Jump to content


  • Content Count

  • Joined

  • Last visited

About fiveover

  • Rank
  • Birthday 01/01/1970
  1. Can do that too Could not see a way to attach/copy file fyi: do u want the file itself ??
  2. This is a zipped .DLL from Raining Data Corp, part of older database utility Omnis. Identified as Vundo variant
  3. Nick: You want me to change the thread title to something a little less melodramatic ??? prolly wasnt SAS : more pebkau !!
  4. OK so: reboot rescan = 14 cookies All else clear. Must have been mea culpa: if there was a reboot button, I skipped it. Just for a moment....ooer. All seems ok now. regards
  5. Well well Have just done a full clean install onto new HW XpSP3 fully updated Mindful of IE hole as announced ;; they are shite !! Very careful re updates: installed scanners, made images etc etc etc One of the last things I did, ( maybe should have been earlier ) was install and register my SAS. Updatyed and ran a scan: HEART ATTACK... F@@K ME. Then read a bit and looked a bit closer... Scanned with all the second tier products...all clear Could not find any of the files mentioned in the log. Rescanned = same Looks like every detection in the db ?? scanned the db itself ?? OK will reboot and try again and get back to you.. Regards
  6. Yes. It's a hips notification as 'suspicious' on run and can be authorized per event which takes it out of Quarantine. Does not stop install/updates. Full scan does not show any 'malware' I have no idea how their hips is specifically configured: (there are only very general options for user) : reg modification ?? as notifier I have Sophos @ home as part of company deal: not really sure if Sophos is ideal for home user: famous (?) for false positives. Not sure if I'll get any response. Not a major problem here, just thought it could go in the kb. Regards.
  7. My Sophos AV quarantines SAS.exe ( with every new version install) Forgot to mention it before: you might want to ring them Regards. Happy Licensed User since 8/2006
  8. Looks outstanding to say the least Nice to have seen the beta testing etc prior to release: quality control: good stuff. Congrats to the team. Never regretted getting this utility Thanks
  9. Update ?? Any changes to this last comment? Any options in the pipe? Seems like Rat type logging mals have become very popular @Nick: can SAS detect keyloggers? Which ones? Remove them? Regards
  10. I think that would be great. Agree, but not necessarily too verbose; if 'you' didn't put it there it ain't a good thing. Correct me if I am wrong but there is no reason to have KL like functions in any regular utility, although some may have similar functions. Fifficult not to confuse a real beginner, but they could always post here. Maybe add a little warning: "if you aren't sure about this then; Quarantine and check with the forum" If the SAS detector found something like Hoversnap or snagit or other screen capture type proggie doing its' thing by name; that should be no problem; if it's something you dont know . I am not smart enough to know how to do this stuff, but I have come to have great faith in SAS. Regards.
  11. Nick et al I know KL's are many and difficult and many might be regarded as legitimate commercial tools and applications for same even going to security of home systems ....but....as per here: http://www.wilderssecurity.com/showpost ... stcount=11 I think if its not too difficult, that an "detect/exclude/remove" option would be nice. There seems to be many KL mals with identical methods to legit tools. I assume that the any "dropper' app for the KL would be detected and we could reasonably expect out HIPS type tools to stop unauthorised outbounds. I would be happier leaving it to you to detect these rather than trust other tools as default. Thanks
  12. I am not sure how to add an item to the "allowed items" list Any help. In the excluded files list will that include any .exe files that may bein the folder when scan is running/ thx
  • Create New...