Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 13 replies
  • Subscribers 1 subscriber
  • Views 4685 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Trojan\TDL3Mem-A Cleaning

hsimah

Hello,

We run Sophos as our enterprise anti-virus solution. Yesterday one of our machines was found to have this trojan on it: TDL3Mem-A (http://www.sophos.com/security/analyses/viruses-and-spyware/trojtdl3mema.html). It says it needs to be manually cleaned, but the Sophos site linked does not have instructions for it.

According to the scan it has infected ntdll.dll:pid:00000ab0.

Any help offered would be greatly appreciated.

Cheers.

:2983


This thread was automatically locked due to age.
Parents
  • 0

    As sophosfan you shouldn't link to a page which incorrectly states that There is no removal utility from Sophos Antivirus
    and also promotes a competitor :smileywink:. 

    Not surprising such a tool is available from Sophos - just not as a "self-service" download. Sophos targets organizations, not individual or home users, and support end users through their organization's IT staff only. There's a reason why specialised tools are necessary and they are in some way similar to Restricted Use Pesticides - powerful, effective but with possible side effects and potentially harmful in the hands of "amateurs" (I'm not implying that you are one)

    I'm aware that some Sophos customers don't give support to (some of) their end users although they should do so. Do you think Sophos should therefore make these tools publicly available?

    And yes, I had some encounters with TDL3Mem and no problems obtaining the Sophos tool and removing the pest with it.

    Christian     

    :11645
Reply
  • 0

    As sophosfan you shouldn't link to a page which incorrectly states that There is no removal utility from Sophos Antivirus
    and also promotes a competitor :smileywink:. 

    Not surprising such a tool is available from Sophos - just not as a "self-service" download. Sophos targets organizations, not individual or home users, and support end users through their organization's IT staff only. There's a reason why specialised tools are necessary and they are in some way similar to Restricted Use Pesticides - powerful, effective but with possible side effects and potentially harmful in the hands of "amateurs" (I'm not implying that you are one)

    I'm aware that some Sophos customers don't give support to (some of) their end users although they should do so. Do you think Sophos should therefore make these tools publicly available?

    And yes, I had some encounters with TDL3Mem and no problems obtaining the Sophos tool and removing the pest with it.

    Christian     

    :11645
Children
No Data