Posted 29 June 2011 - 01:16 PM
Greetings, my Name is Tony and I am a network engineer/computer consultant with 20 plus years experience. I feel old.
I have a custoemr with Nod32 as the main protection and it has worked great in the past. But in 48 hours two pcs have a nod32 alert that says
the sfc_os.dll file is infected with win32/patched.naw . After much researched I used combofix an dit found a root virus.
I still had to boot in safe mode to repplace the patched file with a legit version, and then updated everything.
But is this the best way to deal with the infection? Do we know if this is spreading in oher places lately or I am a
isolated victim? And how did it get past nod32? Pardom my dyslexia. I did a search in the forums but nothing came up.
First time here in the forums so I am not sure if I am doing any of this right.