On Thu, 22 May 2008 11:28:12 -0400, John Mason Jr wrote:

> Kayman wrote:
> <snip>
>> The reason non-technical people listing their problems in (pertinent)
>> newsgroups is because they're crying out for help and guidance; Something
>> you never ever provide except hideous snipes, insults and encrypted
>> remarks. The good people residing/working in remote areas don't need your
>> empty rhetoric; They are mostly working with limited resources. All they
>> care about to get their machine running again and that's where David's
>> Multi-AV *is* the next best thing to re-install the OS [PERIOD]!
>> They don't give damn about your overbearing bunk because it's just not
>> feasible for them to do anything more 'sophisticated'. Flattening/wiping
>> the HDD and re-installing the OS would most probably shut them off from the
>> rest of the world for good or at least until professional help is
>> available, which in some instances could take many months.
>>
> <snip>
>
>
> SG normally raises the same point, and you might not like it but it is
> true.
>
> If a machine has been compromised/infected, and you rely on signature
> based cleaning/detection methods then you cannot be sure you are not
> still compromised.
>
> The correct way to recover is to restore from known good media, and then
> make sure that you patch the vulnerability that allowed the compromise
> in the first place
>
> If you accept the risk that you may still be compromised then go ahead
> and use signature based solutions.
>

John,
Please read (or re-read) my post dated 20-May-08 10:28:12PM in this thread
:-)