Will it be possible to identify and highlight the removal of the most important system files such as explorer.exe, winlogon.exe, userinit.exe, ntldr, toskrnl.exe, ntdetect.com etc., (and their registry modifications in case of CCE) in case they are badly infected and are surely being deleted.
It would be great if Comodo Rescue Disk/CCE identifies any such big impacts on the normal booting and notifies about the loss, and gives possible suggestions to download and replace with fresh samples.
This is just a suggestion but how about using xPUD as CRD’s GUI. Very user friendly (basic and colourfull) and would work well with CRD (I think). Details below:-
I have been facing another surprise for quite some time. I am getting this weird behaviour on both a Virtual Machine and my real machine. ???
When I select any kind of scan (smart scan/full scan or custom scan of simply one small directory) the CCE screen shows some weird 9 digit scan percentage and just hangs there. I waited for almost 30 minutes but it did not change. I could of course cancel the scan and run CCE again.
I am getting one success among some 5 to 10 attempts.
not much, I have been given two bug fix temporary builds to verify the fixation of my issues. Haibo said they are just developer snapshots and a proper second beta will be released soon (possibly with more features and UI improvements, I hope)
My only need for “autoruns” in CRD is the case where CRD does not find all the infections (it can not of course detect all infections all the times), and the unknown malware still executes after running a scan with CRD.
If we could have a way to ‘stop unknown malware from execution at startup’ using CRD, we have a great chance of fighting almost all zero day infections too…
Just want to know if rescue cd’s should be used for specific purpose only i.e unbootable system or can be used for normal scanning of the system safely?