Anti-Virus products

 

 

Mac OS X - Sophos Anti-Virus v7

Mac Instructions:

  • Supports 10.6 (Snow Leopard), 10.5 (Leopard) , 10.4 (Tiger)
  • Simply download the DMG and open the mounted “SAV OS X” disk image and install by double clicking the “Sophos Anti-Virus.mpkg” file found within.
  • Upon completion, Sophos Anti-Virus should be automatically configured for automatic updating and the real-time scanner pre-enabled to remove viruses when they are seen.
  • To manually update, click on the black shield on your clock bar and choose “Update Now.”

 

 

 

Windows - Sophos Endpoint Security and Control v9

Windows Instructions:

  • Supports Windows XP, Vista*, 7
  • You must first completely uninstall and remove other virus software, like Norton, MacAfee, Symantec, or Trend. This can be done using the “Programs and Features” item in the Windows Vista/7 Control Panel or "Add or Remove Programs" in the Windows XP Control Panel. Pre-existing or current versions of Sophos can remain as they will be auto removed during installation. If you are having difficulty removing a Symantec product, try their removal tool.
  • Some viruses have been known to disable one's ability to install anti-virus software. If your PC is infected you must first remove the virus either manually or with tools. If you are unsure as to how this is done you best contact OIT Desktop Support for assistance in the removal of the virus.
  • To download this software you will need to use your Williams College username and password to authenticate.
  • To watch the progress of the installation just right click on the blue shield near your system clock and choose “View updating status”
  • The installer is automated and requires no user intervention.
  • The shield will remain solid blue when the installation is complete and the option to “Open Sophos Endpoint Security and Control” will be bold when you right click on the blue shield.

 

* Vista Home Basic excluded. We do not own, use or recommend this particular flavor of Vista. We suggest the use of Microsoft Security Essentials (for Vista/7 - 32 bit only) as it is free and is a SafeConnect (“Impulse”) recognized alternative.

Some Vista users - If you see the error: “Sophos error 3057:There was an unexpected error while attempting to create, repair or delete a user account”, you must do the following prior to installing Sophos Anti Virus on Vista:

1.     Click the Start button and in the Start Search field, type regedit. Press Enter.

2.     Expand HKEY_LOCAL_MACHINE

3.     Right Click on SOFTWARE and select Permissions

4.     Click Add and add your user name (the current user) to the list of Allowed Users.

5.      Grant the current user Full Permissions and click OK.

6.     Run the Sophos installer.

 

Windows CLI for PE or Safe Mode - Sophos Command Line

  • This product and the efforts outlined below are intended for use on Williams College owned workstations and should not be used for personal, profitable use on non-college owned systems.
  • The package is updated hourly and contains all that is needed to perform command line scans with Sophos Anti-Virus. It can be run in the Windows 32/64 bit environment.
  • Download this zip and use 7Zip  to extract its contents to the root level of your hard disk, c:\.
  • If using PE then you should move the extracted directory to a USB thumb drive. Have that drive and the infected hard disk drive connected and mounted on a host PC prior to booting from your PE media.
  • Use these recommended parameters, where c: is the drive to be scanned (change this to reflect the target drive letter, three times in our example below).
  • Boot sector of target drive will be scanned. Infected files that can be detected and disinfected, will be. Viruses will be removed. This example excludes the cache directory of a data backup application.
  • Review your log file when complete and take necessary actions. Infected system files that are removed may cause a system to become unbootable. These files should be replaced with the equivalents from an identical, non-infected system.
  • This information is also located in a readme.txt file in the archive.

 

sav32cli.exe -mac -nc -extensive -di -dn -p=c:\savclilog.txt -pua -suspicious -remove -mbr -bs=c c: –exclude livebackup*

 

parameters explained (* is enabled by default, precede - n negates):

-h

displays help and exits (more parameters listed)

-sc   

[*] : Scan dynamically compressed executables

-extensive

[ ] : Scan complete contents of files

-di 

[ ] : Disinfect infected items

-s 

[*] : Run silently (do not list files swept)

-c 

[*] : Ask for confirmation before disinfection/deletion

-b   

[*] : Sound bell on virus detection

-rec  

[*] : Do recursive scan

-p=<file>

: Write to logfile <file> in default encoding

-pua   

[ ] : Scan for adware/PUAs

-suspicious

[ ] : Scan for suspicious files

-mbr  

[ ] : Scan master boot records on all hard disks

-bs=X,... 

[ ] : Scan boot sector of each drive listed

-mac 

[ ] : Scan for Macintosh viruses

 

             

Free Windows alternatives

-         Microsoft Security Essentials

XP (32bit)

Vista/7 (32 bit)

Vista/7 (64 bit)

 

Stay Informed:

-         Fake AV – what is it?

-         Safe web browsing – top ten myths

 

-         Threatsaurus - the a-z of computer and data security threats

-         Safety tips – great “how to” advice

-         Virus timeline – a little history of the computer virus

 


Please visit the OIT Virus Center for additional information.


 

Last updated on Thursday 11/18/2010 19:47 EST