Symantec provides the following instructions for removal of
Downloader.Trojan:
http://securityresponse.symantec.com/avcenter/venc/data/downloader.troj
an.html
If the offending file is DLL located in System directory, wouldn't
Administrator rights be needed for anti-virus to delete the file?
TEA, Eugene
Well if you're not using NTFS, then I don't think it matters what rights an
account has and the NT based O/S is a root based O/S using FAT32 and
anything can be deleted by any account.
On the other hand if you're using NTFS, then permissions are and can be set
for on folder for an account. If you have NTFS applied to the HD, then go
to the System directory with Explorer and right-click the System directory
node and select Properties/Security and you'll see the Accounts that have
access and the privileges of each account. You'll also notice the System
account there, which belongs to the O/S. The System account has full
privileges.
Like NOD32 that I run on my XP machines, Norton runs as a service on the NT
based XP O/S and all services run with the Local System Account. You can go
to Services on the XP O/S and find the running Norton service and right-
click/Properties to see what account it is using as it's running. When it
comes to scanning, detecting, and deleting etc etc it's the Norton service
that's doing the work and it has all the rights it needs by using the
System account.
I could be wrong.
Duane
