>>Spyware Doctor<<
Spyware Doctor v6.0.1.445 :
Code:
http://www.pctools.com/mirror/sdsetup.exe
Code:
http://rapid*share.com/files/243033438/Spyware.Doctor.v6.0.1.444-RES-patch.rar
>>Malwarebytes Anti-Malware<<
>>Malwarebytes Anti-Malware v1.38<<
* (FIXED) Minor issue with updating.
* (FIXED) Certain types of freezing during full and quick scans.
* (FIXED) Problem with Estonian language and installer.
* (FIXED) Certain folders showing up as files in results list.
* (FIXED) Scan time improperly displayed if Abort Scan clicked after Pause Scan.
* (FIXED) Error during loading log files after database update.
* (FIXED) Issues with freezing in protection mode. Certain conflicts with anti-virus software.
* (ADDED) Some proxy support, please see /proxy command line parameter.
* (ADDED) New command line parameters: /logtofolder, /logtofile (see help file).
Malwarebytes Anti-Malware v1.38
Code:
http://www.malwarebytes.org/mbam/program/mbam-setup.exe
http://www.speedshare.us/uploads/Malwarebytes921098.rar
http://www.indowebster.com/MalwarebytesAntiMalware136KeyGentRUE.html
http://www.indowebster.com/Malwarebytes_AntiMalware_v136_Keygan_AT4RE.html
Code:
http://www.speedshare.us/uploads/Malwarebytes776110.rar
>>Torchsoft Malware Defender<<
>>Torchsoft.Malware.Defender.v2.0.5 with working serial<<
Code:
http://www.speedshare.us/uploads/2745954.rar
thanks to ru board.
>>SUPERAntiSpyware<<
SUPERAntiSpyware v4.26.0.1006 Final
Changelog:
* General Technology Update (scanning/removal)
* Enhanced detection/removal of Rootkits
* Improved Definition Processing
* Fixed small UI bug when updating
Code:
http://downloads.superantispyware.com/downloads/SUPERAntiSpywarePro.exe
Code:
http://stashbox.org/550228/sasp.fix.rar
>>Lavasoft Ad-Aware 2008 Professional<<
Code:
http://rapid*share.com/files/190297769/Lavasoft_Ad-Aware_2008_Pro_7.1.0.12.rar
>>Anti Trojan Elite<<
Anti Trojan Elite 4.4.8
Code:
http://rapid*share.com/files/218066550/Anti-Trojan.Elite.4.4.8.rar
>>Loaris Trojan Remover 1.1.7.5<<
Loaris Trojan Remover v.1.1.7.5.wth.keygen.CRD
Code:
http://letitbit.net/download/1343.1d0b7a4388540f68e48f95df96/LoarisTrojanRemover1_1_7_5inclkeygen.rar.html
http://depositfiles.com/files/dgpgi6glh
http://free-share.ru/333209/53268/LoarisTrojanRemover1_1_7_5inclkeygen.rar
>>How to remove network worm Net-Worm.Win32.Kido (aka Conficker, Downadup) [version of KK.exe - 3.4.7]<<
Short description of the Net-Worm.Win32.Kido family.
1. It creates files autorun.inf and RECYCLED\{SID<....>}\RANDOM_NAME.vmx on removable drives (sometimes on public network shares)
2. It stores itself in the system as a DLL-file with a random name, for example, c:\windows\system32\zorizr.dll
3. It registers itself in system services with a random name, for example, knqdgsm.
4. It tries to attack network computers via 445 or 139 TCP port, using MS Windows vulnerability MS08-067.
5. It tries to connect to the following sites in order to learn the external IP address of the infected computer (we recommend configuring a rule to monitor connection attempts to these sites it network firewall):
Code:
+ http://www.getmyip.org
+ http://getmyip.co.uk
+ http://www.whatsmyipaddress.com
+ http://www.whatismyip.org
+ http://checkip.dyndns.org
o Install the patch from Microsoft that covers the vulnerability MS08-067,MS08-068,MS09-001 (on these pages you will have to select which operating system is installed on the infected PC, download corresponding patch and install it).
o Make sure the password of the local administrator account is not obvious and cannot be hacked easily – the password should contain 6 letters minimum; use a mixture of uppercase and lowercase, numbers and non-alphanumeric characters such as punctuation marks.
o Disable autorun of executable files from removable drives by launching the KK.exe utility with -a switch.
For Windows XP/Server OS: Start – Run – type kk.exe –a – click OK
For Windows Vista OS: Start – All Programs – Accessories – Run – type kk.exe –a – click OK
o Block access to TCP ports number 445 and 139 using a network screen.
You need to block these ports only while you perform the disinfection. As soon as you have the entire red disinfected, feel free to unblock the ports
To remove the virus locally:
1. Download the archive KK_v3.4.7.zip and extract the contents into a folder on the infected PC.
2. Run file KK.exe
If you run the KK.exe file without any switches, the utility will put a stop to active infection (kill threads and remove hooks), perform a memory scan and a scan of critical areas vulnerable to infection, and clean the registry.
Information When the scan is over an active window of the command prompt may be displayed on your computer monitor, in order to minimize the window press any button. For the window of the command prompt to close automatically it is recommended to run the utility KK.exe with the the parameter –y.
3. Wait till the scanning is complete.
Tidak ada komentar:
Posting Komentar