Free Virus removal tool from Kaspersky.
Straight_Man
Geeky, in my own wayNaples, FL Icrontian
From Kaspersky Labs:
Given Enverex's posts and what he had, I figured he could use this. Others, given the MyDoom spread, might also find this handy if they have a machine they think might have gotten hit in the recent attack. This does NOT pull mimail viruses, though, as those are coded enough differently that they need to be pulled with other code.
EDIT:// Shorty said it was OK to put the removal tool up as an attachment. The tool is 113.1 KB literally, some downloaders will report as 114 KB rounded UP to nearest even KB size. Download link is in post #4 of this thread. If things get busy for that post, get from Kaspsersky directly as above in bottom line of quote. YOU CAN install and unarchive and run starting from a floppy copy, so pass on on floppy if friends need or want this remover.
Use of this tool needs:
Download -- link in quote;
Install;
Reboot;
Run;
Reboot.
ALSO NOTE, the mis-spelled 'Sobif' is actually supposed to be 'Sobig'. Feel free to pass archive to friends for use, please! Kaspersky is offering this in both self-defense and in a good public community attitude of wanting viruses DEAD and missing.
MyDoom note: There are TWO variants of MyDoom known, this kills BOTH variants as Kaspersky found the second variant also-- the second variant launches a Microsoft site\domain DDOS attack as well as a SCO DDOS attack. Kill the DDOS's by killing viruses that do the DDOS....
John.
Kaspersky Labs offers a free removal tool for users infected by the
Mydoom Internet worm. The utility detects and deletes this dangerous
malicious program.
CLRAV scans the computer memory and hard drive of the infected machine,
neutralizes the worm and restores the original configuration of the
Windows system registry.
Additionally, this removal tool copes effectively with other malicious
programs, including Klez, Lentin, Opasoft, Tanatos, Welchia, Sobif,
Dumaru and Swen. Given the current outbreak, CLRAV is most useful for
users, who have installed anti-virus protection that does not detect and
delete Mydoom correctly.
Kaspersky Labs recommends that users close all active applications
before launching CLRAV. Once the utility is installed, the machine must
be restarted. Finally, it is best to launch an anti-virus scanner to
perform a comprehensive virus check.
You can download CLRAV from ftp://ftp.kaspersky.com/utils/clrav.zip.
Given Enverex's posts and what he had, I figured he could use this. Others, given the MyDoom spread, might also find this handy if they have a machine they think might have gotten hit in the recent attack. This does NOT pull mimail viruses, though, as those are coded enough differently that they need to be pulled with other code.
EDIT:// Shorty said it was OK to put the removal tool up as an attachment. The tool is 113.1 KB literally, some downloaders will report as 114 KB rounded UP to nearest even KB size. Download link is in post #4 of this thread. If things get busy for that post, get from Kaspsersky directly as above in bottom line of quote. YOU CAN install and unarchive and run starting from a floppy copy, so pass on on floppy if friends need or want this remover.
Use of this tool needs:
Download -- link in quote;
Install;
Reboot;
Run;
Reboot.
ALSO NOTE, the mis-spelled 'Sobif' is actually supposed to be 'Sobig'. Feel free to pass archive to friends for use, please! Kaspersky is offering this in both self-defense and in a good public community attitude of wanting viruses DEAD and missing.
MyDoom note: There are TWO variants of MyDoom known, this kills BOTH variants as Kaspersky found the second variant also-- the second variant launches a Microsoft site\domain DDOS attack as well as a SCO DDOS attack. Kill the DDOS's by killing viruses that do the DDOS....
John.
0
Comments
Ok, cool. Then others can benefit from the virus removers. Sorry, did not mean to APPEAR to demean you.
Swen first was seen by Symantec in September of last year, that is why you have been getting same thing for 5 months. I used that time frame to zero in on what it was that was attached. In you case, you were I hope smart snough to just trash the things-- from what you said, I assume you have done so. When you said "yep" before, I did not know you had opened none of them-- when I see no confirm of nothing opened, my conservative approach is to double-check and provide fixer links, and if possible get folks to double-check with fixers\removers which will tell you box is clean if nothing found. So, for you and others, figured that since these viruses were still propagating it was worth it to have the remover link inline. As I said, if not opened, no worries, but I never knew you had not-- only had a Yep to see. Klez, the other thing that comes with the other topics like you said, is also still in wild, it hit the wild mostly in 2003 with various times for its various variants, now 6 variants of that one known.
John.
John.
I use AVG and BitDefender, both free
http://www.bitdefender.com/bd/site/products.php?p_id=24
http://www.grisoft.com/us/us_dwnl_free.php
I know AVG didnt have the definitions for it until like yesterday but I know BitDefender has it covered.
If you see a strange email, one you did not ask for, and want to delete it without opening it, hover your mouse pointer over it and do NOT do the normal click. Normal click opens email, though not the attachment unless you click on that IN most cases (there are some viruses packaged in such a way that opening the email triggers an attachment opening, so safest is NOT to open the email at all).
Now, instead of clicking LEFT mouse button (unless you have left handed mouse in which case REVERSE left and right for what I say) click the RIGHT mouse button. You should get a CONTEXT MENU in a box that has a delete option popping up. CLICK left button with mouse pointer over the Delete item or line in the menu list. THEN empty your recycle bin, right click the Recycle Bin and choose Empty Recycle Bin.
This is for folks who have not discovered the power of the right mouse button in Windows. MOST folks have right handed mice, those that have left handed mice will be reversing left and right for everything in Windows, so you will know if you have a left-handed mouse or have told the mouse driver to swap buttons because you are a left-handed "mouser".
I have shown lots of folks how to do this, it is surprising (aka surprizing) to me how many folks do not know how to do a safe email message delete in 89 and up in Windows. So, will stick this here as most of the above viruses discussed in this thread are TOTALLY email spread.
John.
I use purchased F-Prot (Windows Desktop version) plus BitDefender here. The one major reason I can say to use a paid AV is to get defs same day as developed. Retail NAV by default picks up defs weekly( a manual update is possible, but involves a manual download unless you run Enterprise NAV), and viruses are becoming wide spread sooner than a random week from last update or every Wednesday-- problem with a weekly, is it is too seldom for the spread rates of today's major new variants. F-Prot is doing def autopickup every 12 hours, scans afterwards DAILY after early AM pickup. F-Prot is also TINY, it is like Tiny Firewall compared to Ice or even Sygate Pro or Zone Alarm, when you consider AV sizes compared to firewall sizes. I no longer run NAV here.
I got a ten seat annual license and subscription to F-Prot for USD $50.00, so do not have to distribute defs here as each box picks up its own defs through firewalled router and end node firewall on each box. F-Prot runs on 98 and up with minimal system impact, and I can run it in scan mode and fold all at once. It can dig into archives as well as NAV can.
John.