New Patch
Code :
Malwarebytes.Anti-Malware.v1.37.Keygen-COMiX
Code :
http://www.speedshare.us/uploads/Malwarebytes776110.rar
Code :
Code :
Keygen.and.Patch-CRD OR RES UBL.Tool.v1.0-RES-patch & Serials Both still Work
Code :
http://stashbox.org/550228/sasp.fix.rar
Code :
Code :
http://rapidshare.com/files/218066550/Anti-Trojan.Elite.4.4.8.rar
Code :
http://letitbit.net/download/1343.1d0b7a4388540f68e48f95df96/LoarisTrojanRemover1_1_7_5inclkeygen.rar.html
http://depositfiles.com/files/dgpgi6glh
http://free-share.ru/333209/53268/LoarisTrojanRemover1_1_7_5inclkeygen.rar
Short description of the Net-Worm.Win32.Kido family.
1. It creates files autorun.inf and RECYCLED\{SID<....>}\RANDOM_NAME.vmx on removable drives (sometimes on public network shares)
2. It stores itself in the system as a DLL-file with a random name, for example, c:\windows\system32\zorizr.dll
3. It registers itself in system services with a random name, for example, knqdgsm.
4. It tries to attack network computers via 445 or 139 TCP port, using MS Windows vulnerability MS08-067.
5. It tries to connect to the following sites in order to learn the external IP address of the infected computer (we recommend configuring a rule to monitor connection attempts to these sites it network firewall):
Code:
+ http://www.getmyip.org
+ http://getmyip.co.uk
+ http://www.whatsmyipaddress.com
+ http://www.whatismyip.org
+ http://checkip.dyndns.org
To prevent all workstations and file servers from being infected with the worm, you are recommended to do the following:
o Install the patch from Microsoft that covers the vulnerability MS08-067,MS08-068,MS09-001 (on these pages you will have to select which operating system is installed on the infected PC, download corresponding patch and install it).
o Make sure the password of the local administrator account is not obvious and cannot be hacked easily - the password should contain 6 letters minimum; use a mixture of uppercase and lowercase, numbers and non-alphanumeric characters such as punctuation marks.
o Disable autorun of executable files from removable drives by launching the KK.exe utility with -a switch.
For Windows XP/Server OS: Start - Run - type kk.exe -a - click OK
For Windows Vista OS: Start - All Programs - Accessories - Run - type kk.exe -a - click OK
o Block access to TCP ports number 445 and 139 using a network screen.
You need to block these ports only while you perform the disinfection. As soon as you have the entire red disinfected, feel free to unblock the ports
1. Download the archive KK_v3.4.7.zip and extract the contents into a folder on the infected PC.
2. Run file KK.exe
If you run the KK.exe file without any switches, the utility will put a stop to active infection (kill threads and remove hooks), perform a memory scan and a scan of critical areas vulnerable to infection, and clean the registry.
Information When the scan is over an active window of the command prompt may be displayed on your computer monitor, in order to minimize the window press any button. For the window of the command prompt to close automatically it is recommended to run the utility KK.exe with the the parameter -y.
3. Wait till the scanning is complete.
Download Windows Vista Portabel Edition 2009 | 112.5 Mb
Click Here Part 1
Click Here Part 2
Komentar ini telah dihapus oleh pengarang.
BalasHapus