hey have any files updated since i last tested?? im too lazy to check and im falling asleep.
new package is about 20mb smaller to a size of 85.8mb uncompressed.
and using 7z best compression it is ... waiting haha... 61.3. not to shabby.
just sharing the direct links. plz delete if this is not smart to do.
SCHADENFROH'S MALWARE REMOVAL SCRIPT (September 15, 2007)
I have been working on creating a script that will automatically remove malware by using several antimalware application's command line versions.
This was created to help speed up the removal process when I am asked to clean a system for a friend or family member.
Disclaimer: This script has the potential to damage your windows install. Use it and the programs linked below at your own risk.
I highly suggest that you only try it in a virtual machine or a test machine for now. I have only tested it in a Windows 2000
Virtual Machine that was uninfected. It should work "in theory," so proceed at your own risk, I take no responsibility for
anything that is the result of you using this. Also note that it may remove some legit applications in that the antimalware applications have false positives.
Some scanners may purge your existing stored emails if malware is detected in one (applies to only certain email clients).
It is possible that some of these programs require that you own the base product and/or cannot be used in a non home environment.
Do not use those if that is the case and remove them from the .cmd (read the license)
Instructions are in the readme file, but here is what you should do:
1. Download and extract the a-squared command line scanner (@
http://www.emsisoft.com/en/software/download/) into the
"a2cmd" folder within the scanners folderin the package you downloaded. (a2cmd.exe should be in the a2cmd folder, not a subfolder of a2cmd)
http://download1.emsisoft.com/a2cmd.zip
2. Download Mcafee's latest beta (with command line scanner) called win_betaengdat.zip ( @
http://vil.nai.com/vil/virus-4d.aspx) into
the "Mcafee" folder within the "Scanners" folder. (scan.exe should be in the Mcafee folder)
http://download.nai.com/produc...ges/win_betaengdat.zip
3. Download Sophos (@
http://www.sophos.com/support/...se/article/13251.html), extract it into the Sophos folder
(note that SAV32CLI.EXE should be in the "Sophos" folder) Also, be sure you update the virus definitions (@
http://www.sophos.com/downloads/ide/)
by downloading the update files (latest IDE for web & CD) and overwriting the existing definitions (if any) in the sophos folder.
http://www.sophos.com/tools/sav32sfx.exe
4. Download Trend Micro's command line scanner (Sysclean Package @
http://www.trendmicro.com/download/dcs.asp) and the latest
definitions ( @
http://www.trendmicro.com/download/pattern.asp),Create a folder for the .com file and then double click on it
in windows explorer. After that, it should pop up trend micro, now without closing the application copy and paste all of the
files that it unpacked into the "TrendMicro" folder within the "Scanners" folder. Note if you run either program, the associated files
will be deleted, so copy it into the folder while you leave it running.
(note that vscantm.bin, sysclean.exe, lpt$vpn, vscantm.bin and their associated files should be in the "TrendMicro" folder)
http://www.trendmicro.com/ftp/products/tsc/sysclean.com
http://www.trendmicro.com/ftp/...cts/pattern/lpt721.zip
5. Burn the readme, the .bat file and the scanners folder to a cd (or removal storage medium)
6. Bring the cd (or removal storage medium like a USB flash drive) to the infected computer (or your virtual machine to test with) and boot the PC
into "Safe Mode Command Prompt" by hitting F8 before the windows logo appears
7. Move to your CD (or removal storage medium) drive once the command prompt comes up (usually D:\)
8. Type "clean" without the quotes and it will automatically copy over the files to the PC, scan, and remove any malware found without user intervention.
If you type "ScanOnly" without the quotes instead of "clean" the script will only scan for malware, it will not remove it.
"clean" = scan, remove, and report; "ScanOnly" = scan and report only.
9. Once the first scanner window pops up (after the files have copied over to the hard drive), it is safe to remove the cd or
flash drive and begin treating another PC in a similar fashion.
10. Logs of the various scanners will pop up at the completion of the script with details on what was scanned, found, and/or deleted.
Report bugs, suggestions, comments, etc. in the thread about this on the Anandtech forums:
http://forums.anandtech.com/me...=2084960&enterthread=y