Kaspersky TDSSKiller

Share interesting information or links related to portable apps here.
Message
Author
User avatar
I am Baas
Posts: 4150
Joined: Thu Aug 07, 2008 4:51 am

Re: Kaspersky TDSSKiller

#16 Post by I am Baas »

Downloaded EmsisoftEmergencyKit.exe and will try to test both KVRT and Emsisoft later on this week under a different set up. Sandboxie is not great when driver's are involved.

User avatar
joby_toss
Posts: 2970
Joined: Sat Feb 09, 2008 9:57 am
Location: Romania
Contact:

Re: Kaspersky TDSSKiller

#17 Post by joby_toss »

Just FYI, KVRT's driver is called 1DD4E484.sys on my system, but I think these 8 characters are unique to the PC it's running from. I'm using Nir Sofer's Installed Drivers List app for this. Thank's!

User avatar
I am Baas
Posts: 4150
Joined: Thu Aug 07, 2008 4:51 am

Re: Kaspersky TDSSKiller

#18 Post by I am Baas »

joby_toss wrote:I could, however, find a driver (cleanhlp64.sys) that belongs to Emsisoft and wasn't unloaded after Emsisoft Emergency Kit was closed... :( Would appreciate a confirmation on that!
Finally tested Emsisoft Emergency Kit (EEK) v10.0 build 5488.

I could not find cleanhlp64.sys or any other driver belonging to EEK in the "Windows Directory" after exiting the program. It does however create a "Start Emsisoft Emergency Kit" shortcut on the desktop.

PS. I ran the "Malware Scan" including PUPs and proceeded to quarantine and delete an entry. Did you exit the program properly?

User avatar
joby_toss
Posts: 2970
Joined: Sat Feb 09, 2008 9:57 am
Location: Romania
Contact:

Re: Kaspersky TDSSKiller

#19 Post by joby_toss »

Yes, I used it a few months ago and I exited the app normally... no crash, no restart, everything seemed OK. Will take another look at it. Thank's!

User avatar
Midas
Posts: 6705
Joined: Mon Dec 07, 2009 7:09 am
Location: Sol3

Re: Kaspersky System Checker

#20 Post by Midas »

Kaspersky System Checker (KSC; https://www.kaspersky.com/system-checker) is yet another freebie from Kaspersky Labs. I haven't tested its stealth status, but KSC comes in a single 47MB launcher executable that, when run, will unpack itself to a 'ksc' sub-folder (with a further 74MB disk cost) and run from there -- and there's even a 17 page PDF user manual to be found there.
https://www.kaspersky.com/system-checker%20author wrote:Kaspersky System Checker gives you a free way to scan your PC -- and get details about any issues it finds on your PC.
Image

Image

Image


The final KSC report does include a couple of plugs for paid Kaspersky Labs products, but overall and as the reports can be saved in HTML format for later reading, KSC is a valuable tool to help minimize hacking exposure for any given system.

Download KSC latest release (currently v1.1.0.228) from https://www.kaspersky.com/downloads/tha ... em-checker.

User avatar
Midas
Posts: 6705
Joined: Mon Dec 07, 2009 7:09 am
Location: Sol3

Re: Kaspersky TDSSKiller

#21 Post by Midas »

TDSSKiller v3.1.0.21released, dated 2018-11-28 (no changelog).

ZIP download available from support.kaspersky.com/viruses/utility#TDSSKiller...

User avatar
__philippe
Posts: 687
Joined: Wed Jun 26, 2013 2:09 am

Re: Kaspersky TDSSKiller

#22 Post by __philippe »

TDSSKiller v3.1.0.24 Updated 04-DEC-2018

Download page for Kaspersky TDSSKiller generic rootkits detector/cleaner, as well as multiple specific rootkits cleaners

User avatar
Midas
Posts: 6705
Joined: Mon Dec 07, 2009 7:09 am
Location: Sol3

Re: Kaspersky Virus Removal Tool

#23 Post by Midas »

Midas wrote: Kaspersky Virus Removal Tool 2015 also available at http://www.kaspersky.com/antivirus-removal-tool (see http://support.kaspersky.com/viruses/kvrt2015 for info).

http://support.kaspersky.com/viruses/utility wrote:If you suspect that your computer is infected with malware, then use Kaspersky virus Removal Tool 2015. Kaspersky Virus Removal Tool 2015 is designed to scan and disinfect an infected computer from viruses and other types of malicious programs.

Topic update: Kaspersky Virus Removal Tool 2020 (KVRT) v20.0.6.0 released 2021-02-24 (available chagelog at https://support.kaspersky.com/15673; download at http://www.kaspersky.com/free-tools).

Image

FYI, KVRT also supports CLI parameters -- e.g., here's the output of "KVRT /?":

Image

Note that by default KVRT will save reports and quarantined files to 'SystemDrive\KVRT_Data', which makes it not stealth.

The following batch file will make KVRT perform a quick scan and exit, with no GUI (details will appear in the CMD console), while saving everything unencrypted to program folder (for a deep scan, just add option "-allvolumes" to the end).

Code: Select all

@KVRT -d %~dp0reports -moddirpath %~dp0modules -accepteula -noads -dontencrypt -fixednames -details -silent

Post Reply