Description: 
If you have reached this page, then you probably have been sent here by one of our other free programs :RRT,PRT, DRT,SRT, isReset or iPMS
By using our free programs above, you probably have got rid of some common infectors like:
Virus.Win32.Perlovga.a
Virus.Win32.Perlovga.b
Trojan-Dropper.Win32.Small.apl
Backdoor.Win32.small.lo
W32/QQRob-ABX
Alnooh
IM-Worm.Win32.Sohanad.ao
IM-Worm.Win32.Sohanad.as
IM-Worm.Win32.Sohanad.am
IM-Worm.Win32.Sohanad.ap
And you probably have got rid of the problems and the restrictions made by those infectors!
But this is NOT the end, Those infectors are NOTHING comparing to CaSIs!!!
What are CaSIs?
CaSIs is short for Common and Stubborn Infectors. These are malicious programs (viruses, worms, Trojans, etc.) that are notoriously difficult to detect and to remove by regular anti-virus programs. These programs often have the capability to disable your computer or your anti-virus programs.
Good examples of the those infectors are:
Win32.Brontok.q
Win32.Delf.cc
Win32.VB.by
Win32.VB.cz
How do you get infected by these CaSI's?
Well, mostly because you open an attachment from an email that isn't from one of your friends. Or by using infected removable storage medias (CDs,DVDs/Floppy disks/Flash disks, Memory Cards...). Or just by visiting a suspect website which can result in your computer being compromised.
The only thing that could have saved you was having a good Anti-Virus program with up-to-date signatures. If you didn't have those installed on your computer these CaSI's could enter your system with ease and change lots of settings.
Once you are infected, NOTHING (no well-known anti-virus program such as Kaspersky, Norton, Symantec, McAfee, NOD32, etc.) can rescue you anymore. You and your computer are doomed.
But now there is a solution and it is called CaSIR v2.0
What is CaSIR v2.0?
CaSIR v2.0 (Common And Stubborn Infections Remover) -- is an on-demand malware removal software. We designed it especially to remove the most common and stubborn infections from your computer. It can remove their running processes, their bodies, their registry entries and any other leftovers!
CaSIR v2.0 doesn't randomly search for CaSIs, but he goes directly to the areas that a specific CaSI infects and removes it from there, hence, it does its job in mere seconds!
CaSIR v2.0 does more than that. It has a generic and strong technique that allows it to do the following:
. CaSIR v2.0 removes the common restrictions made to your computer by those infectors which none of the AVs deal with.
. CaSIR v2.0 removes the illegitmate services frequently used by those infectors.
. CaSIR v2.0 recognizes and instantly kills and deletes any running process that is disguising itself among the legitimate system services.
. CaSIR v2.0 removes any scripts used by those infectors to autorun.
. CaSIR v2.0 removes any autostarting registry entries related to the illegitmate services he detects.
. CaSIR v2.0 deals with all your storage medias (Fixed, floppy, removable...) and cleans them up all if need be.
. CaSIR v2.0 cleans up your system registry so no more spy keys, garbage activities or messages keep asking for already deleted files.
. CaSIR v2.0's signatures are fully updatable, once you download the software, all you need to do is to download the new definitions frequently and you're up-to-date and ready-to-go.
How to use CaSIR v2.0?
Just extract the zip-file you download which contains only two files:
- CaSIR20.exe: The main executable file.
- casirdef.cas The definitions file.
Simply run CaSIR v2.0 (in Normal Mode) and press Start, Wait for seconds' and you're done!
If CaSIR v2.0 detected any CaSIs, it will restart your computer and works in what we calls "Pre-Shell mode", after finishing it's job, CaSIR v2.0 will restart your computer in Normal mode.
Important notes:
1. Since CaSIR v2.0 is a security software that deal with the file system, the system registry and the running processes, it MUST be given all the rights it demands in order to remove any infection. Some other security softwares will try to block CaSIR v2.0 and prevent it from doing its job, please make sure it's not blocked and there's no other program blocking CaSIR v2.0. During disinfection process we recommend you to disable any other security solution you are runing such as Antivirus, Firewall, monitoring tools ..etc.
2. Please do NOT attempt to run CaSIR v2.0 in safe mode, CaSIR v2.0 needs to investigate your system to know what CaSIs are active, if you ran CaSIR v2.0 in safe mode, he might not be able to detect any active CaSIs, as they usually do not run in safe mode!
3. If you have more than one infected computer connected together to the same local network, do NOT attempt to use CaSIR v2.0 on the infected computer while the other infected ones are connected to it, this would results in getting infected again and again. You always need to disconnect the infected computer from the network before using CaSIR v2.0 and do so with all your infected computers one by one!
What is "CDS Jobs" button? and why is it there?
CDS is short for "CaSIR Deep Scanner". This is the part of CaSIR which uses the classic method of searching for malware; By the binary signature. We have added this new section of CaSIR starting from v2.0 because we lately noticed that some CaSIs' authors have developed a new method of making identifying their malware more difficult, that is to make the CaSI spread using random file names, random registry keys, random registry values and random running processes names, so that any algorithm based on the malware File/Folder/RegKey/RegVal/Running Modules/Processes/Threads names would fail and be of no use!
If CaSIR v2.0 detected any such a nasty CaSIs (those with random techniques), he will analyze the situation first and kill the active parts of the CaSI, then invoke the CDS which will scan all your hard disks/floppy disks/flash disks/memory cards/iPod/MP3/WMA Drivers available on your system to clean them, then he will restart your computer in Pre-Shell mode to continue removing the other CaSIs, after finishing it's job, CaSIR v2.0 will restart your computer in normal mode with a "Congratulations" message!
Please note that you can cancel those processes at any time, but we strongly don't recommend that, because by doing that, you will put your computer in a dangerous situation as the CaSI will come back again when you restart your computer, so please be patient and let CaSIR finish it's job.
Does CaSIR v2.0 generate a log report?
Yes, after every phase of work, CaSIR v2.0 will automatically generate a report file and saves it in same folder where CaSIR v2.0 is. The report file always has the name: casirrpt.txt! This file is needed by us when you have any problem or inquiry and need to contact us, so please don't forget to attach this file with your inquiry.
How to update CaSIR v2.0 definitions?
There's two methods of getting updates, offline and Online:
1. The Online method:
Simply press "Update" button and follow the instructions on screen.
2. The Offline method:
Visit www.sergiwa.com and go to downloads section, under Security software, you'll find CaSIR v2.0 Definitions file. Download it. The definitions file is a very small zipped file that contains the CaSIs signatures. All you have to do is to download casirdef.zip, extract its contents and replace it with the old one!
What are those RNP, GFL, SFL, GFD, SFD, RKM, RKD, RKA, RSO?
When CaSIR v2.0 find an infection on your computer, it shows up the infection in the following way :
XXX - YYY
XXX: is the type of the infection found
YYY: is the infection itself
XXX has 9 different keywords
RNP : Running Process
GFL : Group of Files
SFL : Single File
GFD : Group of Folders
SFD : Single Folder
RKM : Registry Key to be Modified
RKD : Registry Key to be Deleted
RKA : Registry Key to be Added
RSO: Regular System Optimization
You may also want to download CaSIR v2.0 from CNet here:
 |
Post a Comment