Hi
Please help me remove Rootkit.win32.stuxnet.b from my system.
tnx
Printable View
Hi
Please help me remove Rootkit.win32.stuxnet.b from my system.
tnx
1. Please, disable System Restore and antivirus (if you have).
2. Execute this script in AVPTool:
[CODE]begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
DeleteService('MRxCls');
QuarantineFile('C:\WINDOWS\system32\Drivers\mrxnet.sys','');
QuarantineFile('C:\WINDOWS\system32\Drivers\mrxcls.sys','');
DeleteFile('C:\WINDOWS\system32\Drivers\mrxcls.sys');
DeleteFile('C:\WINDOWS\system32\Drivers\mrxnet.sys');
DeleteFile('C:\autorun.inf');
DeleteFile('D:\autorun.inf');
BC_ImportDeletedList;
ExecuteSysClean;
ExecuteRepair(1);
BC_Activate;
RebootWindows(true);
end.[/CODE]
3. After reboot execute this script in AVPTool:
[CODE]begin
CreateQurantineArchive(GetAVZDirectory+'quarantine.zip');
end.[/CODE]
Upload file quarantine.zip, by link [url]http://virusinfo.info/upload_virus.php?tid=83149[/url]
4. Make a new log of AVPTool.