Step 3. Registry
If you have Spybot S&D installed remove it "AND disable Norton Auto-Protect" As Norton now detects part of Avenger
Also during the restarts with Avenger if Your PC has a Startup repair center like with HP and Toshiba tell it to start Normally if it kicks in.
1. Download Avenger to your desktop,
Unzipped version http://homepages.slingshot.co.nz/~crutches/Avenger
OR Creators website http://swandog46.geekstogo.com/avenger2/avenger2.h
2. Click to run "Avenger.exe" (right click "Run as Administrator" if using Vista)
3. In the "Input script here:" copy and paste the script between the lines
Drivers to disable:
rotscxrnkomudj
Drivers to delete:
rotscxrnkomudj
Files to delete:
C:\WINDOWS\system32\drivers\rotscxkdulrscp.sys
Registry keys to delete:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\rotscxrnkomudj
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\rotscxrnkomudj
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\rotscxrnkomudj
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\rotscxrnkomudj
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\rotscxrnkomudj
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\rotscxrnkomudj
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\rotscxrnkomudj
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\rotscxrnkomudj
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\rotscxrnkomudj
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\rotscxrnkomudj
Here is a screenshot (script updated since shot)
Make sure the "Automatically disable any rootkits found" is NOT selected
4. Click "Execute"
You will be asked to restart the PC click "Yes", when the PC restarts the load screen will takes slightly longer, then when it looks as though windows is loading the PC will restart again.
Then when Windows fully loads the Avenger log will be loaded, showing files it could or could not find.
Quads
- �1995 - 2013 Symantec Corporation Legal Notice License Agreement Privacy Policy Cookies Site Map RSS
