Stuxnet Rootkit Remover

Stuxnet is family of new threats that have emerged in mid July 2010, with the majority of infected computer systems in Iran, Indonesia, India and the US. The rootkit is distributed by direct attacks, email, infected executables and the recently discovered lnk shortcut security vulnerability in Windows. Stuxnet uses the aforementioned .lnk technique to install additional malware components. It first injects a backdoor (Worm:Win32/Stuxnet.A) onto the compromised system, and then drops two drivers: Trojan:WinNT/Stuxnet.A – hides the presence of the .lnk files Trojan:WinNT/Stuxnet.B – injects (formerly) encrypted data blobs (.tmp files) into memory, each of which appear to serve different purposes as the Stuxnet deployment system infrastructure (drivers, .lnk files, propagation, etc.). Stuxnet Rootkit Remover has been designed to detect and remove active infections on Windows systems.