Win32/Wigon.CK
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
DelBHO(‘{5B7027AD-AA6D-40df-8F56-9560F277D2A5}’);
QuarantineFile(‘WinCtrl32.dll’,”);
DeleteService(‘WINIO’);
QuarantineFile(‘C:\WINDOWS\system32\winio.sys’,”);
DeleteService(‘Winbg62’);
QuarantineFile(‘C:\WINDOWS\System32\Drivers\Winbg62.sys’,”);
QuarantineFile(‘C:\WINDOWS\system32\WinCtrl32.dll’,”);
DeleteFile(‘C:\WINDOWS\system32\WinCtrl32.dll’);
DeleteFile(‘C:\WINDOWS\System32\Drivers\Winbg62.sys’);
DeleteFile(‘C:\WINDOWS\system32\winio.sys’);
DeleteFile(‘WinCtrl32.dll’);
BC_ImportALL;
ExecuteSysClean;
BC_DeleteSvc(‘Winbg62 ‘);
BC_Activate;
RebootWindows(true);
end.