Win32.Nucleroot is a rootkit Trojan. It is able penetrate a system secretly and will hide its processes, registry entries, network connections. It is very difficult to detect. This malware was most likely contracted through an infected e-mail. This is the most common way that it will distribute itself. It will exploit vulnerabilities in your Windows system and take full advantage.
Remove at once.
For manual removal of Win32.Nucleroot, you should go into the Registry (regedit) and delete:
1. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion “shitbit”
2. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “shdef” data: C:\WINDOWS\shdef.exe
Then you will need to delete the following files:
c:\WINDOWS\nkit.dll Size: 44,544 bytes
c:\WINDOWS\shdef.exe Size: 27,648 bytes (or any other file with this size)
To remove automatically, you can try ZookaWare PC Cleaner, the spyware remover. ZookaWare PC Cleaner is a professional anti-spyware application that guarantees to rid your system of all spyware or your money back. Unlike many programs out there, ZookaWare PC Cleaner offers a free scan and will then work to eliminate all spyware. For fast and effective removal, try a trusted program that works.