[KB2903] How to use the ESET Win32/IRCBot stand-alone cleaner from the Command Prompt window

Solution

ESET has provided this Win32/IRCBot stand-alone tool to remove this particularly resilient threat.

NOTE:

This tool must be run from the command line and if you are running Windows Vista / 7 / 10 or Windows Server 2008, you will need to run the command prompt with elevated permissions.

  1. Right-click the following link and then click Save Target As (or Save Link As) and then choose your Desktop in the dialog window. Click Save.

    Download ESET IRCBotANR Cleaner
     
  2. Windows XP users: Click Start All ProgramsAccessories → and then click Command Prompt.

    Windows Vista/7/Server 2008 users: Click Start and type Command Prompt. Press Ctrl + Shift + Enter on your keyboard.
  1. The command usage of the cleaner is as follows:

    ESETIRCBotANRCleaner.exe –clean

    Follow the instructions below as an example of how to run the tool when saved to the Desktop on a Windows XP machine:
    1. Type CD Desktop and then press Enter.
       
    2. Type or paste the following command (To paste into the Command Prompt, you must right-click and select ‘Paste’ from the context menu as Ctrl + V will not work):

      ESETIRCBotANRCleaner.exe –clean
       
    3. Press Enter.

Figure 1-1

  1. Restart your computer.

Need further assistance? Contact ESET Technical Support.

Need Assistance in North America?

If you are a North American ESET customer and need assistance, view product documentation or visit helpus.eset.com to chat with a live technician.

Last Updated: Mar 4, 2022

Additional resources

User Guides

ESET Forum

YouTube videos
Support News Customer Advisories ESET Status Portal Contact ESET Technical Support

Existing customer?