You can manually incorporate the needed data collecting and curing commands to a FixIt! tool.
Syntax
Each command starts on a new line and has the following format:
<Command name> <Options, arguments, or values separated by spaces> |
Argument values can be string, binary, or numeric. A value is interpreted as a string unless stated otherwise.
Type |
Description |
Examples |
|---|---|---|
String |
If a value starts with a double quote ("), it is read up to the same closing double quote. Escaped quotes (\") are replaced with regular ones and interpreted as a part of the string. Otherwise, a value is read up to a space, comment, or the end of the line or file. |
fs-remove c:\con fs-remove "c:\con 2" |
Binary |
Values are read in pairs of HEX digits. |
0B8E (2 bytes) |
Numeric |
Values are unsigned and represented either in decimal or hexadecimal format. |
15 0xFE |
If you want to comment on a command, start the comment with the # symbol.
Code validation
Rows with syntax errors are marked with red. You can find error descriptions on the expandable 
Errors panel below the command input area. To create a FixIt! tool, fix all the errors first.
List of commands
A script with commands is run sequentially in three steps:
1.Anti-rootkit scanner. These commands are executed in a random order.
2.Script commands. These commands are executed in the given order.
3.Data collection. These commands are executed in a random order.