Win32:Rootkit-gen[Rtk] virus removal

[Fox28]

Sponsored Links

I have recently purchased a new Sony Vaio laptop and my laptop is loaded with the Windows 7 operating system. But from last few days there is some problem occurring in laptop. Because system always display a message your computer is infected with the Win32:Rootkit-gen virus. I can’t able to remove this virus from my computer. Please help me to remove this virus.

[Zachary]

Here I have also a problem with the virus rootkit. I am using AVAST antivirus and it detected the virus on several files . I quarantined but a priori , the virus is in the C \ WINDOWS \ system32 and other egalement.Et from my PC hangs when I want to go to START . Going to the site I followed the advice that always : download HijackThis and here is the report : Logfile of Trend Micro HijackThis v2.0.2

[Snake08]

You have to locate and terminate the following procesess

• C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
• C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
• c : \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
• C: \ Program Files \ Canon \ SolutionMenu \ CNSLMAIN.exe
• C : \ Program Files \ Canon \ MyPrinter \ BJMyPrt.exe
• C : \ Program Files \ Internet Explorer \ iexplore.exe
• C: \ Documents and Settings \ carole \ Desktop \ Sniffle.exe

[Big Fish]

Goto " Add & Remove Programs " remove the program Eorezo.

Then to your report , removes these five lines :

O2 - BHO : ( no name ) - { 5C255C8A - E604 - 49b4 - 9D64 - 90988571CECB } - (no file)
O2 - BHO: EoBHO - { C7B76B90 - 3455 - 4AE6 - A752 - EAC4D19689E5 } - C: \ Program Files \ eorezo \ EoAdv \ EoRezoBHO.dll
O4 - HKLM \ .. \ Run : [ EoEngine ] "C: \ Program Files \ eorezo \ EoEngine.exe "
O4 - HKLM \ .. \ Run: [ SoftwareHelper ] C : \ Documents and Settings \ carole \ Application Data \ eorezo \ softwareupdate \ SoftwareUpdateHP.exe
O17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ { C35933BF - 60E2 -4971 - A0D0 - DF0C53C2781B } : NameServer = 202.3.225.115,202.3.225.125

[Steve123]

I would like to suggest you to scan your system with the help of standard antivirus application. You can install any of the standard antivirus application. But I think your problem can be solve by the Quick Heal Total Security because this is very good antivirus and it will helps you to remove Win32:Rootkit-gen virus from your computer. Please try to perform this I hope this will helps you to solve your problem.

[Milton.J]

Goto " Add & Remove Programs " remove the program Eorezo.

Then to your report , removes these five lines :

O2 - BHO : ( no name ) - { 5C255C8A - E604 - 49b4 - 9D64 - 90988571CECB } - (no file)
O2 - BHO: EoBHO - { C7B76B90 - 3455 - 4AE6 - A752 - EAC4D19689E5 } - C: \ Program Files \ eorezo \ EoAdv \ EoRezoBHO.dll
O4 - HKLM \ .. \ Run : [ EoEngine ] "C: \ Program Files \ eorezo \ EoEngine.exe "
O4 - HKLM \ .. \ Run: [ SoftwareHelper ] C : \ Documents and Settings \ carole \ Application Data \ eorezo \ softwareupdate \ SoftwareUpdateHP.exe
O17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ { C35933BF - 60E2 -4971 - A0D0 - DF0C53C2781B } : NameServer = 202.3.225.115,202.3.225.125

[Visala28]

I deleted the lines. For some twenty cons of files quarantined on 23/02/10 . I can not copy them , I propose to remove the menu. Is what I can do ? If I give you some examples: nhndrv.sys - Modem.sys - mskssrv.sys etc ... in the folder C: \ WINDOWS \ system32 \ driver I have also in C \ Documents and setting as load (1 ). exe . By cons I cannot find Eo Rezo in programs . This thing Eo Rezo opens all the time without my request to immediately