The other day I got this Windows error, and it really pissed me off:
Generic Host Process for Win32 Services has encountered a problem and needs to close.
The computer would lose the internet connection, and would not function properly until I did a restart. I did some research, and found that in some instances simply doing a windows update fixes the bug.
But that was not to be in my case. After performing a windows update, I found my system was running slow (cold molasses, you ain’t got nothing!) and my hard drive was thrashing like there’s no tomorrow.
Then I got this green pop-up “Brontok” message, which really pissed me off — even though the screenshot does match the color scheme of this site quite nicely:
[By: H [REMOVED] Community] — stop the collapse in this country —
1. Try the Hoodlums, the Smugglers, the Bribers, the gamblers, & drugs
Port (Send to “Nusakambangan”) —2.Stop Free Sex, Abortion, & Prostitution
3.Stop (sea and river pollution), forest burning, & wild hunting.
4.SAY NO TO DRUGS!!! - THE END IS NEAR -
Inspired by: (Spizaetus Cirrhatus) that is almost extinct [By: H [REMOVED] unity –
I looked up the name of the virus/worm/malware on Wikipedia, and found that they had this to say on the Brontok worm:
Brontok Virus came from Indonesia. When Brontok is first run, it copies itself to the user’s application data directory. It then sets itself to start up with Windows, by creating a registry entry in the HKLM\Software\Microsoft\Windows\CurrentVersion\Run registry key. It disables the Windows Registry Editor and modifies Windows Explorer settings. It removes the option of “Folder Options” in the Tools menu so that the hidden files, where it is concealed, are not easily accessible to the user. It also turns off Windows firewall. In some variants, when a window is found containing certain strings in the window title, the computer reboots. Using its own mailing engine, it sends itself to email addresses it finds on the computer, even faking the own user’s email address as the sender. The computer also restarts when trying to open MS Dos in Windows and Downloading Files from the Internet. It also pop ups an Internet browser which is located in the my pictures folder.
But more importantly, Wikipedia (god bless Jimmy fuckin’ Wales!) links to two fixes:
I chose the second, as I’d heard of bitdefender before. I downloaded the application, ran it - and (I shit you not) my computer gave an error and rebooted! ARRGHH!!!
So I thought I’d have a go running the application in safe mode (press F8, on my computer anyway). As an added measure, I also ran Norton and Spyware Doctor from the free Google Pack, and that seems to have helped too. Download the Google Pack here:
Success! (At least, it seems that way for now)
Anyway, it did take a while for me to search out a decent fix for this, so I thought I’d re-post all my info so that others might find it a bit easier.
Hope it’s of some help to someone out there! 
Popularity: 13% [?]
10 Responses
marya
July 21st, 2007 at 8:49 pm
1tanx alot…
i have this pblm too… but i even cant dowload remover.. evry time that i begin to download one kind of antiviruses it reboots..
Dr. Ahmed Alkhuzaie
August 21st, 2007 at 1:18 pm
2I (as Marya) have the same problem, and the Fixers/Removers you mentioned up there dosent do the trick! can anyone help on that? what shall I do? does format remove it? which of the Cleaners/Removers/Washers can remove it completely?
kindly advise,
Thanx,
A.K
admin
August 21st, 2007 at 6:58 pm
3try it in safe mode if you can.
Or try downloading a virus scan program such as AVG (free at http://www.grisoft.com)
or Norton Security Scan and Spyware Doctor can be downloaded in the Google Pack for free as well, and should be able to take care of it (link is at the very bottom of this page).
Again, if you find it reboots, try running the software in safe mode.
Mohi
August 27th, 2007 at 7:49 am
4thank you so much ! you were a big help.
BTW, did the folder option return then ?
Dr. Ahmed Alkhuzaie
September 2nd, 2007 at 10:47 pm
5admin,
thank you for your concern, although it didn’t help, I think it should’ve helped someone else. I couldn’t download any of the mentioned programes as the system restarted by itslf. the only thing that worked (so far) is formatting.
thank you for the help, keep up the good work,
A.K
admin
September 3rd, 2007 at 12:11 am
6Yes, this is a nasty little virus, as it will do everything it can to avoid your efforts to remove it.
I had that same reboot problem, but after in safe mode it seemed to work.
Now I did run some other software as well, just to be sure.
So ran AVG scan (from grisoft) as well as Norton Security and Spyware Doctor (available in the free google pack, see link at bottom of page). While I don’t know if everything has been removed, I do know my hard drive has stopped thrashing, and I don’t get that pop up window anymore.
And no more nasty reboots either.
But yes, Dr. Ahmed, a full re-imaging would be a fine idea, assuming that it’s not inconvenient. It’s something that I like to do about once a year anyway.
zizi
October 23rd, 2007 at 1:37 pm
7Hi to all people,
my friend who specialises in IT, mentioned to me that a computer should not have more than one Anti virus software as it will screw up your computer. please bear in mind.
admin
October 23rd, 2007 at 11:22 pm
8@Zizi:
While I think it’s definitely best to find one anti-virus program for your machine, I don’t think that more than one will screw up your computer.
Paul
January 23rd, 2008 at 7:29 pm
9Thank you for the info sharing. I’ve read about the brontox problem from other people’s review & a lot of people seems to find the most effective way to solve it. I personally used BitDefender Brontok Removal Tool & lucky all of the procedure went well. I hate those kind of viruses.
swetank
February 23rd, 2008 at 12:22 am
10My desktop PC was infected with this virus though i didn’t know about it.
I also have a notebook PC , so when I was reformatting my notebook PC i stored all my personal files on my desktop PC hard drive temporarily.
But now because of the virus my Desktop PC restarts again and again ,which means i am not able to access any of my files ..
i can’t think of reformatting my THe infected PC as a lot of personal data is there ..
please tell me i…s there a way i can get my system to boot properly just once so that i can backup away all my files on any removable media and then reformat it.
RSS feed for comments on this post · TrackBack URI
Leave a reply
China Earthquake Relief:
Best Posts
Most Popular Posts
Seesmic Updates
Categories
Archives
Meta
Links
Donate
Calendar
Recent Entries
Recent Comments
Most Commented
PandaPassport.com - China Blog is proudly powered by WordPress - BloggingPro theme by: Design Disease