win32host.exe and win32bootcfg.exe

[karankalaria]

win32host.exe and win32bootcfg.exe are there in my processes list and the are creating troubles for me like if i dont end their process I can't visit anywebsite and when i end its process it appears back after 5 sec or so.Even my fully updated norton antivirus cant detect it as a virus.What r they and how to get rid of them.If i delete it from its place(c:windows/system32 and c:windows/prefetch) it appears back.

 

[anandk]

WIN32HOST.EXE is a Trojan.Hiddl-B
win32bootcfg.exe is another malware.

freeware prevx removes both, btw. ive tried prevx, its good.
click
*fileinfo.prevx.com/QQ385919232009-WIN314675680/WIN32BOOTCFG.EXE.html
*virusinfo.prevx.com/pxparall.asp?PXC=bc1520078305

else try ewido antimalware. scan in safe mode. also use 'ccleaner' to clear prefetcher and other pc redundant files/registry entries.

 

[Desmond]

These appear to be root kits.

Try what anandk says or alternatively download HijackThis. Run a system scan and fix these files when they appear in the list.

Hijack This can fix files which even AVs cannot detect.

Download HJT:
*www.majorgeeks.com/downloadget.php?id=3155&file=13&evp=3304750663b552982a8baee6434cfc13

 

[QwertyManiac]

^^
Are you sure these are root kits?
Research first...

 

[anandk]

even i dont think they r rootkits...they are our good old (un)friendly neigborhood trojans.

 

[Desmond]

All right All right, slipped on that,

They are trojans, but removable with HijackThis.

 

[anandk]

WIN32HOST.EXE is a Trojan.Hiddl-B WIN32bootcfg.EXE is also a malware

i had just said that in my first post