ESET NVOD Antivirus keeps giving a message that your computer is infected with the win64/patched.b.gen Trojan? Read the following post to completely get rid of this virus now.
Win64/Patched.B.Gen a backdoor Trojan that opens a backdoor secretly so as to steal information from the infected computer. Once executed, itmay create a few potentially malicious files to occupy your system resources and slow down your computer.
When this Trojan is downloaded, it is difficult to be detected and uninstalled from the infected computer system. Every time when you try to remove it by your current antivirus, you will get errors such as: Analysis of application protocols will not function or An error occured while starting services. Analysis of application protocols (POP3, HTTP) will not function etc. This virus is able to conceal in the root of your system that should be removed manually. It creates the specific registry entry so that it can run automatically every time you Windows. Even worse, it allows attackers to gain remote access and control over the affected computer system. It is proved that Win64/Patched.B.Gen is also able to invite other threats to your machine without your permission. It is suggested users to have it deleted as soon as possible to further protect the computer.
Currently many computer users had the same experience that this virus couldn’t be removed by any anti-virus applications. So the manual approach is always required to combat this virus. And here is the manual removal step-by-step guide for all computer users.
1. Show hidden files and folders.
Open Folder Options by clicking the Start button, clicking Control Panel, clicking Appearance and Personalization, and then clicking Folder Options.
Click the View tab.
Under Advanced settings, click Show hidden files and folders, uncheck Hide protected operating system files (Recommended) and then click OK.
2. Open Registry entries. Find out the malicious files and entries and then delete all.
Attention: Always be sure to back up your PC before making any changes.
a. Press the “Start” button and then choose the option “Run”. In the “Open” field, type “regedit” and click the “OK” button.
b. All malicious files and registry entries that should be deleted:
%Documents and Settings%\[UserName]\Application Data\[random]
%AllUsersProfile%\Application Data\.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Settings “net
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “[random].exe”
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell
If you failed to remove this malware with the instructions above or need any assistant, you are welcome to contact YooCare experts to resolve all the problems completely.
Published by on July 15, 2012 9:42 am, last updated on July 15, 2012 9:43 am
Leave a Reply
You must be logged in to post a comment.