1. Welcome Guest! In order to create a new topic or reply to an existing one, you must register first. It is easy and free. Click here to sign up now!.
    Dismiss Notice

Help against hacker in my system

Discussion in 'Malware Removal Help' started by roy1972, Apr 16, 2013.

  1. etavares

    etavares Malware Removal Specialist - Moderator Moderator

    Joined:
    Aug 6, 2011
    Messages:
    259
    Location:
    USA (GMT -5)
    Hello, roy1972.
    Hi roy1972,

    I do understand. I will caution you that SP2 is missing dozens of security patches that SP3 contains. SP3 is also actively updated by Microsoft (only for another year, though, so upgrading to W7 or W8 is a great idea). These security holes in SP2 are published and widely known as a result. Malware takes advantage of this. Even with antivirus protection, you are still at much higher risk of infection than anyone running a supported version of Windows.

    In regards to the tools, Malwarebytes' Anti-Malware Free Version is a great tool that I'd recommend you run a quick scan once every week or month with updated definitions. TDSSKiller can be useful if you think you're infected with a rootkit or virus, although you can delete legitimate entries fairly easily. It won't break your computer, but it may break a program if that happens. ESET Online Scan is a good tool to scan if you don't trust your current antivirus or want a second opinion.

    OTL is useful to someone trained in how to use it. Without the traning it doesn't do much.

    Combofix should only be run under the supervision of a trained user. It is a powerful program and while rare, can sometimes can be a bit aggressive. Trained helpers can help you dig out of any hole if it goes awry.

    We'll uninstall CF now:



    Step 1



    Uninstall ComboFix and Clean Up
    Click Start > Run and type combofix /Uninstall click OK (Note the space between combofix and /Uninstall) See below:
    [​IMG]
    Please advise if this step is missed for any reason as it performs some important actions.

    Download and Run OTC

    We will now remove the tools we used during this fix using OTC.
    • Download OTC by OldTimer and save it to your desktop.
    • If that link doesn't work, try this one.
    • Double click [​IMG]icon to start the program. If you are using Vista, please right-click and choose run as administrator
    • Then Click the big [​IMG] button.
    • You will get a prompt saying "Begin Cleanup Process". Please select Yes.
    • Restart your computer when prompted.

    etavares
     
  2. roy1972

    roy1972 Registered Members

    Joined:
    Apr 16, 2013
    Messages:
    29
    Operating System:
    Windows XP Professional
    Hi Etavares,

    All done. Uninstalled Combofix as requested. I had to temporarily disable norton antivirus but worked fine and its enabled again.
    Downloaded OTC and hit cleanup button, then rebooted. All fine.

    Thanks for the heads up on those programs. So I can use Malware Bytes and ESET without a problem but may want to use TDSSKiller with caution on understanding that it may break some legitimate programs. Best I do not use Combofix nor OTL.

    What about Erunt and aswMBR? I forgot what they actually do.

    I am definitely going to get Windows 7.

    Thanks again.
     
  3. etavares

    etavares Malware Removal Specialist - Moderator Moderator

    Joined:
    Aug 6, 2011
    Messages:
    259
    Location:
    USA (GMT -5)
    You can delete aswMBR...it scans the master boot record and gets a dump. You may want to keep ERUNT...up to you. It allows you to recover from a corrupted registry if your computer won't boot. System Restore requires a booting computer if you don't have a CD. :)

    -etavares
     
  4. roy1972

    roy1972 Registered Members

    Joined:
    Apr 16, 2013
    Messages:
    29
    Operating System:
    Windows XP Professional
    Good stuff. Thanks Etavares and everyone else who helped.

    Much appreciated.

    Roy. :)
     
  5. etavares

    etavares Malware Removal Specialist - Moderator Moderator

    Joined:
    Aug 6, 2011
    Messages:
    259
    Location:
    USA (GMT -5)
    You're welcome. Safe surfing!
     

Share This Page