Hacktool.rootkit victim Please help me

Status
Not open for further replies.
M

manhunt04

I really need your help. I have hacktool.rootkit virus in my pc. I don't know how to do the advice you told "Prot". I Have here my log file from hijackthis. I hope you can help me before my pc gets lost on this virus. Thankyou.
 
Wrong forum, this needs to be moved to Malware.

I can see from your log that you are currently infected with Antivirus 2009 (a rogue antivirus). Please follow these 8 steps, and we can assist further.

Thanks. :)
 
Solved! Please see my logs.

Sorry for the wrong forum and Thanks! this is my 1st time in tech support. You people are very helpful. I've done all the eight steps. it took me almost 8hrs to do all because it takes hours in scanning. My problem with hacktool.rootkit was already gone. please see my logs so I will know if there are anymore probs in my pc. I'm just 15yrs oLd. I love comp. troubleshooting. Thanks again!

NOTE: In my logs. please do not mind the date for I did not set it in the latest.
 
I still see malware.

Code: 
F2 - REG:system.ini: Shell=Explorer.exe rundll32.exe calc.ifo beforemain

The above is definitely malware. The below, I am not so sure of. Do you have any reason to be running something from INCA Internet?

Code: 
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - C:\WINDOWS\system32\npkcsvc.exe

First thing to do is run ComboFix. Download ComboFix from here, and save it to the Desktop. Now open notepad and paste the following into a document.

Code: 
Killall::

Snapshot::

File::
C:\WINDOWS\system32\calc.ifo

Save this file onto your desktop too, as cfscript.txt. Then, drag it onto the cat icon, as shown below.

cfscript.gif


Do not click on the ComboFix window whilst it runs, as it may stall. Once ComboFix is done, please upload the log.

Thanks. :)
 
Combo Fix Log Result

I do not know what INCA internet means. So i don't know if I was subscribed to that. Anyway I've done the combo fix. here is the log result. ThankYou very much.
 
It would appear that you are currently running illegal software on your PC. Please remove the software so that we may continue to help.
 
Status
Not open for further replies.

Similar threads

E
I have been taken over by a software called Astanda using XML to Log everything and roaming to an SQL server.
Replies
0
Views
479
eriksnyman1
E
B
Help with PUBG Mobile Pc
Replies
0
Views
442
basitdogar
B
losdavos
Malware removal help, please and thank you!
Replies
1
Views
832
losdavos
losdavos

Latest posts

Back