Nikos' Config

Nikos

Nikos

New Member
Thread author
Jul 19, 2012
357
Should i downlaod combofix again and reinstall it prior to uninstall it?
 
D

Deleted member 178

yes better. try to reboot and remove the leftover manually first, then if you can't, reinstall it then use the command i gave you above.
 
Nikos

Nikos

New Member
Thread author
Jul 19, 2012
357
ok i will. This time it scanned it gave me this:

Infected copy of c:\windows\system32\Services.exe was found and disinfected
Restored copy from - c:\windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe

I was infected? Combofix is a virus removal tool?
 
Nikos

Nikos

New Member
Thread author
Jul 19, 2012
357
Also the same 2 directories i was taking about in a p[revious post still cant be deleted....
 
I

Ink

Administrator
Verified
Jan 8, 2011
22,490
Normally Combofix is only used when instructed to do so, when seeking help from a malware removal expert.
 
Nikos

Nikos

New Member
Thread author
Jul 19, 2012
357
I though it was only to rpduce system logs.

btw Panda Cloud and CAV wasnt able to identify the services.exe infection?

please aslo tell me how to remove these persistant folders.
 
D

Deleted member 178

What make you think that you were infected? you just used an very advanced user's removal tool without any clues of what it is, what it does and how to interpreting it...

I advise you not using tools that you can't master.

thanks :D
 
P

Plexx

Nikos said:
Also the same 2 directories i was taking about in a p[revious post still cant be deleted....
Click to expand...

Download Unlocker 1.9.1 at http://www.filehippo.com/download_unlocker/

Press delete button to delete the folder. if it fails, Unlocker will pop up and you can kill it.

alternative, take ownership might work but that requires changes in the registry.
 
Nikos

Nikos

New Member
Thread author
Jul 19, 2012
357
Umbra Corp. said:
What make you think that you were infected? you just used an very advanced user's removal tool without any clues of what it is, what it does and how to interpreting it...

I advise you not using tools that you can't master.

thanks :D
Click to expand...

As i sadi in a previous post of mine:

Infected copy of c:\windows\system32\Services.exe was found and disinfected
Restored copy from - c:\windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services​.exe
 
P

Plexx

Nikos, I have posted the solution to remove the folders....
check the link I gave you.
 
Malware Maniac

Malware Maniac

Level 1
May 14, 2012
673
Nikos said:
As i sadi in a previous post of mine:

Infected copy of c:\windows\system32\Services.exe was found and disinfected
Restored copy from - c:\windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services​.exe
Click to expand...

Try Hitman pro. If it does not detect services.exe then it may be a false positive. If it does then Hitman pro will replace it.
 
Nikos

Nikos

New Member
Thread author
Jul 19, 2012
357
Biozfear said:
Nikos, I have posted the solution to remove the folders....
check the link I gave you.
Click to expand...

I was just doing that, trying unlocker, ir removed one folder but not the other...damn
 
P

Plexx

what error message do you get? can you link a screenshot? when I get home I ll have a look.

You can also use FileAssassin by the same company behind Malwarebytes Anti-Malware.

Although I would like to see the screenshot of the error message and perhaps take ownership would do...
 
Malware Maniac

Malware Maniac

Level 1
May 14, 2012
673
Wait you're wanting to remove QooBox and Program Data (http://malwaretips.com/Thread-Nikos-Config?pid=65697#pid65697 )

You're not suppose to remove program data.
 
Nikos

Nikos

New Member
Thread author
Jul 19, 2012
357
FileAssasin couldnt also delete files inside this folder.

how can i take ownership of that file?

Damn combofix whyditn it have an option to delete this leftovers?

Malware Maniac said:
Wait you're wanting to remove QooBox and Program Data (http://malwaretips.com/Thread-Nikos-Config?pid=65697#pid65697 )

You're not suppose to remove program data.
Click to expand...

Its only a backup of ComboFix.
Its not my actualt live program files.
 
P

Plexx

If it is programdata folder, then you must have the take ownership enabled.

several ways: regedit or tweak via software. Google it.

However before you even adventure in deleting programdata, I sure hope you have backed up your system as I said before and you are fully aware of what you are doing...
 
Nikos

Nikos

New Member
Thread author
Jul 19, 2012
357
Just tell me how to remove this, iam not in mood for googling that. it captures 400 MBs of mh hdd.
 
You must log in or register to reply here.

Similar threads

Victor M
    • Like
A.I. News Lessons Learned on How to Use Google Gemini AI
Replies
0
Views
718
Technology News
Victor M
Victor M
amirr
    • Like
Advice Request If I use KIS, then is that necessary to enable Microsoft Edge's Enhanced Security Mode?
Replies
7
Views
1,183
Kaspersky
amirr
amirr
Gandalf_The_Grey
    • Like
World Backup Day March 31, 2023
Replies
2
Views
854
News Archive
cartaphilus
cartaphilus

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top