Simple XP security question

  • Thread starter Thread starter Hakkan deniz
  • Start date Start date
H

Hakkan deniz

Hi!
I have a system with winxp SP2 installed but when i go to it's control panel
to find system applet, it is not there.
also system configuration utility (MSconfig) and group policy editor does
not work.
i think registry keys are modified by someone. now i want to know that which
registry values i need to modify or another way?
i appreciate if someone could help me with this.
 
Hakkan said:
Hi!
I have a system with winxp SP2 installed but when i go to it's control panel
to find system applet, it is not there.
also system configuration utility (MSconfig) and group policy editor does
not work.
i think registry keys are modified by someone. now i want to know that which
registry values i need to modify or another way?
i appreciate if someone could help me with this.

If you think your computer has been compromised, you don't start fixing
things by messing about with registry keys. You start by ensuring that
the computer is completely virus/malware-free.

Go through these general malware removal steps systematically -
http://www.elephantboycomputers.com/page2.html#Removing_Malware

Include scanning with either Sysclean or Multi_AV, plus AVG Anti-Spyware
(formerly Ewido - http://www.ewido.net/en/) and follow instructions to
do all scans in Safe Mode.

When all else fails, run HijackThis and post your log in one of the
specialty forums listed at the link above (not here, please).

Standard caveat: If the procedures look too complex - and there is no
shame in admitting this isn't your cup of tea - take the machine to a
professional computer repair shop (not your local version of
BigStoreUSA). Please be aware that not all local shops are skilled at
removing malware and even if they are, your computer may be so infested
that Windows will need to be clean-installed. Have all your data backed
up before you take the machine into a shop.

If your work determines that the computer indeed has been compromised,
what you do next depends on 1) the nature of the compromise; 2) whether
this is a workplace computer. In either of these cases if the compromise
was a rootkit of some type, best practice is to format the hard drive
and clean-install Windows.


Malke
 
Back
Top