I am currently not connected to the Internet, but both my computers have been hacked by a local. I cannot seem to find the answer on how to keep this hacker off my machines. Anyway, what I would like to learn is how to undo what this hacker has done.
My first question deals with Services. The hacker has some of my Services turned off and when I try to turn them on, I get "Access Denied". Should I delete them and then recreate them using sc create? I have already created one that is required from a backup program I use. Somehow the hacker blocks installation of the service when I install the program. After the creation, the backup program works OK.
Another thing that the hacker has done is to have files read by a svchost.exe process just to slow down my computer. Yeah, I know that all I have to do is kill the process, but that is a pain, having to almost constantly monitor what is happening. On my Win 7 system, the System process is reading the same files as the video program I use. That just cannot be right! And furthermore, I cannot shut down the System process.
Another thing that has been done is having a file open by some process so that it cannot be readily deleted. Is there a way, without having to shut down the program that is holding the file open, to remove such a file? Or if I shut down the process, can I prevent the file from returning?
Any help will be welcomed. Thanks in advance for any help.
My first question deals with Services. The hacker has some of my Services turned off and when I try to turn them on, I get "Access Denied". Should I delete them and then recreate them using sc create? I have already created one that is required from a backup program I use. Somehow the hacker blocks installation of the service when I install the program. After the creation, the backup program works OK.
Another thing that the hacker has done is to have files read by a svchost.exe process just to slow down my computer. Yeah, I know that all I have to do is kill the process, but that is a pain, having to almost constantly monitor what is happening. On my Win 7 system, the System process is reading the same files as the video program I use. That just cannot be right! And furthermore, I cannot shut down the System process.
Another thing that has been done is having a file open by some process so that it cannot be readily deleted. Is there a way, without having to shut down the program that is holding the file open, to remove such a file? Or if I shut down the process, can I prevent the file from returning?
Any help will be welcomed. Thanks in advance for any help.