Posted 18 November 2008 - 11:06 AM
This problem began with a very slow laptop (Dell Inspiron 9400).
I believe a second problem was started by the user clicking on the download NIV09 popup. the computer wouldn't shutdown automatically and then it began doing a chkdsk each time it started, saying the volume was dirty, then it stopped recognizing the usb ports.
I decided to run Malwarebytes and found it has the Rootkit.Agent in the registry: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\legacy_windev-cde-1523. Mbam quarantined it - I asked it to remove it, which it did, only to reappear as quarantined. I tried unlocking it but that didn't work.
Meanwhile I had uninstalled NIV2008, but when I reinstalled it, I received a msg that McAfee needed to be removed (I never installed the program that came with the machine). Anyway, I downloaded a removal program for that and also for NIV2008 - then I reinstalled NIV2008 but couldn't run LiveUpdate! In addition, I could no longer access the Internet. I fixed the tcp/ip problem by completely removing NIV2008.
This whole thing has been an on and off work issue for over a week - Now I'm wondering if it would be easier and more efficient to just wipe everything clean and reinstall WinXP etc. I have a backup of the system, but am reluctant to use it since the slowness was noticeable when that backup was done...so I'm concerned it may not be a good idea.
Any advice you can give me on this?