I am not an expert with computers, but I have cleaned up Malware before. Unfortunately I may know enough about computers to get in trouble, but hopefully someone can help me.
I am trying to clean up my parents computer, which was infected with malware. The computer seems to be clean after using multiple anti-malware programs (details below), but now the computer does not want to update Malwarebytes or Adaware, and it doesnt want to map drives. It will access the Internet, and the browsers (Mozilla Firefox and IE7) seem to be working fine no signs that they are hijacked. Microsoft Security Essentials, Super Anti-Spyware, and Spybot Search and Destroy all seem to update fine. Windows Updates are being downloaded and installed as well.
The computer is running XP Home, SP3 (I dont know if it had SP 3 before or after I installed a ton of Windows Updates. The computer had been pretty behind on updates. It was also running McAfee antivirus, which was up to date, but didnt seem to catch any of the problems.
The computer had a bad malware infection.
Desktop Icons Hidden
Programs in All Programs were missing. They said Empty
Task Manager was disabled
A ton of error messages were popping up, but I dont remember what they said.
I took the computer from my parents house, because they have dial up, and my network at work is much faster. I removed the hard drive and used an adapter to connect it as an external drive on a clean PC. I ran scans with ForeFront Antivirus (Corporate version of Microsoft Security Essentials) and with MalwareBytes, which removed or cleaned several problems. Some things that ForeFront found were FakeSysdef, Alureon, Sirefef.B, DoFoil.L. But the Desktop icons and programs were still missing when I re-installed the hard drive. I did some research online, and found posts in forums that mentioned ComboFix, and Unhide. I read the disclaimer about not running ComboFix without supervision, but I assumed I knew what I was doing (mistake, sorry!!!). The Unhide program did unhide the icons and programs, so I was starting to think that all was well. After a restart, I uninstalled McAfee and replaced it with Microsoft Security Essentials. It installed and updated fine. I also tried to update MalwareBytes, and that failed.
The error message MalwareBytes gave was:
Update failed. Make sure you are connected to the Internet and your firewall is set to allow MalwareBytes Anti-Malware to access the internet.
I made sure the computer was connected to the internet. No change. I also tried re-installing MalwareBytes, thinking the malware infection damaged it. Then tried to update. No luck. Adaware had been previously installed, so I tried updating it. Wouldnt work. The Internet Browsers seemed fine, and I was in the process of installing Windows Updates. I also tried allowing MalwareBytes in the firewall settings, and also turning the firewall off, but that didn't help. I asked a computer tech in my department (IT) about what might fix the problem, and he recommended WinSockFix, which we have on a server. I tried to map to the server and got this error: The drive could not be mapped because no network was found.
I installed WinSockFix, and it didnt make a difference.
Sorry for the novel, but I am trying to share as many details as possible. I really want to get this computer working right. Everything else I have tried seems ok. I dont know if there are any other network problems that I havent discovered yet. I havent been able to test the dial up connection yet, either. By the way, I am not running all of the anti-malware programs at once. The only programs running together are Security Essentials and Super Anti-spyware.
Thanks for any help you can give!
Edited by hamluis, 09 November 2011 - 09:49 PM.
Moved from XP to Am I Infected.